Beware of Reseller Hijacking: A Growing Threat to Your Business

by | Apr 9, 2024

New Threat of Reseller Hijacking

In the realm of cybersecurity, new threats constantly emerge, posing challenges to businesses of all sizes. One such new menace has emerged: reseller hijacking—a deceptive tactic that can lead to significant financial costs and operational disruptions. Recently, we encountered a troubling incident that underscores the severity of this threat, highlighting the importance of vigilance and proactive measures in safeguarding against such attacks. 

We became aware of a Quickbooks scam orchestrated by a malicious actor. The scam involved a deceptive renewal process where the threat actor, posing as a legitimate reseller, manipulated the license renewal terms. Despite the organization’s best intentions to ensure compliance and continuity, they ended up paying an inflated price for a license they didn’t actually need. 

What makes reseller hijacking particularly nefarious is that it often goes unnoticed until it’s too late. In this particular case, everything appeared to function normally, leading the company to believe they were renewing their license as usual. However, the subtle addition of extra fees and misleading prompts ultimately led to financial loss and confusion. 

Unfortunately, this experience is not an isolated incident. Reseller hijacking schemes are becoming increasingly prevalent in the IT space, targeting businesses that handle licensing and procurement independently. Without proper oversight and awareness, organizations are vulnerable to falling victim to these deceptive tactics. 

So, how can businesses protect themselves from reseller hijacking and similar threats? 

 Best Practices

  1. Vet Your Vendors: Thoroughly research and vet any third-party vendors or resellers you engage with. Look for reputable companies with a proven track record of integrity and reliability.


  1. Verify Renewal Notices: When receiving renewal notices or invoices, scrutinize them carefully for any discrepancies or unusual charges. Verify the legitimacy of the sender and the terms of the renewal before proceeding.


  1. Centralize Procurement: Consider centralizing procurement processes within your organization to maintain better oversight and control. By consolidating purchasing decisions, you can reduce the risk of unauthorized transactions.


  1. Employee Education: Educate your employees about the dangers of reseller hijacking and other deceptive tactics. Encourage them to exercise caution when handling licensing and procurement matters independently.


  1. Partner with Trusted Experts: Consider partnering with trusted IT providers who can offer guidance and support in navigating the complexities of software licensing and procurement. An experienced partner can help safeguard your business against potential threats and ensure compliance with licensing agreements.


In conclusion, reseller hijacking poses a significant threat to businesses, both financially and operationally. By staying vigilant, exercising due diligence, and seeking assistance from trusted experts, organizations can mitigate the risk of falling victim to these deceptive schemes. Don’t let your business become the next target—take proactive steps to protect your assets and preserve your reputation in the face of evolving cyber threats. If you’re ready to take the next step – let’s schedule some time to meet at