Wire Transfer Scam Prevention: Protecting Large Payments

Wire transfers are the preferred payment method for scammers handling large sums because they are fast, irreversible, and difficult to trace once completed. Banks processed over $5 trillion in wire transfers daily in 2023, and the FBI’s IC3 reports that wire fraud, particularly through Business Email Compromise (BEC), caused over $2.9 billion in losses that year. Once a wire transfer is sent, recovery is possible only if caught within 24 to 48 hours, and even then success is not guaranteed.

How Wire Transfer Scams Work

Business Email Compromise (BEC). An attacker compromises or spoofs the email account of a company executive, vendor, or attorney and sends instructions to redirect a wire transfer to a new account. The email appears to come from someone with legitimate authority over payments. The instructions often arrive during time-sensitive transactions like real estate closings, mergers, or routine vendor payments. In 2023, a Hong Kong finance worker transferred $25 million after a deepfake video call with what appeared to be the company’s CFO and other executives, all AI-generated impersonations.

Real estate wire fraud. Attackers monitor real estate transactions by compromising the email accounts of realtors, title companies, or mortgage brokers. At closing time, they send fake wiring instructions to the buyer from what appears to be the title company’s email. The buyer wires their down payment, often $100,000 to $500,000 or more, to the scammer’s account. The FBI reports real estate wire fraud as one of the fastest-growing BEC subcategories.

Vendor payment diversion. Scammers send emails appearing to come from existing vendors, notifying your accounts payable department that the vendor’s banking information has changed. Future payments go to the scammer’s account until the real vendor inquires about missing payments, often months later.

Prevention Measures

Verbal verification for all wire instructions. Before sending any wire transfer, call the requesting party at a known, previously established phone number (not a number provided in the email) to verbally confirm the account details. This single step prevents the majority of wire fraud.

Out-of-band confirmation. Verify wire instructions through a different communication channel than the one used to receive them. If instructions came by email, verify by phone. If by phone, verify by an in-person meeting or video call.

Implement dual authorization. Require two authorized personnel to approve wire transfers above a threshold. This prevents a single compromised account from authorizing fraudulent transfers.

Be especially cautious during real estate transactions. Verify wiring instructions directly with the title company in person or by phone at their listed number. Never wire funds based solely on emailed instructions. Many title companies now include warnings about wire fraud in their communications.

Act immediately if you suspect fraud. Contact your bank within hours to initiate a wire recall. File a complaint with the FBI’s IC3 and request they engage the Recovery Asset Team, which works with banks to freeze fraudulent transfers. The faster you act, the higher the chance of recovery.

For more on Business Email Compromise, see our BEC prevention guide. To protect your email from the compromises that enable wire fraud, explore our email security best practices.

Recovery Windows and Procedures

If you suspect a fraudulent wire transfer, time is critical. Contact your bank immediately and request a wire recall. The first 24 hours offer the highest chance of recovery. After 72 hours, recovery chances drop significantly as funds are moved through multiple accounts.

File a complaint with the FBI’s IC3 and specifically request engagement of the Recovery Asset Team (RAT), which works directly with financial institutions to freeze and recover fraudulent transfers. The RAT has recovered a significant portion of reported BEC losses when engaged within the first 48 hours.