Business Email Compromise Fraud: How Fraudsters Steal Money from Businesses - Sunwest Bank
Important Articles

Paycheck Protection Program Guide

What Are Port-Out Scams?

Understanding Wiring Fraud

Strength in Numbers

2020 Financial Highlights

A Fortress Balance Sheet

Welcome Back


 

Business Email Compromise Fraud: How Fraudsters Steal Money from Businesses

Business Email Compromise Fraud: How Fraudsters Steal Money from Businesses

02 Mar Business Email Compromise Fraud: How Fraudsters Steal Money from Businesses

Posted at 10:54h in Security Tips, Small Business Security by

Business email compromise fraud was the fastest-growing type of spear phishing attack last year. According to the latest figures from the FBI, cyber thieves have stolen $2 billion from 12,000 businesses using this scam which begins with compromising or spoofing a business executives’ or employees’ email account. The fraudster is able to steal money with the help of an unwitting accomplice, an employee who is fooled into submitting a wire request.

Businesses that regularly perform wire transfer payments are targeted. Fraudsters conduct in-depth reconnaissance to learn key details about their intended victim, how they’re structured and who to target in order to make the emails as convincing as possible. Once they know who to impersonate, who to target, and what message will be the most believable, they establish a means of emailing the fraudulent request.

If the fraudster is able to compromise an employee’s email account, they can control the flow of email using Rules to avoid detection. They can also create a look-alike email domain, such as [email protected] instead of [email protected].

The criminal uses the compromised or spoofed email account of one employee to forward a fake email from the CEO to the Controller, for example, asking that he or she issue a wire, adding urgency and legitimacy to the request.

To protect your company against the unauthorized transfer of funds, you should:

  • Improve your business processes, especially those pertaining to wire transfers
  • Get a verbal confirmation from the person requesting the transfer of funds or re-confirm the request using an alternate contact method
  • Provide employees with cyber security awareness education
  • Be wary of emails that contain some type of urgency or secrecy
  • Have an incident response process ready should this occur within your organization

 

If funds are transferred to a fraudulent account, it’s important to act quickly.

  • Contact your financial institution immediately.
  • Contact your local Federal Bureau of Investigation (FBI) office if the wire is recent. The FBI, working with the United States Department of Treasury Financial Crimes Enforcement Network, might be able to help return or freeze the funds.
  • File a complaint, regardless of dollar loss, with www.IC3.gov.

 

Powered by www.InfoSightInc.com

Print page


Sunwest Bank
Built For Entrepreneurs By Entrepreneurs
Sunwest Bank is an entrepreneurial business bank built for entrepreneurs by entrepreneurs. Sunwest Bank was founded in 1969 in Tustin, CA. Sunwest Bank recently moved its headquarters to Sandy, UT, Salt Lake City metropolitan area.
Useful Links

     

Contact Sunwest Bank
© Copyright 2024 Sunwest Bank

Banking, Deposits and Savings, Commercial and Small Business Lending and online or mobile Banking services are provided by Sunwest Bank, Member FDIC, Equal Housing Lender, NMLS No. 586120. Department of Financial Protection and Innovation License No. 1017. All Rights Reserved – 2021.

Checking and Deposits: Checking accounts may have monthly fees or minimums, or per item charges. Review your account details. Deposits (including Certificates of Deposit) are insured by the FDIC up to a maximum of $250,000 (including principal and interest) for all deposits held in the same insurable ownership capacity (e.g., single account, joint account, IRA) at the same bank. Sunwest Bank customers are responsible for monitoring the total amount of deposits held. All deposits at a single bank held in the same insurable ownership capacity are aggregated for purposes of the applicable FDIC insurance limits. Take advantage of the FDIC's Electronic Deposit Insurance Estimator (EDIE) to calculate the FDIC insurance available for your personal and/or business deposits at: https://edie.fdic.gov/

Lending: All real estate secured loans are subject to credit and collateral approval. Additional terms and conditions apply. Small Business loans are subject to credit and collateral (if required) approval and program eligibility requirements of Sunwest Bank and the Small Business Administration, as applicable. Business and Personal loans are subject to credit and collateral (if required) approval. Some business loans may require a personal guaranty. Carefully read all loan product information, agreements and disclosures before completing the lending process.

All Programs, rates, terms and conditions are subject to change without notice. Complete details, including restrictions, limitations and exclusions for any product or service of Sunwest Bank will be available when you become a customer.

Sunwest Bank Mobile is compatible with iOS devices (iPhone, iPod Touch, iPad) and Android-powered devices. While the Sunwest Bank Mobile app is free to download, message and data rates may apply. Check with your mobile services provider for any charges that may apply for data usage on your mobile device. Please refer to the Mobile Banking and Online Services Agreement for further details regarding Sunwest Bank mobile banking services.


Google Play and the Google Play logo are trademarks of Google, Inc.
Apple, the Apple logo, iPhone, and iPad are trademarks of Apple Inc., registered in the U.S. and other countries.

ALL INVESTMENT AND INSURANCE PRODUCTS:
NOT FDIC INSURED - NO BANK GUARANTEE - MAY LOSE VALUE – ARE NOT A CONDITION TO ANY BANKING SERVICE OR ACTIVITY – ARE NOT DEPOSITS