Have you ever wondered how secure your inbox is? In today’s digital world, even the simplest act of sending an email can become the target of cybercriminals. This is the story of a €50,000 fraud attempt through a Man-in-the-Middle attack that almost went unnoticed—and how eEvidence protected the client by proving the integrity of the original communication.

The heist that almost was

It all started with an invoice. A simple transaction between our client, Alice the Audacious, and her client, Bob the Brave. Alice sent an invoice to Bob for €50,000. But the IBAN in the document had been altered. Fortunately, Bob noticed the discrepancy, preventing the fraud from going through.

The search for the lost IBAN

Alarmed, Alice contacted eEvidence to clarify what had happened. We immediately verified the IBAN in the invoice attached to the original registered email. The result was clear: the correct IBAN had been sent.

Through cryptographic verification (SHA256 hash), we proved that the email leaving our servers contained the original, unaltered invoice. The records and the EML copy stored in the evidence PDF confirmed that no manipulation had taken place while the message was under our supervision. The attack had occurred outside the eEvidence environment.

Unmasking the intruder

The evidence pointed to a Man-in-the-Middle attack after the message left eEvidence and before it reached Bob’s inbox. Without proof, Alice might have been unfairly held responsible. Thanks to registered email, she was able to demonstrate that the alteration happened in Bob’s environment, protecting her business and ensuring she still received payment.

Lessons learned

This case shows why security in digital communications is not optional. Without cryptographic evidence, disputes over altered invoices can become a legal and financial nightmare. With eEvidence, organizations have an impartial witness that ensures integrity, authenticity, and legal validity in every message.


Frequently Asked Questions (FAQ)

What is a Man-in-the-Middle attack?

It is a type of cyberattack where an attacker intercepts and potentially alters communication between two parties without their knowledge.

How does registered email prevent fraud?

Registered email provides cryptographic proof of sending, delivery, and content, making it possible to demonstrate if and where a manipulation occurred.

Yes. Registered email from eEvidence generates evidence admissible in court, backed by eIDAS compliance in the European Union.


Conclusion

This €50,000 fraud attempt highlights the importance of registered communications in protecting organizations against cybercrime. eEvidence technology ensures the authenticity of your emails, preserves the integrity of attachments, and provides irrefutable legal proof in case of disputes.

If your business handles sensitive transactions or high-value communications, don’t leave security to chance. Strengthen your defenses with registered email from eEvidence and gain peace of mind knowing that your communications are fully protected.


Ready to get started?

Contact us to share your business project or register now to start trying our services today