Skip to main contentSkip to log on

Scams and fraud that target businesses

Businesses are increasingly becoming the targets of scams and fraud. Read about protecting your business, staff and customers from the potential data and financial loss, reputational damage and operational impacts of cyber-attacks.

Upcoming webinar: Staying ahead of scams

In today’s fast-paced digital landscape, fraud and scams continue to pose a threat to both businesses and individuals. Join us for an informative webinar featuring industry-leading fraud experts who will share emerging trends and real-world insights on how to recognise and prevent scams.

More about the webinar and how to register

Types of business scams

A lot of the scams and cyber-attacks used to target individuals can be used to target businesses too. These may include:

  • Phishing scams that trick you out of information that can be used to access your bank accounts or credit card(s). 
  • Remote access scams that trick you into giving someone access to your device i.e. smartphone, tablet or computer. This could allow them to access your bank accounts, two-factor authentication codes and any data saved on that device. 
  • Malware or ransomware, possibly spread by email attachments, via devices (i.e. flash drives or SD cards), or unintentionally downloaded from the internet.
  • A compromised email account which, for a business, can allow scammers to send fake invoices to your existing customers, or update the payment details to redirect legitimate invoice payments to scam accounts.
  • Payment facilities and ecommerce platforms can be targeted by fraudsters. Your customers’ card details may be stolen and used fraudulently in your store or online, which can result in liability and financial loss for your business.

Protecting your business from scams and fraud

Stay up to date with the latest scams

Knowing what scams are currently active can be a good form of defence.

Educate your staff

Your staff can be your best defence against scams and fraud. 

Make sure they know what part they play in keeping themselves, the business, and your customers safe. 

The PACT acronym can help you and your staff remember some simple, actionable tips.

Pause

Before sharing information

Ask your employees to always think first before sharing sensitive information especially in response to unexpected phone calls requesting banking and personal details, to transfer money or to download software.

Activate

A second layer of security

Protect your business with two-factor authentication (2FA), across the systems you use, inform employees to protect their devices with a password, PIN or biometric ID and to ensure their device operating systems, apps and anti-virus software is updated regularly.

Call out

Suspicious activity

Educate your staff so they know how to identify suspicious activity, scams, phishing emails or texts and what to do.

Train

Your staff to look out for irregularities on invoices

Particularly relating to changes in details and implement call back verification processes for anyone who makes payments.

Guide to building cyber resilience in your business

This guide seeks to simplify cyber security, by providing actionable tips and information for businesses. These tips can help balance the need to operate effectively and take advantage of innovative technology while managing cyber threats and risks.

Your business processes

  • Make sure your security processes and policies are up to date, and that they are followed
  • Back up your data regularly, capturing all the digital information you need to keep your business running
  • Make sure passwords are long, strong and unique
  • Use two-factor authentication, where available
  • Set your devices, software, operating systems and apps to update automatically

Find more tips for protecting your business on Own Your Online:

Securing your business accounts

OnlineCode two-factor authentication

If you’re registered for OnlineCode in the ANZ goMoney mobile app and Internet Banking, it adds a second layer of security to verify certain transactions. 

Control access to your accounts

Decide how your employees and your accountant access your ANZ Internet Banking by assigning them a profile in ANZ Direct Online – Administrator, Authoriser or User.

Use more than one authoriser

Set your account rules so payments made in goMoney, ANZ Direct Online or Internet Banking require more than one authoriser (signatory). Add new authorisers to your account by calling our Business Specialists.

How we help keep you safe

Read more about the other ways we safeguard your accounts and information:

Secure your card acceptance terminals and ecommerce platforms

  • Be wary of customers who make unusual requests, like asking for immediate returns, large voucher purchases over the phone, or to handle the EFTPOS terminal themselves.
  • Only use solutions and practices that comply with Payment Card Industry Data Security Standards (PCI DSS) compliant solution with Card Security PCI DSS.  For more information, see the ANZ Merchant Operating Guide on Accept card and device payments
  • Protect your website with 3D secure authentication to help prevent online payment fraud. To check if it is enabled, contact your website payment gateway provider, or call us on 0800 473 453.
  • To reduce the risk of bot-driven fraud through your website, secure your website’s checkout process with tools like CAPTCHA, to help distinguish between human activity and automated activity.

Report it

If you think you’ve been the victim of a scam or fraud, or if you notice anything unusual with your accounts or online banking, call us immediately.

If you have a cyber security issue or have been the target of a scam or fraud not connected to your banking, report it to CERT NZ. Reporting even minor events helps CERT NZ identify risks and improve their guidance.

Contact us

Call us

General business enquiries

Monday to Friday, 8am - 8pm
Saturday and Sunday, 8am - 6pm

Business specialists available

Monday to Friday, 8am - 6pm
Saturday, 9am - 5pm
Sunday, closed

0800 269 249

From overseas: +64 9 523 7220

Related content

Ways to help protect your business from AI scams

From fake invoices to convincing deepfakes, generative AI is making scams smarter and harder to spot. So how can you tell what’s legit and what’s fake? We break down some of the most common AI-related scams and what you can do to keep your business safe.

Ways to help protect your business from AI scams

Business scams and fraud webinar

Watch our webinar with CERT NZ expert Erica Boscato as she discusses common types of scams and steps you can take to help keep your business secure.

Business scams and fraud webinar

Business risk management and insurance

Learn how to reduce risk in your business, from preventing employee theft, card payment fraud, and scams, to choosing the right insurance to protect your business.

Business risk management and insurance

Information and education resources

Netsafe

Netsafe is an independent, non-profit online safety organisation. They provide practical tools, support and advice for keeping safe online, including advice and information about online scams.

Netsafe website

Own Your Online

Own Your Online is part of the government's work on scams and cyber security issues. Find out how you can get help, why being safe online is so important, and how to stay secure online.

Own Your Online

Financial Markets Authority (FMA)

The FMA regulates New Zealand’s financial markets. They provide information about investment scams, how to protect yourself from scammers, how to report a scam, and current scam warnings.

Scams – Financial Markets Authority

IDCARE

IDCARE is a not-for-profit organisation formed to help individuals who have identity and cyber security concerns. Their Identity and Cyber Security Case Managers can provide independent advice on how to respond to data breaches, scams, identity theft, and cyber security concerns.

IDCARE website

Important information

This material is for information purposes only. Eligibility criteria and terms and conditions apply to ANZ goMoney, Internet Banking and Direct Online. Fees apply to Direct Online. See our ANZ Electronic Banking conditions (PDF 138KB) and ANZ Direct Online conditions of use (PDF 186KB), for steps you must take to help stop unauthorised use or unauthorised access to goMoney, Internet Banking and/or Direct Online, also available from any branch.