Get access to hundreds of financial resources as an RFP INSIDER

Learn More

Resourceful Finance Pro

Vendor email compromise scams on the rise

Alyssa Pedrick
By: Alyssa Pedrick

About the Author

Alyssa, a member of the Resourceful Finance Pro staff, has written extensively on business and finance for several years. She has produced content for accounts payable professionals and finance executives and has developed whitepapers and infographics for the finance and accounting industry.

Show Less
Last Updated: September 1, 2020
2 minute engagement

Finance is likely all too familiar with business email compromise. But now, a variation of those scams – referred to as vendor email compromise (VEC) – is growing and putting your company money at risk.

So says Crane Hassold, the head of threat research at Agari Cyber Intelligence Division. According to Hassold, VEC scams occur when a vendor’s account is infiltrated and used to send messages to your finance department, typically asking for payment on a pre-existing invoice.

The finer points

Why do finance staffers tend to fall for VEC scams?

Simply put, they hide in plain sight and are quite hard to detect. They target vendors your staff is used to conversing and working with. And since the scammer compromises a vendor’s real account, they can “lie in wait,” observing as exchanges flow back and forth. As a result, they know how to appear legitimate when they finally go in for the attack.

Going forward, thwarting VEC scams will require your staffers to continually analyze authentic-looking emails and look for discrepancies. And it helps if they know exactly how these scams are carried out.

Here’s a three-part rundown you can share with your finance staff:

  • The invasion: First, criminals infiltrate an actual vendor email account by mimicking apps like OneDrive or DocuSign.
  • The manipulation: In the vendor’s email account, the attackers redirect copies of incoming emails to a fake account they’ve created. Then they can go through the emails with real invoices to duplicate later.
  • The follow-through: The criminals send an email to your finance staff for an invoice payment that’s due.

A VEC key to remember

Once your staff understands these scams, how can they work to avoid them?

Here’s one foolproof way they can catch scammers in the act: Check whether the bank account where the vendor’s payment is usually sent has changed.

If it has, that’s a potential sign of a VEC scam. Encourage your staff to halt the process there and consult their manager, so company funds don’t get into the wrong hands.

Filed under

Free Training & Resources

White Papers

Financial Performance, for the Way You Work

White Papers

From Surviving to Thriving: Transforming Nonprofit FinanceStrategy

White Papers

The focus for finance leaders in 2025: Insights from the Gartner CFO conference

Webinars

Eliminate Burnout and Boost Efficiency: Learn How Modern AP Solutions Create Happier, Higher-Performing Teams

Resources

Further Reading

Chargebacks wrecking your cash flow? Here are some tips for getting them under control

Whether they’re triggered by criminal fraud, duplicate charges, a technical glitch or a dissatisfied customer, credit card chargeback...

Beware! The ‘dirty dozen’ tax & banking scams targeting employees now

The IRS is sounding the alarm about the top 12 – aka the “dirty dozen” – tax scams that are tripping up businesses,...

‘Our AI Makes Money for Investors!’ SEC Cracks Down On B.S. Artists

The Securities and Exchange Commission (SEC) under President Biden continues to make an example of companies and individuals that don’...

These stock trading experts beat the S&P 500 by wide margins in 2023

Insider trading is morally wrong and illegal. People go to jail for it. The risks to one’s reputation and freedom outweigh the money ...

CEO Deepfakes Targeting Gullible Employees

That familiar voice on the phone? Could be a deepfake. The face you’ve seen a thousand times in meetings? Don’t assume it’...

Vendor bank accounts a high-risk target for payment fraud: What you can do about it

With remote work here to stay, A/P has to work harder to verify crucial information, such as vendor bank account numbers. Unfortunately,...

Privacy Policy | Terms of Service
Copyright© 2026 SuccessFuel