Helping you navigate an imposter email
If you receive an email from "Brain Amick" asking about your WordPress license, please don't panic and definitely don't reply.
Just today, a client forwarded me an email that appeared to be from me. It had my name (almost), my title, and even used our agency’s name, Werkbot Studios. The content was alarmist, warning the client about "stricter platform standards" and threatening that their site might be "flagged for review" if they didn't act immediately.
The only problem? It wasn't me.
The scammer used a generic Gmail address ([email protected]) rather than our official corporate domain, and they spelled my name "Brain" instead of Brian.
While we had a good laugh about "Brain Amick," email impersonation is a serious issue. It’s called Business Email Imposter Fraud, and it’s designed to trick clients into handing over passwords or money by pretending to be a vendor they trust.
If this happens to you or if you receive a suspicious email from a vendor, here are steps for what you need to do.
If You Are the Victim (The Person Being Impersonated)
It feels violating to have someone use your name to target your clients. Here is the playbook we used to shut it down.
1. Report it to the Email Provider Immediately
Most scammers use free email services like Gmail, Outlook, or Yahoo because they are easy to set up. These providers have strict policies against impersonation.
For Gmail: Use the Google Abuse Report Form.
Tip: You will need the full email header from the original scam email (ask your client to forward it to you). This header contains the scammer's digital fingerprint.
What to say: Be clear. "This account is impersonating me, [Your Name], owner of [Your Business]. They are emailing my clients to solicit credentials/money."
For Outlook/Hotmail: Forward the abuse to [email protected].
For Yahoo: Use their Unfair Business Practices reporting tool.
2. File a Complaint with the FBI (IC3)
If the impersonation involves commerce (like asking for money, fake invoices, or business data), file a report with the Internet Crime Complaint Center (IC3).
Where: www.ic3.gov
Why: Even if the FBI doesn't kick down doors for a single email, your report helps them track patterns. If the culprit behind this is also impersonating 50 other agency owners, your report helps build the case to take down the ring.
3. Warn Your Clients (The "Blast" Email)
Don't wait. Send a mass email to your client list from your official verified domain.
Subject: Security Alert: Please ignore emails from [Fake Email Address]
The Message: Keep it simple. "We are aware of an impersonator. We do not use Gmail for official business. If you see an email from this address, do not click links and do not reply."
If You Are the Recipient (How to Spot a Fake)
If you get an email from a vendor that feels "off" or maybe the tone is too urgent, check these three things before you reply.
1. The "From" Address vs. The Display Name
This is the easiest catch.
Display Name: "Brian Amick" (Anyone can type this).
Actual Address: [email protected]
The Red Flag: legitimate businesses rarely use generic @gmail.com or @yahoo.com addresses for official notices. If Werkbot contacts you, it will come from @werkbot.com.
2. Check the "Reply-To" Field
Sophisticated scammers sometimes spoof the "From" address to look real, but they have to change the "Reply-To" address so that your response goes to them, not the real person.
Action: Hit "Reply" (but don't send). Look at the email address that populates in the "To" field. If it's different from the sender, it's a scam.
3. Urgency and Threats
Phishing relies on fear. The email pretending to be me threatened that client websites would be "flagged for review" or face "service interruptions."
The Rule: If a vendor threatens to shut you down within 24 hours via email, pick up the phone. Call the number you have on file (not the one in the email) and ask them directly.
Summary
We have reported "Brain Amick" to Google and the authorities. But scammers move fast.
The Golden Rule: Always check the domain. If it doesn't match the business website exactly, report phishing and hit delete.
Stay safe out there.