Fake Invoice Scams
Modified bank details on invoices or entirely fabricated bills from “suppliers.”
What is this scam?
Fake invoice scams send PDFs or emails that look like real vendors, utilities, or tax authorities.
Business email compromise changes payment instructions on otherwise legitimate threads.
How it works
- Email appears to come from a known supplier with a new IBAN or wallet address.
- Urgent tone discourages verification with finance or the vendor.
- Consumers receive threats of service disconnection for unpaid “bills.”
- Attachments contain malware disguised as invoices.
Warning signs
- Changed bank details without prior official notice
- Sender domain slightly misspelled (rn vs m, .corn vs .com)
- Only PDF attached with no portal reference you can verify
- Pressure to pay today to avoid penalties
- Invoice amount or VAT numbers that do not match records
What to do
- Verify payment changes through a known phone number—not the email signature.
- Use vendor portals and accounting systems to confirm open invoices.
- Train finance staff on dual approval for new payees.
- Report business email compromise to police and insurers if applicable.
- Check linked payment portals with Fraudly when unsure.
Safety checklist
- Maintain a register of approved supplier bank accounts
- Require callback verification for any detail change
- Enable email authentication and anti-phishing filters
- Separate duties: requester vs approver for payments
- Paste unknown billing URLs into Fraudly before login
Check a website before you pay
Paste a shop or payment link into Fraudly's free checker—get trust signals before you share card details or log in.
Check a website before you payFrequently asked questions
- Our CEO emailed urgent payment instructions—what now?
- Verify by phone using directory numbers. CEO fraud is a common variant—never rely on email alone.
- Can Fraudly validate invoice PDFs?
- Fraudly analyses website URLs. Extract and check any payment links separately.
Related scam guides
Phishing Emails
Fake emails that steal passwords, payment details, or install malware.
Read guideBank Impersonation Scams
Fraudsters pretend to be your bank to authorise transfers or steal login codes.
Read guideFake Webshops
Copycat stores that take your money and never ship—or steal card details.
Read guideTech Support Scams
Fake Microsoft or Apple alerts demanding remote access or payment to “fix” your device.
Read guide
Fraudly is not a law enforcement agency. We provide informational guidance and links to official reporting organisations.
Related Fraudly resources
- Website scam checkerRun a free URL check for trust signals, scam patterns, and plain-language risk context.
- Scam awareness certificateTest your scam detection skills and earn a shareable Fraudly certificate.
- Download Fraudly appGet the iOS app or Chrome extension for on-the-go website trust checks.
- Fraudly PremiumDeep Scan and Live Protection in Chrome—website scans stay free.
- Scam alertsPublished threat alerts with context on emerging phishing and scam campaigns.
- Intelligence HubEditorial guides on fake webshops, phishing, and warning signs before you pay or log in.
