A form of social engineering in which an attacker spoofs an email from a corporate officer and directs a member of the statf, usually in finance or accounts payable, to transfer corporate funds to a bank account under the criminals’ control. Commonly referred to by its acronym, BEC.