Gobbill would have STOPPED this invoice fraud and saved Jane $51,000.
Gobbill would have STOPPED this invoice fraud and saved Jane $51,000.
Welcome to the National Scams Awareness Week 2020!
(Australia and New Zealand)
Gobbill has been a strong supporter in protecting people from against fraud and scams since 2015. We are proud to be a campaign partner for this year’s National Scams Awareness Week.
Throughout this week, we will be raising awareness of scams and frauds. We will focus on Phishing and Email Compromise. These are two areas of scams that Gobbill has extensive experience in confronting.
To kick off the week, we have posted a quiz titled ‘Can you spot a scam?’ on our Instagram page.
If you are here to read the explanations, please keep reading.
If you have not done the quiz, hop off this page and come back to this page for the explanations.
How did you go? Scam emails or texts can look extremely authentic and convincing through replicating legitimate messages from trusted senders.
These scams often feature official looking logos and emails and a ‘call to action’ to open a malicious link or share personal information. That’s why Gobbill has developed automated checks of domains, links and much more over the last 5 years. Gobbill fetches and/or opens attachments safely so you don’t have to.
We do this for all Australian billers including telcos, councils, utilities and many more.
We process payments to over 40,000 billers with over 1m+ Australians already having access to Gobbill’s payment platform.
For more information, contact us at: https://gobbill.com/contact/
The Australia taxation office has received reports that myGov related SMS and email scams are targeting Australians. The increased SMS and email scams coincide with tax time where millions of Australians are accessing and engaging with myGov services.
What do the scams look like?
These myGov related scams looks as if they have been sent from a myGov or ATO email address. Scammers utilise technology that allows emails to be sent in a similar way to conversation threads sent by myGov or ATO messaging.
The call to action in the email is to click a link that asks for your personal details for ‘verification purposes.’ The official advice from ATO is ‘DON’T click any links’ and ‘DON’T provide the information requested.’
Example of a scam message from the Australia Cyber Security Centre. Source: https://www.cyber.gov.au/acsc/view-all-content/alerts/increasing-reports-mygov-related-sms-and-email-scams-targeting-australians
How to protect yourself from myGov related scam:
If a scam email or SMS is delivered to you, do not open the links or provide any personal details or information requested.
For more information visit: https://www.cyber.gov.au/
New research from the Take Five to Stop Fraud campaign by UK Finance has revealed eight in ten (80 per cent) people in UK would feel embarrassed if they fell for a financial scam.
Scamwatch reports 2,000 COVID19 scams with losses now more than $700,000. This is only the reported figure with unreported figures accounted for.
There has been also a spike in ‘puppy scams’ during coronavirus lockdown reaching $360,000. “A lot of people are stuck at home and going online to buy a pet to help them get through the loneliness of social isolation,” ACCC Deputy Chair Delia Rickard said. “Unfortunately the rush to get a new pet and the unusual circumstances of COVID-19 makes it harder to work out what’s real or a scam.”
COVID-19 has been a hot bed for fraudulent activity with scammers targeting those in search of a furry companion reports 9News.
Don’t get done by those puppy eyes…
For more information, visit ACCC’s report.
Gobbill is a partner of StaySmartOnline since 2015, a cybersafety initiative of ACCC Consumer Rights.
Police Arrests following Invoice Fraud
NSW Police last week arrested and charged two men over their alleged involvement in a $2.6 million Business Email Compromise (BEC) scam syndicate. The scam involved sending altered invoices to businesses who unknowingly paid the scammers into their accounts.
One of the men is believed by police to be the leader of the syndicate and faces charges related to directing a criminal group. Police allege he gained more than $1.6 million, and unsuccessfully tried to gain nearly another $1 million through email scams from mid-2018 until early this year.
Commander of the NSW Cybercrime Squad, Matthew Craft, said cybercrime presents “a unique challenge for law enforcement”.
“These arrests are a timely reminder for all individuals and businesses to have strong cyber security measures in place for protection,” Craft said.
“During this investigation, officers uncovered a criminal network targeting hard-working Australian businesses through a series of sophisticated email scams,” Det Supt Craft said.
Police charged three other people last year in relation to the same investigation.
Business email compromise scams
Business email compromise (BEC) scams – where finance staff are deceived into paying fake invoices –are becoming increasingly common.
In 2018 alone, it was estimated that Australian businesses lost more than $60 million from this type of scam.
An ice rink in Sydney’s South West fell victim to a BEC scam earlier this year after receiving changed payment details for a new ice resurfacer it was purchasing, transferring $77,000 into an unknown Hungarian bank account.
Currently, the COVID-19 outbreak is creating a new set of challenges for businesses trying to shore up their cyber defences. There has been a rise in the number of coronavirus-related scams in recent weeks. With many Australian businesses trying to operate remotely to help encourage social distancing, networks could be more vulnerable as they are spread away from centralised IT systems.
How can you protect your business?
The Australian Cyber Security Centre has a list of strategies to mitigate the effects of cyber-attacks during the COVID-19, but one of the simplest steps business owners or accountants/bookkeepers can take to reduce their risk is to implement Gobbill as their accounts payable solution.
Gobbill is a simple, affordable bill payment automation and fraud protection tool that protects users from scams like Business Email Compromise. Our unique Know Your Biller process checks every document before it is scheduled to be paid, and intervenes to stop payment of any bills which are suspicious or have been tampered with.
Plans start from $25 per month, with a free 1 month trial on our small business plan.
To arrange a demo contact firstname.lastname@example.org or call 0444 599 715.
Source Articles: https://ia.acs.org.au/article/2020/police-arrest-men-over–2-6m-email-scam.html
|27 March 2020|
The Australian Cyber Security Centre (ACSC) is aware of a significant increase in Australians being targeted with COVID-19 related scams and phishing emails.
In the last three months, the ACSC and the Australian Competition and the Consumer Commission’s (ACCC) Scamwatch has received over 140 reports from individuals and businesses across Australia.
These phishing emails are often sophisticated, preying on people’s desire for information and imitating trusted and well-known organisations or government agencies.
Clicking on these malicious links or visiting fake websites may automatically install computer viruses or malware and ransomware onto your device, giving cyber criminals the ability to steal your financial and personal information.
These scams are likely to increase over the coming weeks and months and the ACSC strongly encourages organisations and individuals to remain alert.
Here are some examples of what to look out for now:
Example 1: SMS phishing scam messages offering where to get tested for COVID-19 or how to protect yourself In these examples, the SMS appears to come from ‘GOV’ or ‘GMAIL’, with a malicious link to find out where to get tested in your local area.
Scamwatch and the ACSC is also aware of a SMS scam using the sender identification of ‘myGov.’ These scam messages are appearing in the same conversation threads as previous official SMS messages you may have received from myGov.
Example 2: COVID-19 phishing email impersonating Australia Post to steal personal information
Under the pretence of providing advice about travelling to countries with confirmed cases of COVID-19, this phishing email aims to trick you into visiting a website that will steal your personal and financial information.
Once they have your personal information, the scammers can open bank accounts or credit cards in your name, often using these stolen funds to purchase luxury items or transfer the money into untraceable crypto-currencies such as bitcoin.
Example 3: Phishing emails pretending to be an international health sector organisation
This is an example of one COVID-19 themed phishing email where the sender is pretending to be a well-known international health organisation. The email prompts you to click on the web link to access information about new cases of the virus in your local area, or to open an attachment for advice on safety measures to prevent the spread.
Example 4: Phishing emails containing malicious attachments In this example, the phishing email is pretending to be from the World Health Organization and prompts you to open an attachment for advice on safety measures to prevent the spread of COVID-19. When opened, the attached file contains malicious software that automatically downloads onto your device, providing the scammer with ongoing access to your device.
Example 5: COVID-19 relief payment scam Scammers are also sending phishing emails targeting an increasing number of Australians that are seeking to work from home, wanting to help with relief efforts or requiring financial assistance if they find themselves out of work. In this example, the email offers recipients $2,500 in ‘COVID-19 assistance’ payments if they complete an attached application form. Opening the attachment may download malicious software onto your device. How do I stay safe?The ACSC has produced a detailed report, including practical cyber security advice that organisations and individuals can follow to reduce the risk of harm.
You can read the report and protect yourself by following these simple steps:Read the message carefully, and look for anything that isn’t quite right, such as tracking numbers, names, attachment names, sender, message subject and hyperlinks.If unsure, call the organisation on their official number, as it appears on their website and double check the details or confirm that the request is legitimate. Do not contact the phone number or email address contained in the message, as this most likely belongs to the scammer.Use sources such as the organisation’s mobile phone app, web site or social media page to verify the message. Often large organisations, like Australia Post, will have scam alert pages on their websites, with details of current known scams using their branding, to watch out for.If you’ve received one of these messages and you’ve clicked on the link, or you’re concerned your personal details have been compromised, contact your financial institution immediately.
More informationIf you’ve suffered financial loss from cybercrime, report it to ReportCyber at www.cyber.gov.au/report.
Visit cyber.gov.au for advice to help businesses stay secure from cyber threats, whilst managing a remote workforce.
To stay up to date on the latest online threats and how to respond, sign up to the Stay Smart Online Alert Service, www.staysmartonline.gov.au/alert-service.
More advice and support is available on our Get help page.
For information on the COVID-19 pandemic, visit https://www.health.gov.au The information provided here is of a general nature. Everyone’s circumstances are different. If you require specific advice you should contact your local technical support provider. Feedback
Thank you to those subscribers who have provided feedback to our Alerts and Newsletters. We are very interested in your feedback and where possible take on board your suggestions or requests.
This information has been prepared by the ACSC. It was accurate and up to date at the time of publishing.
This information is general information only and is intended for use by private individuals and small to medium sized businesses. If you are concerned about a specific cyber security issue you should seek professional advice.
The Commonwealth and all other persons associated with this advisory accept no liability for any damage, loss or expense incurred as a result of the provision of this information, whether by way of negligence or otherwise.
Nothing in this information (including the listing of a person or organisation or links to other web sites) should be taken as an endorsement of a particular product or service.
Please note that third party views or recommendations included in this information do not reflect the views of the Commonwealth, or indicate its commitment to a particular course of action. The Commonwealth also cannot verify the accuracy of any third party material included in this information.
More details: https://www.staysmartonline.gov.au/alert-service/widespread-reports-covid-19-malicious-scams-being-sent-australians
You are receiving this message at the address email@example.com.
If you no longer wish to receive this information, you can unsubscribe. © 2020 Australian Government.All rights reserved.
Former fraud investigator for the National Disability Insurance Scheme says too few people are dealing with fraud in the system. $2B could be in fraud per annum in the $22B per annum scheme.
Five people have been arrested and luxury cars seized in western Sydney over an organised criminal syndicate suspected of defrauding the National Disability Insurance Scheme of millions of dollars.
It will be alleged the syndicate controlled three NDIS providers that fraudulently claimed $1.1 million in NDIS payments from more than 70 people on disability plans or those managing their affairs.
Investigations are ongoing, with more than 100 other potential victims identified in connection to the three entities allegedly controlled by the syndicate.
Gobbill is fighting back and is currently piloting a solution to make payments easier and safer for NDIS self-managed participants and plan managers. See https://gobbill.com/ndis
After $1 million was siphoned off their company’s accounts and their bookkeeper charged with 250 counts of fraud, a Brisbane couple wants banks to be more accountable for electronic fund transfer (EFT) fraud.
Their bookkeeper has been charged with 250 counts of fraud and fraud-related offences in relation to the missing money, and accused of using electronic funds transfer fraud.
“We thought that our money was safe, we thought our lives were safe — but it’s destroyed us,” Ms Saggers said.
Detective Inspector Vince Byrnes warns EFT fraud can have a “devastating” impact on people.
Banks in Australia don’t have to cross-check account names against account numbers in EFT transactions.
Reducing the risk of fraud and ‘segregation of duties’ is important even with micro and small businesses. That’s why Gobbill in the mix would help small business owners, bookkeepers and accountants prevent fraud and other potential cyber-related crimes.
Read more at ABC News.