Invoice Fraud

Kathy_7271221
Kathy_7271221 Member Posts: 10 Reckoner Reckoner
edited October 2024 in Accounts Hosted
Curious to know, last week I emailed a new customer an invoice - the invoice went to their junk email - but the invoice had been changed, someone has intercepted the email and added their bank details they had made a note also on the email that the customer should change the banking details . This invoice was for $45000, our customer paid the $45000 to the newly noted bank details. My invoice was email straight out of reckon accounts hosted. Have spoken to support for 2 hours with a nil reason as to how this has happen, (except, maybe someone from my office changes the invoice template, I am the only person to use the account program!) The incident has now been forwarded to the police,.I am still questioning why reckon invoices are still going to customers junk mail? How do I prevent this happening again. - But also very wary of my existing customers.

Comments

  • Catherine Healy
    Catherine Healy Member Posts: 16 Novice Member Novice Member
    edited August 2018
  • cosmic
    cosmic Reckon Developer Partner Posts: 1,125 Reckon Legend Reckon Legend
    edited September 2018

    Cosmic Accounting Group

    Accountants and Tax Agents 22397009

  • Kathy_7271221
    Kathy_7271221 Member Posts: 10 Reckoner Reckoner
    edited August 2018
    Oh no, this is only invoice, that has been changed as far as we are aware. this could ruin a small business, we have a program specialist looking into the issue.
  • Lee_8688889
    Lee_8688889 Member Posts: 85 Reckoner Reckoner
    edited August 2018
  • Kathy_7271221
    Kathy_7271221 Member Posts: 10 Reckoner Reckoner
    edited December 2018
  • Gillian_8166819
    Gillian_8166819 Member Posts: 89 Reckoner Reckoner
    edited November 2018
  • Toni_9025747
    Toni_9025747 Member Posts: 132 Novice Member Novice Member
    edited December 2018
  • Rav
    Rav Administrator, Reckon Staff Posts: 16,649 Reckon Community Manager Community Manager
    edited August 2018
  • Kathy_7271221
    Kathy_7271221 Member Posts: 10 Reckoner Reckoner
    edited August 2018
    now!

  • Catherine Healy
    Catherine Healy Member Posts: 16 Novice Member Novice Member
    edited August 2018
    Bcc doesn't let you know if there is an intersept with emails. It didn't let me know of the fraud intercept.
  • SueMax
    SueMax Member Posts: 2 Novice Member Novice Member
    edited August 2018
    Great tip Gillian, 
    Pretty much everything can be hacked these days so I'm not sure how the software providers can GUARANTEE sensitive information is not at risk.
  • Toni_9025747
    Toni_9025747 Member Posts: 132 Novice Member Novice Member
    edited August 2018
  • Gillian_8166819
    Gillian_8166819 Member Posts: 89 Reckoner Reckoner
    edited August 2018
  • Toni_9025747
    Toni_9025747 Member Posts: 132 Novice Member Novice Member
    edited December 2018
    I  explained my use of Bcc further up the page - I use it for tracking and am aware it does not stop the fraudulant events from happening.  It would be good to get some reassurance from Reckon that our information is secure.
  • Davo
    Davo Member Posts: 3 Novice Member Novice Member
    edited August 2018
  • Rav
    Rav Administrator, Reckon Staff Posts: 16,649 Reckon Community Manager Community Manager
    edited August 2018
    Hi Kathy,I'll send you and email shortly in relation to the situation you've highlighted here as we'd like to investigate further.If you can please take a look and get back to me directly.CheersRav
  • Gillian_8166819
    Gillian_8166819 Member Posts: 89 Reckoner Reckoner
    edited August 2018
    Hi Rav,

    Interested to know if Reckon have found out any more info on this issue and perhaps how the mechanics work......

    regards,

    Gillian
  • Rav
    Rav Administrator, Reckon Staff Posts: 16,649 Reckon Community Manager Community Manager
    edited August 2018
  • Gillian_8166819
    Gillian_8166819 Member Posts: 89 Reckoner Reckoner
    edited August 2018
    Hi Rav,

    Thankyou....

    Yes I hear and agree with you about security for ourselves....but the only invoice interceptions that I know about have come about invoices being sent from hosted or online software....so the invoices are really coming from Reckon, MYOB or Intuit.... So just wondering if Reckon had been able to find out anyway that it happens. I have not heard of any invoices being sent from desktop software.....however as your smh info link shows, that would mean the sender emails have been hacked.

    I know this is so so hard to track, monitor or fix.......but any awareness could help. I would love Reckon to keep us up to date on anything they find.

    I am about to send an email notifying my personal customers in my data file about the scam, and that ANY bank detail changes need to be verified verbally, which I will encourage them to send to all their customers and then send on down the chain as well. Like Davo above, we all need to now put in additional processes to protect out businesses. And update those processes each time a new scam is discovered.

    On that note - wonder if there is customer/community benefit in informing Reckon users of the scam. I understand Reckon would not want to cause any concern for online product use....but there are many out there who would not have even heard of this scam and probably be grateful of being on the front foot. 

    Gillian
  • Catherine Healy
    Catherine Healy Member Posts: 16 Novice Member Novice Member
    edited August 2018
    You are correct Gillian. The fraud that happened to me was my emailed invoice from Reckon was hacked and they changed my bank details. My question is if I send out emails to my customers requesting a phone call if bank details are changed, then the hackers will either change that information or delete it completely. We are still not safe.
     I have had a total overhaul of my security (at a considerable cost of course) and I am a very small business, no employees at all. I am unable to retrieve my money lost because of the hackers and I can't ask the customer to pay again. I would like to see a specific Company/Department/Body in place for businesses that have been affected like so, especially when we have print off proof of the changes and emails. As I have experienced, it is only dealt with the fraud department of the banks and it is at their discretion as to whether they will pay or not. 
  • Kathy_7271221
    Kathy_7271221 Member Posts: 10 Reckoner Reckoner
    edited August 2018
  • Mark_9766087
    Mark_9766087 Member Posts: 25 Reckoner Reckoner
    edited August 2018
  • Gillian_8166819
    Gillian_8166819 Member Posts: 89 Reckoner Reckoner
    edited August 2018
    HI Catherine,

    As it was the Reckon email that was intercepted, it is unlikely that your email account has been compromised from my understanding. However....if it makes you feel more secure, then perhaps a 'snail mail' (posted letter)   letter to customers.

    Gillian
  • Gillian_8166819
    Gillian_8166819 Member Posts: 89 Reckoner Reckoner
    edited August 2018
  • Catherine Healy
    Catherine Healy Member Posts: 16 Novice Member Novice Member
    edited August 2018
    Hi Gillian,
    In my case, everything was exactly like my emails with no differences. I have the print offs from the customers. The content asked the customers to bank into a different account as the original account was undergoing an audit. That should have been enough for the customers to ring me but because it all looked legitimate they just paid the account. They didn't anything was wrong until I rang them for payment. 
  • Catherine Healy
    Catherine Healy Member Posts: 16 Novice Member Novice Member
    edited August 2018
    It was both.
  • Catherine Healy
    Catherine Healy Member Posts: 16 Novice Member Novice Member
    edited August 2018
    Gosh I will never get paid.......
  • Kathy_7271221
    Kathy_7271221 Member Posts: 10 Reckoner Reckoner
    edited August 2018
    yes both

  • Kathy_7271221
    Kathy_7271221 Member Posts: 10 Reckoner Reckoner
    edited August 2018
    And that is the problem every thing looks legit..although my abn had been pushed down onto a second page, but the client was new so probably would not have known any difference, the email ha also stated please update our new banking details.
  • Mark_9766087
    Mark_9766087 Member Posts: 25 Reckoner Reckoner
    edited August 2018
    Ok, thanks ladies for the additional information. It appears a brand new pdf was created by the fraudster.

    I am glad I am aware of the issue as I can be alert to the risk in the future.

    It would be interesting to hear the results of the investigations in due course if possible, as to how the interception occurred. By investigations I mean police as well as Reckon as transparency is critical in circumstances such as this.
This discussion has been closed.