Fraud Advice for Businesses



Similar documents
Fraud. Your guide to protecting yourself from fraud

OUR GUIDE TO PROTECTING YOUR PERSONAL INFORMATION

Identity fraud explained. How to protect your identity

No selling. No jargon. Just the facts about proving your identity. Our guides here to help you. No selling. No jargon. Just the facts.

Protecting your business from some of the current fraud threats

Could you spot a scammer?

To p t i p s f o r s a f e o n l i n e b a n k i n g a n d s h o p p i n g

Online Cash Manager Security Guide

Protect yourself against fraud

Helping you to protect yourself against fraud and financial crime

S.A.F.E. Recognize a scam before you become a victim of fraud Division of Consumer Protection

Cyber Security. Maintaining Your Identity on the Net

Business Identity Fraud Prevention Checklist

SENIORS ONLINE SECURITY

Identity Theft Prevention Presented by: Matt Malone Assero Security

THINGS YOU SHOULD KNOW ABOUT IDENTITY THEFT

Guide to credit card security

Employment Internet Fraud FABRICS4YOU Textiles

Protect yourself online

1. Any requesting personal information, or asking you to verify an account, is usually a scam... even if it looks authentic.

White paper. Phishing, Vishing and Smishing: Old Threats Present New Risks

Phishing Scams Security Update Best Practices for General User

PBX Fraud Educational Information for PBX Customers

Malware & Botnets. Botnets

When registering on a jobsite, first ensure that the site is reputable and has a physical address and landline phone number.

Tax Fraud and Identity Theft Frequently Asked Questions [Updated February 10, 2015] 4. WHAT CAN I DO TO PROTECT MYSELF FROM TAX FRAUD IN THE FUTURE?

Practical guide for secure Christmas shopping. Navid

FAKE ANTIVIRUS MALWARE This information has come from - a very useful resource if you are having computer issues.

Deception scams drive increase in financial fraud

FRAUD GUIDANCE. Helping you protect your business

Driving License. National Insurance Number

In the shadows. Risks associated with bogus firms. November 2014

SCAMS. Action: Throw out the letter and contact Social Security directly by phone at or visit their website.

Online Security Information. Tips for staying safe online

Best Practices Guide to Electronic Banking

Best Practices: Reducing the Risks of Corporate Account Takeovers

Fraud Trends. HSBCnet Online Security Controls PUBLIC

RC284. Protect Yourself Against Identity Theft

OVERVIEW. 1. Cyber Crime Unit organization. 2. Legal framework. 3. Identity theft modus operandi. 4. How to avoid online identity theft

Identity Theft. Paul Berryman, IT Security Director HCC Boni Jacobs, Financial Aid Manager HCC

IDENTITY PROTECTION MEMBER. Protect Your Identity. Security of Personal Information is Our Top Priority

Identity Theft Awareness: Don t Fall Victim to these Common Scams

Guide to BBPS and BBMS Blackbaud Payment Services and Blackbaud Merchant Services explained.

Protecting your business against External Fraud

Protecting your business from fraud

Contents Security Centre

How to protect yourself from fraud. essential information for your own protection

Identity Theft: A Growing Problem. presented by Melissa Elson Agency Liaison Office of Privacy Protection - Bureau of Consumer Protection

Protecting. YourIdentity A PRACTICAL GUIDE

PROTECT YOUR FINANCIAL TRANSACTIONS

Scams Bulletin. April 2014

location of optional horizontal pic Corporate and Investment Banking Business Online Information Security

Identity Theft and Online Fraud IRS Efforts to Protect Taxpayers. Privacy, Governmental Liaison and Disclosure May 9, 2012

PROTECT YOURSELF AND YOUR IDENTITY. Chase Identity Theft Tool Kit

With the Target breach on everyone s mind, you may find these Customer Service Q & A s helpful.

BWA Merchant Services. Credit Card Fraud Protection User Guide

Protecting Yourself From Identity Theft And Fake Check Scams. Faculty. Question. The Law. The Law. The Law

Identity Theft. Protecting Yourself and Your Identity. Course objectives learn about:

Frequently Asked Questions [Updated January 20, 2015]

& INTERNET FRAUD

Commercial Fraud: Managing the risk. White Paper. January Samuel Smiles

Business Compromise Scam

Protect Your Personal Information. Tips and tools to help safeguard you against identity theft

Identity Theft. CHRISTOS TOPAKAS Head of Group IT Security and Control Office

Combating Corporate ID Theft & Fraud

Customer Awareness for Security and Fraud Prevention

Red Flags in International Payments and Trade. Presented by Paul Warfield and Despina Margiori

Avoiding Malware in Your Dental Practice. 10 Best Practices to Defend Your Data

Market Intelligence Cell. Fighting Financial Crime

Online Banking Customer Awareness and Education Program

Information to Protect Our Customers From Identity Theft

Protect Yourself. Who is asking? What information are they asking for? Why do they need it?

Preventing Telephone Fraud

BUT. Before you start shopping on the Internet, there are a number of questions you need to ask yourself.

Avoiding Malware in Your Dental Practice. 10 Best Practices to Defend Your Data

Emerging risks for internet users

A Guide to Protecting Yourself From Identity Theft

CONTACT. information. All consumer complaints must be made in writing. Please call or write for a complaint form. Write to:

Avoid completing forms in messages that ask for personal financial information.

Federal Deposit Insurance Corporation. National Credit Union Administration. Office of the Comptroller of the Currency. Office of Thrift Supervision

ONLINE BANKING SECURITY TIPS FOR OUR BUSINESS CLIENTS

Retail/Consumer Client. Internet Banking Awareness and Education Program

Protecting Yourself from Identity Theft

Learn to protect yourself from Identity Theft. First National Bank can help.

Fraud Guide Fraud Protection

Trust the Innovator to Simplify Cloud Security

Cybercrime and Identity Theft: Awareness and Protection 2015 HLC Conference

Business Current Accounts and Savings Accounts

INFORMATION FOR VICTIMS OF FRAUD CRIMES SCHERTZ POLICE DEPARTMENT

Defense Media Activity Guide To Keeping Your Social Media Accounts Secure

NATIONAL CYBER SECURITY AWARENESS MONTH

A mule s life is a fool s life

Expanded Header: Viewing in Microsoft Outlook

How To Help Protect Yourself From Identity Theft

Reduce your Risk of Credit Card & Identity Fraud

Identity Theft Protection

Advice about online security

Protect Your Personal Information. Tips and tools to help safeguard you against identity theft

Identity Theft: Prevention & Survival

Transcription:

Fraud Advice for Businesses

What is Fraud? Fraud is a crime in which some kind of deception is used for personal gain. Fraud is sometimes also referred to by other names such as a scam or con. Businesses are often targeted by fraudsters seeking large financial gain. The main types of electronic frauds aimed at businesses are detailed below. If you have been the victim of fraud, contact Police Scotland on 101. Accommodation Frauds There are two main types of scam in operation relating to accommodation. Online bookings - where the fraudster uses stolen credit card details to make payment either via the business s own website or an online booking agent. The fraud is only discovered once the business is alerted by their card payment provider and this is often after the fraudster has stayed at the accommodation. Over payment - this is where the fraudster contacts the business, usually by email, pretending to make a booking. The fraudster either pays by cheque but makes the cheque out to more than the cost of the accommodation, or by credit card asking for extra to be taken to cover the cost of meals or outings. The fraudster then requests the extra money be paid back to a different card or account, due to a change in circumstances. It later transpires that the original cheque or credit card details used were stolen. Businesses providing accommodation should be suspicious of any person trying to make an over payment or asking for a refund to a different card or account. Consider having your IT department check the email header details, to ascertain the origin of suspicious emails.

On occasion a search engine may already show blogs relating to email addresses used by fraudsters. Be suspicious of an individual claiming to be making a company booking who uses a free email address such as @gmail, @yahoo or @hotmail. Business account change fraud This is when a business receives an email or letter purporting to be from a supplier with whom they have an account. The email advises that the supplier s banking details have changed and further invoice payments should now be made to the new account details, provided within the correspondence. Often the supplier s correct letterhead and employee names are used. If sent by email, the email address will be very similar to the correct email address. This may not be discovered until the real supplier begins to chase up the payment from the victim business. Always be suspicious of correspondence relating to a change of banking details and make contact with the supplier direct to query this, using contact details you know to be genuine. If you suspect you have received a fraudulent email or letter please contact Police Scotland on 101, so the details can be recorded. Business telephony fraud (sometimes referred to as phreaking) This is a type of electronic fraud whereby a company s internal telecommunications system is hacked into by criminals and used either to redirect calls, or to dial premium rate telephone numbers, the revenue from which is paid to the criminals. By using auto-dialler programs, the criminals can make multiple calls simultaneously, each call generating revenue, sometimes to the value of thousands of pounds before the fraud is detected.

It is not unusual for a business to receive silent calls or suspicious calls prior to falling victim to this fraud. This is because the fraudsters are trying to ascertain the hours of business so they can set up their hack after office hours. Not surprisingly this fraud is often perpetrated over a weekend allowing the fraudsters to evade detection for longer and to make optimum financial gain. Businesses should ensure their telephony systems are secure and passwords are not on default settings. Losses can be in the thousands, so it is well worth taking the time and expense to implement or improve security. Long firm Long firm fraud starts with the fraudster placing numerous small orders with wholesalers and paying promptly. Having established a good credit history and having won the trust of their suppliers, the fraudsters then place several larger orders. However once these goods are received payment is not made and it becomes apparent the contact details provided are false. Consider checking the business on Companies House to see how long it has been in operation - new companies may present a risk. Website addresses can be checked online to see how long the site has been up and running. Again, be suspicious of newly created sites or where the site owner s details have been anonymised. Google maps is a good tool for checking if an address exists but be aware the fraudster may use an address and company name similar to that of a genuine company. Short firm This is similar to long firm fraud but it takes place over a shorter timescale. Usually, the business doesn t try to establish any form of credit history or credibility. The fraudsters use credit to obtain goods that are delivered to third-party addresses, often on multioccupancy trading estates.

Police Scotland has received several reports from local businesses where a fraudster often purporting to be calling from a business, phones up, usually from a mobile phone, and passes stolen credit card details over the phone to make a purchase of a high value item, such as plant machinery. Sometimes several credit card details are passed before the transaction is successful and on occasion the fraudster asks for payment to be made over several cards. The fraudster thereafter arranges his own courier to uplift and deliver the item. The courier company is also paid using stolen credit card details. In transit the courier receives a call to have delivery redirected to another non-specific address in a street or industrial estate. The victim business discovers the scam when it is contacted by its payment service provider advising the payment was fraudulent. Be suspicious of unusual requests, such as purchase requests made by an individual who provides contact details very far away from your business, especially if in all likelihood the items could have been purchased closer to home. Also be wary if credit card details are rejected and the caller tries other cards, especially if these are in different names, or the caller requests payment to be made over several cards. Again, consider carrying out similar checks as suggested in the Long Firm fraud section. Ransomware This is a form of malware that attacks small to medium sized businesses. A common form of this is the Cryptolocker ransomware. Mac computers appear not to be affected. The fraudster sends an email carrying a malicious file, possibly purporting to be from a legitimate business. Once opened the malware encrypts all the files linked to that computer and makes a demand for payment to have the files decrypted. Making the payment will not release the files.

Do not click or download unsolicited email attachments and ensure your computer virus protection is up to date. Consider backing up important files and store them off your business network. If a computer becomes infected disconnect it immediately from the network and have it checked and cleaned by a professional. Safe Account Fraud This type of scam is most commonly perpetrated against individuals but businesses have also been targeted. This is where the fraudster pretends to be calling from the victim s bank advising of suspicious activity on their account. The fraudster advises the victim to hang up the phone and call the number on the back of their bank card to discuss the matter but stays on the line and pretends to be a bank employee, before instructing the victim to transfer money into a safe account. Your bank will never ask you to transfer money into another account. If you receive a phone call apparently from your bank under the above circumstances, call into your local branch or phone your bank using a different phone. False Job Offers Fraudsters often target large international businesses with bases in Scotland, especially in the Aberdeen and Aberdeenshire areas due to the oil and gas industry. In this scam the business itself is not at financial loss but may suffer adverse publicity as a result. Fraudsters add fake jobs to jobseeker websites in other countries, often India, Nigeria and the Middle East. The fraudster advises the victim they have been successful in their application and have secured a lucrative post in Scotland. The victim is thereafter induced to pay various fees for visas etc.

Local businesses may receive contact from victims of this fraud and should advise the victim to contact their local law enforcement in their own country or region. Many local businesses have added warnings to the careers section of their website offering advice to applicants to be wary of such scams. A comprehensive list of the main fraud types can be accessed on the Police Scotland website at www.scotland.police.uk/keep-safe/ advice-for-victims-of-crime/fraud/main-electronic-fraud-types Remember Ensure you have adequate anti-virus protection on your computer and keep software up to date. Be wary of clicking on links or web pages especially links in unsolicited emails. Never give out login details in an email or over the phone, no matter how genuine you think the request is. Be wary of the information you are giving out on social networking sites (contact details, date of birth etc). Do not include you birth date or address in your email address. When you are finished with personal or financial documents, shred them before you throw them out. Be wary of cold calls, if in doubt, just hang up and never give out personal or financial information if you are unsure who you are dealing with. Call Police Scotland on 101 if you are unsure or require advice.

Useful links www.cifas.org.uk for advice on protecting your identity www.getsafeonline.org www.fca.org.uk Financial Conduct Authority www.equifax.co.uk for credit checks www.experian.co.uk for credit checks www.mpsonline.org.uk to remove your address from mass marketing mailing lists www.tpsonline.org.uk to remove your telephone number from mass marketing call lists www.royalmail.com to report nuisance mail

0721-14_p

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information