Assess Your Payment Fraud Risk

Your risk of payment redirection fraud depends on several factors. Use this guide to understand your exposure.

Risk Factors

High Risk Indicators

• Business size 50-5,000 employees - Prime target range

• Regular supplier payments - More opportunities for fraud

• International payments - Harder to recover funds

• High-value transactions - Property, construction, large B2B

• Single-person payment approval - No second verification

• Email-based payment changes - Easy to intercept/spoof

Industry Risk Levels

• Highest: Information & Communications (19% fraud rate)

• High: Utilities, Production, Administration (15-18%)

• Average: Most other industries (11%)

Quick Risk Assessment

Answer these questions:

1. Do you process supplier payments through Xero? If yes, you're a target.

2. Have any suppliers changed bank details in the past year? Each change was a potential fraud opportunity.

3. Do you verify bank changes by phone using known numbers? If no, you're vulnerable.

4. Do you require two people to approve bank detail changes? If no, single point of failure.

5. Can you prove you verified a bank change 6 months ago? If no, compliance risk.

Statistical Risk

Based on industry data:

• 70% weekly probability of BEC attack attempt (businesses under 1,000 employees)

• 11% of businesses experience fake invoice fraud annually

• 93% of UK companies targeted by fraud in past year

The Cost of Being Wrong

• Average BEC loss: $55,000 - $125,000

• Recovery rate: Only 22% recover most funds

• Small businesses lose 5% of annual revenue to fraud on average

Reducing Your Risk

OutflowGuard addresses these risk factors by:

• Detecting all bank detail changes automatically

• Requiring verification before payments proceed

• Enabling dual-approval workflows

• Creating exportable audit trails for compliance