Presentation is loading. Please wait.

Presentation is loading. Please wait.

Fraud in today’s world September 18, 2015. 60 82 23 1 What do these numbers represent?

Published byIlene Gordon Modified over 8 years ago

Similar presentations

Presentation on theme: "Fraud in today’s world September 18, 2015. 60 82 23 1 What do these numbers represent?"— Presentation transcript:

1 Fraud in today’s world September 18, 2015

2 60 82 23 1 What do these numbers represent?

3 60 82 23 60% of organizations were exposed to actual or attempted payments fraud in 2013 82% of survey respondents report checks were the primary target for fraud attacks at their organization $23,100 was the typical financial loss incurred by organizations due to payments fraud Source: 2014 AFP Payments Fraud and Control Survey 2 Fraud statistics

4 Payment method responsible for largest dollar amount of fraud loss Source: 2014 AFP Payments Fraud and Control Survey 3

5 Types of check fraud  Unauthorized check  Maker forgery  Internal embezzlement  Forged endorsement  Customer victimization  Counterfeit  Altered check 4

6 Electronic deposit check fraud  Check 21 opened up a world of possibilities for financial institutions, their customers, and unfortunately, criminals  Risk management has become a key focal point for financial institutions as they offer more opportunities for image-related deposits 5

7 ACH Debit Fraud  Criminals get MICR-line information from a legitimate check  Sell information to fraud rings  Fraud rings originate ACH transactions using legitimate account numbers 05204790 123000999 55555 6

8 Cyber fraud – three primary methods  Social engineering  Malware  Combination: social engineering used to install malware 7

9 Social engineering via phishing example 8

10 Spear phishing  Spear phishers target select groups of people  Information obtained by hacking into a computer network, or by combing through other sites  The messages look more legitimate to the receivers  Create false sense of security about clicking on the embedded link  Tone of urgency convinces victims to act quickly, providing information they would not normally disclose  This may allow installation of malicious codes known as “malware”  Malware can be used by criminals to gain unlimited access to data from victims’ computers 9

11 Business account takeover Password-stealing Trojan sent as email attachment Online banking credentials sent to criminal Criminal sends sub $10,000 payments to money mules Criminal logs into victim company’s bank accounts Mules withdraw cash and forward to criminals overseas 10

12 11 Imposter Fraud Are you who you say you are? Do you know whom you are paying?

13 12 Reduce your risk Educate your staff Verify your vendor Verify your requestor Watch your wires Audit your activity

14 What steps can entities take to avoid fraud? 13

15 Six rules for a strong fraud protection program  Protect access credentials  Increase internal controls  Educate employees  Know your employees  Keep authorizations up to date  Know your vendors 14 Trust is not an internal control

16 Number-one line of protection  Your employees are the front line of defense against online fraud  Entities must ensure they get the training they need and remind them often to stay on their guard against online fraud 15

17 Diligent user management  Audit users on a regular basis, especially those with transaction privileges  Review user privileges often to ensure no one has unauthorized or unnecessary access  Limit transaction privileges to an absolute minimum – needs only basis  Apply separation of duties for key money movement activities 16

18 Maintain separation of duties ■ Assign accounts payable functions to more than one person ■ Rotate personnel in financially sensitive assignments ■ Limit the number of signers ■ Require more than one signature on large dollar check amounts 17

19 Dual custody – online banking portal  One person initiates and another approves from a different computer  Online payment transactions  Self-administration changes  Be aware of collusion risks  Select approvers that are less likely to collude  Different locations  Different functions  Option exists to require multiple approvals 18

20 Enforce mandatory vacation policies  One of the most effective ways to avoid internal embezzlement  Also a good way to detect embezzlement if someone is operating a scheme 19

21 To avoid phishing attempts  Remember that most companies, banks, etc. will never request personal or sensitive information via email or text  If in doubt, call the company to check, but don’t use the phone number on the email  Don’t reply to a message that asks for personal or financial information  Never follow a link to a secure site from an email, always enter the URL manually  Use a phishing filter; many of the latest web browsers have them built in 20

22 Secure passwords are critical  Create different passwords for different purposes  Social networking  Major shopping sites  Financial institutions  Separate passwords for infrequently visited sites  Use passwords that cannot be easily guessed  No pet names, family names – they can be found on social media sites  A recent survey revealed that “password” and “123456” are very popular  Try using the first letters of a memorable phrase and make it more complex by replacing letters with characters or numbers 21

23 Security considerations for mobile banking  Be cautious of unsolicited text messages. Avoid clicking on links contained in text messages.  Don’t store sensitive data on your mobile device.  Install tracking software that allows you to locate, lock or wipe data. 22

24 Maintain check security  Require tight security of all check stock  Destroy obsolete check stock  Keep check stock in an area that is locked and secure  Purchase check stock from a reputable vendor  Include safety features in checks  Require a secure method of delivery for new stock  Inventory check stock at least quarterly  Limit number of individuals who have access to check stock 23

25 Reconcile accounts promptly  Required by UCC  Ensures timely identification of errors and/or fraud  Reconcilement duties must be kept separate from check issuing duties 24

26 TM services to reduce risk and fraud  Positive Pay with Payee Validation  Payment Authorization  ACH Fraud Filter  Email notification of outgoing wires (event messages)  Account Reconciliation  Dual control  Remote Desktop Deposit  Virtual Vaults  Lockbox  Merchant Services  ACH payments  Prepaid Cards  Unique AP Cards 25

27 Webinar training sessions Every week, a 60-minute, instructor-led online training class is offered to all Commercial Electronic Office ® (CEO ® ) portal users. The training class is called: Reducing Risks: What you need to know about Payment Fraud During this course, the instructor will review:  Growing fraud threats, including account takeover fraud and impostor fraud  The latest fraud statistics  Tips for how to minimize the risk of fraud To locate training to go: CEO Homepage>Support Dropdown Menu>Online Training

28 Thank you

Download ppt "Fraud in today’s world September 18, 2015. 60 82 23 1 What do these numbers represent?"

Similar presentations

Banking Services AVAILABLE FOR A SMALL BUSINESS. BANKING SERVICES 2 Welcome 1. Agenda 2. Ground Rules 3. Introductions.

Banking Services AVAILABLE FOR A SMALL BUSINESS. BANKING SERVICES 2 Welcome 1. Agenda 2. Ground Rules 3. Introductions.
ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.

ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.
P ASSWORD S ECURITY. I F SOMEONE HAS YOUR PASSWORD, EITHER FROM YOU GIVING IT OUT OR THEM FIGURING OUT, THEY COULD : 1.Send abusive or threatening email.

P ASSWORD S ECURITY. I F SOMEONE HAS YOUR PASSWORD, EITHER FROM YOU GIVING IT OUT OR THEM FIGURING OUT, THEY COULD : 1.Send abusive or threatening .
1 Identity Theft and Phishing: What You Need to Know.

1 Identity Theft and Phishing: What You Need to Know.
1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.

1 Identity Theft: What You Need to Know. 2 Identity Theft Identity theft is a crime of stealing key pieces of someone’s identifying information, such.
8 Mistakes That Expose You to Online Fraud to Online Fraud.

8 Mistakes That Expose You to Online Fraud to Online Fraud.
Lesson 11 Using Online Banking. Key Terms Account Transfer – online transfer of money; ex. Savings to checking acct. Fraud – using trickery to convince.

Lesson 11 Using Online Banking. Key Terms Account Transfer – online transfer of money; ex. Savings to checking acct. Fraud – using trickery to convince.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Corporate Account Takeover & Information Security Awareness PRESENTATION FOR BANK CUSTOMERS.

Corporate Account Takeover & Information Security Awareness PRESENTATION FOR BANK CUSTOMERS.
1.7.2.G1 Electronic/Online Banking & Bill Pay Take Charge of Your Finances.

1.7.2.G1 Electronic/Online Banking & Bill Pay Take Charge of Your Finances.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Payment Fraud Trends : What Can you do? Protect Yourself and Your Business from Financial Fraud.

Payment Fraud Trends : What Can you do? Protect Yourself and Your Business from Financial Fraud.
Electronic Payment By: El Panda. What is an electronic payment? Electronic money (also known as e-currency, e-money, electronic cash, electronic currency,

Electronic Payment By: El Panda. What is an electronic payment? Electronic money (also known as e-currency, e-money, electronic cash, electronic currency,
Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.

Scams and Schemes. Today’s Objective I can understand what identity theft is and why it is important to guard against it, I can recognize strategies that.
Scams Stevie's Scam School videos

Scams Stevie's Scam School videos
BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 

BTT12OI.  Do you know someone who has been scammed? What happened?  Been tricked into sending someone else money (not who they thought they were) 
CASH CONTROLS AT OSU. WHAT IS “CASH”? Currency, coin, and cash equivalents: Checks Traveler’s checks Cashier’s checks Credit card records EFTs: ACH and.

CASH CONTROLS AT OSU. WHAT IS “CASH”? Currency, coin, and cash equivalents: Checks Traveler’s checks Cashier’s checks Credit card records EFTs: ACH and.
Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer

Citadel Security Software Presents Are you Vulnerable? Bill Diamond Senior Security Engineer
Online Shopping Take Charge of Your Finances 1.3.2.

Online Shopping Take Charge of Your Finances
© Family Economics & Financial Education –October 2007 – Consumer Protection Unit – Online Shopping Funded by a grant from Take Charge America, Inc. to.

© Family Economics & Financial Education –October 2007 – Consumer Protection Unit – Online Shopping Funded by a grant from Take Charge America, Inc. to.

Similar presentations

Ads by Google