September 02, 2021
Business Email Compromise
Protect Your Organization From Fraud
Below calls attention to one specific fraud, however, additional threats are others outlined on the page:
What is Business Email Compromise?
Business email compromise (BEC) attacks are a form of cybercrime that uses email fraud to attack organizations. In 2021, the FBI (through IC3.gov) received 19,954 BEC/EAC complaints with adjusted losses of nearly $2.4 billion. FBI Internet Crime Report 2021
Resources
Nacha
- UPDATED Booklet: Protecting Against Fraud: How to Spot and Prevent Fraud Schemes
- Nacha Creates Voluntary Formatting Standard to Help ID Questionable Payroll Credits
- Business Email Compromise,Vendor Impersonation Fraud, and Payments: What Organizations and Financial Institutions Need to Know
FBI
- Cyber Crime Schemes
- Business E-Mail Compromise Scam (video)
- Warns of Business Email Compromise (video)
FBI Internet Crime Complaint Center
- Business Email Compromise and Email Account Compromise - FBI PSA (May 4, 2022)
- Business Email Compromise The $26B Scam - FBI PSA (September 10, 2019)
- Business Email Compromise Contributes to Large Scale Business Losses Nationwide - FBI PSA (June 11, 2018)
- Cybercriminals Utilize Social Engineering Techniques To Obtain Employee Credentials To Conduct Payroll Diversion - FBI PSA (September 18, 2018)
- Report BEC Scams to Internet Crime Complaint Center (IC3)
- Cyber Incident Reporting Fact Sheet
FDIC
- Avoiding Scams and Scammers (October 2021)
- Beware, It's a Scam (October 2020)
- Protect Yourself Against Imposters (March 2020)
EPCOR
National Credit Union Association
- NCUA's Cybersecurity Resources (Updated April 25, 2022)
FinCEN Advisories
- Advisory on Cybercrime and Cyber-Enabled Crime Exploiting the Coronavirus Disease 2019 (COVID-19) Pandemic (July 2020)
- Updated Advisory on Email Compromise Fraud Schemes Targeting Vulnerable Business Processes (July 2019)
CFPB
- CFPB: Frauds and Scams (including cybercrimes)
- Mortgage Closing Scams: How to Protect Yourself and Your Closing Funds (June 2019)
Security and Exchange Commission
- Cybercrime Resource Center (February 2022)
- Warning - Potential Accounting Control Violations with Business Email Compromise (October 2018)
Federal Trade Commission
- Cybersecurity for Small Business
- Data Breach Guide for Businesses (February 2021)