Hackers are harvesting your client data and using it to steal money.
Hackers use client data to pose as account administrators. They request fake payments to have you wire money into their accounts.
Electronic fund transfers are convenient, but hackers can easily mimic an authorized administrator online. Look closely at a request. There may be clues to a false identity, such as misspelling of the company name in the email.
USE OUT-OF-BAND AUTHENTICATION (OOBA)
Confirm identity with an additional method such as by phone, text, or in-person.