It is always important to ensure the security of your business when using online software such as Xero. The risk of cyber security attacks is ever increasing. To help you manage your business we’ve provided 7 ways to protect your Xero and other online accounts to best protect yourself.
1. Check that malware has not been installed on your computer or any computers you use. You can do this by ensuring you have the latest security software. Update your anti-malware (anti-virus, anti-spyware) and run a full scan on your computer.
2. Reset your Xero and email password. Please don’t use a password that you’ve previously used for Xero or any other application and don’t share your password with anyone. Use a strong password that is at least 8 characters long and includes upper- and lower-case letters, numbers and special characters. We also recommend that you disable your password autosave in your browser.
3. Turn on multi-factor authentication (MFA). You can do this by going to your Account Settings page in Xero and following the multi-factor authentication setup process.
4. It is also recommended to change your email password and setting up MFA on your email, if available.
5. If you see any suspicious activity in your Xero account, notify Xero immediately. We recommend immediately contacting any affected organisations as well as your bank to let them know what has occurred. We recommend contacting your other clients to confirm that they have the correct bank account details.
6. If your client has made a payment to a fraudulent bank account, we recommend they contact their bank immediately and request a ‘Direct Credit Recovery’ to recover any lost funds.
7. Use secure links when sending invoices to clients, instead of attaching PDF invoices. Alternatively, send the invoices straight from Xero.
If you need further assistance, please contact Xero. We have included links below to Xero support articles with steps on changing your password and setting up MFA.