Gift Cards Are Now the #1 Business Email Compromise Cash-Out Mechanism for Fraudsters

iStock-1067816444Overtaking wire transfers and payroll diversion, gift cards have taken a material lead as one of the easiest and least recoverable ways to cash out of a fraud scam. 
The CEO gift card scam has been around for a while. It’s a malware-free, purely socially-engineered scam that takes little more than a reasonable email address and some attitude to pull off.
But in security vendor Agari’s Q3 2019 Email Fraud and Identity Deception Trends report, it’s been noted that nearly two-thirds of business email compromise (BEC) scams (aka CEO fraud) are using gift cards as the medium to defraud a victim. Think about it: it’s easy to pull off, requires only impersonating a single individual (the CEO), and is nearly untraceable – as the take is the gift card, but the victim is left with a separate credit card bill.

The downside for scammers is that the payoff is far less than what’s possible with wire fraud, but because of the little work that needs to be done as part of the scam, it’s become the most used method of email-based fraud.

Anyone in the organization can become a victim – from those in the C-suite all the way down to the brand-new intern that wants to make a good impression with the CEO. That’s why organizations need to employ Security Awareness Training to educate users on scams like these and the need to pick up the phone to verify the gift card request.

Trends like these tend to swell for a time, as scammers catch wind of what’s working right now – and change their tactics to secure the maximum take. Putting protective measures in place that elevate the users mindfulness to attacks, scams, and anything downright suspicious is likely one of the most impactful ways to stop scams like this from succeeding.

Get Your CEO Fraud Prevention Manual

CEO fraud has ruined the careers of many executives and loyal employees. It is now a $12 billion scam according to the FBI. Don’t be next victim! This manual provides a thorough overview of how executives are compromised, how to prevent such an attack and what to do if you become a victim.

CEO-Fraud-PagesYou will learn more about:

  • What is CEO fraud?
  • Who is at risk?
  • How can it be prevented?
  • Resolution and restitution options
  • Checklist for CEO fraud response and prevention

Get Your Manual

PS: Don't like to click on redirected buttons? Copy and paste this link in your browser:

Subscribe to Our Blog

Comprehensive Anti-Phishing Guide

Get the latest about social engineering

Subscribe to CyberheistNews