The FBI this week made public a private industry notification warning that business email compromise (BEC) scammers are exploiting web-based email clients’ auto-forwarding rules to secretly gather intel on their targets and also hide their fraudulent communications. Moreover, if organizations fail to sync their web-based email clients with their desktop-based clients, this suspicious activity may go unnoticed by infosec personnel.