Menu

Try out a few common scenarios and see how Forseti can protect you

Paying a vendor

In this scenario, we are paying a vendor who is reputable. We’ll pick on Data Pros Consulting, because we can.

In this scenario, we are receiving a check from Lydia Whiterun, an owner of the fictitious company Whiterun Furry Companions for some dog walking services. This is our first interaction with Lydia’s startup and we would like to make sure the check she wrote us won’t bounce. Other similar use cases are for student payments or other risky payees where the administrative or other costs of chasing down a bounced check just simply aren’t worth the effort you have to put into it, leaving you only with the bounced check fee.

Yes, we used Copilot to make this, and a few minutes in Paint. Pretty snazzy! Anyways, the core data you'll need are the Routing Number (011900571) and Account Number (12349060). Grab these, and then the contact info you have on Lydia.
Here's the email Forseti sent to Lydia. Lydia will click the really long link in order to open the verification app. In the example screenshots below, Lydia is using the Mastercard-backed portal she knows she can trust. Forseti will not save her credentials or actual account number, only validating them against what you entered in the Active Verification screen on step 3.
Sign in
Pick bank
Log in
Pick the account(s) to share
Confirmation

In this scenario, we are paying a vendor who we’ve worked with before. We generated this invoice below with just the Microsoft Copilot AI in 2 prompts, but emailed examples we’ve seen in 2025 can mimic every little detail perfectly.

Even government entity invoices, fine letters, and notices have been spoofed – the biggest hitter we’ve seen (so far) was a $1.1 million permit fee from a local government agency whose email server and database was hacked. The hacker saw what the emails usually looked like, and through the power of copy and paste, got a legit looking email together. They used the database to pretend to be the government entity in question when the customer called the number on the license renewal letter asking (appropriately) if it was legitimate and to prove it.

In this scenario, we are receiving a check from Lydia Whiterun, an owner of the fictitious company Whiterun Furry Companions for some dog walking services. This is our first interaction with Lydia’s startup and we would like to make sure the check she wrote us won’t bounce. Other similar use cases are for student payments or other risky payees where the administrative or other costs of chasing down a bounced check just simply aren’t worth the effort you have to put into it, leaving you only with the bounced check fee.

Yes, we used Copilot to make this, and a few minutes in Paint. Pretty snazzy! Anyways, the core data you'll need are the Routing Number (011900571) and Account Number (12349060). Grab these, and then the contact info you have on Lydia.
Here's the email Forseti sent to Lydia. Lydia will click the really long link in order to open the verification app. In the example screenshots below, Lydia is using the Mastercard-backed portal she knows she can trust. Forseti will not save her credentials or actual account number, only validating them against what you entered in the Active Verification screen on step 3.
Sign in
Pick bank
Log in
Pick the account(s) to share
Confirmation

Note: Forseti does not store the transaction amount or details, but her balance is lower than you see on the original check.

“Hi, it’s Carl. I changed banks the other day and need my paycheck for tomorrow to go to that account. I’m so sorry I waited until the last minute to reach out, I’ve been super busy. Here’s my new bank details:”

In medium to large enterprises, this is a common and often legitimate HR request that can come from a personal email – especially for 1099s. But… personal emails aren’t guaranteed to have best practices like MFA in place. And even so, MFA can be bypassed by hackers that know what they’re doing, or when a provider has a poorly validated adaptive MFA solution in place.

Either an active or a passive check would get the job done here. Passive is the least intrusive of course, but there may be cases where you need to confirm possession of the account as well, and as such would do the active check.