A shocking cyber fraud case has emerged in the United States where cyber criminals impersonated a contractor and deceived a county administration into transferring nearly ₹13 crore (around $1.55 million) to fraudulent bank accounts. The scam was carried out through fake payment instructions sent via email. After the fraud came to light, the county administration approached the court and initiated efforts to trace and recover the stolen funds.
Fraudulent emails sent posing as contractor
The case is linked to Laurens County in the U.S. state of South Carolina. According to the lawsuit filed in court, the cyber criminals began impersonating the county’s official contractor around December 15, 2025. They sent emails to county officials claiming that the bank account details for payments had been updated.
The emails contained new Electronic Funds Transfer (EFT) instructions and directed officials to send future payments to the newly provided bank account. The messages appeared legitimate, which prevented officials from suspecting any wrongdoing.
Large payments made in four instalments
Trusting the instructions, county officials proceeded with the payments. According to the lawsuit documents, four separate transfers were made between December 29, 2025 and January 13, 2026.
The payments were as follows:
- December 29, 2025: $122,278.76
- January 12, 2026: $14,647.00
- January 13, 2026: $611,585.82
- January 13, 2026: $809,776.51
Together, these transfers total $1,558,288.09, which is more than ₹13 crore. The bank account used in the transaction was reportedly held at Wells Fargo Bank.
Identity of the cyber criminals still unknown
One of the biggest challenges in the case is that the identity of the cyber criminals remains unknown. In the lawsuit filed by the county administration, the accused have currently been listed as “John Doe” and “Jane Doe,” terms commonly used for unidentified individuals.
The lawsuit states that the county urgently requires court assistance to trace the movement of the stolen funds and attempt recovery of the money.
Immediate steps taken after fraud was discovered
After discovering the fraudulent transfers, county officials reportedly took immediate action to recall the transactions and notified the relevant authorities. An investigation into the matter was subsequently initiated.
During a meeting, the county council also voted to allow the county attorney to work with investigating authorities and insurance providers in an effort to recover the stolen funds.
Rising cases of Business Email Compromise
Cybersecurity experts say the incident appears to be a classic example of Business Email Compromise (BEC), a type of financial fraud carried out through deceptive emails. In such scams, criminals impersonate trusted vendors, contractors, or company officials and send altered payment instructions.
According to renowned cyber crime expert and former IPS officer Prof. Triveni Singh, “Cyber criminals today rely more on social engineering than direct technical hacking. They study the communication patterns and payment processes of organizations, and then send convincing fake emails to redirect bank transfers into accounts controlled by them.”
Vigilance remains the best defence
Experts emphasize that organizations should always verify any change in bank account details through an alternate communication channel, such as a phone call to the contractor or vendor. Acting solely on email instructions can expose institutions to significant financial risks.
In recent years, government bodies, corporations, and businesses worldwide have faced similar cyber attacks. Strengthening cybersecurity protocols and maintaining strict verification procedures are considered essential measures to prevent such frauds in the future.
