Keeping safe online is very important
We're aware of the increasing number of phishing scams that are targeting the customers of banks and other large companies.
A phishing scam is when malicious emails target customers by pretending to be from a legitimate company such as Xero, using an email address like email@example.com. They're not targeting the company websites, but rather your login and access details.
Phishing scam targeting Xero users
Xero has not been compromised in any way, and your important data is very safe. Xero works with their phishing protection service to analyse any phishing campaign and take down the websites used.
Recent phishing emails (emails that did not come from Xero) have subject lines like:
- Subject: Credit Note CN-87151 from ...
- Subject: ACH Approval Letter
- Subject: Invoice INV-...
Emails like this contain malicious content such as viruses. If you've received one, don't open it - and if you do open it, don't click any links or attachments. Delete the email. If you're ever concerned you've received a phishing email or one that pretends to come from Xero please forward it to firstname.lastname@example.org.