By Andrea Stevens
AFRO Staff Writer
astevens@afro.com

Baltimore City has experienced a major fraud attack, totaling the loss of $803,000. A scammer, posing as a legitimate vendor representative, successfully manipulated city employees into allowing payments to be rerouted to fraudulent accounts. Baltimore City Comptroller Bill Henry gives insight on the situation.

“This wasn’t really a cyberattack—it was an old-fashioned con that used electronic funds transfers as the delivery method. The scammer gained the employees’ trust over time, convincing them they were someone they weren’t,” Baltimore City Comptroller Bill Henry told the AFRO

City officials have emphasized the importance of transparency in addressing the fraud scheme, clarifying the actual financial impact of the incident. While initial reports suggested a total loss of $1.5 million, only one fraudulent payment—totaling $803,000—was successfully processed. A second attempt for $721,000 was flagged as suspicious and ultimately blocked.

Baltimore City Comptroller Bill Henry says security measures have increased since a scammer successfully conned city employees out of $803,000. (Credit: Meta (Facebook)/ Friends of Bill Henry)

“The Inspector General had previously recommended a multi-factor authentication process to prevent this exact issue, but it was never implemented. Now, after this painful lesson, we are making it a priority,” stated Comptroller Henry.

Years earlier, the office had advised adopting new authentication for vendor banking changes, a safeguard that was overlooked after accounts payable responsibilities shifted to the Comptroller’s Office. The oversight created a vulnerability that the scammer was able to exploit. Now, officials are working to ensure that past recommendations are fully implemented to prevent similar security lapses in the future.

“Going forward, we’re implementing a multi-factor authentication process, requiring contact with multiple officials inside any vendor attempting to change banking information,” said Comptroller Henry.

Baltimore City officials are also emphasizing the need for increased employee training on fraud detection and financial security. Staff members handling vendor transactions will receive enhanced guidance on recognizing social engineering tactics used by scammers, such as impersonation and gradual trust-building. By equipping employees with better awareness and stricter verification procedures, the city aims to minimize vulnerabilities that could be exploited in future schemes.

“There’s a need to improve communication across agencies. The Inspector General already identified this problem once, and now it’s our responsibility to ensure those recommended safeguards are actually put in place,” stated Comptroller Henry.

The Comptroller’s Office is also working closely with federal authorities to recover stolen funds and identify the perpetrator. The investigation remains ongoing, and officials are reviewing internal processes to identify additional weaknesses that could be addressed. The fraud has prompted city leaders to reexamine their vendor payment policies and implement best practices used by other municipalities to enhance financial security.

“We don’t know if we were the only ones targeted—this same bad actor could be attempting to scam multiple cities with the same vendor, and unless they go public, we wouldn’t know,” stated Comptroller Henry.

City leaders acknowledge that while fraud attempts are an ongoing threat, strengthening internal processes and improving communication across agencies will be critical in preventing future breaches. They urge city employees to remain vigilant, follow new verification procedures, and report any suspicious activity to ensure financial security across all city departments.

The post Baltimore officials strengthen security after $803K fraud incident appeared first on AFRO American Newspapers.