Session 5 - 02 Supplier request change to bank details

Quiddity Reception

30 Jul 202102:24

Summary

TLDRThe video script advises handling supplier email requests for bank account changes with caution, treating them as potential scams. It emphasizes verifying the sender's email address, checking the email signature, and independently confirming the company's contact details. Instinct and attention to detail are crucial in detecting discrepancies, and direct communication or flagging the issue with relevant personnel is recommended.

Takeaways

🔍 Always approach a request to change bank account details as a potential scam.
📧 Check the email address by clicking on it to ensure it has the correct domain and is not spoofed.
🖋️ Examine the email's signature and how it's signed off to detect any inconsistencies.
🔎 Use Google to find the company's official contact number, not relying on the email provided.
☎️ Directly contact the company using an independently verified phone number to confirm the request.
💻 Be wary of phishing attempts where hackers may be watching your actions after gaining access to an account.
🕒 Consider the timing and be cautious if the request seems out of the ordinary or comes at an unusual time.
👀 Pay attention to the tone of the email and any signs that it may not be genuine, trusting your instincts.
📚 Learn from past experiences and be aware of common tactics used in scams to spot red flags.
🚨 If you cannot verify the request immediately, flag it with a designated person or team for further investigation.

Q & A

What is the main concern when a supplier emails requesting a change to their bank account details?
-The main concern is that such a request could be a scam, especially since changing bank account details is a high-risk area.
Why should you approach a request to change bank account details as if it's a scam?
-Approaching it as a scam helps protect against potential fraud, as there have been cases where scammers impersonate suppliers to gain access to financial systems.
What is the first step in verifying the authenticity of an email requesting a bank account change?
-The first step is to check the email address by clicking on it, as scammers can make the email address look legitimate but it might have a different domain.
What other factors should you consider when evaluating the legitimacy of an email?
-You should also look at how the email is signed off, the tone of the email, and any inconsistencies that might indicate it's not from the genuine sender.
Why is it recommended to find the company's contact number from a source other than the email?
-Finding the contact number from a different source ensures that you're not using a potentially compromised number that might be part of the scam.
What precautions should you take if you suspect an email is part of a scam?
-If you suspect a scam, you should not proceed with the request and instead directly contact the company using a verified contact method to confirm the request.
How can a scammer use a hacked email account to their advantage?
-A scammer can monitor the hacked account, waiting for the right opportunity to strike, such as when a financial transaction is about to be made.
What is the role of instinct in identifying potential scams?
-Instinct plays a crucial role in recognizing when something feels off, such as an unusual tone or request that doesn't align with typical business practices.
What should you do if you can't get through to the company directly?
-If direct contact is not possible, it's important to flag the issue with a relevant person or department, such as the query or finance team.
Why is it important to be cautious with email requests for sensitive information like bank account details?
-Being cautious with such requests is crucial because unauthorized changes to bank account details can lead to significant financial losses and fraud.
What additional steps can be taken to protect against email scams involving bank account changes?
-Additional steps include implementing multi-factor authentication, regularly updating security protocols, and training employees to recognize and report suspicious emails.