Recently we had an offshore party (Nigerian) somehow intercept (or get a copy) of one of our accounting people's emailed invoices to a customer. They then sent an email to the company requesting payment be made to a different bank (spoofing our guy's email). They had all the pertinent information correct, job #, invoice #, etc. Just before the AP person at the company paid it, he took it to his boss who was suspicious and called us. We thought it was a "one-time" occurrence but it just happened again, so we've notified all of our customers. It's a new twist (for us) but from what I understand it's happening more and more. Most of our spoofed stuff relates to Nigerian princes and oil proceeds. But this is more dangerous as it has legitimate info in the thread and ALMOST worked. Our IT dept is working with our customer to track the source but most likely we'll just know where it's coming from without any further recourse. (Unless we can convince our president to take out Nigeria :lol
Just an FYI in case some of you guys handle any invoicing by email.
Just an FYI in case some of you guys handle any invoicing by email.