Online Banking
Terrain
(800) 800-4865
Contact
Locations

Understanding how fraud affects your business is an important step in preventing it. Learn more about the different types of fraud and security attacks below.

Business Email Compromise

What is Business Email Compromise?

Business Email Compromise/Email Account Compromise doesn’t rely on malware or viruses.  These types of attacks succeed by manipulating human behavior and weaponizing trust.  Most times these communications do not contain links or attachments and easily slip by traditional online security tools

How to Spot Business Email Compromise:

  1. Verify the domain name – many times fraudsters will register domain names nearly identical to legitimate ones. Example: your-company.com vs your_company.com
  2. Fraudsters create emails that appear to be coming from a legitimate source, such as a CEO or another co-worker. Be sure to verify the email address the message is sent from, not just the displayed name.
  3. What time was the email sent/received? Is it out of normal business hours? Has the tone or communication style changed from previous email exchanges?
  4. Do you feel pressured to comply? Many times, fraudsters attempt to create a sense of urgency causing you to act now, think later. Look for words like “Urgent”, “ASAP”, “Immediate”, or “Past Due”.
  5. Have you been discouraged from verifying the request or communicating with someone outside of the email? Requests for secrecy or implied consequences can be a red flag of business/email account compromise.

What should I do if I suspect Business/Email Account Compromise?

  • Stop communicating via email.
  • Contact the sender using a trusted and verified phone number.
  • Seek assistance from an IT professional to determine how the compromise occurred and implement security measures to prevent future attacks.

“Business Email Compromise/Email Account Compromise is a sophisticated scam that targets both businesses and individuals who perform legitimate transfer-of-funds requests.”

Federal Bureau of Investigations

Draft & Mail Fraud

Fraud Facts:

  • Drafts/ Checks are the payment methods most vulnerable to fraud.
  • Draft /Check fraud has increased nationwide by 385% since the pandemic.
  • In 2023 The United States Postal Service issued a bulletin regarding draft/check fraud and mail fraud, urging individuals to stop mailing paper payment instruments due to the explosion of draft/check fraud related to mail theft.
  • In 2023 nearly 1/3 of all small businesses were victims of draft/check fraud, and of those over 65% reported losses exceeding $50,000.
  • According to the Better Business Bureau the average fake draft/check scam results in a loss of $1,500.00 per item.

What can I do to prevent becoming a victim of draft/check fraud?

  • Enroll in online banking and electronic statements to protect your financial information.
  • Monitor and reconcile your accounts daily using electronic banking.
  • Report any suspicious transactions to your financial institution immediately upon discovery.
  • Utilize electronic payment methods such as ACH to send or receive funds and to pay vendors.
  • Do not mail payment instruments. If you must mail a draft or check walk the item inside the post office and deposit it in the outgoing mailbox.
  • Consider a Post Office Box for business or financial correspondence to prevent sensitive information being exposed during the mailing process.

Equipment Scams

The Secret Service warns about two main types of online sales and auction fraud.

  1. Non-delivery: A consumer sends a payment to a website or auction site to purchase equipment, but the equipment is never delivered.
  2. Non-payment: A scammer receives merchandise or a service but does not remit payment to the seller.

With online equipment sales gaining popularity, it is imperative that we educate ourselves on the dangers of online purchases from fake dealers. Learn more about these scams.

What should I do to reduce my risk?

Watch out for fake dealer sites. Research the seller and verify who owns the company website and when it was created.  Use an online search engine to look up scams associated with the seller.

Carefully examine the equipment. Request a video call to view the piece of equipment or enlist a trusted third party to inspect it on your behalf if you are unable to travel to the location.

Look for red flags.

  • Is the seller pushing you to act quickly? Many times, high pressure tactics are a sign of fraudulent transactions; the fraudster wants you to act now and think later after they have already disappeared with your funds.
  • Does the physical address belong to an equipment seller? Verify with a map search online.
  • Is the price too good to be true? Or is the seller going to great lengths to justify the low price of the equipment? Research the market value and pricing trends of similar items before bidding.
  • Are you unable to reach the seller by phone? Phone numbers that consistently go to voice mail can be a red flag. This allows the scammer time to formulate a response to your inquiries.

UCC Mailer Scams

  • This mailing purports to be from the Secretary of State and is requesting payment for a “statement service fee.”
  • These forms are in no way associated with the California Secretary of State and should not be paid.
  • Upon closer inspection of the fine print on the mailing, you will see this sentence, “CA UCC Statement Services is not affiliated with any state of government agency, and this notice is a solicitation, you are not required to use our services.”

UCC Mailer Scam - Fraud and Security Prevention

What should I do?

Verify the source. Legitimate UCC filings and renewals are managed by state government offices. If you receive a letter of solicitation, check to verify it’s from an official government agency. Contact your state’s Secretary of State office or the appropriate agency directly, using contact information from their official website.

Review the details. Official notices will typically include specific details about your filing, such as the filing number, date, and sometimes even your business’s registered name. Scammers might use generic or incorrect details.

Look for red flags. Be cautious of unsolicited letters that:

  • Ask for payment via unconventional methods (e.g., personal checks, money orders, or wire transfers).
  • Do not provide clear contact information or legitimate business addresses.
  • Have urgent or threatening language, pressuring you to act quickly.
Top

Notice

AAC systems – including online banking – will be unavailable for scheduled maintenance on July 30th from 7-8 P.M. PST.

If you require assistance during this time, please call 800-869-6034 for support.