Email and account warning signs
Check two-step login, old access, mailbox rules, unexpected login prompts and suspicious sent mail.
Plain-English checks to help small businesses protect email accounts, invoice payments, supplier changes and staff cyber habits.
Use these tools before you pay an invoice, approve changed supplier bank details, ignore an email warning sign or let risky staff access continue.

Start with the situation that matches your business today.
Someone sent new bank details on an invoice. Check what to verify before paying.
Business Email Safety CheckReview business email, two-step login, old access and mailbox rule warning signs.
Supplier Payment Change CheckVerify supplier payment changes before money is sent or saved payment details are updated.
Microsoft 365 Account Safety CheckSpot warning signs that a Microsoft 365 account may need admin review.
Staff Cyber Safety ChecklistSimple staff habits for suspicious email, login prompts, payments and reporting.
Small Business Cyber Safety Self CheckReview broader cyber basics: logins, backups, updates, access and safer devices.
Check two-step login, old access, mailbox rules, unexpected login prompts and suspicious sent mail.
Pause before paying when bank details or supplier payment instructions change.
Give staff clear steps for when to stop, verify and escalate suspicious business requests.
Use consumer and community scam guides when the issue looks like a scam message, fake invoice or payment redirection attempt.
Review broader cyber basics for two-step login, backups, updates, admin access and safer devices.
Prepare plain-English evidence notes for insurers, tenders, suppliers or client cyber questions.
Use these guides with the free tools so every page follows the same header, footer, CSS style and cross-link pattern.
If a business email account is misused, customers, suppliers and staff can be tricked into paying fake invoices or trusting false instructions.
Changed invoice bank details should be treated as a pause-and-verify moment, even when the invoice looks familiar.
Supplier payment changes should be verified through a known contact method and recorded before business payment details are updated.
A Microsoft 365 account issue may show up as strange login prompts, missing emails, new rules or messages staff did not send.
A simple staff checklist helps everyone know when to stop, check and ask before approving risky emails, login prompts or payment changes.
Fake invoice scams often work because they look normal, arrive at busy times and use urgency to push payment before checking.
When business email may be hacked, the first aim is to secure access, preserve evidence and warn people who could be affected.
Two-person approval makes supplier payment changes harder to rush, fake or approve by mistake.
Your IT & Tech Mates can help review business email settings, payment-change processes, supplier verification steps and staff cyber safety habits.