Glossary / Fraud & scams
Man-in-the-Middle Attack
A man-in-the-middle attack is when an attacker secretly intercepts or alters communications between two parties, such as emails between a business and its supplier, to redirect payments.
What it means
In a man-in-the-middle attack, a criminal positions themselves between two parties who believe they are talking directly to each other. In a payments context this usually means quietly monitoring an email thread between a business and its supplier, often after compromising one mailbox, and waiting for an invoice to be sent. At the right moment the attacker intercepts the message and swaps the genuine bank details for their own before it reaches the payer. To both sides the conversation looks entirely normal. A common Australian example is a construction firm that has been discussing a progress payment with a subcontractor for weeks, then receives a final invoice, on the real letterhead, with an account number that has been silently altered.
Why it matters for Australian finance teams
Because the exchange comes through a trusted, established thread, the usual warning signs are missing. There is no odd sender address and no first-time contact, which is exactly why payment redirection losses remain among the costliest business scams reported to the ACCC and Scamwatch. Finance teams that rely on matching details to a previous email are matching against a message the attacker may already control.
How ezyshield helps
The only reliable defence is to confirm account ownership out of band, not to trust what arrives in the email. ezyshield verifies the person, the business through ABN and ASIC records, and that the payee owns the nominated bank account before you pay, and re-verifies the moment those details change, so an intercepted account number does not pass. Every check is recorded in an append-only audit trail. See how it works and verify a supplier bank account in Australia.
Also known as: MITM, MITM attack, man in the middle
Last updated: 7 July 2026
Related terms
- Business Email Compromise (BEC) Business email compromise (BEC) is a scam in which an attacker hacks or impersonates a company email account to trick staff into transferring money or changing payment details.
- Payment Redirection Fraud Payment redirection fraud is a scam where criminals trick a business into sending money to a bank account they control, usually by posing as a supplier and changing the payment details on an invoice.
- Email Spoofing Email spoofing is the forging of an email's sender details so a message appears to come from a trusted person or company, and is commonly used to make payment fraud look legitimate.
See also: Business email compromise , Payment redirection fraud , Verify a supplier bank account in Australia
Stop payment fraud before money moves
Verify the person, business, and bank account before any payment leaves your account.