Cybercriminals have gone to great lengths to commit theft or fraud by manipulating credit union executives, employees, and even business members using fake, spoofed, or doctored emails, calls, and even deepfakes or digitally altered recordings. The surge of business email compromise (BEC) and fraudulent instruction scams typically request large wire transfers. These urgent or pay immediately requests hope that an employee does not take time to scrutinize the request and often exceed $1 million.

BEC schemes continued to be the costliest in 2020 with 19,369 complaints with an adjusted loss of approximately $1.8 Billion according to the Internet Crime Report from the FBI.

An increase in these scam-related losses coincides with the increase in remote working, suggesting that detecting and preventing social engineering scams has become more difficult with an increase in distractions.

Business email compromise (BEC) and fraudulent instruction are accomplished by either phishing an executive and using compromised email credentials or by spoofing a legit email address from a look-alike domain name. Either way, the intent is to induce an employee to act quickly to make a wire transfer, payment, or transfer sensitive data to cybercriminals.

All employees involved with wire transfers should receive training on these scams and the procedures for handling internal wire transfer requests.

These scams typically involve an executive level employee’s email or phone number that has been compromised or spoofed through a phishing attack. The fraudsters create an email or text appearing to be sent from the executive to another individual within the organization requesting a payment – typically wire transfer.

A few simple action steps that can help protect your credit union is to have employees confirm the legitimacy of the request by verifying with the C-suite executive and authenticate using a different communications channel (out-of-band authentication), such as verifying face-to-face with the requestor or calling the requestor’s phone extension or cell phone.

Implementing dual control – using two or more employees – can provide additional checkpoints to ensure requests and payments appear and are transacted legitimately.

It’s important to educate your members – especially business members - about the possibility of this scam and how to protect themselves. Consider adopting a written wire transfer agreement for business members due to the size of their potential wire transfer requests. In the absence of a signed wire transfer agreement, require business members to request large dollar wires in person.

Remember, the member could be liable for the loss of funds, so it’s critical they know how to spot the warning signs for this type of fraud.

A common approach associated with real estate wire scams has a member/purchaser receiving an email with bogus instructions, shortly before the loan closing. You should establish procedures to call the title company / closing agent using a reliable phone number on record to verify the legitimacy of wire transfer instructions received by email or fax. Additionally, some establish a passcode in advance to be used in conjunction with the callback and verification process.

Educating members upfront can be extremely helpful. Provide reminders such as:

  • Warning them to be wary of any last-minute wire transfer changes
  • Suggesting they gather all telephone numbers for agents, title company, etc. at the signing of the purchase contract and compare any changes shortly before closing
  • Calling to confirm any wiring instructions
  • Avoiding sending financial information through email

Asking members if they have received the wire instructions via email and if so, did they verify instructions with the closing agent using a verified telephone number can be helpful.

Related Resources:

Access CUNA Mutual Group’s Protection Resource Center at cunamutual.com for exclusive risk and compliance resources to assist with your loss control efforts.

Please complete this brief form to route your question to one of our Risk Consultants.

*Username and password required.
This resource is for informational purposes only. It does not constitute legal advice. Please consult your legal advisors regarding this or any other legal issues relating to your credit union. Any examples provided have been simplified to give you an overview of the importance of selecting appropriate coverage limits, insuring-to-value, and implementing loss prevention techniques. CUNA Mutual Group is the marketing name for CUNA Mutual Holding Company, a mutual insurance holding company, its subsidiaries and affiliates. Insurance products offered to financial institutions and their affiliates are underwritten by CUMIS Insurance Society, Inc. or CUMIS Specialty Insurance Company, members of the CUNA Mutual Group.