A Construction Firm Discovered FedEx Is Better at Stopping Fraud Than Most Fintech
After losing nearly $500,000 to a vendor scam, one company started requiring suspicious payment changes be delivered by courier. 27% of requests vanished instantly.
The Slowest Security Layer That Actually Works
A mid-sized U.S. construction company accidentally turned FedEx into an anti-fraud tool. After nearly losing $480,000 to a fake vendor, the finance team implemented a simple rule: any vendor requesting a banking change must accept the next two payments via physical check, delivered by FedEx with signature required, before electronic payments resume.
Three out of eleven vendors immediately refused and disappeared.
The controller detailed the policy in a June thread on Reddit's accounting community. One supposed vendor cited "corporate policy" against physical checks. A quick call to the actual company revealed nobody there had requested new banking details — the email domain was off by a single letter.
FedEx, it turns out, functions as an out-of-band identity check. If someone cannot accept a couriered check to a verifiable business address and sign for it in person, they do not get paid.
How a Logistics Company Became a Trust Primitive
The construction firm — roughly $200 million in annual revenue with dozens of seven- and eight-figure vendors — had been running the policy for two months when the controller posted about it. The measurable result: 27% of urgent banking change requests turned out to be fraud attempts once the FedEx requirement was in place.
The original fraud bypassed standard dual-approval processes because the email appeared legitimate, complete with a plausible story about a bank merger. Only the physical-world requirement exposed the scam.
This represents a fundamental inversion of modern B2B payment philosophy. While fintech companies compete to make transactions faster and more frictionless, this company discovered that high-latency, high-friction authentication — a courier, a building, a human with a pen — works precisely because it is slow and physical.
Criminals optimizing for speed and scale cannot afford to maintain fake offices, receive packages, and forge signatures for relatively modest payouts. The meatspace costs are too high.
The Product That Does Not Exist Yet
Right now this is an improvised policy, not a platform. But the underlying concept could become an API-ized trust layer for high-risk B2B transactions.
Imagine a service that handles the entire workflow: verify the address against business registries, dispatch the courier, log successful delivery and signature, return a cryptographic proof of physical presence. Banks already use similar concepts for high-value account changes — certified mail, notarized forms — but nobody has packaged it as a drop-in authentication step for vendor management systems.
The construction industry stumbled into this because vendor fraud is rampant and ACH reversals are nearly impossible once funds clear. Other sectors with similar risk profiles — property management, government contractors, healthcare billing — face identical problems.
What a Check Courier Actually Proves
The FedEx signature requirement validates three things simultaneously: a physical location exists, someone authorized is present to receive mail there, and that person is willing to be identified to a third-party logistics company with tracking records.
None of these guarantees are absolute. But together they represent a higher bar than "click this email link to update your banking details," which is effectively the authentication layer most B2B payment systems use today.
The controller noted that legitimate vendors occasionally grumbled about the policy but always complied. Real companies have real addresses and real people who can sign for packages. Fake ones do not.
This is blue-collar security design: no machine learning, no blockchain, no biometrics. Just the assumption that criminals, like everyone else, respond to incentives — and physical-world friction changes the math.
The Broader Truth
B2B payments are being secured by bringing back the constraints that digital systems were built to eliminate. Speed and convenience created the attack surface. Slowness and inconvenience close it.
That may be the most uncomfortable insight in enterprise technology right now: sometimes the best authentication is the kind that makes everyone slightly annoyed.
Technology decisions, clearly explained.
Weekly analysis of the tools, platforms, and strategies that matter to B2B technology buyers. No fluff, no vendor spin.
