How to identify fake invoices and protect your cashflow from fraud

CREATED BY ROGER EDDOWES Published: 19/03/2026 @ 09:00AM #HowToIdentifyFakeInvoices #InvoiceFraud #AccountsPayable #CyberSecurity #FraudPrevention #BusinessFinance

This week's blog post is a guide on how to identify fake invoices. They always show the small clues that catch big scams. I'll cover verification habits, process controls, and what to do if money has already moved. Think practical, calm, and designed for real finance teams ...

How to identify, Fake invoices hiding lies, Watch for tell-tale signs

Most fraud losses don't start with a dramatic breach; they start with a believable email and an invoice that looks good enough to pass inspection. It's happened to a couple of my own clients, so knowing how to identify fake invoices is less about paranoia and more about disciplined verification. Invoice fraud succeeds when busy finance teams don't pay attention.

A common pattern is the criminal who imitates
a real supplier and relies on your routine!

The email message lands in a finance inbox, the branding looks familiar, and the amount feels plausible for a normal business payment. Sometimes it is framed as a 'corrected' invoice, a late reminder, or even a “quick re-send”, which is exactly the sort of context that encourages someone to process it without re-checking the underlying facts.

When businesses talk about fake supplier scams, they often focus on the invoice alone, but the real trick is usually identity.

Fraudsters lean on lookalike email addresses, subtle domain changes, and convincing signatures, then pair that with a bank detail change that feels administrative rather than alarming. Anyone learning how to identify fake invoices should treat the phrase, “Here are our new bank details”, as a high-risk event, even when everything else looks tidy.

Inside the invoice, the giveaways can be
surprisingly mundane!

Duplicate invoice numbers, odd spacing, inconsistent fonts, a logo that seems slightly off, or a registered address that does not match what is already on file. The description can also be strategically vague, because vagueness is harder to challenge than specifics; this is why understanding how to identify fake invoices includes reading the line items, not just matching the totals.

Accounts payable fraud often hides in the seams between documents rather than in any single document. A purchase order might exist, but the quantities differ; a delivery note might be missing; a contract might specify one VAT treatment, and the invoice uses another.

Three-way matching is not “box-ticking” when done properly; it is the mechanism that forces a story to remain consistent across records.

Timing and behaviour can be as revealing as formatting. Phishing invoices frequently arrive with urgency, confidentiality, or a request to bypass normal approval, because pressure is the lever that replaces evidence. If a sender pushes back on verification or tries to keep the request “just between us”, the right response is to slow down, because speed is the fraudster's preferred control environment.

The safest verification method is boring by design!

I always recommend that you confirm supplier identity and bank details using trusted contact information already held in your business systems, not the phone number or email provided on the invoice. This is the point where you win or lose, because a callback to a known number breaks the illusion immediately. When I teach my team how to identify fake invoices, this single habit is often the most valuable lesson.

Process design matters because good people still make mistakes under load. Segregation of duties reduces the chance that one compromised mailbox or one rushed decision can move money, and it also reduces insider risk. Duplicate invoice checks and sensible limits on manual overrides keep accidents from becoming repeated losses, which is why controls should be treated as part of day-to-day productivity, not as friction.

If you're at all suspicious, the best move is to pause processing and create clarity. Evidence should be preserved, internal escalation should be straightforward, and the invoice should be checked against the supplier record and the underlying commercial reality.

If a payment has already gone out, contact your bank immediately and escalate internally at once, because the chances of recovery drop with every hour.

Training is not about turning your finance team into detectives; it is about building a shared baseline for what 'normal' looks like, so anomalies stand out early. Periodic reviews using simple analytics can also reveal repeat patterns, duplicate payments, or strange clustering just below approval thresholds, all of which can indicate fraud that has slipped through.

Learn how to identify fake invoices without
creating a culture of fear!

When you encourage your team to pause a payment to double-check, you protect your cashflow, preserve supplier trust, and reduce the space in which invoice fraud, phishing invoices, and fake supplier scams can operate.

A single rushed business payment can become an expensive lesson, so it's important to learn how to identify fake invoices.

It's a practical skill worth making routine.

Until next time ...

ROGER EDDOWES
Join our mailing list! Click here and be one of the first to know when we publish a new blog post!

Share the blog love ...

Buffer Facebook Twitter Linkedin Pinterest WhatsApp #HowToIdentifyFakeInvoices #InvoiceFraud #AccountsPayable #CyberSecurity #FraudPrevention #BusinessFinance

About Roger Eddowes ...
Roger trained at Edward Thomas Peirson & Sons in Market Harborough before working at Hartwell & Co, followed by Chancery, as a partner. He started Essendon Accounts and Tax with Helen Beaumont in 2014 as a general practitioner with a hands-on approach. Roger loves getting his hands dirty, working with emerging, small-to-medium and family businesses to ensure they receive the best possible accountancy advice. Roger utilises an extensive network of business contacts to leverage the best guidance and practical solutions.

More blog posts for you to enjoy ...
		HMRC vs giant marshmallows: are they confectionery or fire-toasting food? The ongoing giant marshmallow case has finally concluded, with HMRC deciding not to appeal. The VAT dispute hinges on whether these oversized treats are confectionery or fire-toasting food, and the ruling suggests that size a...
		HMRC reminds businesses to register for VAT on time HMRC is reminding businesses to check whether they need to register for VAT, especially when turnover is close to the VAT threshold. Some firms may still be outside the rules, so it pays to review the facts before acting ......
		Further guidance released on the summer holiday VAT reduction for families As the temporary 5% VAT rate for children's meals and selected family attractions approaches, HMRC and HM Treasury have issued further guidance to help businesses and families understand how the relief will operate in practic...
		Late Payments Bill gains momentum for small businesses The Late Payments Bill is progressing through Parliament, and small businesses may finally receive stronger protection against slow payers. It introduces tighter payment terms, firmer enforcement, and greater pressure on larg...
		Phishing remains the most prevalent form of cyberattack Cybersecurity continues to be a growing concern for businesses, with new government research confirming that phishing remains the most common type of cyberattack affecting organisations across the country ......
		New tax return rules for company directors create uncertainty The new tax return rules for company directors aim to improve reporting but also cause confusion. Directors and traders must provide more detail in their self-assessment returns, yet HMRC guidance leaves gaps. Many will wait ...
		Summer holiday VAT reduction for families: what it means for days out The Chancellor has announced a summer holiday VAT reduction for families, which may ease the pressure a little on meals, tickets and family days out. The catch is that the rules are narrow, the window is short, and businesses...
		HMRC mileage rate increased to 55p on the 6th April 2026 On the 6th April 2026, HMRC increased the approved mileage rate to 55p per mile for the first 10,000 business miles. It's a helpful change for employees and the self-employed, and it may be worth reviewing reimbursements, pay...

Other bloggers you may like ...
		Joyce Vincent: the sad story that shocked Britain Posted by Steffi Lewis on https://www.yourping.uk The tragic story of Joyce Vincent still resonates across Britain because it exposed an uncomfortable truth about modern life. In one of the world's bu ...
		Sometimes you need to stop being the bee and become the honey instead Posted by Davina Farrer on https://blog.joindavina.co.uk For a long time, I've had my eyes firmly fixed on my next promotion at the utility company I work with. It's still something I want to achieve, but so ...
		Spending billions on AI startups: A Disturbing Trend in Valuations Posted by Pritesh Ganatra on https://blog.btsuk.net The madness of spending billions on AI startups raises alarm over staggering valuations and the implications for society. Many of these companies focu ...
		The three pillars of YourPCM: organise, discover and reach out Posted by Steffi Lewis on https://www.yourpcm.uk For many small business owners, managing contacts and finding new opportunities can quickly become overwhelming. Spreadsheets multiply, business cards ...