Fraud is an issue for everyone
Every business is at risk, every day. We want to share what we know to help businesses like yours spot the signs and stop fraud before it happens.
Recognising types of frauds & scams
-
Email Scams
What is the scam?
Scammers can intercept or use a similar email address to a legitimate email address to get you to make payments.
How does the scam work?
- Criminals can pretend to be from a supplier, contractor or solicitor who is known to you. They email you to say their bank account details have changed.
- They may also pretend to be a staff member or senior manager within your business.
- They will ask that payments should be made to a new account, which actually belongs to the criminal.
How to avoid this scam- Do not accept any payment instructions by email.
- Always verify payment requests by calling a number you know.
- Don’t use the contact details contained in the email they sent you to verify the details.
- If you make and authorise a payment to one of these fraudulent accounts, it is unlikely we will try recover the money for you, but this may not be successful.
-
Investment Scam
What is the scam?
A scam that tricks you into investing your money into a fake, but often convincing opportunity.
How does the scam work?
- Someone looking to invest will browse the internet for opportunities. When they find one, they fill in a contact form.
- The fake company will contact them and provide sophisticated material – high end brochures and documents.
- Some even have fake videos and articles from celebrities endorsing the investment.
- Some may mimic genuine employees from legitimate company.
- All will offer an investment that is too good to be true and pressure the investor to make fast payments to ensure they get the best return.
How to avoid this scam
- Always check if the company is authorised by a financial regulator to deal in investments.
- Get independent financial advice before sending any of your money.
- Never allow the fraudster access to your personal or financial details.
- Do not respond to high pressure tactics.
If it sounds too good to be true, it certainly is!If your investment or transfer turns out to be fraud, we will try recover the money for you, but this may not be successful.
-
Malware (Trojans and Viruses)
What is the scam?
Illegal software is used to infect your device so that criminals can gather your personal or security information when you enter it.
How does the scam work?
- Malware can infect your phone or computer, through attachments or files from infected websites.
- You may receive a pop up on your screen requesting your personal and financial information.
- You may be asked to re-confirm your identity, or expect a follow up call.
How to avoid this scam- Never put your details into an unexpected pop up, including login information, push message to your phone and codes from your digipass.
- Use the address bar to type in the correct website address rather than browsing the web for the login page.
- If you do get a pop up – close your device and get a professional to check it out.
-
Purchase Scams
What is the scam?
Fraudsters can mimic a genuine website to sell goods. They use images of genuine products but at a cheaper price. The goods are not actually available for sale.
How does the scam work?
- Genuine websites are mimicked to look like the legitimate company.
- The goods are advertised at a much cheaper price.
- Contact may be by email. Phone numbers may never be answered.
- Often payments will only be accepted by bank transfer.
- Examples include, machinery, motor homes, fashion, and electronics.
How to avoid this scam- Only buy from reputable sellers.
- Make sure the website is secure.
- Check reviews on the company to see if others have been affected.
- Ask to see the goods before parting with any money.
- Ask yourself is the price too good to be true.
-
Text Message Scam (Smishing)
What is the scam?
Criminals are sending text messages that appear to be from your bank or another legitimate business. Their aim is to get your personal and financial information.
How does the scam work?
- The text will claim to be from your bank. Utility and delivery companies, phone providers and government agencies are also being targeted. The message will contain a link to a website or a phone number for you to call.
- This message may show in the thread of legitimate messages or come from an unknown number.
- They will ask you to provide your personal and financial information through this website or over the phone.
- These messages will have a sense of urgency.
How to avoid this scam- We will never send you a text message with a link to click or a phone number to call and request personal or financial information.
- Check with the sender if the request is legitimate before clicking on the link.
- Never share your login details or codes from your Digipass.
- Do not confirm unexpected push messages.
- Never share one time pass codes (OTC) received by text.
- While we may send marketing surveys through, text we will never ask you to login to your accounts or for your personal information.
- We will never visit your home to collect your card or ask you to not log into your account for a period of time.
-
Phone Call Scam (Vishing)
What is the scam?
Criminals use phone calls to contact you pretending to be from your bank or another legitimate company. Their aim is to get your personal and financial details for their gain
How does the scam work?
The caller claims to be from a legitimate company. They claim to:
- Offer you a tax refund.
- Be the police and they need you to assist with preventing a crime.
- Be a utility company: offering to ’fix’ PC or broadband problems.
- Have found fraud on your account, and they will help you to cancel transactions.
How to avoid this scam- Don’t accept unexpected calls.
- Hang up. Call the company on a number you trust to check the request is genuine.
- Never give personal or financial information including any one time pass codes you received by text, or codes from your card reader or Digipass.
- Never confirm unexpected push notifications.
-
Fraudulent Email Scam (phishing)
What is the scam?
Criminals commonly use emails to steal your personal and financial information and will claim to be from your bank or other legitimate companies.
How does the scam work?
- The email will claim to be from your bank or another legitimate company.
- They will ask you to provide your personal and financial information through this website or over the phone.
- These emails will sound urgent.
How to avoid this scam- We will never send you an email with a link asking for personal or financial information.
- Check with the sender to ensure the request is legitimate before clicking on any links or attachments.
- Never share your login or card information after clicking a link in an email.
- Never share one time pass codes (OTC) or codes from your Digipass or accept unexpected push notifications.
- While we may send you marketing surveys through email, we will never ask you to login to your accounts, or for your personal information.
- We will never visit your home to collect your card.
-
Romance Scams
What is the scam?
Romance scam victims believe they have met their perfect match online, but the other person is in fact a scammer using a fake profile to build the relationship. They slowly gain the victim’s trust and eventually ask them for money.
How does the scam work?
- They will try to move communications away from the dating app.
- Ask a lot of personal questions but avoid answering questions about themselves. The details they do share may seem made up and far from reality.
- They may ask for financial help. They may tell you they are having money problems, a medical emergency or need money to travel to meet you. Never hand over your hard earned money.
How to avoid this scam- Always use a trusted dating website.
- Do not share personal information.
- Never share financial information or send money to support them.
- Trust your instincts.
-
Ransomware
What is the scam?
Ransomware is a type of malware that limits a user from accessing their system on any device. You are locked out and your data is blocked until a ransom is paid.
How does the scam work?
- System is hacked and access is blocked to all users on all devices.
- Businesses can have their system hacked by opening links or attachments in emails, visiting fraudulent websites, or using infected USB devices.
- The data and files are encrypted, making them inaccessible until a ransom is paid.
- In some cases the data can also be sold on to other criminals on the dark web.
How to avoid this scam- Always keep your anti-virus software up to date using trustworthy providers.
- Don’t open attachments or links unless you know and trust the source.
- Be cautious of using remote access methods on your company’s network.
If you believe you have been a victim of ransomware report it immediately to local law enforcement and seek professional advice. -
Remote Access Scam
What is the scam?
Criminals call you pretending to be your bank or another legitimate company and trick you into downloading software onto your device.
How does the scam work?
- You receive an unexpected call from a company about an issue on your account or that a payment or refund is due.
- The number may mimic the genuine company.
- They direct you to download software to your mobile device or computer.
- They then take control over the device and make payments themselves or trick you into moving money yourself.
How to avoid this scam- Don’t accept unexpected calls.
- Hang up. Call the company on a number you trust to check the request is genuine.
- Never give anyone access to your mobile phone or computer.
- Never give personal or financial information including any one time pass codes you received by text, or codes from your Digipass.
- Do not accept unexpected push notifications.
