Understanding Business Email Compromise — the $43 Billion Scam

Understanding Business Email Compromise — the $43 Billion Scam

BEC and payment fraud are genuine threats to dealerships today. By following these suggestions, you can significantly reduce your risk.

In today’s digital world, email is the backbone of business communication. However, it’s also a prime target for a growing threat known as Business Email Compromise (BEC). This is a type of cyberattack where criminals impersonate trusted figures within an organization, such as executives, employees or vendors via email. Their goal is to defraud the company into transferring money to the criminal. Once they silently gain access to an employee’s email account, they gather information on organizational roles, approval chains and vendors to create a more realistic scam and maximize the impact of their fraud. How big of a problem is this? In May 2022, the FBI called it a $43 billion scam!

In the Real World

Let’s look at two real-world examples of BEC attacks on dealerships from this year alone:

1. Attackers compromised an accounts payable (AP) employee’s mailbox and observed monthly vendor invoices. They impersonated one of these vendors using a look-alike email domain and gave new account payment instructions to the AP employee. They also created a spoof email address for the employee’s supervisor and proactively gave approval for the change. All communications were via email, no one at the dealership called the vendor to verify the change. The fraud was detected when the real vendor sent a past-due invoice.

2. An attacker gained access to a dealer employee’s email inbox and used the same password to access the payroll processor. The payroll processor’s Multifactor Authentication (MFA) system used a code sent to email. With the password, MFA code and even the employee’s SSN (found in other emails), the attacker was able to change the employee’s direct deposit account. The fraud was only detected when the employee realized they weren’t being paid.

In both cases, two aspects remained common — communications were solely via email and email security was weak. Most attacks begin as a phishing email, which prompts a user to enter their credentials (including MFA) at a fake login page. With these values, the attacker is able to immediately login as the original user. Once they have an account login, they can also establish their own MFA codes, allowing them to login while the original user has no idea this happened.

5 Tips to Protect Your Dealership

So, how can your dealership reduce the risk of falling prey to BEC attacks? We need to address people, processes and technology:

1. Payment Account Change Verification: Establish clear internal rules that require careful verification before any accounts are changed or funds transferred. Require your team to validate the request through a secondary communication, such as a phone call using a number obtained outside of email (e.g., a directory or vendor invoice).

2. Defense with MFA: Activate MFA for all email accounts to add an extra layer of security, making it significantly harder for attackers to gain unauthorized access. Although MFA can be defeated, it greatly raises the bar for the attacker.

3. Login Protections: Setup strict email login rules. For example, one could restrict logins from certain locations and even how often to prompt for MFA. Talk to your IT department or provider on whether these higher levels of email security have been enabled, and whether suspicious logins are being monitored for.

4. Warning Banners: Setup your email system with warning banners that are shown to the user if an email originated outside the company, or if it is the first time someone has sent them an email, which is useful in detecting spoofs.

5. Security Awareness Training and Vigilance: Regularly educate your team about BEC and phishing threats. Train them to recognize common tactics used by scammers and emphasize the importance of correctly handling suspicious emails. This will empower your team to monitor for suspicious activity and address it in a timely manner.

BEC and payment fraud are genuine threats to dealerships today. By following the suggestions above, you can significantly reduce your risk and protect your organization. Take time to reflect on your own organization and consider what additional trainings, policies and tools your business could implement to better protect you and your customers’ information.

You May Also Like

How AI and Automation Revolutionizes Dealer Sales Operations

Powering sales operations with AI and automation gives dealers an outsized advantage in their market, getting sales from shoppers they never thought possible.

Today, 80-95% of the shoppers at dealerships across North America go unsold every month.

And hardly any sales come from shoppers after 30 days. Imagine that. Dealers have spent thousands of dollars generating showroom traffic and leads, yet 85% of them go unsold, and hardly any sales come from shoppers after follow-ups stop. On the other hand, the buyers are still shopping, and nearly 40% buy over the next 90-180 days, just not at that dealership.

Digital Drive: Reshaping Automotive Dealerships for the Future

Embracing this transformation requires an understanding of the technological tools available and a willingness to adapt traditional dealership operations.

Taking Time to Recharge: Empowering Women in the Automotive Industry

The Women In Automotive RECHARGE! conference not only provided a platform for women to connect and network but also served as a source of inspiration and empowerment.

Accountability for Predictability & Accuracy

In the critical part of your business called used car operations, the practice of accountability results in market favor.

Vendors vs. Partners

Bringing in vendors to help manage today’s problems can save money and be a great asset in running a smooth operation. You want a partner who cares about your business and wants to help grow it as much as you do.

Other Posts

KPA, Reynolds and Reynolds Partner to Expand F&I Compliance Services

With this partnership, dealers will have access to a comprehensive suite of F&I services, software, and resources that will lower risk, save money, and better streamline dealership sales processes.

Reynolds Brings New State-of-the-Art Security Operations Center Online

The new SOC will boost Proton Dealership IT’s cyber threat monitoring and response services.

Reynolds and Reynolds Provides Scholarship Assistance to Northwood University Students

The three-year commitment provides a pathway for students to fill dealerships’ growing need for high-performing professionals.

Redefining Sales in the Modern Era: Trust, Information and Competitive Edge

When salespeople are no longer just transactional facilitators, the sales process becomes more of an informative dialogue rather than a one-sided pitch.

Velocity Automotive