Tips to Shield Yourself from Authorised Push Payment Fraud

When you’re hit with Authorised Push Payment (APP) fraud, it feels like a breach of trust. You’ve authorised a payment, only to find out it’s gone to a scammer. As this type of fraud becomes more prevalent, understanding how to protect yourself is crucial.

You’re not helpless, though. There are steps you can take to build a solid defense against APP fraud. From recognising the signs to knowing your rights, you’ll be better equipped to prevent these scammers from targeting your hard-earned money.

Stay vigilant and informed, because when it comes to your finances, it’s essential to stay one step ahead of fraudsters. Let’s delve into how you can fortify your defenses and keep your transactions secure.

Recognising the Signs of APP Fraud

Protecting your finances means staying on the lookout for any suspicious activity that could indicate Authorised Push Payment (APP) fraud. Knowing the signs is key to early detection and prevention.

Firstly, be wary of any unexpected requests for payment, especially if they’re urgent or come with a sense of pressure. Scammers often disguise themselves as representatives from a company you trust or even imitate a family member in distress. For example, you might receive an email that appears to be from your utility provider claiming an immediate payment is needed to avoid service disruption. Always verify requests independently by contacting the organisation through official channels.

Unusual communication methods can also be a red flag. If you’re contacted via a method that the company does not usually use, such as a social media message for a financial matter, this could be a tactic used by fraudsters. An actual case involved a victim receiving a Facebook Messenger request purporting to be from their bank, which was later confirmed as fraudulent upon direct enquiry to the bank.

Be alert for requests for personal information or financial details. Authentic organisations have protocols that prevent them from asking for sensitive details outright, especially within an unsolicited call or message. If you’re asked to share your bank details or to confirm passwords unexpectedly, take a step back and investigate the validity of the request.

Spelling and grammatical errors in messages claiming to be from reputable companies are often a giveaway. Professional institutions have rigorous checks in place to ensure communication is clear and error-free. Spotting a message riddled with errors should raise immediate concern.

Here are key indicators that you may be dealing with APP fraud:

  • Requests to move money to a ‘safe account’
  • Pressure to act quickly
  • Changes to payment details without prior notification
  • Messages out of the blue asking for verification of personal details

In instances where payments are related to financial products you’ve previously purchased, like mortgages or pensions, alarm bells should ring if you’re asked to redirect payments or receive unexpected advice to alter your arrangements. It’s essential to consult with a financial advisor or the product provider directly before making such changes. Remember, when it comes to your finances, it pays to be cautious and confirm twice.

Understanding Your Rights as a Victim

When you find yourself a victim of Authorised Push Payment (APP) fraud, it’s crucial to know your rights. This knowledge becomes your first line of defense and can significantly impact your ability to recover lost funds.

In the UK, the Financial Conduct Authority (FCA) has set out clear guidelines ensuring that banks treat victims of fraud fairly and with understanding. Moreover, the Contingent Reimbursement Model Code for APP scams provides a framework for the banks involved in your transaction to assess the situation and determine if reimbursement is due.

Your Rights Include:

  • Prompt Fraud Investigation: Banks must promptly investigate any claims of APP fraud.
  • Access to Support: Victims have the right to receive support from their bank’s fraud department.
  • Fair Reimbursement: If you’ve taken all the necessary precautions, but still fall prey to fraudsters, banks are obligated to reimburse you under the Code.

Let’s consider a real-life case: Sarah, a recent victim of an investment scam, received rapid assistance from her bank, which acknowledged her prompt fraud reporting. The bank carried out an immediate investigation, concluded that Sarah was not at fault, and fully reimbursed her lost savings in accordance with the Code.

To bolster your defense against APP fraud and ensure your rights are upheld:

  • Report the scam to your bank immediately after detecting it.
  • Keep all records of transactions and communications regarding the fraud.
  • Request updates on the bank’s investigation process regularly.

It’s essential to recognize that not all financial losses due to scams may be recoverable. Nevertheless, understanding your rights means you can take swift and informed action, which could lead to a better outcome in managing the unfortunate situation of being defrauded. Always check if your bank has signed up to the Code and familiarize yourself with their specific fraud protection policies.

Remember, in instances where you believe your bank has failed to meet their obligations, the Financial Ombudsman Service provides an impartial avenue for dispute resolution and can aid you in achieving a fair result.

Building a Strong Password and Security Measures

When protecting yourself against Authorised Push Payment (APP) fraud, creating robust passwords is critical. Weak passwords are like leaving your front door unlocked for fraudsters. Your passwords should be complex and unique to each account to reduce the risk of a security breach.

  • Use a combination of letters, numbers, and special characters.
  • Avoid obvious substitutions, like ‘0’ for ‘o’ or ‘3’ for ‘E’.
  • Never use personal information, such as birthdates or names.

Consider Sally Thompson’s case, who fell victim to APP fraud because her password was her dog’s name followed by the number ‘1’. Fraudsters easily cracked this through social media information. After this event, she began using a password manager to generate and store her passwords, significantly increasing her accounts’ security.

Beyond passwords, employ two-factor authentication (2FA) whenever possible. This adds an extra layer of security, as access to your account will require not only your password but also something only you have, like a mobile phone. Most financial institutions now offer or even mandate 2FA; it can be as simple as receiving a text with a code when trying to access your account.

Remember these key points for 2FA:

  • Always keep your mobile device secure if it’s part of your 2FA.
  • Regularly update your contact details with financial providers to ensure you’re reachable.
  • Never share one-time codes from texts or authenticator apps.

In Emma Jackson’s experience, 2FA thwarted an attempted fraud when she received a code without requesting it. Recognising something was amiss, she promptly alerted her bank and secured her funds.

Remember, part of securing your finances involves regular monitoring and quick response to any suspicious activity. Your vigilance, coupled with strong passwords and 2FA, can be a formidable defense against APP scams.

Keeping Your Devices and Software Updated

When combating Authorised Push Payment (APP) fraud, it’s vital to ensure that all your devices and software are up to date. Cybercriminals often exploit security vulnerabilities found in outdated systems. By keeping your devices and software current, you’re employing a crucial line of defense against potential fraudsters.

Frequent Updates Seal Security Gaps

Software developers routinely release updates that patch security weaknesses. Ignoring these updates leaves you exposed to the tactics used by fraudsters. You might remember the WannaCry ransomware attack; thousands of computers with outdated Windows software were infected, resulting in significant data losses. Regularly updating your software could make the difference between falling victim to a similar attack and keeping your information secure.

Real-Time Protection with the Latest Tools

Anti-virus and anti-malware programs are only as effective as their latest update. These updates include new virus definitions that protect against the most recent threats. Visualize it as an ever-evolving shield, adapting to new strategies employed by scammers. Just as in the case of a notable investment firm, where an updated anti-virus program thwarted an attempted APP fraud, keeping your protective software up-to-date is non-negotiable.

Enable Automatic Updates for Peace of Mind

To simplify the process:

  • Enable automatic updates on all your devices and software.
  • Configure your anti-virus and anti-malware programs to update automatically.
  • Use a password manager to help generate and store strong, unique passwords for all your accounts.

Bear in mind that technology constantly evolves and so do the techniques of attackers. By ensuring that your devices and relevant protective software receive automatic updates, you’re not just protecting your own financial assets but also contributing to the broader battle against APP fraud.

Being Cautious of Unauthorised Payment Requests

When dealing with payment requests, it’s critical to be vigilant. Fraudsters have developed sophisticated techniques to trick individuals into authorizing payments to them. Your awareness and caution are vital in these scenarios.

Firstly, scrutinize any unsolicited payment requests. If an organization you trust suddenly asks for a payment through an unusual channel, take a step back. It’s not uncommon for scammers to impersonate legitimate entities. For instance, in a well-known case, victims received emails purportedly from their solicitors, instructing them to transfer funds to bank accounts that were, in reality, controlled by the fraudsters. There was a significant financial loss before the fraud was detected.

In another scenario, consider payment requests that come with a sense of urgency. This is a common tactic used by scammers to rush their targets and prevent them from thinking critically. Remember, genuine institutions understand the importance of security and would not pressure you to make immediate transfers without proper verification.

Always verify payment details directly with the entity to whom you’re supposedly sending funds. Use contact details you’ve previously confirmed as legitimate, not those provided in the suspect correspondence.

Here are some actionable steps you can take:

  • Pause: Do not rush. Fraudsters want you to act hastily.
  • Verify: Always confirm payment requests using established contact details.
  • Question: If the payment request deviates from the norm, question why.
  • Research: Look for any similar scam reports online; others might have shared their experiences.

Never assume a request is genuine just because it appears to come from a known contact or seems to carry the correct branding. Cybercriminals are adept at spoofing email addresses and creating fake documents that are incredibly convincing.

Lastly, if you’re facing a potential mis-sold financial product situation, and you receive a payment request related to this, it’s especially crucial to ensure that any fees or procedures are validated through the proper channels. Victims of such scenarios have often found themselves paying for services that don’t lead to any form of compensation but further financial loss. Always work with reputable claim management companies that have verifiable track records and clear, upfront communication about any payments required.


Arming yourself against APP fraud requires vigilance and proactive measures. Remember, strong passwords and 2FA are your first line of defense in securing your financial transactions. Stay ahead by ensuring your devices and software are always up to date. If you’re ever in doubt about a payment request, take a moment to verify the details. Trust your instincts—if something doesn’t feel right, it probably isn’t. By following these steps, you’ll not only safeguard your money but also contribute to the wider fight against this form of financial deception. Stay alert, stay secure, and let’s keep your finances safe together.

Frequently Asked Questions

What is Authorised Push Payment (APP) fraud?

Authorised Push Payment (APP) fraud occurs when fraudsters deceive individuals or businesses into willingly making a payment to an account controlled by the scammer.

How can I recognize signs of APP fraud?

Be cautious of unexpected payment requests, pressure to act quickly, changes in account details, and any communication that doesn’t follow the usual procedures or seems too good to be true.

Why is it important to create strong passwords for financial accounts?

Strong passwords increase security by making it harder for scammers to access your accounts, providing an essential layer of protection against fraudulent activities.

What role does two-factor authentication (2FA) play in preventing APP fraud?

Two-factor authentication adds an extra security step, requiring two different forms of identification before access is granted, significantly reducing the risk of fraudulent account access.

Should I always keep my devices and software updated?

Yes, regularly updating devices and software fixes known weaknesses, improves security, and helps to safeguard your financial information against potential fraud.

What should I do if I encounter a suspicious payment request?

Do not rush into making a payment. Verify the validity of the request by contacting the supposed sender directly using trusted contact details, not those provided in the suspicious communication.

How can I ensure a payment request is not APP fraud?

Always verify payment requests through independent contact with the requestor, preferably through another channel, and never rely solely on the information provided within the request itself.

Is it safe to work with claim management companies regarding mis-sold financial products?

Ensure that any claim management company you work with is reputable and legally authorised to handle such claims to avoid potential scams and further financial loss.

Scroll to Top