The Australian Taxation Office has recently issued an alert that cases of identity thieves have been detected who fraudulently obtain AUSkeys linked to legitimate businesses.
Once an Auskey has been allocated, access is gained to the Taxation’s Business Portal website so that fraudulent Business Activity Statements can be lodged and bank details updated to accounts that are not controlled by the entity.
The ATO said that AUSkeys detected as compromised have been cancelled and the ATO is working with the affected businesses to protect their online security and monitor activity on their accounts.
The ATO advised that businesses should take the following steps to ensure that their identity has not been compromised:
* check access manager to understand who in the business has AUSkey access and that their level of access is appropriate to their role
* remove access for employees who no longer work for the business
* check that the financial institution and contact details recorded with the ATO are correct
Call 1300 287 539 between 8.00am and 6.00pm, Monday to Friday to report any unknown or suspicious AUSkeys.