GetHOADocs Logo
Back to blog
Title & Escrow

Wire Fraud in Real Estate Closings: How to Protect Your Transaction

David PineDecember 4, 20259 min read

The Scale of the Problem

In 2024, the FBI's Internet Crime Complaint Center reported over $145 million in losses from real estate wire fraud. The actual number is almost certainly higher — many victims don't report.

Wire fraud in real estate works because closings involve large sums of money moving between multiple parties on tight deadlines. A single fraudulent email with slightly different wire instructions can redirect hundreds of thousands of dollars to a criminal's account. Once the wire is sent, the money is usually gone within hours.

This isn't theoretical. It's happening every day, in every market, to buyers and professionals who thought it couldn't happen to them.

How the Scam Works

The typical real estate wire fraud follows a predictable pattern:

Step 1: Email compromise. Criminals gain access to the email account of someone involved in the transaction — the agent, the title company, the lender, or the buyer. This usually happens through phishing emails or credential stuffing (using passwords stolen from other data breaches).

Step 2: Monitoring. The criminal sits in the compromised email account, reading every message to learn the transaction details: closing date, property address, buyer name, amounts, and — most importantly — who sends the wire instructions.

Step 3: The fake email. Days or hours before closing, the criminal sends an email that appears to come from the title company or closing attorney. The email includes wire instructions — but the account belongs to the criminal. The email looks nearly identical to the real one, sometimes sent from a domain that's one letter off.

Step 4: The wire. The buyer or their bank wires the closing funds to the fraudulent account. By the time anyone realizes the mistake, the money has been moved through multiple accounts and is gone.

Why Closings Are Such a Target

Real estate closings are uniquely vulnerable to wire fraud for several reasons:

Large dollar amounts. A typical residential closing involves $200,000-$500,000 or more in wire transfers. That's a much bigger payoff than scamming someone out of a $500 gift card.

Tight timelines. Closing dates create urgency. When a buyer gets wire instructions at 4:30 PM the day before closing, they're not in the mood to double-check everything. They just want to close.

Multiple parties. A typical transaction involves the buyer, seller, two agents, a lender, and a title company. Each one has email. Each one is a potential entry point for the criminal.

Email dependence. The real estate industry still runs on email. Wire instructions, closing disclosures, and other sensitive documents are routinely sent as email attachments. That's a problem.

Who's at Risk

Everyone in the transaction is at risk, but the most common victims are:

Buyers. They're the ones wiring the money. And for most buyers, this is the largest financial transaction of their lives. They're nervous, distracted, and focused on getting to the closing table.

Title companies. Some wire fraud schemes target the title company's escrow account rather than the buyer's wire. If a criminal compromises the title company's email, they can redirect incoming wires or send fraudulent disbursement instructions.

Agents. An agent's email account is often the first to be compromised because it's the most exposed — listed on websites, marketing materials, and public databases.

Red Flags to Watch For

Train yourself to spot these warning signs:

  • Last-minute changes to wire instructions. This is the single biggest red flag. If you receive updated wire instructions — especially close to the closing date — verify by phone before doing anything.
  • Email addresses that look slightly off. "[email protected]" vs. "[email protected]" (lowercase L replaced with capital I). These differences are designed to be invisible at a glance.
  • Urgency language. "Wire must be sent today" or "there's been a change in the closing account." Legitimate title companies don't typically change wire instructions at the last minute.
  • Requests for secrecy. "Don't mention this change to the other parties" is never something a legitimate professional would say.
  • Email-only communication. If someone is sending wire instructions but won't take a phone call to verify, that's a problem.

How to Protect Yourself

For buyers:

  1. 1.Get wire instructions in person or by phone. At the beginning of the transaction, ask the title company how they'll send wire instructions. The gold standard is getting them in person at the title office or over a verified phone call — never solely by email.
  2. 2.Call before you wire. Before sending any wire, call the title company using a phone number you already have (not one from the email). Confirm the account number, routing number, and amount.
  3. 3.Be suspicious of changes. If wire instructions change — for any reason — stop and verify independently. Do not wire money until you've confirmed with a live human.
  4. 4.Use a small test wire. Some buyers send a small amount ($100) first and call to confirm it was received before sending the full amount. Not every bank supports this, but it's an extra layer of protection.
For title companies:
  1. 1.Use encrypted email or secure portals. Stop sending wire instructions as plain email attachments. Secure portals that require authentication are much harder for criminals to intercept.
  2. 2.Implement callback verification. Require phone verification for all incoming and outgoing wires. No exceptions.
  3. 3.Enable multi-factor authentication. Every email account in your office should have MFA enabled. This single step prevents the majority of email compromises.
  4. 4.Train your team. Regular phishing simulations and wire fraud training should be mandatory. The weakest link is usually human error.
For agents:
  1. 1.Warn your clients. At the start of every transaction, tell your buyers: "We will never send you wire instructions by email. If you receive an email with wire instructions, call us immediately before doing anything."
  2. 2.Secure your email. Use multi-factor authentication. Use strong, unique passwords. Don't access your email on public Wi-Fi without a VPN.
  3. 3.Don't forward wire instructions. Even if a client asks you to forward wire instructions from the title company, don't. Direct them to the title company for all wire-related communication.

What to Do If It Happens

If you suspect wire fraud has occurred:

  1. 1.Contact your bank immediately. If the wire was sent within the last 24-72 hours, the bank may be able to initiate a recall. Speed is critical — every hour matters.
  2. 2.File a complaint with the FBI's IC3 (ic3.gov). This creates an official record and may help with recovery.
  3. 3.Contact local law enforcement. File a police report.
  4. 4.Notify the title company and all parties. Everyone in the transaction needs to know immediately.
  5. 5.Contact your insurance company. Some title insurance and E&O policies cover wire fraud losses.
Recovery rates for wire fraud are low — estimated at around 20-30% of reported losses. The best strategy is prevention.

The Industry's Responsibility

Wire fraud isn't going away. But the real estate industry has been slow to adopt basic security measures that other financial industries implemented years ago.

Multi-factor authentication, encrypted communication, and callback verification aren't exotic technologies. They're table stakes. Every title company, brokerage, and lending institution should have them in place.

Until that happens, the burden falls on individuals to protect themselves. Verify everything. Trust nothing that arrives only by email. And when in doubt, pick up the phone.

← Previous

Why HOA Closing Delays Happen (and What You Can Do About Them)

Next →

Real Estate Agents: Your Quick Reference for HOA Document Types