A Guide to Business Email Compromise Prevention

Business email compromise (BEC) is a constant and growing threat to organizations of all sizes and industries. In this scam, criminals use phishing to impersonate your executives or external business partners and vendors—all as a means to tricking your employees into divulging sensitive information or sending fraudulent payments.

The financial losses can be devastating, as well as the reputational harm and other damages. That’s why we’ve created this guide to help you understand the risks, and thus better protect your organization from BEC scams.

Helping you stay one step ahead of fraudsters

In these pages, you’ll find insights and best practices designed to help you improve your security posture. Our guide covers:

  • The anatomy of a BEC attack and how the scam can unfold without you knowing
  • The various responsibilities of everyone throughout your organization and how they can best keep themselves and your company safe from BEC
  • Tips for performing a validating callback—which is the only proven way to root out BEC attacks
  • What to do when JPMorgan Chase calls and what actions to take if we raise a red flag

We take cybersecurity seriously, and have extensive personnel and resources committed to combating fraud. Ultimately, it’s up to your organization to implement strong controls, train employees and foster a culture of vigilance.

© 2023 JPMorgan Chase & Co. All rights reserved. JPMorgan Chase Bank, N.A. Member FDIC. Visit jpmorgan.com/cb-disclaimer for disclosures and disclaimers related to this content.