Wire Transfer Fraud: A How-To Guide

BCLP
Contact
LinkedIn
Facebook
X
Send
Embed

Businesses are increasingly falling victim to wire fraud scams – sometimes referred to as “man-in-the-email” or “business email compromise” scams. Although there are multiple variants, a common situation involves an attacker gaining access to the email system of a company, or the company’s vendor, and monitoring email traffic about an upcoming transaction. When it comes time to submit an invoice or a payment, the attacker impersonates one of the parties and sends wire instructions asking that payment be sent to the attacker’s bank account.

Wire fraud scams often victimize two businesses – the business that expected to receive payment, and the business that thought that they had made payment. The scam can cause significant contractual disputes between the victims as to who should bear the loss. The following is a snapshot of information concerning wire transfer fraud.

22,143

The number of businesses victimized by wire transfer fraud.1

$3 Billion

The amount of money lost in the US due to wire transfer fraud.2

270%

Increase in identified victims and exposed loss from January 2015 to April 2016.3

Steps to help avoid wire fraud scams:

  1. Avoid free web-based email systems to transact business.
  2. Enable multi-factor authentication to log into all email systems.
  3. Require employees to select unique and strong passwords or pass phrases.
  4. Require employees to change email passwords frequently.
  5. Require multi-factor authentication (e.g., email and telephone call) when receiving initial payment information.
  6. Require multi-factor authentication when receiving a request to change payment information.
  7. Send a confirmatory letter or email (not using the “reply” feature in email) concerning any request to change payment information.
  8. Delay payment in connection with any request to change payment accounts or a request to make payment to a foreign bank account.
  9. Review any request received by email to change payment accounts for signs that the email may be from a third party.
  10. Provide clear instructions to business partners concerning how payment information should be communicated.

If you are victimized by wire fraud, consider:

  1. Notifying the receiving bank and request that a freeze be placed on any remaining funds.
  2. Notifying law enforcement.
  3. Investigating whether your email system may have been compromised.

Asking business partners to investigate whether their email systems may have been compromised.

1. Federal Bureau of Investigation, Alert No. I-061416-PSA (June 14, 2016), https://www.ic3.gov/media/2016/160614.aspx..

2. Id.

3. Federal Bureau of Investigation, FBI Warns of Dramatic Increase in Business E-Mail Scams (April 2016), https://www.fbi.gov/phoenix/press-releases/2016/fbi-warns-of-dramatic-increase-in-business-e-mail-scams.

[View source.]

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© BCLP | Attorney Advertising

Written by:

BCLP
BCLP
Contact
more
less

BCLP on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide