We no longer support this browser. Using a supported browser will provide a better experience.

Please update your browser.

Close browser message

Treasury and Payments

Improve your working capital, reduce fraud and minimize the impact of unexpected disruptions with our treasury solutions—from digital portals to integrated payables and receivables—all designed to make your operations smoother and more efficient.

Learn more about our treasury solutions:

Credit and Financing

Prepare for future growth with customized loan services, succession planning and capital for business equipment or technology.

Learn more about our credit and financing solutions:

Commercial Real Estate

Get the strategic support to be successful throughout market and real estate cycles with insights, hands-on service, comprehensive financial solutions and unrivaled certainty of execution.

Learn more about our commercial real estate solutions:

International Banking

Global opportunities mean global challenges. But real success means understanding the local markets you serve—which is why we bring the business solutions, insights and market perspective you need. 

Learn more about our international banking solutions:

Cybersecurity and Fraud Protection

Dialing Back Business Email Compromise

In the fight against payments fraud, the only action that’s more important than performing a callback is doing it properly—here’s how.

Sophisticated cybercriminals continue to steal large sums of money from organizations of all sizes using business email compromise (BEC) schemes. Once the fraudulent payments are approved and transferred to the criminal’s accounts, they are very difficult to recover—and the targeted organization is liable for the resulting losses. Therefore, it’s vital to create a robust callback process to validate payments or change in payment instructions before they are released.

A proper callback process requires an employee, typically a payments staff member, to pick up the phone and validate new payment requests, requests to establish a new bank account, changes to payment instructions and changes to contact information.


Callbacks should be made to the actual person making the request using a phone number retrieved from a system of record.

Callback numbers obtained from an email, text or voicemail should not be used since they may originate from fraudsters.

When it comes to callbacks, you can train your employees to:

  • Follow controls for the validation of new or revised payment information.
  • Understand how BEC scams work and what they can do to help prevent them.
  • Never trust email, texts or unsolicited phone calls alone to authorize payment requests or change contact information.
  • Escalate any concerns if a payment seems suspicious—even after performing a callback.
  • Be very suspicious if a vendor offers vague reasons for changes to a new account, such as tax audits or current events. E.g., “Due to COVID-19, we need to update our payment information…”
  • Be wary of vendors who frequently change payment instructions. Fraudsters will sometimes provide several different accounts to victims during a BEC fraud attempt.
  • If you receive a call from your financial institution asking you to validate a suspicious payment, take it seriously. It could be your last chance to stop a fraudulent payment before it’s too late.
Business Resiliency Payments Tips Cybersecurity and Fraud Protection

Get in Touch and Stay Informed