SteelVerify
All articles
Threat report6 min readUpdated June 2, 2026

The Most Common China Steel Trade Scams in 2026

The playbook evolves every year, but the underlying moves stay the same. Here are the scams hitting steel buyers hardest in 2026 and how to recognize each one early.

Fraud rings reuse what works. The surface details — domains, company names, bank accounts — change constantly, but the underlying mechanics are remarkably stable. If you can recognize the move, the disguise does not matter. Here are the patterns hitting steel importers hardest this year.

What is genuinely different in 2026 is the polish. Cheap, capable tooling has made fraudulent websites, email threads, and documents look more convincing than ever, and operations increasingly blend several techniques in a single deal — a phantom factory that also forges certificates, or a payment redirection that follows weeks of patient email monitoring. The good news is that better disguises do not change the underlying moves, and the moves are what you defend against. Below, each scam is paired with the early red flags that give it away before the money is gone.

1. Payment redirection (business email compromise)

Still the most expensive scam by total losses. A convincing email — sometimes from a genuinely compromised supplier mailbox — asks you to send the balance to a new account, often citing an audit, a frozen account, or a banking change.

Red flags

  • Any change to banking details after the contract is signed.
  • A beneficiary account in a different country or a personal name.
  • Urgency and pressure to pay before a deadline.

How it plays out: the attacker quietly monitors a genuine email thread for weeks — sometimes from a mailbox they have actually compromised, sometimes from a look-alike domain that differs by a single character. They learn the deal, the tone, and the timing, then strike at the exact moment a payment is due, sending 'updated' banking details that look entirely in keeping with the conversation. By the time anyone notices, the funds have been wired to an account that is emptied within hours. The defense is unglamorous but decisive: fix the beneficiary account in the contract, and confirm every payment instruction by voice on a number you established earlier — never a number from the payment email.

2. Forged or recycled mill test certificates

A clean-looking EN 10204 3.1 certificate that does not match the steel that arrives — wrong grade, wrong chemistry, or heat numbers the mill has no record of.

Red flags

  • Certificate supplied only as a flattened image or screenshot.
  • A seller who resists independent PMI testing on arrival.
  • Identical chemistry values copied across unrelated batches.

How it plays out: the certificate looks immaculate because the format is genuine — only the link between the paper and the metal is broken. Sometimes the heat numbers belong to a real but unrelated batch (a recycled certificate); sometimes the chemistry is simply invented. Because the document passes a casual glance, the fraud only surfaces when the steel is tested or fails in service, by which point the supplier has been paid. The counter is to verify heat numbers with the named mill before payment and to run a positive material identification (PMI) test on the steel that actually arrives, not just the sample.

3. Phantom factories

A trading shell presents itself as a manufacturer using borrowed photographs, videos, and certificates. The 'factory' you see in the brochure belongs to someone else.

Red flags

  • Refusal to provide a live, unscripted video tour.
  • Stock or reused imagery that appears on other sites.
  • A business scope on GSXT that does not include manufacturing.

How it plays out: a trading shell wraps itself in the identity of a real mill, using photos, videos, and even certificates borrowed from a factory it has no relationship with. The buyer believes they are dealing with the manufacturer, pays a deposit, and then discovers — if they are lucky, before shipment — that the 'factory' is an office or an empty shell, and the real mill has never heard of them. Because the deposit has usually been routed offshore, recovery is rare. A live, unscripted video tour and an independent on-site audit for large orders cut straight through this, because borrowed footage cannot answer a real-time request.

4. Head-and-tail (sandwich) container loading

Good material is placed at the front and back of the container while substandard, rusted, or short-weight product fills the middle. Door photos look flawless.

Red flags

  • Resistance to full container-loading supervision.
  • Only door photos offered as proof of loading.
  • Packing-list weights that do not reconcile on arrival.

How it plays out: compliant material is loaded at the door and at the very back, while substandard, rusted, or short-weight product fills the middle of the container where no casual photo will reach. The door photos the buyer receives look flawless, and the problem only emerges during unloading — often after the balance has been paid. This is one of the most common quality-and-quantity frauds precisely because door photos are so widely accepted as proof. Full container-loading supervision, with the inspector photographing every layer as it is stuffed and reconciling counts and weights against the packing list, removes the hiding place entirely.

5. Coating-weight fraud

Galvanized coil is shipped with far less zinc than the Z275 or G90 specification on the certificate, leading to premature rust well after the supplier has been paid.

Red flags

  • A price below the realistic zinc cost for the coating class.
  • No willingness to allow an independent coating-mass test.
  • Vague or missing coating tolerances in the contract.

How it plays out: galvanized or coated coil is sold against a stated coating class — Z275, G90, AZ150 — but ships with far less zinc or aluminium-zinc than specified. Because the shortfall is invisible to the eye and the certificate says the right thing, the buyer accepts the load. The cost arrives later, as premature rust and corrosion failures long after the supplier has been paid and moved on. An independent coating-mass test on random coils at delivery, with clear coating tolerances written into the contract, is the defense.

Why these five keep working

Notice the common thread: every one of these scams exploits a moment where the buyer accepts a representation instead of verifying the underlying reality. A certificate is accepted instead of the metal being tested; door photos are accepted instead of the loading being supervised; an email is trusted instead of the payment being confirmed by voice. Fraud lives in that gap between representation and reality. Close the gap at each stage and the entire playbook stops working, regardless of how polished the disguise becomes next year.

How to stay ahead

Every one of these scams is defeated by the same handful of habits: verify the counterparty at the source, lock payment terms into the contract, and pay for independent inspection that matches the product's risk. Build these into a standard operating procedure so they happen on every order by default, not only when something feels off — fraudsters specifically target the deals that feel smooth. Browse the full scam library on this site for the detailed playbook on each, and read the prevention guide for the controls organized by transaction stage.

Verify a specific supplier

Run the free interactive checklist to score how thoroughly you have vetted a Chinese steel supplier before you pay.

Open the verification checklist