Skip to Main Content Increase Contrast Accessibility Help
banking assistant with headset and computer

Protect Your Organisation from Fraud

i

THINK YOUR ORGANISATION HAS BEEN A VICTIM OF FRAUD?

If you think there has been fraudulent activity on your Unity Trust Bank account, or if you are ever in doubt:

  • Call our Customer Service team right away on our dedicated fraud number, freephone 0808 196 8420 (open 8:30am-5:00pm Monday-Friday, excluding Bank Holidays).
  • File an online report to Action Fraud here: https://www.actionfraud.police.uk/
  • If your business is based in Scotland, contact Police Scotland on 101
  • You can also report it directly to your Relationship Manager, if you have one.

Keeping your business safe

At Unity Trust Bank we’re committed to helping you keep your organisation’s money and financial information safe. Fraudulent activity and online crime continue to rise, so the best way to protect your organisation is to be aware of the latest tactics.

How to report fraud

The Do’s and Don’ts to preventing fraud

 

DO's

Be cautious

when opening unexpected emails from unknown sources containing links or attachments.

Be careful

during busy periods and take time to analyse payment requests properly.

Confirm

information you are unsure of with the relevant beneficiary, for example a sudden change in bank details.

Report

any suspicious activity to Unity and the relevant organisations as soon as possible.

DON'Ts

Share details

with anyone, especially your security information. These are private and personal to you.

Download

any unknown and unexpected attachments or Apps.

Give access

to your device to anyone.

Move money

to a ‘safe account’ if advised to do so. You will never be asked to do this by Unity.

Types of fraud

Select the boxes below to read about different fraud types and learn how you can protect yourself and your organisation.

Telephone fraud, or ‘vishing’, is becoming increasingly commonplace. It’s when fraudsters don’t scam victims online, but call them instead, aiming to trick them into disclosing information or completing certain actions which would result in financial loss.

If you receive a call from someone claiming to be from Unity Trust Bank and you think it might be a scam, do not disclose your passwords or private bank details. Instead, end the call and report it to our dedicated fraud number, freephone 0808 196 8420 so that we can investigate on your behalf.

Phishing emails are unsolicited emails which appear to be from a genuine source, encouraging you to disclose confidential, personal or financial information.

Phishing emails may contain:

  • A request for confidential or secure information (such as your Online Banking log in, passwords, account numbers or PIN numbers).
  • Instructions to complete an attached document, or reply to the email, or to click through to a website to verify your account. Don’t open attachments or click on links if you suspect they may not be genuine.
  • Warnings of a sudden change in an account which requires you to verify that you still use the service.
  • Poor spelling and grammar.

Unity Trust Bank will never send you an email asking you to reconfirm your security details and we will never ask you to divulge your full passwords via email. If you receive an email appearing to be from Unity Trust Bank that looks suspicious, forward it to fraud@unity.co.uk, block the sender, delete the original email, and empty your deleted items. Or you can call our dedicated fraud number, freephone 0808 196 8420.

Smishing is when fraudsters send text messages mimicking companies such as banks, convincing you to click a link which could download viruses onto your device or direct you to a fake website to trick you into releasing personal and financial information. Unity only provides a text service for authenticating accounts or payment requests; any other text messages received that appear to be from Unity are likely to be fraudulent.

If you think that you’ve been a victim of a smishing attack, do not reply to it; instead block the number and delete the message. You can also call our dedicated fraud number, freephone 0808 196 8420. By doing so you’ll also help to protect many more people from being affected.

Invoice or Push Payment fraud is commonplace across the banking industry and happens when a fraudster sends an invoice or instruction requesting a payment. They may intercept emails from legitimate organisations and alter the account details on the invoice, which may lead to money being re-directed into another account.

Organisations are also seeing an increase in fraudsters impersonating staff to redirect salary payments. The fraudster creates an email address that is a close match to the employee’s correct address and sends a request to change their bank details ahead of the next payment date.

Here’s what you can do:

  • Call for verification: If account details have changed or the payment is to an unknown beneficiary, call the organisation on a recognised number and ask them to verbally confirm the account details. Do not use the phone number on the email as this could be the fraudster’s number.
  • Improve internal procedures: Where appropriate, assign at least two people to double-check payments being made or approved.
  • Secure IT infrastructure: Ensure computers and IT systems are protected with software to prevent your organisation from being hacked and make sure you use the latest version of your internet browser with all updates installed.
  • Contact us: If something doesn’t seem right, call our dedicated fraud number, freephone 0808 196 8420.

Cheques can be manipulated into a fraudulent payment, whether it is a counterfeit cheque (a cheque created by a fraudster) or by alteration (written cheque modified by a fraudster) or a forged signature on a genuine cheque.

Here’s what you can do:

  • Don’t pre-sign cheques.
  • Use black ballpoint pen.
  • Make sure you draw a line after you have written the payee name, amount in words and amount.
  • Don’t leave any gaps before or after the numbers in the amount box to minimise the risk of a fraudster altering the cheque.
  • Keep your cheque book in a locked location and restrict access to essential staff only.
  • Periodically check that individual cheques have not been removed from the middle of the cheque book or from the computer cheque stock.

BEC is where a criminal attempts to trick an employee into transferring funds or revealing sensitive information. They often impersonate a senior employee. The criminals behind BEC send convincing-looking emails that might request unusual payments or contain links to fake websites. Some emails may contain viruses disguised as harmless attachments which are activated when opened.

Here’s what you can do:

  • Think about your usual working practices around financial transactions. If you get an email from an organisation you do not do business with, treat it with caution.
  • Look out for emails that appear to come from a high-ranking person within your organisation, requesting a payment to a particular account. Look at the sender’s name and email address. Does it look legitimate or is it trying to mimic someone you know?
  • Ensure that all important email requests are verified using another method such as text message, a phone call or in-person.
  • Does the email suggest you need to take action urgently? Be suspicious of words like ‘send these details within 24 hours’.

Social engineering is when criminals try to scam you using impersonation. Fraudsters attempt to gain your trust and  trick you into voluntarily disclosing confidential information. They often lie to construct a realistic situation to either scare you or excite you. In either case, they hope you’ll hand over your personal information and/or money.

Commonly used methods are fake phone calls, emails, web pages and messages. They might impersonate officials from trusted organisations such as banks, telecommunications companies and government agencies. They do it with the intent of convincing you to give them your sensitive personal information like account passwords.

This is when fraudsters use your identity for their own financial gain. Often these crimes remain undetected for some time, you may not even realise your information’s been stolen until a bill or welcome letter arrives for something you didn’t buy or sign up for.

Here’s what you can do:

  • Be extremely wary of unsolicited phone calls, letters or emails from your bank or other financial institution asking you to confirm your personal details.
  • If you think someone is misusing your bank account details, report it to your bank immediately.

How can I protect my organisation from fraud?

Avoid paying by cheque

When paying large amounts, it’s safer to use our standing payments or CHAPS services (charges apply). You can also register for Online Banking to use Faster Payments.

Set up dual authorisation

Where appropriate for your organisation, assign at least two people to approve online payments and set up dual authority for signing your cheques. You can set this up by updating your details.

Update fraud policies

Update your internal procedures so that everyone knows how to act if internal or external fraud is identified, and regularly train staff on fraud prevention measures.

Keep your devices secure

To stay safe when using the internet, install an anti-virus and spyware software. Ensure you keep it up-to-date and regularly updated.

Safe links to more fraud prevention advice

Take five to stop fraud logo

Take Five To Stop Fraud

Find out how to protect yourself and your organisation from potential fraud.
Action Fraud logo

Action Fraud

Stay up to date with news alerts of trending scams and report fraud.
apwg logo

APWG

The latest phishing trends to be aware of.
Gov UK Logo

GOV.UK

Learn how to safely update your web browser.

Our latest fraud blogs

The 12 Frauds of Christmas

As the festive season envelops a spirit of joy, banks face the shadowy side of holiday cheer — online fraud and Christmas scams. As a regulated […]

Cyber Security: Protect and survive

Commentary from Martin Coward, Chief Risk Officer at Unity Trust Bank. According to the Cyber Security Breaches Survey, conducted by the Department for Digital, Culture, Media […]

Top tips to protect yourself against preventable finance fraud

As technology evolves, so does the threat of cyber crimes like finance fraud. In this digital age, most of us use computers and phones to access […]

How Unity’s partnership with Elavon will benefit our customers

In September, Unity Trust Bank announced a milestone partnership with Elavon Merchant Services to offer business customers a bespoke solution for all their card and merchant […]