24.10.2025 - Security alert: Fraudulent e-invoices received via Maventa (FIN)

We are issuing this alert to inform you about a security incident involving fraudulent e-invoices that were recently received through us.

Another e-invoicing operator experienced a security breach, resulting in an unauthorised entity sending fraudulent e-invoices. Our service received these invoices, which were then fetched by accounting software and sent to their end customers.

The operator was alerted to the fraudulent activity on October 22, 2025. They took immediate action, disabling all invoicing capabilities for the company in question on the same day. No further fraudulent invoices can be sent from this source. We were informed of this incident today, October 24, 2025.

The suspicious invoices were sent between October 20 and October 22, 2025.

We have identified all affected software partners and have provided them with the necessary details regarding the fraudulent invoices and the impacted customer accounts. The software partners are responsible for directly contacting the affected end-customers.

We sincerely apologize for this incident and the inconvenience and concern it has caused. Although the root cause originated with another operator, we are committed to maintaining the highest standards of security.