Spoofed Vendor Account Change Scam

How Spoofed Vendor Account Change Scam Works

Overview: This scam involves hackers gaining access to a legitimate vendor’s email, then contacting Indian companies to request a supplier bank account update. The communication may be followed up by a fake CFO or lawyer who calls or emails, adding pressure by claiming it’s urgent and confidential. This method often bypasses routine checks, leading to large fund transfers to fraudulent accounts. How It Works: The scam begins with a seemingly genuine email from a long-time supplier, usually stating that their bank details have changed due to 'audits' or 'financial restructuring.' The new account information is provided, and a sense of urgency is created. Shortly after, a call or follow-up email comes from someone posing as your company's CFO or a partner law firm, further legitimizing the request. They demand secrecy, stress urgency (like closing a deal or avoiding penalties), and discourage verification via usual channels. Money is then transferred to the scammer’s account, often in small, repeated tranches to avoid suspicion. Companies discover the fraud only when the real vendor follows up about missing payments. India Angle: Mid-sized manufacturers, exporters, and importers (textiles, pharma, chemicals) in cities like Surat, Ludhiana, and Hyderabad are commonly targeted. Attackers take advantage of the sheer volume of vendor payments processed via UPI, NEFT, or RTGS, and the overtrust of known suppliers. Increasing remote work and digital correspondence have made such interventions easier. Real Examples: - Email: "Dear Accounts, our bank has changed recently due to audit. Kindly update remittance details to the attached account (ICICI). Kindly process today's payment as usual." - Call from 'lawyer': “This account switch is under legal confidentiality. Delays may result in penalties as per contract. Please process the payment today and inform only the CFO." Red Flags: - Vendor account update requests via email without in-person confirmation. - Email address[ADDRESS_REDACTED].g., @vendor-compiany.com). - Requests that bypass normal PO matching and internal approval processes. - Calls saying a 'lawyer' is involved but using generic contact details. - Time pressure to process payments when key executives are unreachable. Protective Measures: - Establish a dual-verification protocol: always confirm vendor account changes by phone/physical meeting. - Require written documentation directly from verified vendor contacts. - Never process payments to a new account without verifying with known supplier contacts. - Keep strict audit trails and flag any account changes for review by multiple team members. - Educate staff about phishing and social engineering tactics. If Victimised: - Notify your bank immediately to try and recall the funds. - Report the crime at cybercrime.gov.in and contact the 1930 helpline. - Inform both the real vendor and your own legal/compliance teams without delay. - Provide all evidence (emails, call logs) for investigation. Related Scams: - Email Invoice Phishing Scams impersonating known suppliers. - Fake Lawyer/Advocate Calls demanding instant compliance on court notices. - HR Payroll Diversion scams using similar email interventions.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Spoofed Vendor Account Change Scam Target?

General public across India

Red Flags — How to Identify Spoofed Vendor Account Change Scam

• Email requests to update vendor bank details without prior discussion
• Caller impersonates 'lawyer' or CFO, pressuring urgent action
• Email domains with extra/missing characters
• No routine purchase order or approval process followed
• Demands for secrecy regarding payment changes

What To Do If You Encounter Spoofed Vendor Account Change Scam

1. Do not click any links or share personal information
2. Block and report the sender immediately
3. Report at cybercrime.gov.in or call 1930
4. Inform your bank if financial details were shared

How to Report Spoofed Vendor Account Change Scam in India

• Call 1930 — National Cyber Crime Helpline (24x7)
• File a complaint at cybercrime.gov.in
• Contact your bank immediately if money was lost
• Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What is Spoofed Vendor Account Change Scam?

Overview: This scam involves hackers gaining access to a legitimate vendor’s email, then contacting Indian companies to request a supplier bank account update. The communication may be followed up by a fake CFO or lawyer who calls or emails, adding pressure by claiming it’s urgent and confidential. This method often bypasses routine checks, leading to large fund transfers to fraudulent accounts. How It Works: The scam begins with a seemingly genuine email from a long-time supplier, usually stat

How does Spoofed Vendor Account Change Scam work?

Overview: This scam involves hackers gaining access to a legitimate vendor’s email, then contacting Indian companies to request a supplier bank account update. The communication may be followed up by a fake CFO or lawyer who calls or emails, adding pressure by claiming it’s urgent and confidential. This method often bypasses routine checks, leading to large fund transfers to fraudulent accounts.

How to protect yourself from Spoofed Vendor Account Change Scam?

Do not click any links or share personal information Block and report the sender immediately Report at cybercrime.gov.in or call 1930 Inform your bank if financial details were shared

How to report Spoofed Vendor Account Change Scam in India?

Report to cybercrime.gov.in or call 1930 (National Cyber Crime Helpline). You can also contact your local police station's cyber cell.

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.