BEC scams redirect legitimate business payments using impersonation, urgency, and subtle email changes. This guide helps you preserve evidence and take the right next step.
Request a Free Consultation
Pressure to pay quickly, secretly, or outside standard approval steps.
Last-minute bank updates, new beneficiary details, or “temporary” instructions.
Domains that differ by one character, odd reply-to addresses, or unusual signatures.
Headers help identify routing and spoofing patterns beyond screenshots.
Original invoice + attachments + any “updated bank details” messages.
Receipts, bank confirmations, timestamps, beneficiary details.
Forwarding rules, MFA changes, sign-in activity and IP/location logs.
If funds were sent, contact your bank immediately and request a recall. Preserve evidence before making changes to systems.
If an inbox is compromised, reset credentials and enable MFA.
You can also review Scam Types and How It Works for our general process.
