On September 19, the Beijing Daxing Tax Bureau warned companies about an increase in fake "tax audit notices". They reminded taxpayers and fee payers that fraudulent emails have been sent, prompting recipients to click on links to download materials. The tax department emphasized that they do not notify taxpayers about tax-related matters via email, QQ, or similar platforms. Financial staff should be extra vigilant and avoid opening unfamiliar web links or URLs that are not officially certified. In cases where authenticity is in doubt, financial staff are advised to verify the legitimacy of such communications through official channels, such as the 12366 tax payment service hotline. Under no circumstances should personal information be shared, as it may lead to scams.
With the constant advancement of internet technology, new types of fraud are becoming more sophisticated, posing significant risks to financial staff in China. Cases of financial personnel being deceived are not uncommon, often resulting in substantial financial losses for companies. This guide aims to help companies and their financial teams stay informed and protected against emerging fraud tactics.
Common Fraud Tactics Targeting Financial Staff
Fraud methods targeting financial personnel are continuously evolving. The most common types of fraud include:
Impersonation Fraud
Fraudsters often pose as company leaders, tax officials, or bank staff, infiltrating company email chains or workgroups (e.g., WeChat, DingTalk). They gather enough information to convincingly impersonate key figures within the organisation.
Impersonating Company Executives: Fraudsters replicate the identities of executives using similar profile images and usernames, then engage finance staff in chats where they request fund transfers or confidential information. For example, a fraudster posed as the CEO of Company A via WeChat and convinced finance staff to transfer funds to a fraudulent client account, leading to significant financial loss.
Impersonating Tax Authorities or Banks: Criminals may pose as tax officials or bank employees, claiming the need for information as part of inspections, audits, or system upgrades. For instance, fraudsters impersonated tax officials managing Company B's accounts and persuaded finance staff to transfer money under the guise of an account inspection.
Phishing Websites and Links
Fraudsters use email, SMS, or social platforms to send phishing links that appear legitimate, encouraging finance staff to enter sensitive information such as account passwords or verification codes. For example, a finance employee at Company C clicked on a link claiming to be related to online banking upgrades, resulting in stolen funds.
Trojan Virus Fraud
Fraudsters may send malicious files containing Trojan viruses through emails or chat groups. Once the file is opened, the virus can grant remote access to the computer, allowing the fraudster to steal financial data or control social media accounts. For instance, finance staff at Company D unknowingly downloaded a Trojan virus from a work-related WeChat group, leading to substantial financial losses.
Establishing Effective Fraud Response Mechanisms
Given the rising threat of fraud targeting financial staff in China, companies need to establish comprehensive emergency protocols. Here are several key mechanisms to prevent and manage fraud incidents effectively:
Emergency Reporting and Communication: If fraud is suspected, financial staff should immediately halt any operations related to the potential fraud and report the incident to the company leadership. Swift communication is essential for coordinated responses across departments. Companies should also notify law enforcement and financial institutions when necessary.
Emergency Payment Suspension: Companies should promptly contact banks to halt any ongoing payments and work to recover funds. It’s also essential to preserve evidence, such as emails or chat records, for investigation.
Risk Assessment and Response: Following any fraud attempt, companies should conduct a thorough risk assessment to understand the impact, financial loss, and any vulnerabilities. This should be followed by a detailed response plan, focusing on rectification and legal action if needed.
Internal Investigation and Rectification: Companies must investigate fraud incidents to identify weaknesses in their systems. Corrective actions may include improving internal controls, training staff, and implementing stronger financial management systems.
How to Prevent Fraud Targeting Financial Staff
Training and Awareness
Companies should ensure that financial staff receive regular anti-fraud training from tax authorities or public security agencies to stay updated on new fraud methods. This helps to improve vigilance against unfamiliar emails, messages, and calls.
Maintaining good communication between finance teams, leaders, and external partners is crucial for verifying suspicious situations and avoiding hasty decisions based on unverified information.
Strengthening Internal Controls
To minimise the risk of fraud, businesses should implement strict financial approval procedures that require multiple layers of verification for all transactions. Roles and responsibilities within financial teams should be clearly divided to prevent a single person from having full control over financial operations.
Enhancing Cybersecurity
Regular updates and maintenance of financial systems are critical to maintaining security. Companies should also install reliable antivirus software and firewalls to protect against cyberattacks, while regularly reviewing password protocols for corporate accounts.
Establishing Emergency Mechanisms
Creating a detailed emergency response plan for fraud is essential. It should clearly define the roles and responsibilities of each department, and regular drills should be conducted to ensure quick and effective action when needed.
In conclusion, preventing fraud targeting financial staff in China requires vigilance, robust internal controls, and an understanding of the evolving nature of online scams. By implementing these strategies, companies can significantly reduce the risk of financial loss due to fraudulent activities.
Woodburn Accountants & Advisors is one of China’s most trusted business setup advisory firms.
Woodburn Accountants & Advisors is specialized in inbound investment to China and Hong Kong. We focus on eliminating the complexities of corporate services and compliance administration. We help clients with services ranging from trademark registration and company incorporation to the full outsourcing solution for accounting, tax, and human resource services. Our advisory services can be tailor-made based on the companies’ objectives, goals and needs which vary depending on the stage they are at on their journey.
Talk to an expert
Schedule a 30-mins complimentary, no-obligation call to see how Woodburn can help you. Book a call with our Head of Business Advisory - Kristina Koehler-Coluccia.
Topics we can advise on include:
Company Registration
Cloud Accounting & Financial Reporting
Cloud Payroll Services
Tax & Audit Services
Recruitment
Employer-of-Record
Visa Application
Trademark Registration
Switch to Woodburn
Partner with Woodburn (cross referral)
Our calls are automatically scheduled via Zoom - or via Teams, WeChat or WhatsApp upon direct request.
Our advisory calls are available from Monday-Friday from 8am to 5pm CEST and Wednesday until 9pm CEST.