Security Tips

External Security Resources

Intuit Security Alerts

  • Phishing Alert for Quickbooks Customers (11/19/09)
    Intuit is receiving reports of individuals receiving fraudulent email from QuickBooks or QuickBooks Online. The emails asks customers to download a plug in to assess their security. Customers should delete this email. As we discover these fraudulent sites (cyber criminals ofen use the same email repeatedly, although they change web sites), we take them down.
  • Phishing Alert from NACHA Electronics Payments Association (11/12/09)
    Random individuals and/or companies may have received a falsified e-mail with the subject title “Rejected ACH Transaction.” This e-mail appears to be from NACHA – The Electronic Payments Association telling them that there is a problem with an ACH transaction they have originated. The e-mail includes a link which redirects the individual to a fake web page which appears to be the NACHA website and contains a link which is almost certainly an executable virus with malware.
  • Phishing Alert for Intuit Payroll Customers (10/30/09)
    Some customers received an email from "Intuit Online Payroll" about updating security features by clicking a link and signing into their payroll service.
  • Quickbooks ActiveX Controls (10/26/09)
    QuickBooks 2009 and older Security Issue Related to ActiveX: We’ve recently released a fix to address a potential security vulnerability within QuickBooks. The issue was related to the use of ActiveX technology in some versions of QuickBooks. On learning about the issue, we fixed the problem, tested the fixes within the identified versions of the software, and have released updates that will address the vulnerabilities. We are unaware of any customers affected.
  • Fraudulent Emails (9/16/09)
    Intuit’s name is being misused in fraudulent emails sent to Quickbooks Online and Intuit Online Payroll users.
  • Fraudulent Job Postings (6/22/09)
    Intuit’s name is being misused in a series of fraudulent classified advertisements under various headings, including “Treasury Finance & Payroll.”
  • Conficker Worm (3/30/09)
    Conficker is a worm which can exploit systems that are not protected. It is set to "call home" on April 1, 2009. Because of the unknowns associated with this worm, Intuit feels it is vital to update our customers and help them protect their information
  • P2P File Sharing (3/3/09)
    Intuit is committed to helping people protect their personal and financial information and is continuing to advise consumers that using file sharing software can lead to certain, unintended risks, including unknowingly and inadvertently sharing sensitive, personal information.
  • Coreflood Virus (2/16/09)
    Intuit has learned about malicious software called the Coreflood virus. This virus steals log in credentials and other sensitive information.

Recent Intuit Security Alerts

All alerts

Contact Security