What is CBP warning importers about?
CBP said scammers may try to use social media, email, websites, or other outreach to collect importer account information, company details, or banking information by pretending to help with IEEPA refund filing. The agency's warning centers on CAPE, the ACE-based process used for eligible refund requests.
| Item | What CBP emphasized |
|---|---|
| Warning date | July 7, 2026 |
| Program involved | CAPE for IEEPA duty refunds |
| Main risk | Fraudulent outreach seeking account, company, or banking data |
| Safe filing path | Verified ACE accounts and CAPE declarations only |
Why is this operationally important?
Because refund activity creates a new attack surface. When importers are expecting money back, bad actors know that urgency and incomplete internal controls can make finance and trade teams more vulnerable to fake support offers, spoofed refund portals, or unauthorized data requests.
What counts as a red flag here?
CBP's guidance points to any unknown party asking to file on your behalf in exchange for sensitive information, or any website outside ACE claiming it can process IEEPA refunds. In practice, that means treasury, customs, and broker teams need the same script internally before anyone uploads data or changes bank instructions.
What Shippers Should Do
- Use only verified ACE access and trusted broker channels for CAPE refund activity.
- Do not provide banking or importer credentials to unknown outreach, even if it references refund timing.
- Brief finance and customs teams together so everyone follows the same validation process.
- Audit who currently has authority to submit refund-related data or change payment information.