National Scam Awareness Week ran during August and it is a reflection of the need to be vigilant at all times when dealing with information and funds. While “Too Smart to be Scammed” was the tag-line for the campaign, more and more we are seeing sophisticated methods of deceiving people and I would say, no-one is too smart NOT to be scammed.
We are contacted regularly from clients who have fallen victim to a new scam. More alarming is that the scam may not originate in your organisation – your suppliers’ systems are exposed also, so if you do not have strict controls and protocols in place, your staff may be tricked into helping the thieves achieve their goals.
As we have advised before, every day your business will receive “scam” communications via emails, phone calls and even written requests all for the same goal – to obtain funds, goods or services by deception. Some attempts will be obvious fakes but unfortunately, some will be very convincing.
Recently a Travel Agent’s supplier was hacked and their system infiltrated by malware that allowed their emails to be monitored. When an invoice was sent direct to a passenger, the bank account for payment had been altered. The passenger then, in good faith, made payment to the bogus bank account and the money for the trip gone forever.
Whilst most companies have a strict payment process in place, in this case, the consultant thought they were helping the passenger meet a deadline but the result was devastating.
It may come as a surprise to many that Professional Indemnity Insurance does not cover these losses and in most cases, neither does the Crime Section of other policies. Risk prevention is the best solution in these circumstances.
The ACCC’s Scamwatch website has a dedicated section for threats against small business and there are many valuable resources on this site: https://www.scamwatch.gov.au/get-help/protect-your-small-business.
For National Scams Awareness Week, the website put up many interesting examples and they have put a challenge on their site to see if you can spot the signs. One of them relates to a business email compromise scam:
You’re at work and you’re about to log off for the week. Just before you do, you receive an email from your CEO about an urgent payment. Your first thought is to action his instructions immediately, but then you realise he’s asked you to do something somewhat different from your usual process. You carefully consider the email again and realise it’s a scam.
The answers are:
We would highly recommend you have a look at this challenge and the other examples at Scamwatch.gov.au.
Now more than ever it is important to ensure you and your staff are taking appropriate action. Besides having in place a quality Cyber & Privacy Protection Insurance Policy, you need to ensure your organisation regularly informs all of your staff what to watch out for. Some examples include:
It is important to always take Cybersecurity a priority – the stakes are too high to ignore this ever-evolving threat.
If you would like further information or an obligation free Insurance quote, please contact Rebecca Fleming, Manager of our Travel Division at Gow-Gates Insurance Brokers on (02) 8267 9919 or rfleming@gowgates.com.au to discuss your circumstances or to obtain a quotation.
General Advice Warning – the information in the above article is intended as a guide only and should not be relied upon without consulting your relevant insurance policy wording and conditions or conversely seeking professional advice from either your insurance broker or insurer regarding a claim or potential loss. Failure to adhere to this warning could result in a denial of a claim or potential loss or a reduction in settlement of a claim or potential loss