Ghost Suppliers in Xero: How to Find and Remove Them

Australian businesses reported $91.6 million in payment redirection scam losses in 2023, according to the ACCC Targeting Scams report. That number matters for anyone managing suppliers in Xero, because many losses begin with a simple question: are we sure this supplier record is legitimate?

Ghost suppliers in Xero are not always dramatic fraud schemes. Sometimes they are old contacts, duplicates, unverified one-off vendors, or supplier records created years ago and never reviewed again. The risk is that a messy supplier file gives fraud, error, and rushed payment approvals somewhere to hide.

In this article:

• What ghost suppliers in Xero are
• Why ghost suppliers in Xero are a payment risk
• How to find ghost suppliers in Xero
• Xero supplier audit checklist for Australian SMBs
• How to remove and prevent ghost suppliers
• Related Reading
• Conclusion

What ghost suppliers in Xero are

A ghost supplier is a supplier record that should not be paid. It might be a completely fake vendor, a dormant supplier that no longer works with your business, a duplicate contact, or a record with details that have never been properly verified.

In fraud language, ghost suppliers are closely related to phantom vendor fraud. A person creates or uses a supplier record that looks real enough to pass normal accounts payable checks, then submits invoices or changes payment details so money goes to the wrong place.

In Xero, the same contact area can contain active suppliers, customers, contractors, one-off vendors, and imported historical records. That flexibility is useful, but it also means supplier lists can become cluttered over time.

A ghost supplier might look like:

• A supplier with no ABN or a business name that does not match the ABN record.
• A duplicate contact with a slightly different spelling.
• A dormant supplier that suddenly receives a payment after a long gap.
• A supplier with a personal email address or vague trading name.
• A record created by one user and paid shortly afterwards with limited review.
• A supplier bank account that changed without independent verification.

The issue is not just whether a supplier is fake. The issue is whether your finance team can confidently explain why the supplier exists, who approved it, when it was last verified, and whether recent payments make sense.

Why ghost suppliers in Xero are a payment risk

Ghost suppliers in Xero create risk because they sit between finance data hygiene and payment fraud prevention. A messy contact list may look like an admin problem, but it can become a cash leakage problem when payments are approved quickly.

The ACCC reported total scam losses of $2.03 billion across Australian reporting bodies in 2024 in its Targeting Scams report. Payment redirection and business impersonation scams continue to show why supplier details should be treated as sensitive financial controls, not just bookkeeping fields.

Small and mid-sized businesses are especially exposed because finance teams often run lean. The same person may create a supplier, enter a bill, reconcile payments, and prepare an owner or director approval list.

That does not mean anyone is doing the wrong thing. It means informal processes can break under pressure.

Common risk patterns include:

New supplier pressure. A project, contractor, or urgent purchase needs to be paid quickly. The supplier is added to Xero before checks are complete.

Bank detail changes. A genuine supplier appears to request a new BSB and account number. The change is made in Xero without a call-back to a known contact.

Duplicate records. A real supplier exists twice with different details. One record may have the correct history while the other has a risky or outdated payment destination.

Dormant supplier reactivation. A supplier that has not been paid for months suddenly appears in a payment run. Nobody notices because the name is familiar.

Weak approval context. The approver sees a bill and supplier name, but not the supplier creation history, bank detail change history, or pattern of prior payments.

If your team already reviews suspicious payment patterns, ghost suppliers belong in the same control family. The supplier record is often where the risk starts, before the payment leaves the business.

How to find ghost suppliers in Xero

Finding ghost suppliers in Xero starts with a practical supplier audit. The goal is not to accuse every old contact of fraud. The goal is to identify records that need review before they can safely remain in your payment workflow.

Start with your supplier contacts and bills history, then work through the highest-risk groups first.

1. Review inactive suppliers

Look for suppliers with no recent bills, no recent payments, or no clear current relationship with the business. Inactive suppliers are not automatically suspicious, but they should not sit in the same mental category as active vendors.

For each inactive supplier, ask whether the business still expects to use them. If not, archive or flag them according to your internal process.

2. Search for duplicates and near-duplicates

Duplicate suppliers in Xero can appear because of spelling differences, abbreviations, changed trading names, or imported historical data. Examples include “ABC Electrical”, “A.B.C Electrical Pty Ltd”, and “ABC Elec”.

Duplicates increase the chance of paying the wrong account, missing audit history, or approving a supplier because the name feels familiar.

If duplicate payments are already a concern for your team, see our guide on how duplicate payments slip through Xero.

3. Check missing or mismatched ABNs

For Australian suppliers, the ABN is a basic verification point. Use the official business.gov.au ABN registration guidance and ABN Lookup process to confirm that the supplier name, ABN, and GST registration status make sense.

A missing ABN does not always prove fraud, especially for overseas suppliers or certain sole traders. It does mean the record needs more context before it is trusted for payment.

4. Review recent supplier changes

Recent changes deserve attention, especially changes to bank details, email addresses, contact names, or supplier names. A supplier that has traded safely for years can still become risky if a fraudster compromises an inbox and requests a payment detail update.

Xero can help you inspect transaction history and audit information, but teams often need a repeatable process to decide which changes deserve escalation.

5. Compare payment behaviour

Look for suppliers with payment patterns that do not match their history. Warning signs include round-dollar invoices, new payment amounts just below approval thresholds, payments outside the usual month-end rhythm, or a sudden burst of invoices from a previously quiet supplier.

These patterns overlap with broader finance monitoring. Our article on suspicious payment patterns every CFO should monitor covers this in more detail.

Xero supplier audit checklist for Australian SMBs

A supplier audit Xero process should be simple enough to run monthly or quarterly. If it requires a forensic accountant every time, it will not happen consistently.

Use this checklist as a starting point.

Supplier identity checks

• Supplier name matches the invoice and known trading name.
• ABN is present where expected and aligns with the supplier name.
• GST registration status makes sense for the invoice.
• Business email domain looks appropriate for the supplier.
• Contact details are not vague, personal, or inconsistent.

Supplier activity checks

• Supplier has legitimate bill or payment history.
• Dormant suppliers are reviewed before any new payment.
• One-off suppliers are labelled or archived once no longer needed.
• Duplicate names and similar names are investigated.
• Supplier records created recently are checked against approval evidence.

Bank detail and payment checks

• Bank account changes are independently verified by phone using a known number.
• Bank details are not shared across unrelated suppliers without a clear reason.
• Payment amounts match the supplier’s normal pattern.
• Payments are not consistently just under approval thresholds.
• Urgent payment requests are checked before being included in a payment run.

Permission and process checks

• Not everyone can create or edit suppliers.
• Supplier creation and payment approval are separated where possible.
• Owners or CFOs can see exceptions before payment approval.
• Supplier reviews are documented, even if the note is brief.
• High-risk changes are logged for audit purposes.

For many SMBs, the hardest part is not knowing what to check. It is finding time to check consistently. That is why the supplier audit should be short, risk-based, and focused on the records most likely to cause loss.

How to remove and prevent ghost suppliers

Once you find ghost suppliers in Xero, handle them carefully. In many cases, you should archive, merge, correct, or flag records rather than trying to erase history.

Accounting records matter. If a supplier has transaction history, your cleanup process should preserve the audit trail while reducing future payment risk.

Clean up existing supplier records

1. Archive suppliers that are inactive and not expected to be used again.

2. Merge duplicate contacts where Xero allows it and where the records clearly refer to the same supplier.

3. Standardise naming conventions so similar suppliers are easier to identify.

4. Add notes or internal references for suppliers that need extra verification.

5. Remove reliance on unverified bank details and require confirmation before future payment.

6. Document why a supplier was archived, merged, or retained.

Prevent ghost suppliers from returning

Prevention works best when supplier setup becomes a controlled workflow, not an informal admin task.

Require approval before a new supplier is created. For small teams, this can be as simple as a second person confirming the supplier name, ABN, invoice context, and payment details.

Verify bank detail changes independently. Do not rely on reply emails or phone numbers inside the change request. Use a known contact number from your previous records or supplier contract.

Review new suppliers monthly. A short monthly review catches patterns while they are still fresh, such as several new suppliers created by the same user or a supplier paid before verification was complete.

Review dormant suppliers quarterly. Dormant suppliers are easy to ignore until they reappear in a payment run. A quarterly cleanup reduces the number of risky records available for misuse.

Limit permissions. If everyone can create suppliers, edit bank details, and prepare payments, your control environment depends too heavily on trust and memory.

Related Reading

• Detect Supplier Bank Changes in Xero
• Vendor Fraud in Australian Small Businesses
• Using Xero's Audit Trail for Fraud Detection

Conclusion

Ghost suppliers in Xero are a warning sign that supplier data, payment controls, and fraud prevention need to work together. A clean supplier list helps bookkeepers work faster, but it also helps CFOs and business owners answer a more important question: who are we about to pay, and do we trust the record behind that payment?

The best approach is practical. Review inactive suppliers, duplicates, missing ABNs, recent bank detail changes, and unusual payment patterns. Archive or clean up records that no longer belong in the payment workflow, then make supplier creation and bank detail changes subject to clear approval.

OutflowGuard helps Australian Xero users turn that manual supplier audit into ongoing monitoring. The free audit tools can scan for ghost suppliers, round-number invoices, and duplicate bills, while the paid monitoring tiers add bank detail change alerts, approval workflows, and risk scoring for teams that need stronger day-to-day protection.