Skip to main content
R
Richard247
March 10, 2023
Solved

Has anyone had their invoices intercepted requesting an alternative account should be paid

  • March 10, 2023
  • 2 replies
  • 0 views
Customers sent a follow up email by someone with an email address different by only 1 letter so easily missed, requesting that they pay into an alternative account. It seems that this originated from Iceland! What I don't get us that the invoice would have been sent through Quickbooks
Best answer by paul72

Hi @Richard247 

 

Most likely is the customer's email account has been hacked / password has been compromised.  Tell them to change their password(s).

 

Do you cc the invoices to another address?

That email could have been hacked - change password.

 

The other two options are that your email account has been hacked / password has been compromised (change password) or your QBO account password has been compromised (change password).

 

Given that the scumbag used an alternative email address (you say one letter different) it's unlikely that it's your email or your QBO account that's been hacked.

(if they had access to these, they could send an email from your account and/or amend your invoice template which would have even more chance of 'success').

 

Hope this helps.

2 replies

C
CharleneMaeF
March 10, 2023

This is unusual, Richard247.

 

Please keep in mind that your privacy is our top priority. QuickBooks Online only sends the invoice email to the address that you've added in the system or in the BCC field of the message. I'd recommend reporting the phishing or fake emails your customer received. 

 

Here's how:

 

  1. Go to the Online Security Center page.
  2. Click Contact Us.
  3. Look for Report a fake email (or phishing email) and click on it.

 

You can also reach out to our support team who can help you determine if the email is from Intuit or a possible phishing email that needs to be forwarded to our security team for assessment.

 

Additionally, I've added these articles that'll help you learn more about recognising official Intuit correspondence and websites and keeping your data secure:

 

 

Please let me know if you have any other issues or concerns. I want to make sure everything is taken care of for you.

paul72
paul72Answer
March 10, 2023

Hi @Richard247 

 

Most likely is the customer's email account has been hacked / password has been compromised.  Tell them to change their password(s).

 

Do you cc the invoices to another address?

That email could have been hacked - change password.

 

The other two options are that your email account has been hacked / password has been compromised (change password) or your QBO account password has been compromised (change password).

 

Given that the scumbag used an alternative email address (you say one letter different) it's unlikely that it's your email or your QBO account that's been hacked.

(if they had access to these, they could send an email from your account and/or amend your invoice template which would have even more chance of 'success').

 

Hope this helps.

Terms & ConditionsAccessibility statement