Call Us

How to Identify a Business Email Compromise Scam

Posted on

Cyberattacks and phishing schemes like Business Email Compromise (BEC) are becoming more common than ever. These happen when a cybercriminal attempts to impersonate an executive or someone within a company to get access to data and money. Though these may sound simple enough to avoid and recognize, BEC is increasing and becoming more sophisticated and difficult to detect with each passing year. That’s why learning how to identify a business email compromise scam and having adequate cybersecurity is so important in this day and age. To know what to watch out for, read on.

Did You Receive an Email Urgently Requesting Funds?

Many BEC scams tend to have common subject headings, and one of the most frequently used ones is an Urgent Request for Funds Transfer. This may appear as though an executive or someone with a senior position in your company is requesting to have an invoice processed. Or they might be ordering an employee to change the recipient name on a scheduled payment. 

Here are some common examples of what the email subject might look like:

Wire Transfer Request

Payment – Important

Bank Transfer Enquiry

Urgent Request

Fund Payment Reminder

What are the Sender’s Details?

Always look at the domain and details of the sender. With a quick glance, it might appear to be the same domain as your company, but it’s important to look carefully. Fraudsters often use a domain that is almost identical but has slight variations with the spelling or end tail of the domain address. For example, name@business.com.au.net.

Sometimes the email will come from a personalized address, either from Hotmail or Gmail. So keep an eye out for this as well.

Does the Email Have a Very Brief Message

When it comes to phishing scams, the emails are usually very brief and right to the point. They will urge you to bypass normal procedures and perform their request right away.

Was the Email Sent from a Mobile Device 

Another common warning sign is if the email appears to have come from a mobile device. This is usually indicated at the bottom of the email. Also, if the sender says they are travelling or in transit, take it as a red flag.

What to do When Faced with a BEC

Here are some things you should do when face with a BEC:

  • Check and verify directly in person or over the phone with any senders making requests to send money
  • Carefully look at the email address and details of each sender
  • Have your staff thoroughly trained to recognize and deal with BEC threats

If your business has been the target of a BEC, The Smith Investigation Agency can help ensure your business is protected from fraud. Contact us today to learn more.

About the Author

Whitney Joy Smith

Founder of The Smith Investigation Agency in 2014, Whitney Joy Smith’s extensive background as a private investigator is matched only by her passion for the role. A graduate of several respected institutions, including Northwest Florida State College and George Brown College, her early years in life were spent between Canada and the United States. This education, along with her formative years as a private investigator in various agencies, informed much of her knowledge of private investigative laws, regulations, and operating standards in both countries.


The recipient of numerous industry awards and accolades, including the Consumers Choice Award, Best in Ottawa, and many others, Whitney takes pride in working closely with her ever-growing agency to raise the bar, maintain compliance, and meet the investigative needs of clients. Whitney is active in various membership and supporting roles, including the CPIRC, CBN, CAPI, Canadian Women’s Chamber of Commerce, and many others. Her experience-driven, thought-provoking articles have been featured in everything from Readers Digest to Business News Daily, and she strives to continually redefine standards for those in the private investigative and security fields. Learn more about Whitney and the team at The Smith Investigation Agency today.