Preparing for EOFY tax scams with business and cyber resilience

Every end of financial year (EOFY) season involves a rush by Australians wanting to get their tax returns completed. Increasingly, though, this period is seen as an opportunity for bad people to take advantage of us.

.

Too often the EOFY rush involves hastily clicking on links, giving personal information to the wrong person, or submitting documents to insecure portals or sites. One in four Australians experience a scam related to EOFY or tax matters, and these scams are not just limited to the June 30 date. In the months leading up to and following, scammers are leveraging a broad range of tactics from texting links to fake ads offering the recipient a tax refund.

For businesses, the threats are just as severe. Yet, half of organisations lack a comprehensive approach to assessing cyber resilience. In response to the growing threats and need for businesses to take preventative measures, the recent federal budget included a $23.4 million investment into a Cyber Wardens program, which aims to train up to 60,000 wardens in SMBs within the next three years.

While this is a progressive step, more needs to be done to ensure every business across Australia is equipped to mitigate the impact of cyber threats, particularly organisations managing Australians’ finances ahead of the EOFY period.

While the government initiative is welcome the best steps for any business, as a starting point, are:

  1. Ensure two factor authentication is turned on wherever it is available.  This should apply to platforms such as cloud-based e-mail systems, client portals, and payments systems.
     
  2. Change your passwords.  It is a fact that many of us use the same password for a lot of logins.  The reason for this is simply, so many passwords!!  However, the best answer is to use an identity & password manager solution such as Dashlane, LastPass, NordPass, or 1Password.  This way you only need to remember one password to gain access to all the others.
     
  3. Your Internet connection (router) is a point of significant threat.  Few routers are actively managed which leaves many opportunities or hackers.  The best solution is to ask your existing IT supplier, if they have the expertise, to ensure your router’s firewall(s) are shutting out the outside world. 
     
  4. A person within the business does need to be able to provide oversight that proper strategies are actually implemented and who can understand what their IT people are saying about their routers and firewall(s).  The government initiative noted above may help small businesses train such a person.  This is not saying a staff member needs to be an IT expert, but they do need to be able to understand what they are told and/or read.  Basic education and training can be enough but extra and ongoing training is increasingly important.

Be on your toes.  While cyber threats are often assumed to come externally from an aggressive attack by someone in a hoodie in a bunker overseas, the reality is many risks come from employees skipping over seemingly complicated approval processes, subscribing to popular apps or products that may not meet compliance requirements, or not checking whether they actually need to use a third party tool or if the same outcomes could be reached with an approved tool already used within the organisation. Make sure your own people aren’t opening the gates to the enemy.

Finally, don’t stop with the above. Cyber criminals around the world are savvy, persistent, and increasingly well-resourced. While they may be targeting consumers and accountants at tax time today, they will quickly find another way to get Australians’ attention tomorrow. Keep your plans, cyber champions, and staff – all the way to the Board level – updated regularly to ensure everyone is ready for the next threat.

05 June 2023

More Articles

Most Spoken Languages in the World

Check out the Most Spoken Languages in the...

Read full article

SMSF assets reach record levels amid share market rally

How SMSF trustees are investing their retirement savings. . Over 1.1 million Australians are now...

Read full article

Income-free areas set to increase from 1 July

People nearing retirement often want to know how much they can earn before it affects their pension, and now...

Read full article

Many Australians have a fear of running out

Longevity risk is a growing concern for many working Australians as well as retirees. . The fear of...

Read full article

LRBA interest rates increase for 2025

The safe harbour interest rate for related party limited recourse borrowing has changed for...

Read full article

How to get into the retirement comfort zone

A third of Australians retire without a plan. Here's why you should have one. . Working and generating a...

Read full article

Compliance focus impacts wind-ups

The ATO’s strategic increased focus on compliance is having a noticeable effect on the sector and is now the...

Read full article

NALE bill passed by parliament

The bill that will introduce changes to the non-arm’s-length expenditure (NALE) provisions has passed...

Read full article

Sofie Korac is an Authorised Representative (No. 400164) of Prudentia Financial Planning Pty Ltd, AFSL 544118 and a member of the Association of Financial Advisers.

Financial Advice Sydney and the North Shore Office based in Gordon NSW

Financial Services Guide - Disclaimer & Privacy Policy

^