Unless you’ve been living under that proverbial rock, you know scammers have been getting more prevalent, more sophisticated, and more dangerous over the years.

If your email is hacked, the hacker is reading your emails and likely sending emails from your account. (This is why we are no longer emailing payroll reports.) And if the hacker has broken into your computer and found that “secret” file where you store passwords, you are looking at serious trouble. (Hint: Calling the file “junk” or “recipes” or something else won’t keep them from finding it.)

We would like to remind you to take as many precautions as you can to protect your payroll. If a scammer hacks your email and learns what payroll software your payroll goes through, and then cracks your password, the risks are enormous. For example, your employees’ pay can be hijacked to other bank accounts and employee data can be stolen.

Here are some steps you should take TODAY:

  • Use multifactor authorization. Have the verification code sent to your phone instead of your email. If your email is hacked, the scammer will receive the code. Since phones aren’t secure, it’s even better to use a free third-party app such as Google Authenticator, Authy, Microsoft Authenticator, Duo Mobile, and 2FAS.

https://www.pcmag.com/picks/the-best-authenticator-apps

https://lifehacker.com/the-best-authenticator-apps-for-iphone-and-android-1850140802

Why phones aren’t safe

https://ironvest.com/blog/what-can-hackers-do-with-your-phone-number

https://www.howtogeek.com/358352/criminals-can-steal-your-phone-number-heres-how-to-stop-them

  • Use strong, unique passwords. Do not reuse passwords on multiple sites, because if one site is compromised, all sites using that password are vulnerable. We recommend using a password manager to generate strong passwords. These apps also store the passwords and fill them in. Some popular password managers can be found here:

https://www.pcmag.com/picks/the-best-password-managers

https://www.wired.com/story/best-password-managers

  • Avoid using public, unsecured wi-fi for financial transactions, including payroll. That sweet-looking person at the next table of the coffee shop might be intercepting your passwords, infecting your device with malware, and commiting other criminal acts.

https://www.technobezz.com/wifi-risks-safe

https://www.aura.com/learn/dangers-of-public-wi-fi

  • If you need to use public wi-fi, install a VPN on your laptop and phone.

https://www.cnet.com/tech/services-and-software/best-vpn

https://www.pcmag.com/picks/the-best-vpn-services

If you have any doubt about the legitimacy of any payroll-related transactions, do not hesitate to call us.

PayPlus doesn’t endorse any of the products mentioned. We provide this information purely as a convenience and leave it to your to research the best software products for your particular needs.