← Back
MarketsEconomic TimesJul 17, 2026· 1 min read

SEBI Alerts Firms to Rising 'Boss Scam' Cyber Fraud, Urges Vigilance

SEBI has cautioned listed companies and regulated entities about a significant increase in 'Boss Scam' cyber fraud, where criminals impersonate senior executives to trick finance teams into transferring funds. The regulator's alert emphasizes the need for enhanced cybersecurity and internal controls to mitigate financial risks from these AI-enabled social engineering attacks.

India's capital markets regulator, the Securities and Exchange Board of India (SEBI), has issued a public warning to all listed companies and regulated entities regarding a surge in 'Boss Scam' cyber fraud. This sophisticated social engineering scheme targets corporate finance departments, with fraudsters impersonating senior executives to coerce employees into unauthorized fund transfers. The scam leverages multiple communication channels, including email, WhatsApp, and increasingly advanced artificial intelligence (AI) tools like voice cloning. These methods allow perpetrators to convincingly mimic the voices and communication styles of legitimate executives, thereby circumventing established protocols and deceiving finance teams into executing fraudulent transactions. The objective is typically the immediate and untraceable transfer of corporate funds to accounts controlled by the fraudsters. SEBI's directive underscores the growing threat of cybercrime to financial market integrity and corporate security. It emphasizes the critical need for regulated entities to bolster their internal controls, enhance cybersecurity measures, and provide ongoing training to employees, particularly those in finance and treasury roles, to recognize and resist such sophisticated social engineering attempts. The warning highlights the financial risks posed by these scams, including direct monetary losses, potential reputational damage, and operational disruptions for affected firms.

Analyst's Take

While the immediate impact is operational risk for individual firms, the proliferation of AI-powered voice cloning in such scams suggests a broader systemic risk to financial transaction security. This could implicitly pressure insurers to reassess cyber insurance premiums and coverage for corporate fraud, potentially raising operating costs for companies even without a direct incident.

Related

Source: Economic Times