Email Scammer Pretends To Be The CEO And Convinces Company Employee To Transfer Them £100,000

One fake email was all it took to turn a routine company payment into a £100,000 disaster. The employee at the center of this Reddit story thought he was following orders from the CEO, but the message behind the request was anything but legitimate.

What makes this one sting is how ordinary it started, a convincing email, a quick reply, and a transfer that should never have happened without a second check. By the time the real CEO got involved, the damage was already done, and the fallout was only getting started.

Read on, because the comments are just as brutal as the scam itself.

Here's the original post by u/100KFuckUp:

The user eventually deleted their account.

Reddit

Luckily, another Redditor saved the content of the post and shared it once again on r/BestofRedditorUpdates:

Reddit

OP messed up multiple times and made sure to point out every single one of them.

Reddit

The scam worked because the email looked like it came from someone in charge, and that kind of pressure can make people act fast.

Once OP and the CEO spoke on the phone, it became clear that he messed up.

Reddit

OP got suspended until they investigated the case further.

Reddit

OP then added a few edits to update us on their situation:

Reddit

Cognitive Dissonance and Compliance

One psychological concept that can elucidate the compliance seen in these scams is cognitive dissonance. Cognitive dissonance theory, introduced by Leon Festinger, posits that individuals experience discomfort when holding conflicting beliefs or when their behavior contradicts their values. In the case of scams, an employee may initially feel hesitant about transferring money but may rationalize the decision due to the supposed authority of the sender.

Studies indicate that once an individual commits to a course of action, they are likely to justify their decision even in the face of conflicting information. By understanding this mechanism, companies can create policies that require verification processes to alleviate potential dissonance and encourage employees to seek confirmation before acting on requests that could lead to financial loss.

And finally, OP made the last edit and revealed what ended up happening to them.

Reddit

Here's how Reddit users reacted to u/100KFuckUp's situation:

Reddit

I did not know it was that easy to pull off.

Reddit

The comments did not exactly go easy on OP.

The Role of Emotion in Decision-Making

Emotional intelligence is another critical factor in understanding why employees may fall prey to scams. Research shows that emotional responses can significantly influence decision-making processes. A study published in the Journal of Behavioral Decision Making suggests that individuals with lower emotional regulation are more susceptible to impulsive decisions, especially under stress or urgency.

When employees receive urgent requests for financial transfers, their emotional responses may override rational thought processes, leading them to comply without thorough verification. Organizations can mitigate this risk by providing training on emotional intelligence, helping employees recognize their emotional triggers and learn techniques for managing stress, thereby improving their decision-making in high-pressure situations.

This user did the exact opposite and saved his company from a world of trouble.

Reddit

There’s a reason they have a PIN and physical device to approve payments.

Reddit

This is obviously the real CEO, unlike the person that scammed OP.

Reddit

Some Redditors focused on how close this came to becoming a much bigger mess.

Social proof is another psychological principle that can increase vulnerability to scams. This principle suggests that individuals will conform to what they perceive others are doing, particularly in ambiguous situations. Research published in the Journal of Experimental Social Psychology indicates that when individuals see others complying with a request, they are more likely to do the same, even if the request is unethical or misguided.

In a corporate environment, if an employee believes that their peers are following the directives of a CEO or higher-up without question, they may feel pressured to comply similarly. To counteract this tendency, organizations can foster a culture that promotes ethical decision-making and encourages employees to speak up if they feel uncertain about a request, thereby breaking the cycle of blind compliance.

Someone's email must have gotten compromised.

Reddit

It's almost like watching a scary movie.

Reddit

This was a good lesson for the organization.

Reddit

That kind of mistake can ripple through an entire company.

This is similar to the friend situation where someone asked for repayment after a failed investment loan.

Training for Cybersecurity Awareness

Practical training solutions are essential in combating the rise of sophisticated scams. Research from the University of Maryland highlights that regular cybersecurity awareness training significantly reduces the likelihood of employees falling victim to phishing scams. This training should not only cover the technical aspects of recognizing phishing attempts but also integrate psychological insights about trust, authority, and emotional responses.

Organizations should implement ongoing training sessions and simulations that mimic real-life phishing scenarios. This approach ensures employees remain vigilant and capable of identifying suspicious communications while also understanding the underlying psychological principles that influence their decision-making processes.

You always wonder how anyone could fall for this, and someone eventually does.

Reddit

Calling first would've be the smart thing to do.

Reddit

They put you under pressure so that you won't have time to think.

Reddit

That pressure is exactly what scammers count on.

And three people have to turn a key at the same time.

Reddit

Not even a phone call before confirming the payment?

Reddit

They make the mail look as realistic as possible.

Reddit

The Importance of Verification Systems

Establishing verification systems is another practical recommendation for organizations.

Authorised Push Payment fraud (APP)

Reddit

You don't make the best decisions under pressure.

Reddit

The CFO breached the safety protocol.

Reddit

Awareness of Psychological Manipulation Techniques

A crucial aspect of combating scams is to increase awareness of psychological manipulation techniques used by scammers. Research published in the Journal of Cybersecurity highlights that scammers often employ tactics such as urgency, authority, and social proof to manipulate victims into compliance.

By educating employees on these techniques, organizations can empower them to recognize when they are being manipulated. Workshops that analyze real-world examples of email scams can serve as effective learning tools, helping employees to identify red flags and respond appropriately when faced with potentially fraudulent communications.

OP replied to the previous user's comment to clarify some things:

Reddit

The company should get organized to avoid things like this.

Reddit

People online never stop trolling.

Reddit

Getting scammed can leave people feeling embarrassed long after the money is gone.

You can never be too sure.

Reddit

Your wording sounds scamy, sorry.

Reddit

They do intensive research before attempting anything.

Reddit

It could happen to anyone of us.

Reddit

Scammers are getting smarter and better by the day; people are catching up to their scamming methods, so they always feel forced to come up with something new. That makes it harder for people to spot a scam email, so something of the same nature could happen to any one of us.

And that is exactly why these emails still work.

Want more betrayal drama? See how a friend refused to repay a loan meant for a financial emergency.