<p><strong>Business Email Compromise (BEC)</strong>, also known as <em>Email Account Compromise (EAC)</em>, is a type of <a href="https://www.fraudswatch.com/tag/phishing/" data-type="URL" data-id="https://www.fraudswatch.com/tag/phishing/">phishing attack</a> that targets organizations, with the goal of stealing money or critical information. In a BEC scam, criminals send an email message that appears to come from a known source making a legitimate request, such as:</p>



<ul class="wp-block-list">
<li>A vendor your company regularly deals with sends an invoice with an updated mailing address.</li>



<li>A company CEO asks her assistant to purchase dozens of gift cards to send out as employee rewards.</li>



<li>A customer service representative asks you to update your personal information, such as your credit card number or Social Security number.</li>
</ul>



<p>The email may contain a link that, when clicked, will take the victim to a fake website that looks like the real website of the company they are supposedly doing business with. Once the victim enters their personal information on the fake website, the criminals can steal it.</p>



<p>BEC scams are on the rise, and they are one of the most financially damaging online crimes. In 2022, the FBI received over 24,000 complaints about BEC scams, with losses totaling over $2.4 billion.</p>



<h2 id="10-types-of-business-email-compromise-bec-scams" class="rb-heading-index-0-93448 wp-block-heading">10 Types of Business Email Compromise (BEC) Scams</h2>



<ol class="wp-block-list">
<li><strong>CEO Fraud</strong>: Impersonating a high-level executive, the scammer requests an urgent wire transfer from an employee, typically in the finance department.</li>



<li><strong>Account Compromise</strong>: An employee&#8217;s email account is hacked and then used to make requests for invoice payments to fraudulent bank accounts.</li>



<li><strong>Fake Invoice Scheme</strong>: Scammers send a fake invoice to a company&#8217;s billing department, with the payment instructions directed to a fraudulent account.</li>



<li><strong>Vendor Email Compromise</strong>: A legitimate vendor&#8217;s email account is compromised and used to send fake invoices to the company.</li>



<li><strong>Data Theft</strong>: Scammers target employees with access to sensitive information, such as HR records or <a class="wpil_keyword_link" href="https://www.fraudswatch.com/tag/financial-fraud/" title="financial" data-wpil-keyword-link="linked" data-wpil-monitor-id="1028">financial</a> data, to gain unauthorized access.</li>



<li><strong>Attorney Impersonation</strong>: The scammer poses as a lawyer or legal advisor and requests confidential information, often under the guise of an urgent or sensitive legal matter.</li>



<li><strong>Payroll Diversion</strong>: An employee&#8217;s direct deposit information is altered, sending their salary to a fraudulent bank account.</li>



<li><strong>Tax Fraud</strong>: Fraudsters use stolen employee information to file <a href="https://www.fraudswatch.com/tag/tax-fraud/" data-type="URL" data-id="https://www.fraudswatch.com/tag/tax-fraud/">false tax returns</a> and claim refunds.</li>



<li><strong>Real Estate BEC</strong>: Scammers target real estate transactions, such as closings, and alter the payment instructions to divert funds to fraudulent accounts.</li>



<li><strong>M&;A Fraud</strong>: Emails from scammers posing as executives or consultants involved in mergers and acquisitions request sensitive information or funds transfers.</li>
</ol>



<h2 id="10-qampa-on-business-email-compromise-bec-scams" class="rb-heading-index-1-93448 wp-block-heading">10 Q&;A on Business Email Compromise (BEC) Scams</h2>



<ol class="wp-block-list">
<li><strong>Q: What is a BEC scam?</strong><br>A: A BEC scam is a type of fraud where scammers use email to impersonate someone within a company or business relationship to trick employees into transferring funds or sharing sensitive information.</li>



<li><strong>Q: How do BEC scams work?</strong><br>A: BEC scams typically involve email spoofing, <a href="https://www.fraudswatch.com/social-scams-and-fraud-the-latest-threat/" data-type="URL" data-id="https://www.fraudswatch.com/social-scams-and-fraud-the-latest-threat/">social engineering</a>, and sometimes malware or phishing to gain access to email accounts or deceive employees into taking fraudulent actions.</li>



<li><strong>Q: Who is targeted in BEC scams?</strong><br>A: BEC scams often target employees with access to company finances or sensitive information, including those in finance, HR, and executive roles.</li>



<li><strong>Q: How can I recognize a BEC scam?</strong><br>A: Look for unusual or urgent requests, discrepancies in email addresses or domain names, and changes in payment instructions or account information.</li>



<li><strong>Q: What should I do if I suspect a BEC scam?</strong><br>A: Verify the request through another channel, such as a phone call, and report your suspicions to your IT or security department.</li>



<li><strong>Q: How can I prevent BEC scams?</strong><br>A: Implement email security best practices, provide employee training, and establish protocols for verifying and approving financial transactions and changes to sensitive information.</li>



<li><strong>Q: What are the financial impacts of BEC scams?</strong><br>A: BEC scams can result in significant financial losses for businesses, as well as reputational damage and potential legal liabilities.</li>



<li><strong>Q: How do scammers choose their targets?</strong><br>A: Scammers often use publicly available information, such as company websites and social media, to identify potential targets and gather information to craft convincing emails.</li>



<li><strong>Q: How do scammers gain access to email accounts?</strong><br>A: Scammers may use phishing attacks, social engineering, or malware to compromise email accounts and gather information for their scams.</li>



<li><strong>Q: What should I do if my company has fallen victim to a BEC scam?</strong><br>A: Report the incident to law enforcement, notify your financial institution, and take steps to secure your email accounts and systems.</li>
</ol>



<h2 id="preventing-and-reporting-bec-scams" class="rb-heading-index-2-93448 wp-block-heading">Preventing and Reporting BEC Scams</h2>



<h3 id="preventing-bec-scams" class="rb-heading-index-3-93448 wp-block-heading">Preventing BEC Scams</h3>



<ol class="wp-block-list">
<li>Implement multi-factor authentication for email accounts.</li>



<li>Train employees to recognize and report suspicious emails and requests.</li>



<li>Establish protocols for verifying and approving financial transactions and changes to sensitive information.</li>



<li>Use email security tools to detect and block phishing and spoofing attempts.</li>



<li>Limit the amount of publicly available information about your organization and employees.</li>
</ol>



<h3 id="reporting-bec-scams" class="rb-heading-index-4-93448 wp-block-heading">Reporting BEC Scams</h3>



<ol class="wp-block-list">
<li>Report the scam to your organization&#8217;s IT or security department.</li>



<li>If funds have been transferred, contact your financial institution immediately.</li>



<li>Report the incident to your local law enforcement agency.</li>



<li>File a complaint with the FBI&#8217;s <a href="https://complaint.ic3.gov/" data-type="URL" data-id="https://complaint.ic3.gov/">Internet Crime Complaint Center (IC3)</a> at www.ic3.gov.</li>



<li>Notify any affected clients, vendors, or partners to help prevent further damage and loss.</li>
</ol>



<p>More About &#8220;BEC Scams&#8221; <a href="https://www.fbi.gov/how-we-can-help-you/safety-resources/scams-and-safety/common-scams-and-crimes/business-email-compromise" data-type="URL" data-id="https://www.fbi.gov/how-we-can-help-you/safety-resources/scams-and-safety/common-scams-and-crimes/business-email-compromise">Here&#8230;</a></p>

Business Email Compromise (BEC) Scams: 10 Types, Q&A, Preventing And Reporting
FraudsWatch is а site reporting on fraud and scammers on internet, in financial services and personal. Providing a daily news service publishes articles contributed by experts; is widely reported in thе latest compliance requirements, and offers very broad coverage of thе latest online theft cases, pending investigations and threats of fraud.
Leave a Comment


The Ultimate Guide to Avoiding Online Scams
Stay safe online! Our comprehensive 2025 guide covers phishing, AI scams, investment fraud & more. Learn red flags, prevention steps & how to report scams. Protect yourself now via Fraudswatch.com.
Read More
Categories
- AOL Aim Live ATT
- Celebrities Scammed
- Credit Card
- Credit Scam
- Email Man-Male Scammers
- Email Scam List
- Email Scams Examples
- Fraud
- Fraud News From World
- Fraud Prevention
- Gmail.com
- Hotmail.com
- Insurance
- Jobsearch Scams
- Loans
- Military Scammer
- Mortgage
- Nigerian 419
- Report Fraud
- Romance Scammer
- Russian Email Scam
- Scammer
- Scams Ways
- Shopping & Saving Money
- Spam
- White-Collar Crime
- Yahoo.com
Recent Posts
- Bulletproof Betrayal: Inside the $5.2 Million ShotStop Fraud That Sold Counterfeit Body Armor to America’s Law Enforcement July 8, 2025
- The Weapon of Experience: Inside the $28M Memphis Pharmacy Fraud and a Prior Conviction at the Heart of a Record-Breaking National Takedown July 2, 2025
- Chicago Businessman Convicted in $55 Million Fraud Scheme Targeting COVID-19 Relief Funds and Financial Institutions July 2, 2025
- Betrayal in the Classroom: An In-Depth Analysis of the Unprecedented Criminal Charges Against the School District of Philadelphia for Asbestos Failures June 28, 2025
- Anatomy of a Scandal: How a NY Governor’s Aide Allegedly Masterminded an $8M COVID PPE Fraud and Kickback Scheme June 28, 2025
Tags
Bank Fraud
Banking Fraud
Bankruptcy Fraud
Bribery Scheme
Business Fraud
Celebrities Scammed
Charity Fraud
Commodities Fraud
Consumer Fraud
Consumer Protection
COVID-19 relief fraud
Credit
Credit card
Credit Card Fraud
Credit Repair
Credit Repair Scams
Crime
Cyber Crime
Cybercrime
Cyber Criminals
Cybersecurity
data breach
Dating Scammer
Elder Fraud
Elder Justice
Email
Email Letter
Email Scam
Email Scam Examamples
Email Scam Example
Email Scam Examples
Email Scams
Email Scams Examples
False Claims Act
FBI
Fedex
Financial Crime
Financial Fraud
Fraud
fraud prevention
Fraud Scheme
Health
Health and Wellness Scams
Health Care Fraud
Healthcare Fraud
Identity Theft
Immigration Fraud
Insurance
Insurance Fraud
Internet Fraud
Investment Fraud
job
Job Scam
job scams
Loan
Loan Fraud
Loan Scam
Loans Fraud
Lottery Scam
Mail Fraud
Medicare Fraud
Microsoft
Military Scammer
Military Scammer LT. JEFFREY MILLER
Military Scammers
Money Laundering
Money Laundering Scheme
Mortgage
Mortgage Fraud
Mortgage Scam
Mortgage Scams
National Security
Nigerian
Nigerian 419
Nigerian Scam
online fraud
Online Scams
PayPal
personal information
Phishing
Phishing Scams
Ponzi Scheme
Public Corruption
Ransomware
Report Fraud
Romance Scam
Romance Scammer
Romance Scammers
Romance Scams
Scam
Scammer
Scammers
scams
Securities Fraud
spam
Tax Evasion
Tax Fraud
Travel Scams
White Collar Crimes
wire fraud