Business Email Compromise

A targeted scam where criminals impersonate a colleague or supplier to redirect a payment.

How it appears in scam messages

Business email compromise (BEC) impersonates an executive or supplier to redirect payments or wires to attacker accounts, using authority, urgency, and secrecy to bypass checks.

Example only - do not act on it

Example only: Process an urgent confidential wire to this account before end of day.

Why it matters

BEC causes large business losses through a single trusted-looking email.

Common red flags

Unexpected contact creating urgency or fear
Requests for codes, passwords, payment, or personal details
Links or attachments you did not expect
Sender or domain that does not match the real organisation

Safe next steps

Stop and verify through official channels you find yourself
Never share codes, passwords, or card details from a message
Use the message checker if you are unsure
Report and block the sender

Check a suspicious message

See the red flags in a real message and what to do next.

Check a message

PhishingPhishing is when a scammer pretends to be a trusted person or organisation to trick you into revealing passwords, codes, or financial details, or into clicking a malicious link.Fake invoice scamA scammer sends a fake invoice or renewal notice to make you pay for a product or service you did not order.

Related scam messages you can check

Related scam-type hubs

Related red flags

Emergency guides

Frequently asked questions

How can I avoid business email compromise?

Slow down, never act on urgency, and verify through official apps or websites you open yourself. Use the free checker if a message seems off.

What if I have already been affected?

Contact your bank or the relevant provider through official channels, change any exposed passwords from a trusted device, and save evidence. See our recovery guides.