The ATO is warning business owners to monitor and review who has AUSkey access to their ATO business portal. They’ve made the call after detecting a number of cases where identity thieves have used fraudulently obtained AUSkeys to lodge fraudulent BAS and receive returns to altered bank accounts.
They recommend business owners take the following steps to protect their business and ensure their AUSkey has not been compromised:
- Check the ATO AUSkey access manager to understand who has AUSkey access within their business
- Remove AUSkey access for former employees
- Check that your bank account and contact details recorded with the ATO are correct and have not been changed
- Report unknown or suspicious AUSkey access to the ATO on 1300 287 539 (8am to 6pm Monday to Friday)