Cyber Incident Victim: Philabundance

In early December 2020, Philabundance—a Philadelphia-based hunger relief organization handling tens of millions in annual donations—fell victim to a Business Email Compromise (BEC) scam during a $12 million construction project for a new community kitchen. Attackers impersonated the legitimate construction contractor involved in the project, sending a fraudulent invoice to Philabundance that directed payment to an account under criminal control. The organization’s employees processed the request, wiring $923,533 to the scammers. The deception went undetected for 18 days until the authentic construction firm inquired about the overdue payment, prompting Philabundance to realize the funds had been misdirected. The attackers likely gained insight into ongoing communications between Philabundance and the contractor, a hallmark of BEC schemes that often involve email system infiltration to monitor transactions and forge credible payment instructions.

The incident resulted in a direct financial loss of nearly $1 million, compounded by the obligation to separately pay the legitimate contractor for the completed work. This diverted critical resources from Philabundance’s core mission of food distribution to vulnerable populations. In response, the organization implemented enhanced financial controls, including executive-level approval requirements for large payments to vendors and contractors. CEO Loree Jones confirmed security consultations and employee training initiatives focused on BEC threat recognition. The theft highlighted the broader prevalence of such scams, with the FBI reporting $1.7 billion in BEC-related losses across 2019 alone. Philabundance’s operational adjustments aimed to prevent recurrence but did not recover the stolen funds, permanently reducing the capital available for community aid programs.