Security News > 2021 > June > FBI warns of BEC scammers impersonating construction companies
The Federal Bureau of Investigation warned private sector companies of scammers impersonating construction companies in business email compromise attacks targeting organizations from multiple US critical infrastructure sectors.
BEC scammers use various tactics to compromise or impersonate business email accounts with the end goal of redirecting pending or future payments to bank accounts under their control.
To successfully pull off these BEC attacks, the scammers use information collected via online services on construction companies they impersonate and the customers they're targeting.
In March, the FBI also warned of another series of BEC attacks increasingly targeting US state, local, tribal, and territorial government entities, with losses ranging from $10,000 up to $4 million between November 2018 and September 2020.
"The FBI's Internet Crime Complaint Center notes BEC is an increasing and constantly evolving threat as criminal actors become more sophisticated and adapt to current events," the FBI said.
In other alerts issued last year, the FBI warned of BEC scammers exploiting email auto-forwarding and cloud email services such as Microsoft Office 365 and Google G Suite in their attacks.