Fraud Protection

Phishing for a Wire Transfer

Find out how to protect your business against phishing and wire transfer fraud.

It's a typical day at the office. An employee receives a friendly reminder email from a vendor they've known for years about an invoice coming due. The email is conversational, asks about the employee's recent vacation, and then reminds the employee that a late payment for the invoice could result in a 20 percent surcharge if not handled immediately.

The employee recognizes their account representative's name and email address, sees the vendor's branding in the email and submits the invoice for payment, without giving it another thought. But in their rush to avoid a late fee, they don't realize the email they just responded to is actually from jsmith@vendorcompony.com instead of jsmith@vendorcompany.com—the vendor's real email account.

In today's digital age of Facebook and LinkedIn, wire fraud schemes that rely on targeted email phishing have become increasingly common and sophisticated. By finding individuals who haven't enabled privacy features on their social media accounts and then using that publicly available data to craft believable, fraudulent emails, criminals trick businesses into quickly sending funds by creating fake, urgent situations. Frequently, victims don't realize they've been duped until they confirm the transfer of funds with a vendor or manager—when the money is already long-gone.

According to the Association for Financial Professionals' Payments Fraud and Control Survey, the number of businesses reporting wire fraud more than doubled, from 5 to 11 percent in 2013, with wire transfer listed as the preferred method of payment for fraudsters. This is largely due to the quick payment clearing timeline—which is much faster than ACH or check.

As the number of victims continue to rise, businesses are fighting back by setting up internal controls and procedures for employees who process payment instructions via email. Ravin Yadav, Vice President for J.P. Morgan Transaction Services and Fraud Expert, says, “Rigorous application of simple procedures such as callbacks and validations go a long way in detecting and preventing a fraud loss.”

To protect your business, ensure all employees handling payments for your business always:

If your business falls victim to phishing or wire transfer fraud, use the event as an opportunity to assess your internal controls. Training your staff on the ways that fraud is evolving is critical. In the fight against fraud, a little knowledge goes a long way.

Related Content

The Cyberthreat Inside Your Company

Why your biggest cyberthreat may be coming from inside your business.

Read article about The Cyberthreat Inside Your Company

How to Defend Against Cyberthreats

We spoke to one of our technology experts about the results of our Executive Advisory Board Cybersecurity Report and the different ways businesses can protect themselves against fraud.

Read article about How to Defend Against Cyberthreats

Fraud—Are You Protected?

Experts discuss how fraud impacts businesses today.

View video about Fraud—Are You Protected?

Related Services

Fraud Protection

SUBSCRIBE TO OUR ECONOMIC NEWSLETTER

Weekly insights on the economic issues that matter most to your business.

Subscribe

GET IN TOUCH

Find out how we can help your business.

Contact Us

 

Copyright © 2016 JPMorgan Chase & Co. All rights reserved.