Established by a former federal investigator · 20+ years DOJ experience · $12.5B lost to fraud in 2024 — FTC
The Fraud CodexScam Intelligence
Live Threats
NewPig butchering via LinkedIn — $2.1M lost, Bay AreaAlertIRS impersonation surge — tax seasonNewFake Coinbase support calls reported nationwide
CRITICAL THREAT

Business Email Compromise (BEC) & Wire Fraud

Scammers impersonate executives, vendors, or trusted partners over email to trick employees into wiring company funds or changing payment details — the costliest scam by dollar losses.

Losses: $2.9 billion in reported losses in 2023 (FBI IC3)
Targets: Businesses of all sizes, finance and AP staff, real estate buyers, nonprofits
Updated: 2026-06-11
Also known as: BEC Scam · CEO Fraud · Invoice Fraud · Vendor Email Compromise · Wire Transfer Fraud
01

How It Works

BEC is the FBI's single most expensive cybercrime by reported dollar losses. It relies on impersonation and trust rather than malware — making it hard for filters to catch. **Common scenarios:** 1. **CEO fraud**: An email "from the CEO" urgently asks an employee to wire funds or buy gift cards, often "while I'm in a meeting and can't talk." 2. **Vendor / invoice fraud**: Scammers compromise or spoof a real supplier's email and send an updated invoice with new banking details. Payments route to the criminal. 3. **Real estate wire fraud**: Posing as a title company or agent, scammers email homebuyers fake wiring instructions for closing funds — losses can be a life's savings. 4. **Payroll diversion**: An email "from an employee" asks HR to change direct-deposit details to the scammer's account. 5. **Attorney impersonation**: Fake urgent, confidential requests citing a "time-sensitive deal." **The tell:** A change in payment details, urgency, secrecy, and a request to bypass normal verification — delivered by email.
How Scammers Make Contact
Spoofed or hacked email accountsLookalike domainsFollow-up phone calls
02

Warning Signs & Red Flags

  • Email requests an urgent wire transfer or gift card purchase
  • A vendor suddenly emails new or changed banking details
  • Sender domain is slightly misspelled (a lookalike of the real one)
  • Pressure for secrecy — "don't discuss this with anyone"
  • Request to bypass normal approval or verification steps
  • Reply-to address differs from the displayed sender
03

Real-World Example

"Our accounts-payable clerk got an email that looked exactly like it came from a supplier we'd paid for years. It said their bank had changed and gave new wiring details for a $48,000 invoice. Everything matched — logo, signature, the account manager's name. We wired it. The real supplier never got paid. The domain was off by one letter we never noticed."

FBI Internet Crime Complaint Center (IC3)
04

How to Protect Yourself

  • Verify any payment change by calling a known number — never one from the email
  • Require dual approval for wire transfers and vendor banking changes
  • Confirm wiring instructions for real estate closings by phone with the title company
  • Scrutinize sender domains for subtle misspellings
  • Be suspicious of urgency, secrecy, and requests that skip normal process
  • Enable multi-factor authentication on all business email accounts
05

What To Do If You're a Victim

  1. 1Contact your bank immediately and request a wire recall / SWIFT recall
  2. 2Report to the FBI IC3 at ic3.gov within hours — fast reporting can freeze funds
  3. 3Ask the FBI about the Financial Fraud Kill Chain for recent transfers
  4. 4Notify the impersonated party (executive, vendor, or title company)
  5. 5Reset passwords and enable MFA on any compromised accounts
  6. 6Report to the FTC at ReportFraud.ftc.gov and preserve all email headers
Report This Scam
FTC Report Fraud FBI IC3 Identity Theft
?

Frequently Asked Questions

What is Business Email Compromise (BEC) & Wire Fraud?

Scammers impersonate executives, vendors, or trusted partners over email to trick employees into wiring company funds or changing payment details — the costliest scam by dollar losses. BEC is the FBI's single most expensive cybercrime by reported dollar losses. It relies on impersonation and trust rather than malware — making it hard for filters to catch. **Common scenarios:** 1. **CEO fraud**: An email "from the CEO" urgently asks an employee to wire funds or buy gift cards, oft...

How common is this type of scam?

Business Email Compromise (BEC) & Wire Fraud is classified as a critical risk threat. Reported losses: $2.9 billion in reported losses in 2023 (FBI IC3). This primarily targets Businesses of all sizes, finance and AP staff, real estate buyers, nonprofits.

Can I get my money back?

Recovery depends on how you paid. Credit card payments may be reversed through chargebacks. Wire transfers and cryptocurrency are rarely recoverable. Report immediately to your bank and file complaints with the FTC at reportfraud.ftc.gov and FBI IC3 at ic3.gov.

How do I report this?

Report to the FTC at reportfraud.ftc.gov. For internet crimes, file with FBI IC3 at ic3.gov. For identity theft, visit identitytheft.gov. Also contact your local police and your bank.
Sources & References
  1. 01FBI: Business Email Compromise
  2. 02FBI IC3: BEC Public Service Announcement
  3. 03FTC: Business Email Imposters
  4. 04CISA: Avoiding Social Engineering and Phishing
Related Scams

Bank Impersonation Scam

Scammers pose as your bank's fraud department claiming suspicious activity on your account, then trick you into moving money to "protect" it.

AI-Enhanced Phishing

Highly personalized phishing emails written by AI that are more convincing and harder to detect than traditional phishing attempts.

Deepfake CEO Fraud

Criminals use AI-generated video or audio of company executives to authorize fraudulent wire transfers, often targeting finance employees in real-time video calls.

Think you've encountered this scam?

Use the free AI scanner to analyze suspicious messages, websites, or phone numbers.

Scan Now — It's Free