How To Protect Your Business Against Payroll Fraud

Employees sometimes will use their search engine (google, bing, edge) to look up the isolved login page. When this happens, a nefarious actor can direct your employee to a suspicious website that looks like the isolved login page, but is secretly a site designed to steal your employee's credentials. 

After this malware steals your employee's sensitive data, a cybercriminal will log into isolved and update the employee's direct deposit account, changing the account where their pay is deposited into to a bad account, and stealing some or all of their net pay. These changes can go unnoticed until an employee reports a missing paycheck, causing financial harm and disruption.

How to Fight Fraud and Protect Your Business

We are encouraging our clients to combat fraud before they become victims. Please see below specific ways you can help prevent fraud within your organization.

1) Notify your Employees: Send a mass email alerting employees that the only way to access Employee Self Service is to go to our trusted site:  flexchecks.myisolved.com (click Employee Logins - isolved ESS) OR download and use the isolved app.  Avoid search engines. Employees should NEVER login by googling isolved. Don’t rely on search engines like Microsoft Bing, Edge, or Google to find your login page. As above, it is preferred that you and your employees access isolved's login page directly from our website. 

2) Passkey Multifactor Authentication: Encourage employees to set up a passkey as their multifactor authentication method on their isolved account. This is the MOST SECURE form of authentication. Passkeys will not work if a webpage is fraudulent. For more information on how to do this, please see the section below.

3) Direct Deposit Approval Workflow: When an employee updates their direct deposit information via ESS, you’ll receive an email notification titled “Direct Deposit Change Request.” You will then be prompted to log into isolved to review and approve or deny the change, adding an extra layer of security. If this is something you're interested in setting up, you may OPT IN by clicking the button at the bottom of this screen or notify your CCTL that you would like to add this approval process.

4) Review the New Employee and Change Log Audit: Before processing payroll, it is extremely important to check this report in your Process Payroll screen’s preview reports. Please review the direct deposit changes sections. Be cautious of changes directing 97% or 98% of an employee’s net pay to a new account—a red flag for potential fraud. 

5) Proactive Fraud Alerts: Our ACH processor, Natpay, flags suspicious activity, such as switches to pay card accounts or deposits exceeding $1,000 to pay cards. You’ll receive Fraud Alert emails to verify these changes with your employees. Look out for these emails and verify with the changes the employee made to their direct deposits are accurate. Contact us right away if you suspect fraud.

6) Early Payroll Submission: It is very important to submit payroll by 12 PM, two business days before your check date at a minimum, to allow  our us time to address fraud alerts and stop unauthorized transactions in the event that one of these occurs.

Passkey Authentication Login Method

Traditionally, employees have used their phone number or email to receive a verification code that verifies their login attempt to isolved. Today, more secure options are available and encouraged - the most secure of which is called a passkey. 

What is a passkey?

A passkey is a password-free authentication method that uses biometric data (e.g., fingerprint, Face ID) or a device PIN, which is significantly harder to steal or hack compared to traditional passwords. Passkeys eliminate the need to remember complex passwords. They allow quick and secure access using  an employee's device’s built-in authentication methods, making it easier to log in from various devices, including mobile phones. 

Instructions to Set Up a Passkey for isolved 

• isolved Login page
  • Navigate to the isolved People Cloud login page (found on our website https://flexchecks.com/  click Employee Logins - isolved ESS)
• Initiate the Login Process:
  • Enter your username
  • Click “Continue” to proceed to the authentication step
• Select Passkey Setup:
  • After entering your username, look for the “Passkey Setup” toggle or option on the login screen
  • Select this option to begin setting up your passkey
• Verify Your Account:
  • You will be prompted to verify your account, typically via an existing authentication method such as email or SMS. Follow the prompts to complete this verification
• Set Up the Passkey:
  • Once verified, the system will guide you to set up a passkey. This will integrate with your own device’s built-in authentication method (e.g., Face ID, fingerprint, or PIN).
  • Follow the on-screen instructions to configure the passkey. For example:
    • If using a smartphone, your device may prompt you to scan your fingerprint, use Face ID, or enter your device PIN.
    • Ensure your device supports passkey functionality (most modern smartphones and computers do, such as those running iOS 13.0 or later, Android, or macOS 11.0 or later with an M1 chip).apps.apple.com
• Complete the Setup:
  • Once the passkey is configured, it will be linked to your isolved account. The next time you log in, you can select the passkey option and authenticate using your device’s biometric or PIN method
  • If prompted, you may need to confirm the setup by following additional on-screen instructions or saving the settings
• What happens if I lose my device or get a new device?
  • Contact us and our administrator can clear your existing passkey. You will then walk through the above process on your new device to set up a new passkey.

Take Action Today

Your partnership is crucial in keeping payroll secure. Together, we can stay one step ahead of cybercriminals. Thank you for trusting FlexChecks to protect your payroll. We’re here to help you navigate these challenges and keep your business safe.