Business Email Compromise
When the CEO asks for a wire transfer.
Respond to executive impersonation and payment fraud scenarios targeting finance teams.
Overview
Business Email Compromise (BEC) attacks have cost organizations billions through fraudulent wire transfers. These scenarios test your finance team's verification procedures, your ability to detect account compromise, and your response when fraud succeeds. BEC exercises reveal whether your financial controls can survive a determined social engineering attack.
Common Questions
Should executives participate?
Yes. BEC works because of organizational pressure to comply with executive requests. Having executives see how their (impersonated) authority enables fraud helps build support for verification procedures.
What amounts do you use in scenarios?
We calibrate to your organization—large enough to matter, realistic enough to be plausible. The goal is testing procedures, not creating unrealistic scenarios.
Do you include the bank recall process?
Yes. We walk through the actual steps to recall a wire transfer, the information banks need, and the realistic timeline for recovery. Most organizations have never tested this process.
What about vendor payment fraud?
We can run vendor impersonation scenarios—fake invoices, changed payment details, compromised vendor email. Same principles, different attack vector.
Other Tabletop Exercises Options
Ransomware Response
Walk through a ransomware attack scenario from initial detection through recovery and post-incident activities.
Data Breach Response
Practice responding to unauthorized data access, including notification requirements and regulatory response.
Insider Threat Scenario
Test response to malicious or negligent insider actions, including investigation and containment.
Supply Chain Attack
Practice responding when a trusted vendor or software is compromised, affecting your environment.
Ready to Strengthen Your Defenses?
Schedule a free consultation with our security experts to discuss your organization's needs.
Or call us directly at (445) 273-2873