Detecting fraudulent impersonation of AECOM’s procurement department
AECOM prioritizes integrity and security in all business dealings
Recent scams involve individuals impersonating AECOM procurement staff to:
- Obtain sensitive information.
- Change payment instructions.
- Ship goods to non-AECOM addresses.
How these scams may work
Fraudsters may use:
- Look-alike email domains that may appear similar to the “@aecom.com” email domain.
- Look-alike websites addresses that that may appear similar to the “aecom.com” website address and which may also re-direct to AECOM’s website or may be designed to look like AECOM’s website.
- Fake phone numbers.
- Forged purchase orders.
Common tactics:
- Urgent requests for wire transfers or bank account changes.
- Orders for goods delivered to unknown addresses.
- Messages using publicly available information to appear credible.
- Communications from non-@aecom.com email addresses.
AECOM will never
- Ask for payments or bank changes solely through email.
- Request gift cards, cryptocurrency, or peer-to-peer payments.
- Provide non-AECOM delivery addresses without a valid purchase order.
- Communicate about procurement matters from non-@aecom.com domains.
- Request bank account changes or compliance validation outside the secure Coupa Supplier Portal (CSP), via unsolicited emails or from any non-aecom.com domains.
If You Suspect Fraud
You may wish to report the incident to the authorities.
Contact Us
If you have remaining questions concerning an invoice, request for proposal, or procurement requisition, you may contact AECOM Procurement at: aphelpdesk@aecom.com