
When scammers send email that looks like it came from your company — and why you should care.
Email impersonation means a stranger sends messages that appear to come from your business. The sender may use your company name, a look-alike address, or both. Recipients often trust the message because it feels familiar.
This is different from a hacked inbox. The attacker does not need access to your mail system — they only need your domain to look unprotected.
Any business with a domain can be spoofed. Small companies are hit often because protections are frequently incomplete. Industries that move money or goods quickly — logistics, professional services, construction — see urgent fake payment and wire requests.
Customers pay an invoice to the wrong account. A vendor shares sensitive data with an attacker. An employee approves a transfer because the message looked like it came from the owner. Even one successful fake email can cost real money and trust.
Run a free domain check to see whether your public DNS settings make impersonation easy or hard. Then share the results with whoever manages your domain or email — they can close the gaps.
For you as a business owner, the risk is the same: someone tricks your customer or employee using your good name. Phishing is the trick; impersonation is how it looks legitimate.
No — scammers automate scans and target businesses of all sizes. If you email customers or vendors, you're on their list.