Fraud attacks from payments continue to intensify; in 2023 alone, nearly 80% of organizations reported attempted or actual payment fraud, up from 65% in 2022. While a quarter of businesses reported losses of less than $25,000, 19% exceeded $100,000. Nearly one third did not recover any amount of the loss.Disclosure 1
Checks remain the method of choice for fraudsters, who used checks in 65% of payment fraud events or attempts.Disclosure 1 Though organizations increasingly use alternative payment methods, check fraud is still prevalent at many commercial real estate businesses. There's been a recent resurgence in check washing fraud. Perpetrators often intercept checks from incoming or outgoing mail, and then wash away the payee’s name—and sometimes the dollar amount— giving them a signed and dated “blank” check.Disclosure 2 Thanks to sophisticated desktop publishing software, counterfeit checks are becoming more prevalent too.Disclosure 3 Despite the many risks associated with checks, 70% of organizations have no immediate plans to stop using them.Disclosure 1
ACH debits and credits account for a combined 52% of payment fraud. Criminals deceptively obtain business checking account and bank routing numbers to make unauthorized ACH payments (19%) or ACH credits (33%).Disclosure 1 ACH credits are involved in 47% of business email compromise (BEC) fraud events, replacing wire transfers as the most common tool for BEC fraud.Disclosure 1
Wire transfers are targeted in 24% of all payment fraud events. This represents 39% of incidents in which criminals use BEC or another form of social engineering to transfer funds to a fake or unauthorized bank account.Disclosure 1 With access to an email account, an imposter then poses as a key employee or third-party partner and communicates false payment instructions.
Commercial credit cards account for a fifth of the total payment fraud events and attempts sustained by organizations.Disclosure 1 Sometimes employees misuse their corporate credit cards for personal transactions, but business credit cards are also vulnerable to use by criminals outside an organization, who may use lost and stolen cards or account information to make purchases or withdraw cash.