The Federal Bureau of Investigation (FBI) is warning businesses about a sophisticated email scheme that has resulted in $1.2 billion in losses worldwide. In the United States, scammers defrauded more than 7,000 companies between October 2013 and August 2015.
The Business Email Compromise – or BEC scam – typically targets businesses working with foreign suppliers and/or businesses that regularly perform wire transfer payments. The perpetrators compromise legitimate business e-mail accounts by utilizing social engineering or computer intrusion techniques to conduct unauthorized transfers of funds.
Increased volume of BEC scams
The FBI last alerted businesses about the so-called BEC scam at the beginning of the year. The agency is sounding the alarm again because there has been a staggering 270 percent increase in identified victims and exposed loss since January 2015. “The scam has been reported in all 50 states and in 79 countries,” the FBI alert states. “Fraudulent transfers have been reported going to 72 countries; however, the majority of the transfers are going to Asian banks located within China and Hong Kong.”
While the BEC scam can take a variety of forms, the FBI’s latest alert highlights an increasingly common variety that involves fraudsters identifying themselves as lawyers or law firm representatives. The scammers contact victim businesses by phone or email and claim to be handling confidential or time-sensitive matters. According to the FBI, the perpetrators pressure victims to act quickly or secretly in arranging the transfer of funds. Additionally, the fraud may be timed to occur at the end of the business day or work week or to coincide with the close of business of international banks or other financial institutions.
Steps to take in BEC scam defense
To defend against BEC scams, the FBI recommends that businesses adopt cybersecurity and data protection measures, including:
Create intrusion detection system rules that flag e-mails with extensions that are similar to (but not exactly matching) company e-mail.
Register all company domains that are slightly different than the actual company domain.
Confirm changes in vendor payment location by adding additional two-factor authentication such as having a secondary sign- off by company personnel.
Authenticate requests for transfers of funds. When using phone verification as part of the two-factor authentication, use previously known numbers, not the numbers provided in the e-mail request.
Know the habits of your customers, including the details of, reasons behind, and amount of payments.
Carefully scrutinize all e-mail requests for transfer of funds to determine if the requests are out of the ordinary.
Does Your Homeowners Insurance Provide Adequate Coverage?
Your home is likely your greatest asset, which is why it is so important to adequately protect it. Homeowners insurance protects you from the financial costs of unforeseen losses, such as theft, fire, and natural disasters, by helping you rebuild and replace possessions that were lost While the definition of “adequate” coverage depends upon a […]
Understanding the Importance of a Non-Contingent Offer
Making a non-contingent offer can dramatically increase your chances of securing a real estate transaction, particularly in competitive markets like New York City. However, buyers should understand that waiving contingencies, including those related to financing, or appraisals, also comes with significant risks. Determining your best strategy requires careful analysis of the property, the market, and […]
Fred D. Zemel Appointed Chair of Strategic Planning at Scarinci & Hollenbeck, LLC
Business Transactional Attorney Zemel to Spearhead Strategic Initiatives for Continued Growth and Innovation Little Falls, NJ – February 21, 2025 – Scarinci & Hollenbeck, LLC is pleased to announce that Partner Fred D. Zemel has been named Chair of the firm’s Strategic Planning Committee. In this role, Mr. Zemel will lead the committee in identifying, […]
Novation Agreement Process: Step-by-Step Guide for Businesses
Big changes sometimes occur during the life cycle of a contract. Cancelling a contract outright can be bad for your reputation and your bottom line. Businesses need to know how to best address a change in circumstances, while also protecting their legal rights. One option is to transfer the “benefits and the burdens” of a […]
What Is a Trade Secret? Key Elements and Legal Protections Explained
What is a trade secret and why you you protect them? Technology has made trade secret theft even easier and more prevalent. In fact, businesses lose billions of dollars every year due to trade secret theft committed by employees, competitors, and even foreign governments. But what is a trade secret? And how do you protect […]
What Is Title Insurance? Safeguarding Against Title Defects
If you are considering the purchase of a property, you may wonder — what is title insurance, do I need it, and why do I need it? Even seasoned property owners may question if the added expense and extra paperwork is really necessary, especially considering that people and entities insured by title insurance make fewer […]
No Aspect of the advertisement has been approved by the Supreme Court. Results may vary depending on your particular facts and legal circumstances.
Sign up to get the latest from our attorneys!
Explore What Matters Most to You.
Consider subscribing to our Firm Insights mailing list by clicking the button below so you can keep up to date with the firm`s latest articles covering various legal topics.
Stay informed and inspired with the latest updates, insights, and events from Scarinci Hollenbeck. Our resource library provides valuable content across a range of categories to keep you connected and ahead of the curve.
FBI: BEC Scams Result in $1.2B in Losses
Author: Robert A. Marsico
What is the BEC scam?
The Federal Bureau of Investigation (FBI) is warning businesses about a sophisticated email scheme that has resulted in $1.2 billion in losses worldwide. In the United States, scammers defrauded more than 7,000 companies between October 2013 and August 2015.
The Business Email Compromise – or BEC scam – typically targets businesses working with foreign suppliers and/or businesses that regularly perform wire transfer payments. The perpetrators compromise legitimate business e-mail accounts by utilizing social engineering or computer intrusion techniques to conduct unauthorized transfers of funds.
Increased volume of BEC scams
The FBI last alerted businesses about the so-called BEC scam at the beginning of the year. The agency is sounding the alarm again because there has been a staggering 270 percent increase in identified victims and exposed loss since January 2015. “The scam has been reported in all 50 states and in 79 countries,” the FBI alert states. “Fraudulent transfers have been reported going to 72 countries; however, the majority of the transfers are going to Asian banks located within China and Hong Kong.”
While the BEC scam can take a variety of forms, the FBI’s latest alert highlights an increasingly common variety that involves fraudsters identifying themselves as lawyers or law firm representatives. The scammers contact victim businesses by phone or email and claim to be handling confidential or time-sensitive matters. According to the FBI, the perpetrators pressure victims to act quickly or secretly in arranging the transfer of funds. Additionally, the fraud may be timed to occur at the end of the business day or work week or to coincide with the close of business of international banks or other financial institutions.
Steps to take in BEC scam defense
To defend against BEC scams, the FBI recommends that businesses adopt cybersecurity and data protection measures, including:
Create intrusion detection system rules that flag e-mails with extensions that are similar to (but not exactly matching) company e-mail.
Register all company domains that are slightly different than the actual company domain.
Confirm changes in vendor payment location by adding additional two-factor authentication such as having a secondary sign- off by company personnel.
Authenticate requests for transfers of funds. When using phone verification as part of the two-factor authentication, use previously known numbers, not the numbers provided in the e-mail request.
Know the habits of your customers, including the details of, reasons behind, and amount of payments.
Carefully scrutinize all e-mail requests for transfer of funds to determine if the requests are out of the ordinary.
Let`s get in touch!
Sign up to get the latest from the Scarinci Hollenbeck, LLC attorneys!
