Business cyber safety guide

Invoice Bank Details Changed: What to Do Before Paying

Changed invoice bank details should be treated as a pause-and-verify moment, even when the invoice looks familiar.

Quick answer: stop and verify using a trusted contact method before you pay, approve, reply or ignore warning signs.

Your IT & Tech Mates guide for Australian small businesses checking changed invoice bank details before paying a supplier invoice.
Your IT & Tech Mates guide for Australian small businesses checking changed invoice bank details before paying a supplier invoice.

Fast decision

PauseDo not rush payment or approval.
VerifyUse a known contact method.
RecordKeep a short evidence note.
EscalateAsk for help if risk remains.

What this means for a small business

Changed invoice bank details should be treated as a pause-and-verify moment, even when the invoice looks familiar.

Most business cyber problems become expensive when a normal-looking request is handled too quickly. A safer process gives staff permission to pause, check the source, and ask for help before money, access or sensitive information is exposed.

This guide uses fake examples only. It is designed to help you prepare a safer next step, not to collect private records or replace professional investigation.

Warning signs to check

  • The invoice has new BSB or account details.
  • The email says payment is urgent or overdue.
  • The sender address, signature or tone has changed.
  • The supplied phone number is inside the suspicious invoice or email.

What to do now

  • Pause payment until the change is verified.
  • Call the supplier using a known number you already trust, not the number in the email.
  • Record who verified the change, when, and which trusted contact method was used.
  • Use a second-person approval for large payments or new bank details.
Safe next stepUse the related free tool to turn the warning signs into a plain-English action note for your business.

What not to do

  • Do not pay just because the invoice design looks familiar.
  • Do not verify by replying to the same email thread.
  • Do not use phone numbers or links supplied in the changed invoice email.
Money already sent?Contact your bank immediately. Then save the email, invoice, payment and verification details for review.

Related Business Cyber Safety links

FAQ

Is this a formal cyber audit?

No. This is a practical self-check guide, not a formal audit, investigation, certification or guarantee.

Should I share passwords or login codes?

No. Do not share passwords, login codes, banking passwords, card numbers or private customer records through this guide.

What if money has already been sent?

Contact your bank immediately. Then collect the invoice, email details and verification notes for review.

Updated