Business email compromise (BEC): A highly deceptive and destructive scam

May 2026

<p>Business email compromise (BEC): A highly deceptive and destructive scam</p>

The widespread reliance on email has made it a prime target for cybercriminals. Over the past few years, a form of cyberattack known as business email compromise (BEC) has escalated in frequency and impact, causing significant financial and reputational damage to victim companies. 

 

What is business email compromise?

BEC is an email-based fraud scheme that often unfolds over several weeks or months. Cybercriminals target businesses by infiltrating or mimicking employee email accounts to pose as a known contact or existing supplier. These fraudulent emails request fund transfers to fake accounts. Because the requests appear routine and come from what seems like a trusted source, the victim may unknowingly authorize payments to criminals.

BEC: Business examples

One of the most challenging aspects of BEC is that it’s often months before the target realizes they’ve been a victim of fraud. Below are two examples of how criminals can use BEC to defraud business clients.

A business employee receives an email that appears to be from a vendor but is actually spoofed by a fraudster. The email states that the vendor’s bank account information has changed and provides new payment instructions. Since the email appears to be from a known contact and requests a regularly occurring payment amount, the employee authorizes the payment without suspicion. A few months later, the true vendor notifies the business that they have not received payment.

An HR representative receives an email that appears to be from an internal employee’s email account with new direct deposit instructions for payroll. When the employee contacts HR about not receiving their next expected payroll, the company realizes they are the victim of a hacker.

 

How AI is making BEC harder to detect

Cybercriminals now use artificial intelligence (AI) to make BEC scams much harder to spot. AI tools can mirror an executive’s writing style, pull details from public sources, and craft emails that look authentic — without the spelling or grammar mistakes common in older scams. Criminals can also time their attacks for when teams are busiest, or key staff members are away. As these traditional warning signs disappear, organizations need stronger verification steps and heightened awareness to help prevent fraud.

 

Tips for protecting your business from BEC fraud

Remember, it only takes one deceived employee fulfilling a fraudulent request to victimize your entire company. To help your business avoid being defrauded by BEC schemes:

Ensure all employees, particularly those with financial authorization, understand how BEC works and know what to look for.

Enforce a strict policy to never alter payment instructions without verifying directly with the requester using a previously verified phone number — not one provided in the email.

Require multiple levels of approval from authorized employees for all outgoing payments.

Scrutinize all emails that request urgent action regarding transactions or sensitive information.

Verify payment requests and confirm receipt of payment via trusted contact information.

Review accounts frequently for suspicious transactions or unusual activity. 

Enable AP automation to help secure payment processes, monitor activity and transactions, and authenticate vendors and payment requests.

What to do if your business becomes a victim of fraud

If you suspect your business has been targeted by fraud, immediately contact any financial institution where you maintain an account. If you are a KeyBank client, contact KeyBank’s Fraud Client Service Center immediately at 1-800-433-0124 or dial 711 for TTY/TRS. In cases like this, KeyBank works diligently to try to recover the stolen funds. However, the more time that passes, the more difficult the money can be to recoup. 

We’re committed to arming you with the latest information on cybercrime and payments fraud. Visit key.com/cybersecurity to learn more. For information about KeyBank’s Core Fraud Solutions, connect with your Payments Advisor or Relationship Manager.

 

 

 

The information and recommendations contained here have been compiled from sources believed to be reliable based on current information and conditions and are subject to change. KeyBank assumes no duty to update any information in the material in the event that such information changes. KeyBank does not represent or warrant its accuracy, reliability, or completeness or accept any liability for any loss or damage (whether direct or indirect) arising out of the use of all or part of this material. This material is provided as general information only; particular situations may require additional information or actions. Nothing in material shall be regarded as an offer, solicitation, recommendation or advice (whether financial, accounting, legal, tax or other) given by KeyBank and/or its officers or employees or other presenters. If legal advice or other expert assistance is required, the services of a competent professional should be sought.

Find an Expert

By Industry By Solution

Our Expertise

Connect With Us

Find an Expert

By Industry By Solution

Our Expertise