This Public Service Announcement is an update and companion piece to
Business Email Compromise PSA 1-071218-PSA posted on www.ic3.gov. This
PSA includes new Internet Crime Complaint Center complaint information
and updated statistics from October 2013 to July 2019.
Business Email Compromise/Email Account Compromise (BEC/EAC) is a
sophisticated scam that targets both businesses and individuals who
perform legitimate transfer-of-funds requests.
The scam is frequently carried out when a subject compromises legitimate
business or personal email accounts through social engineering or
computer intrusion to conduct unauthorized transfers of funds.
The scam is not always associated with a transfer-of-funds request. One
variation involves compromising legitimate business email accounts and
requesting employees’ Personally Identifiable Information or Wage and
Tax Statement (W-2) forms.1