In these instances it is recommended you contact the supplier direct to confirm change of account details. Also do not use the phone number on the invoice but use an alternative source such as google.
Below are a few tips to help you and your organisation to remain vigilant against these risks.
Information about IT security
It is recommended that customers report the any IT hacks (Email or computer software) matter through the ACORN website (a government website for reporting cyber-crime). This helps build intelligence in this area. http://www.acorn.gov.au
For an email hack it is recommended to have the user check their “rules” or “settings” to see if emails are being redirected, or if additional rules have been added without the customers knowledge. These rules should be cleared (get them to note any changes for their report to ACORN)- (Check if emails have gone into the deleted folder should would normally go into Inbox, or if other folders have been created without your knowledge)
Some recommended steps you can take to protect your IT Security:
Install a Business-Grade Anti-Virus Software (and ensure updates are completed as required)Turn on automatic updates on all your security softwareInstall a “malware” software. A free version is available via our website www.westpac.com.au/trusteer Change passwords (on personal and business accounts) regularly- Use strong passwords (Emails, Banking, Computer log in etc. Try not to use the same password for everything)Ask your phone and internet provider about additional security they may be able to offer (including additional security/passwords)Identify and delete hoax emails- Westpac will never send you an email asking for sensitive financial information or link directly to a sign-in page.Delete SPAM- don’t open emails from a source you don’t trust. Even better, check if your Internet service provider offers a spam filtering service
Phishing filter - the latest browsers offer a built-in filter that scans web pages you visit for characteristics associated with known online web fraud or phishing scams, and warns you that such sites might be suspicious. Always access your online banking by typing the address into your browser, checking that you're connected to a legitimate financial insitution website. And always select "sign out" from the Online Banking menu when you complete your banking.Protect your identity - never provide your personal or security details, including customer ID or passwords, in response to any email, even if it looks legitimate. Confirm that your data is encrypted - by ensuring a symbol of a lock appears within the browserCheck your last sign-in date and time (at the top of the screen) whenever you sign into Online Banking to make sure it appears correctRegularly check statements for any transactions that look suspicious.
Keep data safe: implementing a regular backup procedure is a simple way to safeguard critical business data. Setting permissions and using encryption will also help.Set rules for Internet usage at work - unscrupulous web sites, as well as pop-ups and animations, can be dangerous. Set rules about Internet usage to protect your business and your employees.Remote access may be a business necessity, but it is also a security risk you need to closely monitor. Use strong passwords and be especially cautious about wireless networks.Protect your website with a controlled 3rd party 'ethical hack', which can help assess and mitigate the risks for Internet security, independent of any vendor or supplier.Check payee details prior to processing payments