payroll Archives | Wheeler Accountants, LLP

Payroll Fraud Threats Inside and Outside Your Company

Hacker set against a green map of the world in binary code.

Payroll fraud schemes can be costly. According to a 2024 Association of Certified Fraud Examiners (ACFE) study, the median loss generated by payroll fraud incidents is $50,000. It’s essential to know the payroll schemes making the rounds and how to prevent them or at least catch them before they go on very long.

Common Threats

Here are brief descriptions of some common payroll fraud threats:

Ghost employees

Perpetrators add made-up employees to the payroll. The wages of these “ghost employees” are deposited in accounts controlled by the fraudsters.

Excessive Payments

Here, employees receive overtime pay by inflating their work hours.

Payroll diversion

Cybercriminals use phishing emails to trick employees into providing sensitive information, such as bank login credentials. This becomes a form of payroll fraud when they divert payroll direct deposits to accounts they control. Crooks might also target employers by sending them fake emails from “employees” requesting changes to their direct deposit instructions.

Expense reimbursement fraud

Employees receiving expense reimbursements might inflate their expenses, submit multiple receipts for the same expense, or claim nonexistent expenses. When perpetrated by employees, this is related to payroll fraud because reimbursements are often added to paychecks.

6 Strategies for Preventing or Uncovering Payroll Fraud

Preventing payroll fraud and uncovering it quickly, if it still occurs, requires strong internal controls. Here are six strategies to strengthen your defenses:

Require two or more employees to make payroll changes, such as pay rates or adding or removing employees.
Flag excessive or unusual pay rates, hours, or expenses using exception reporting.
Closely monitor employee expense reimbursement requests. Notify employees when discrepancies are found and require corrections.
Regularly conduct payroll audits to detect anomalies.
Audit automatic payroll withdrawals to confirm proper transfers are made.
Allow changes to direct deposits only via email confirmation, requiring employee approval before processing. For example, ask the employee to verify that he or she requested the change.

In addition to employing fraud prevention strategies, educate employees about payroll schemes, phishing attacks, and the importance of not sharing sensitive information via email. According to the 2024 ACFE study, the median fraud loss for victim organizations that provided fraud training to executives, managers and employees was roughly half the loss reported by organizations without training programs.

Payroll Fraud Is Widespread

Payroll fraud can threaten businesses of all sizes and industries. Your organization can mitigate the risk by understanding the forms of payroll fraud and implementing robust internal controls, frequent audits and employee training.

408-252-1800

Contact Us

Photo by Jack Moreh from Freerange Stock.

Could You Be Hit with the Trust Fund Recovery Penalty?

If you own or manage a business with employees, you could be personally responsible for paying a harsh tax penalty. It’s called the Trust Fund Recovery Penalty (TFRP). It applies to the mishandling of Social Security and income taxes that must be withheld from employees’ wages.

These taxes are government property employers collect and hold in “trust” for the government until payment. If the funds aren’t properly handled, the IRS can impose a TFRP equal to 100% of the unpaid taxes on each responsible party. Consequently, the penalty amounts can be significant.

A Penalty with a Long Reach

The TFRP is among the more dangerous tax penalties not only because it’s large but also because it applies to many actions and people involved in a business, and historically, the IRS has aggressively enforced it. Here are some questions and answers to help avoid incurring the penalty:

What actions are penalized?

The TFRP applies to willful failures to collect or truthfully account for and pay over Social Security and income taxes required to be withheld from employees’ wages.

Who’s at risk?

The IRS can impose the 100% penalty on anyone “responsible” for collecting and paying taxes. This includes corporate officers, directors, shareholders, partners and employees with such duties. Even voluntary board members of tax-exempt organizations may be liable under certain circumstances. Sometimes, responsibility has been extended to family members close to the business, attorneys and accountants.

How is responsibility determined?

Responsibility depends on status, duty and authority. Anyone with the power to ensure taxes are paid can be held liable. Multiple people within a business can be deemed responsible, and each is at risk of a full penalty. If you know unpaid payroll taxes exist and have the authority to pay them but prioritize other payments instead, you could be deemed a responsible person.

While a taxpayer held liable may sue others for contribution, this must occur after paying the penalty in full. Such lawsuits are entirely separate from the IRS’s collection process.

Definition of “Willful”

Willful actions don’t require intent to evade taxes. The IRS defines “willfully” as knowingly prioritizing other expenses over withheld taxes. For example, bending to pressure to pay other bills instead of taxes is considered willful behavior.

Delegating actual tax responsibilities is no defense. Failing to deal with tax tasks can also be deemed willful.

“Borrowing” is Never an Option

Under pressure, it may be tempting to “borrow” from a tax withholding fund to pay an urgent expense. But don’t do it. The importance of paying all funds withheld from employee paychecks over to the government can’t be understated. Failure to pay can result in multiple people owing the hefty 100% TFRP, including people who didn’t realize they were considered responsible. Contact the office with any questions.

408-252-1800

Contact Us

Photo by Andrew_Pons from Freerange Stock.

Business Owner payroll payroll tax trust fund recovery penalty

4 ways corporate business owners can help ensure compensation is “reasonable”

If you own a C corporation, you know there’s a tax advantage to taking money out as compensation rather than as dividends. The reason: A corporation can deduct the salaries and bonuses that it pays executives, but it can’t deduct dividend payments. There’s no simple way to determine what’s reasonable.

Business Owner compensation payroll small business

Small Business: Choosing a Payroll Service Provider

When choosing a payroll service provider to handle payroll and payroll tax, employers should choose a trusted payroll service to help them avoid missed deposits for employment taxes and other unpaid bills. Typically, these clients remain legally responsible for paying the taxes due, even if the employer sent funds to the payroll service provider for required deposits or payments.

Employers are encouraged to enroll in the Electronic Federal Tax Payment System (EFTPS) and make sure the payroll service provider uses EFTPS to make tax deposits. EFTPS is free and gives employers safe and easy online access to their payment history, provided they make deposits under their Employer Identification Number (EIN). Using the EFTPS enables them to monitor whether their payroll service provider meets its tax deposit responsibilities.

Employers have two options when finding a trusted payroll service provider:

A certified professional employer organization (CPEO). Typically, CPEOs are solely liable for paying the customer’s employment taxes, filing returns, and making deposits and payments for the taxes reported related to wages and other compensation. An employer enters into a service contract with a CPEO, and then Form 8973, Certified Professional Employer Organization/Customer Reporting Agreement, is submitted to IRS. Employers can find a CPEO on the Public Listings page of IRS.gov.
Reporting agent. A reporting agent is a payroll service provider that informs the IRS of its relationship with a client using Form 8655, Reporting Agent Authorization, that the client signs. Reporting agents must deposit a client’s taxes using the Electronic Federal Tax Payment System (EFTPS) and can exchange information with the IRS on behalf of a client if issues arise. They are also required to provide clients a written statement reminding the employer that it, not the reporting agent, is ultimately responsible for the timely filing of returns and payment of taxes.

Employers should contact a tax professional about any bills or notices received, especially payments managed by a third party. They can also call the phone number on the bill, write to the IRS office that sent the bill, or contact the IRS business tax hotline at 800-829-4933.

Most payroll service providers provide quality service, but some don’t. Each year, a few payroll service providers don’t submit their client’s payroll taxes, close down abruptly, and leave employers on the hook.

Don’t get caught short. Choose a payroll service provider you can count on – and don’t hesitate to call the office with any questions about payroll and other business-related taxes.

San Jose: (408) 252-1800

Watsonville: (831) 726-8500

payroll payroll service provider small business