Fraud Alert: New Tools for Payroll Protection

Just last month, a massive breach exposed 16 billion login credentials, spanning major platforms like Apple, Google, and Facebook—raising the risk of account takeovers and payroll fraud across industries. With stolen credentials on the rise, fraudsters are increasingly targeting direct deposit changes within payroll systems. isolved has responded with new security tools and recommendations to help employers stay ahead.

isolved’s latest fraud prevention tools:

• Email alerts for suspicious account or direct deposit changes
• High-risk routing number detection, flagging banks commonly tied to fraud
• Option to elect specific users to receive fraud alerts about your account
• New login security level options launching July 25, 2025
– Employers can now require stronger multi-factor authentication (MFA) for admin users and employees

MFA security levels now available:

• Low security: Passkey, Authenticator App, SMS, Email (least secure – not recommended)
• Medium security: Passkey, Authenticator App, SMS
• High security: Passkey and Authenticator App (recommended)

Best practices to reduce risk:

• Always review the New Employee and Change Audit Report before each payroll
• Watch for direct deposit changes that redirect 98% or 99% of net pay
• Scrutinize the email address of anyone requesting changes on behalf of employees
• Make sure workflow approvals and employee notification emails are enabled for direct deposit changes

Taking proactive steps now is the best way to protect your business and your team from costly, preventable fraud events. Questions? Talk to your Payroll Specialist about activating fraud alerts and enhanced login protections today.