Payroll theft fraud occurs when attackers pose as company executives or employees and send deceptive emails to payroll or human resources staff, requesting changes to payroll direct deposit information. If these requests are approved, the victim's paycheck is unknowingly redirected to the scammer's account instead of the intended recipient's.

A funds transfer scam involves attackers targeting businesses for fraudulent money transfers. Typically, in such cases, attackers impersonate trusted individuals like colleagues or executives, sending deceptive emails to pressure recipients into transferring money to accounts controlled by them. Sometimes, these scams involve compromised suppliers or vendors requesting changes to invoice payment details, such as their banking account information.

A BEC reconnaissance email aims to start a conversation with the victim and create a sense of urgency to prompt a response. Once the victim replies and the attackers establish trust, they can plan and execute various BEC attacks. These attacks can be scams like requesting fraudulent wire transfers, altering payroll information, or stealing sensitive data.

A BEC Assistant Scam involves attackers impersonating an executive or a colleague aiming to start a conversation with the victim. They do this by asking for help or a favor, and when the victim responds, the attackers move on to the next step and attempt different types of attacks. These attacks might include scams like asking for fake money transfers, changing payroll details, or requesting gift cards.

In BEC Gift Card Scams, scammers pretend to be executives or colleagues, persuading the victim to buy gift cards and share voucher codes under pretenses, such as rewarding customers or handling urgent expenses., such as rewarding customers or handling urgent expenses.

In BEC Attorney Scams, attackers frequently target multi-national businesses. They commonly impersonate a high-ranking executive, urging the target to engage with a fraudulent attorney or law firm to address pressing matters, such as the swift acquisition of a foreign company requiring immediate funds transfer. Subsequently, the sham law firm directs the victim to transfer funds to a bank account under the fraudster's control, often leveraging falsified documents to support their claims.

BEC Generic attacks typically target organizations with the intent to carry out commercial scams. These attacks often involve creating fictitious partnerships that appear legitimate to the unsuspecting employee. Additionally, they may present fraudulent investment opportunities that seem credible.

W-form scams revolve around attackers posing as executives, colleagues, or legal representatives to acquire copies of tax-related documents like W-2 or W-9 forms. This information is then exploited for nefarious purposes such as filing false tax returns, identity theft, or selling the data on underground platforms like the dark web.

BEC invoice fraud occurs when scammers pose as executives, vendors, or suppliers, sending fake invoices to companies and directing payments to bank accounts under their control. The company might overlook the discrepancy and pay the fraudulent invoice, leading to financial losses and potential harm to its relationship with the legitimate vendor or supplier.