SlideShare ist ein Scribd-Unternehmen logo

Fraud Prevention

Gerald Johnson
Gerald Johnson

Battling Payment Fraud

1 von 26
Downloaden Sie, um offline zu lesen
Battling Payment Fraud: The Never Ending Story Presented by: Peter Tristani, Vice President, Payments and Remittance
Agenda Overview Fraud: The Big Picture Evolving Fraud Impact of Fraud on Corporations Impact of Economic Downturn on Fraud Corporate Actions to Prevent & Combat Fraud Framework for Fraud Management Payment Fraud Statistics & Strategies Cheques Cards and Commercial Cards Electronic payments Fraud Prevention Practices & Tools Closing Remarks 1
Overview of the Presentation Today we will cover the following: How the economic downturn may impact fraud, and in particular, fraud threats within your organization How and why fraud threats are changing – the shifting landscape of fraud What you can do to protect your organization What you can learn from financial institutions as key partners in fighting fraud 2
Fraud: The Big Picture Fraud is the intentional deception or misrepresentation made for unlawful or unfair personal gain or to damage another individual. Fraud is ubiquitous, almost all organizations have been victims at one time or another, even if they don’t formally admit it. Fraud is increasing every year, and declining economic environments create unique risk management challenges for businesses. Criminal organizations that profit from fraud view the current economic conditions as an opportunity, not a threat. Thieves are sophisticated and evolve with technology quickly. They are very entrepreneurial and stick with old cons and incorporate new ones as needed. Organizations do not get much sympathy from boards, senior management, investors, law enforcement and other stakeholders, who expect companies to take the offensive against fraud, corruption and abuse. 3
Fraud: The Big Picture The good news: By tightening your own internal controls, improving information security and adopting fraud control services offered by financial institutions and other partners, you can avoid or at least contain fraud losses, while also contributing to the “greater good” – driving down the ability of criminals to profit from fraud and protecting consumer confidence in the payments industry. 4
Evolving Fraud Fraud threats are growing and evolving, and affect all kinds of companies, as seen in these examples Corporate Account Takeovers Criminals are targeting cash management customers Use clever social-engineering techniques in their phishing e-mails to get consumers to sign up Transfers funds, for example in the US, using ACH fund transfer facilities Strong customer authentication, fraud detection and transaction verification can significantly, if not dramatically, reduce the threat and damage caused by these crimes Phishing Using Stolen Corporate Logo A letter on vendor letterhead asking that their account number for EFT credit deposits be amended to a new number. The corporate client updated their A/P system, began sending EFT payments to the new account (5 payments in a 9 day period). Vendor tells corporate client that they had not received payment, and upon investigation it was determined the letter received to amend the account was false. The other FI was contacted and froze the funds in the account. $4M had been withdrawn of the total $720M that had been transferred at the time the account was frozen. 5
Impact of Fraud on Corporations Percentage of Company Revenues Lost to Fraud 1 Over two-thirds of companies experience some fraud losses, 5% or More 0% according to the CICA / RBC Business Monitor (Q4 2008). One-half of 4% to <5% 1% respondents estimate that less than 3% to <4% 0% 1% of company revenues are lost due to fraud. About one-third believe 2% to <3% 2% they’ve lost no revenue due to fraud. 1% to <2% 8% <1% 50% None 32% Don't Know 6% 0% 10% 20% 30% 40% 50% 60% Research indicates few organizations really understand what fraud is actually costing their business. Some commentators put the estimate of losses from fraud at 7% of revenue2. Others consider 7% high as an impact of fraud on businesses in general but recognize that some companies will experience significant frauds that will result in losses at this level, particularly in high risk frontier and emerging markets3. They see continuing opportunity for significant fraud losses as many organizations continue to underestimate avoidable fraud losses and fail to develop adequate controls. 1 CICA/RBC Business Monitor (Q4 2008) 2 Association of Certified Fraud Examiners 2008 Report to the Nation on Occupational Fraud and Abuse 3 PricewaterhouseCooper, Fraud in a downturn, 2009 6
Impact of Economic Downturn on Fraud Employee Misconduct The Corporate Executive Board1 has seen startling trends internal fraud, including: A 20% increase in observations of misconduct from the first to the second half of 2008; A 5% decline in frontline employee perceptions of senior management's commitment to integrity; An increase in the number of disengaged employees, from one in ten to one in five, causing declines in companywide productivity of up to 5%. When employees perceive a weak ethical culture, misconduct significantly rises. 1 Corporate Executive Board/Business Week, How to deal with Employee Fraud and Misconduct, 12 June 2009 7
Impact of Economic Downturn on Fraud - Internal Criminal organizations thrive during economic downturn: it becomes easier to infiltrate organizations and recruit insiders to help with fraud schemes as employees are more vulnerable due to family hardships. they can exploit greater weaknesses as companies are cutting oversight positions and reducing spending or resources devoted to internal controls According to a 2009 PWC report, “Fraud in a Downturn”, they see increased opportunity for rogue traders to operate undetected as control environments weaken. There are also significant influences that will provide pressure or incentives for some staff to trade beyond the limit of their authority. In tough economic times, it becomes easier for people to rationalize fraud and corruption increases. Employees become cynical about the ethical culture of the typical corporation. Rogue traders are not a threat faced only by investment bankers Many organizations use hedging strategies in their treasury function of trade commodities. The losses reported by Societe Generale in 2008 were an early warning of the impact of a declining economy on the heightened risk of fraud and irregularity. Additionally, PWC believe that as companies whose revenues are dropping sail ever closer to breaching their banking covenants, the temptation to ‘massage the numbers’ will increase. 8
Corporate Actions Taken to Prevent Fraud4 Improve internal controls 83% Codes of business conduct and ethics for all employees 65% External audits 47% Conduct background checks on new employees 43% Conduct internal audits to test compliance 42% Workplace whistle-blower hotline available 36% Staff training in fraud awareness 28% Appoint compliance officer 15% No action taken 9% Other 2% 4 CICA/RBC Business Monitor (Q4 2008) 9
Corporate Actions Taken to Combat Fraud5 Investigate suspicious activities using internal resources 88% Involve legal counsel 53% Dismiss employee without making a criminal complaint 38% Investigate suspicious activities using external resources 30% File criminal complaint against perpetrator as a deterrent for others 28% Contact internal audit 23% Involve external auditors 14% Do nothing 1% Other 4% 5 CICA/RBC Business Monitor (Q4 2008) 10
Corporate Actions Taken to Prevent and Combat Fraud Mitigating Fraud Risk via a Culture of Integrity The key to corporate integrity and reduced misconduct is "organizational justice“ When employees believe their company has strong organizational justice, the company's overall commitment to integrity rises and misconduct drops. To create a culture of organizational justice, companies should start by following these three simple guidelines: 1. Equip managers to deal decisively and consistently with instances of misconduct or unethical behaviour; 2. Show the whole employee population how the company deals with misconduct; and 3. Close the loop with employees who report misconduct, so they know that appropriate actions were taken. 11
Framework for Fraud Management There are five key components to the fraud management framework – prevention, detection, investigation, containment & recovery, and analysis & recommendations. This successful approach can be implemented in organizations of any size to effectively mitigate the risk of fraud. Some example activities are listed below and can be refined based on your own corporate needs. Prevention Control access to cheques, cards, electronic payments Screen new hires Train staff on fraud awareness Segregate duties Reconcile daily Protect sensitive data, systems, documents, passwords, PINs Analysis & KYC (+ suppliers, referral sources) Detection Recommendations Audit & monitor internal procedures Improve internal control processes Rigorously monitor financial position Invest in vendor fraud solutions Utilize FI electronic solutions & services Containment & Recovery Investigation Report unauthorized transactions to FI Implement investigative and escalation immediately processes Enforce a policy of zero tolerance 12
Payment Fraud Statistics & Strategies The results of the 2009 AFP Payments Fraud and Control Survey* indicate that payment fraud is rampant and growing, as a majority of organizations experienced attempted fraud or actual payment fraud in 2008. Key findings include: 71% of organizations experienced attempted or actual payments fraud in 2008. 30% of organizations reported that incidents of fraud increased in 2008 over previous year Cheques continue to be the preferred target of thieves – 91% of organizations were victims of attempted or actual cheque fraud in 2008 Other targeted payment types for fraud included: ACH (AFT) debits (28%) or credits (7%) Consumer credit / debit cards (18%) Corporate / commercial cards (14%) Wire transfers (6%) * 2009 Association for Financial Professionals Payments Fraud and Control Survey 13
Payment Fraud Statistics & Strategies – Cheques While cheques are losing ground to credit & debit cards and electronic payments, they remain a leading payment vehicle across North America. Approximately 5 million cheques and money orders are cashed on a daily basis in Canada. In 2008, the amount of money being exchanged in Canada in the form of cheques represented close to 1 trillion dollars. Cheque fraud is one of the fastest growing financial crimes today and projections indicate it will grow by 25 per cent each year (CBA). Forged signatures and endorsements, counterfeit cheques, kiting, physically altered amounts and / or payees are a few of the methods criminals exploit when attempting to pocket your business’ money. According to the 2009 AFP Payment Fraud and Control Survey*: Cheques continue to be the preferred target of fraudsters. E.g: Counterfeit cheques using the organization’s MICR line data (72%) Altered payee names on cheques issued by organizations (59%) Altered employee pay cheques (27%) 47% of organizations that were victims of at least one attempt of cheque fraud in 2008 suffered a financial loss resulting from cheque fraud * 2009 Association for Financial Professionals Payments Fraud and Control Survey 14
Payment Fraud Statistics & Strategies – Cheques How to Protect Against Cheque Fraud: 1) Internal controls are crucial and are one of your best lines of defence against cheque fraud. Best practices include: Reconcile your accounts daily Separate the accounts payable and receivable roles Periodically change cheque stock, destroy your old, unused cheques, and always lock up blank cheques. Ensure all cheques issued from a single account look and feel the same. Minimize the number of manual or rush cheques and closely examining those that are issued When using a laser printer to print cheques, ensure access is password-protected and that cheque paper has toner anchorage features Place stop payments on cheques not cashed in a timely manner Monitor payment activity carefully and conduct surprise and scheduled audits 2) Leverage cheque security features 3) Reduce the use of risk-prone cheques in favour of electronic payments 4) Take advantage of corporate card payment services to replace many cheque payments 5) Utilize fraud control / security services offered by your financial institution (e.g. Positive Pay, Enhanced Positive Pay) With strong internal controls, electronic and card payment solutions, and fraud services, your company can reduce the risk of cheque fraud 15
Payment Fraud Statistics & Strategies – Card Fraud While card payments are subject to greater controls than cheques, they can be vulnerable to particular types of attacks. Some common types include: Lost and stolen card fraud Non-receipt fraud – Cards intercepted in mail before customer ever receives card Counterfeit cards (skimming) – Magnetic stripe data on cards can be copied at tampered POS device or ABM and transferred onto a counterfeit card Card-not-present (CNP) fraud – Stolen or compromised card data used to commit fraud online or by phone Data breaches (i.e., “account data compromises”) Rollout of Chip Technology in Canada Enhanced security is coming for card users in Canada, as Chip cards and terminals will be rolled out over the next several years. Chip-based credit cards will require the use of a PIN as well. Security is improved as data on Chip is extremely difficult to copy or change Counterfeiting (skimming) of credit and debit cards should be reduced, but will take some time. Customer confidence should improve, along with less need to report / dispute unauthorized transactions or obtain replacement cards 16
Payment Fraud Statistics & Strategies – Card Fraud How to Protect Against Card Fraud: Use Chip cards as soon as they are available Ensure your card users always check their statements regularly, verify that all transactions are legitimate and report any unauthorized transactions to your financial institution as quickly as possible Always memorize and protect your PIN; don’t allow corporate card users to share cards / PINs Treat the card like cash - - keep it in secure place For internet purchases, ensure your users are registered for Verified by Visa and MasterCard SecureCode Determine access rules for who can be issued a corporate card and enforce control procedures when adding or changing employees Take advantage of corporate card control features, such as the ability to set merchant types where corporate cards can be used, reduce spending limits, disallow out-of-the country transactions, etc. 17
Payment Fraud Statistics & Strategies – Electronic Fraud Criminals attack Internet users in a variety of ways, including: Phishing Emails that pretend to be from your bank or other financial institution, urging you to click on a link that takes you to a fake website that appears to be identical to that of your bank or FI. You are then asked to verify your personal security and account information. If acted upon, the criminal may now have the required information (e.g., account number and password) to commit fraud on your account. Trojans Types of computer viruses which can be installed on your computer without your knowledge. They are capable of logging your keystrokes thereby capturing your passwords and other personal or account information that allow the criminal to then complete fraud on your accounts. Data Breaches (Account Data Compromises) In 2008 there were a reported 285 million compromised data records including payment transactions information. Although the revenue impact and operating expense impact were mainly suffered by card issuers and financial institutions, the impact to corporate clients is inconvenience - fraud on accounts, cards being preventatively blocked and reissued. 18
Payment Fraud Statistics & Strategies – Electronic Fraud How to Protect Against Electronic Fraud: 1. Just as you protect your business with locks on doors and burglar alarms, it is vital that you take steps to ensure that your computers are protected against the latest threats. Use anti-virus software and keep it up-to-date on a regular basis Use a firewall Download the latest security updates (or patches) for your web browser and operating system Engage experts to stress test systems 2. Improve your customer authentication processes for both online and telephone transactions. Combination of user ID and password Multifactor Authentication (MFA) New processes which leverage Chip technology are now being explored in Canada, after being used with success in Europe and other parts of the world. 3. If applicable to your business, PCI Compliance Standards should be followed: Build and maintain a secure network Protect cardholder data Maintain a Vulnerability Management Program Implement strong access control measures Regularly monitor and test networks Maintain an Information Security Policy 19
Fraud Prevention Practices & Tools Strategic Framework People and Processes Develop board and audit committee oversight Attract and hire professional staff Establish code of conduct Perform employee background checks Endorse board approved reporting structure Conduct fraud awareness training and ensure consequences are understood Rigorously monitor financial position Segregate duties Align audit with regulatory mandates Make vacations mandatory Consider implementing Committee of Sponsoring Organizations (COSO) Limit authority to initiate / originate movement of funds framework Report unauthorized transactions to your FI immediately Consider insuring employees with access to electronic payments Establish account and transaction controls Physical and Virtual Environment Secure Your Corporate Identities Secure your floor, department, office, files and data Reconcile daily if possible Maintain tight controls over cheque stock and cheque printing processes Monitor wire and EFT activity Use cheques with a variety of security features Structure accounts to facilitate early fraud detection Implement stringent controls around electronic payment initiation: password, Protect documents containing corporate identity – statements, cheques, reports session and user management, payment authentication Protect PINs and passwords Establish and automate transaction approval thresholds Keep financial documents secure at all times and shred when disposing Utilize systems with built in controls Understand rights and privileges that you provide to your partners and vendors Maximize automation and straight-through processing Designate a compliance officer Segregate and back up sensitive data Pay companies to monitor your websites 20
Fraud Prevention Practices & Tools Strategic Framework Develop board and audit committee oversight Establish code of conduct Endorse board approved reporting structure Rigorously monitor financial position Align audit with regulatory mandates Consider implementing Committee of Sponsoring Organizations (COSO) framework Consider insuring employees with access to electronic payments 21
Fraud Prevention Practices & Tools People and Processes Attract and hire professional staff Perform employee background checks Conduct fraud awareness training and ensure consequences are understood Segregate duties Make vacations mandatory Limit authority to initiate / originate movement of funds Report unauthorized transactions to your FI immediately Establish account and transaction controls 22
Fraud Prevention Practices & Tools Physical and Virtual Environment Secure your floor, department, office, files and data Maintain tight controls over cheque stock and cheque printing processes Use cheques with a variety of security features Implement stringent controls around electronic payment initiation: password, session and user management, payment authentication Establish and automate transaction approval thresholds Utilize systems with built in controls Maximize automation and straight-through processing Segregate and back up sensitive data 23
Fraud Prevention Practices & Tools Secure Your Corporate Identities Reconcile daily if possible Monitor wire and EFT activity Structure accounts to facilitate early fraud detection Protect documents containing corporate identity – statements, cheques, reports Protect PINs and passwords Keep financial documents secure at all times and shred when disposing Understand rights and privileges that you provide to your partners and vendors Designate a compliance officer Pay companies to monitor your websites 24
Final Thoughts As seen with the longevity of cheque fraud, payment fraud continues to be a never ending story. Payment fraud will continue to evolve as new payment types become available such as wireless mobile payments which launched in Canada in June 2009. Criminals will continue to switch their attack methods away from the more secure payment types e.g. Chip cards to other types of payment fraud such as international card fraud in non-Chip countries like the US. Criminals’ sophistication and nimbleness will continue to increase. They will constantly be looking for ways to take advantage of any gaps in the system to perpetrate fraudulent activities. It’s important to stay vigilant and on top of emerging trends. Questions? 25

Empfohlen

Fraud & Risk Management - A Guide to Good Practice
Fraud & Risk Management - A Guide to Good PracticeFraud & Risk Management - A Guide to Good Practice
Fraud & Risk Management - A Guide to Good Practice
Arianto Muditomo
 
Presentation on fraud prevention, detection & control
Presentation on fraud prevention, detection & controlPresentation on fraud prevention, detection & control
Presentation on fraud prevention, detection & control
Dominic Sroda Korkoryi
 
Fraud prevention detection control fuh 12
Fraud prevention detection control fuh 12Fraud prevention detection control fuh 12
Fraud prevention detection control fuh 12
Fuh George Cheo
 
Fraud Risk
Fraud RiskFraud Risk
Fraud Risk
F a h a d Z a f a r (Bradford MBA)
 
Fraud in bank
Fraud in bankFraud in bank
Fraud in bank
PawanKumarJha7
 
Essentials of a Highly Effective Employee Fraud Awareness Program
Essentials of a Highly Effective Employee Fraud Awareness ProgramEssentials of a Highly Effective Employee Fraud Awareness Program
Essentials of a Highly Effective Employee Fraud Awareness Program
FraudBusters
 
Fraud Risk and Control
Fraud Risk and ControlFraud Risk and Control
Fraud Risk and Control
WeaverCPAs
 
Red Flags of Money Laundering
Red Flags of Money LaunderingRed Flags of Money Laundering
Red Flags of Money Laundering
complianceonline123
 

Empfohlen

Fraud & Risk Management - A Guide to Good Practice
Fraud & Risk Management - A Guide to Good PracticeFraud & Risk Management - A Guide to Good Practice
Fraud & Risk Management - A Guide to Good Practice
Arianto Muditomo
 
Presentation on fraud prevention, detection & control
Presentation on fraud prevention, detection & controlPresentation on fraud prevention, detection & control
Presentation on fraud prevention, detection & control
Dominic Sroda Korkoryi
 
Fraud prevention detection control fuh 12
Fraud prevention detection control fuh 12Fraud prevention detection control fuh 12
Fraud prevention detection control fuh 12
Fuh George Cheo
 
Fraud Risk
Fraud RiskFraud Risk
Fraud Risk
F a h a d Z a f a r (Bradford MBA)
 
Fraud in bank
Fraud in bankFraud in bank
Fraud in bank
PawanKumarJha7
 
Essentials of a Highly Effective Employee Fraud Awareness Program
Essentials of a Highly Effective Employee Fraud Awareness ProgramEssentials of a Highly Effective Employee Fraud Awareness Program
Essentials of a Highly Effective Employee Fraud Awareness Program
FraudBusters
 
Fraud Risk and Control
Fraud Risk and ControlFraud Risk and Control
Fraud Risk and Control
WeaverCPAs
 
Red Flags of Money Laundering
Red Flags of Money LaunderingRed Flags of Money Laundering
Red Flags of Money Laundering
complianceonline123
 
Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...
Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...
Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...
central university of rajasthan
 
Fraud Risk Assessment
Fraud Risk AssessmentFraud Risk Assessment
Fraud Risk Assessment
Tahir Abbas
 
Employee Fraud Prevention and Remedies
Employee Fraud Prevention and RemediesEmployee Fraud Prevention and Remedies
Employee Fraud Prevention and Remedies
SSDlaw
 
How to Prevent and Detect Fraud in Your Organization
How to Prevent and Detect Fraud in Your OrganizationHow to Prevent and Detect Fraud in Your Organization
How to Prevent and Detect Fraud in Your Organization
Gross, Mendelsohn & Associates
 
Types of Fraud.pptx
Types of Fraud.pptxTypes of Fraud.pptx
Types of Fraud.pptx
Suchita Rawat
 
Current Trends in Fraud Prevention
Current Trends in Fraud PreventionCurrent Trends in Fraud Prevention
Current Trends in Fraud Prevention
Blackbaud
 
Fraud Detection presentation
Fraud Detection presentationFraud Detection presentation
Fraud Detection presentation
Hernan Huwyler
 
Fraud investigations session 1 slides
Fraud investigations session 1 slidesFraud investigations session 1 slides
Fraud investigations session 1 slides
Zeeshan Shahid
 
ACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk Assessment
ACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk AssessmentACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk Assessment
ACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk Assessment
BillyCheuk
 
How to Improve Anti-Money Laundering Investigation using Neo4j
How to Improve Anti-Money Laundering Investigation using Neo4jHow to Improve Anti-Money Laundering Investigation using Neo4j
How to Improve Anti-Money Laundering Investigation using Neo4j
Neo4j
 
Fraud risk management and interrogation techniques part ii
Fraud risk management and interrogation techniques part iiFraud risk management and interrogation techniques part ii
Fraud risk management and interrogation techniques part ii
EMAC Consulting Group
 
Bank Fraud &amp; Data Forensics
Bank Fraud &amp; Data ForensicsBank Fraud &amp; Data Forensics
Bank Fraud &amp; Data Forensics
whbrown5
 
Fraud Investigation
Fraud InvestigationFraud Investigation
Fraud Investigation
Salih Islam
 
Fraud Prevention, Detection and Investigation in the Payday Advance Industry
Fraud Prevention, Detection and Investigation in the Payday Advance IndustryFraud Prevention, Detection and Investigation in the Payday Advance Industry
Fraud Prevention, Detection and Investigation in the Payday Advance Industry
DecosimoCPAs
 
Bank frauds
Bank fraudsBank frauds
Bank frauds
Pooja Rani
 
Chapter 8 aml and ctf
Chapter 8 aml and ctfChapter 8 aml and ctf
Chapter 8 aml and ctf
Quan Risk
 
Fraud in the Banking Sector
Fraud in the Banking Sector Fraud in the Banking Sector
Fraud in the Banking Sector
Venktesh Venke
 
Credit Card Fraud
Credit Card Fraud Credit Card Fraud
Credit Card Fraud
Mikael Wagner
 
Anti money laundering (aml) and financial crime
Anti money laundering (aml) and financial crimeAnti money laundering (aml) and financial crime
Anti money laundering (aml) and financial crime
RaviPrashant5
 
Forensic audit
Forensic auditForensic audit
Forensic audit
sandesh mundra
 
Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010
annmarieboyd
 
Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010
annmarieboyd
 

Weitere ähnliche Inhalte

Was ist angesagt?

Current Trends in Fraud Prevention
Current Trends in Fraud PreventionCurrent Trends in Fraud Prevention
Current Trends in Fraud Prevention
Blackbaud
 
How to Improve Anti-Money Laundering Investigation using Neo4j
How to Improve Anti-Money Laundering Investigation using Neo4jHow to Improve Anti-Money Laundering Investigation using Neo4j
How to Improve Anti-Money Laundering Investigation using Neo4j
Neo4j
 
Fraud Prevention, Detection and Investigation in the Payday Advance Industry
Fraud Prevention, Detection and Investigation in the Payday Advance IndustryFraud Prevention, Detection and Investigation in the Payday Advance Industry
Fraud Prevention, Detection and Investigation in the Payday Advance Industry
DecosimoCPAs
 
Chapter 8 aml and ctf
Chapter 8 aml and ctfChapter 8 aml and ctf
Chapter 8 aml and ctf
Quan Risk
 
Fraud in the Banking Sector
Fraud in the Banking Sector Fraud in the Banking Sector
Fraud in the Banking Sector
Venktesh Venke
 

Was ist angesagt? (20)

Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...
Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...
Causes, Effects and Management of Fraud: A Study with reference to Indian Ban...
 
Fraud Risk Assessment
Fraud Risk AssessmentFraud Risk Assessment
Fraud Risk Assessment
 
Employee Fraud Prevention and Remedies
Employee Fraud Prevention and RemediesEmployee Fraud Prevention and Remedies
Employee Fraud Prevention and Remedies
 
How to Prevent and Detect Fraud in Your Organization
How to Prevent and Detect Fraud in Your OrganizationHow to Prevent and Detect Fraud in Your Organization
How to Prevent and Detect Fraud in Your Organization
 
Types of Fraud.pptx
Types of Fraud.pptxTypes of Fraud.pptx
Types of Fraud.pptx
 
Current Trends in Fraud Prevention
Current Trends in Fraud PreventionCurrent Trends in Fraud Prevention
Current Trends in Fraud Prevention
 
Fraud Detection presentation
Fraud Detection presentationFraud Detection presentation
Fraud Detection presentation
 
Fraud investigations session 1 slides
Fraud investigations session 1 slidesFraud investigations session 1 slides
Fraud investigations session 1 slides
 
ACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk Assessment
ACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk AssessmentACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk Assessment
ACCA-IIA Singapore Seminar 2015 Part 3 Fraud Risk Assessment
 
How to Improve Anti-Money Laundering Investigation using Neo4j
How to Improve Anti-Money Laundering Investigation using Neo4jHow to Improve Anti-Money Laundering Investigation using Neo4j
How to Improve Anti-Money Laundering Investigation using Neo4j
 
Fraud risk management and interrogation techniques part ii
Fraud risk management and interrogation techniques part iiFraud risk management and interrogation techniques part ii
Fraud risk management and interrogation techniques part ii
 
Bank Fraud &amp; Data Forensics
Bank Fraud &amp; Data ForensicsBank Fraud &amp; Data Forensics
Bank Fraud &amp; Data Forensics
 
Fraud Investigation
Fraud InvestigationFraud Investigation
Fraud Investigation
 
Fraud Prevention, Detection and Investigation in the Payday Advance Industry
Fraud Prevention, Detection and Investigation in the Payday Advance IndustryFraud Prevention, Detection and Investigation in the Payday Advance Industry
Fraud Prevention, Detection and Investigation in the Payday Advance Industry
 
Bank frauds
Bank fraudsBank frauds
Bank frauds
 
Chapter 8 aml and ctf
Chapter 8 aml and ctfChapter 8 aml and ctf
Chapter 8 aml and ctf
 
Fraud in the Banking Sector
Fraud in the Banking Sector Fraud in the Banking Sector
Fraud in the Banking Sector
 
Credit Card Fraud
Credit Card Fraud Credit Card Fraud
Credit Card Fraud
 
Anti money laundering (aml) and financial crime
Anti money laundering (aml) and financial crimeAnti money laundering (aml) and financial crime
Anti money laundering (aml) and financial crime
 
Forensic audit
Forensic auditForensic audit
Forensic audit
 

Ähnlich wie Fraud Prevention

New age of risk for contractors slide presentation
New age of risk for contractors slide presentationNew age of risk for contractors slide presentation
New age of risk for contractors slide presentation
1paramount
 
The following article is related to deterring employee fraud within .docx
The following article is related to deterring employee fraud within .docxThe following article is related to deterring employee fraud within .docx
The following article is related to deterring employee fraud within .docx
ssuser454af01
 
jurnal fraud not detected.pdf
jurnal fraud not detected.pdfjurnal fraud not detected.pdf
jurnal fraud not detected.pdf
YuanSari1
 
Taking a Closer Look - Assessing Risk of Fraud in the Payday Advance Industry
Taking a Closer Look - Assessing Risk of Fraud in the Payday Advance IndustryTaking a Closer Look - Assessing Risk of Fraud in the Payday Advance Industry
Taking a Closer Look - Assessing Risk of Fraud in the Payday Advance Industry
DecosimoCPAs
 

Ähnlich wie Fraud Prevention (20)

Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010
 
Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010Fraud In Our Midst, The Acfe 2010
Fraud In Our Midst, The Acfe 2010
 
Understanding & Managing Fraud Rrisk
Understanding & Managing Fraud RriskUnderstanding & Managing Fraud Rrisk
Understanding & Managing Fraud Rrisk
 
New age of risk for contractors slide presentation
New age of risk for contractors slide presentationNew age of risk for contractors slide presentation
New age of risk for contractors slide presentation
 
Who Commits Fraud
Who Commits Fraud Who Commits Fraud
Who Commits Fraud
 
Grant Thornton - Fraud and governance survey - 2014
Grant Thornton - Fraud and governance survey - 2014Grant Thornton - Fraud and governance survey - 2014
Grant Thornton - Fraud and governance survey - 2014
 
Findings from India Fraud Survey 2012: Fraud and Corporate Governance - Chang...
Findings from India Fraud Survey 2012: Fraud and Corporate Governance - Chang...Findings from India Fraud Survey 2012: Fraud and Corporate Governance - Chang...
Findings from India Fraud Survey 2012: Fraud and Corporate Governance - Chang...
 
Red Flags Fraud
Red Flags FraudRed Flags Fraud
Red Flags Fraud
 
Computer aided audit techniques and fraud detection
Computer aided audit techniques and fraud detectionComputer aided audit techniques and fraud detection
Computer aided audit techniques and fraud detection
 
The following article is related to deterring employee fraud within .docx
The following article is related to deterring employee fraud within .docxThe following article is related to deterring employee fraud within .docx
The following article is related to deterring employee fraud within .docx
 
jurnal fraud not detected.pdf
jurnal fraud not detected.pdfjurnal fraud not detected.pdf
jurnal fraud not detected.pdf
 
Fraud and corporate governance changing paradigm in India 2012
Fraud and corporate governance changing paradigm in India 2012Fraud and corporate governance changing paradigm in India 2012
Fraud and corporate governance changing paradigm in India 2012
 
Surprising Facts You Didn't Know About Internal Fraud
Surprising Facts You Didn't Know About Internal FraudSurprising Facts You Didn't Know About Internal Fraud
Surprising Facts You Didn't Know About Internal Fraud
 
Combating Fraud: Six Principles for Security
Combating Fraud: Six Principles for Security Combating Fraud: Six Principles for Security
Combating Fraud: Six Principles for Security
 
Fraud, it could happen to you
Fraud, it could happen to youFraud, it could happen to you
Fraud, it could happen to you
 
Red flags fraud
Red flags fraudRed flags fraud
Red flags fraud
 
Deloitte India’s Edition IV of India Corporate Fraud Perception Survey
Deloitte India’s Edition IV of India Corporate Fraud Perception SurveyDeloitte India’s Edition IV of India Corporate Fraud Perception Survey
Deloitte India’s Edition IV of India Corporate Fraud Perception Survey
 
The State of Corporate Fraud, Survey 2018
The State of Corporate Fraud, Survey 2018The State of Corporate Fraud, Survey 2018
The State of Corporate Fraud, Survey 2018
 
Economic-Crime-Thailand-PwC-Consulting
Economic-Crime-Thailand-PwC-ConsultingEconomic-Crime-Thailand-PwC-Consulting
Economic-Crime-Thailand-PwC-Consulting
 
Taking a Closer Look - Assessing Risk of Fraud in the Payday Advance Industry
Taking a Closer Look - Assessing Risk of Fraud in the Payday Advance IndustryTaking a Closer Look - Assessing Risk of Fraud in the Payday Advance Industry
Taking a Closer Look - Assessing Risk of Fraud in the Payday Advance Industry
 

Fraud Prevention

  • 1. Battling Payment Fraud: The Never Ending Story Presented by: Peter Tristani, Vice President, Payments and Remittance
  • 2. Agenda Overview Fraud: The Big Picture Evolving Fraud Impact of Fraud on Corporations Impact of Economic Downturn on Fraud Corporate Actions to Prevent & Combat Fraud Framework for Fraud Management Payment Fraud Statistics & Strategies Cheques Cards and Commercial Cards Electronic payments Fraud Prevention Practices & Tools Closing Remarks 1
  • 3. Overview of the Presentation Today we will cover the following: How the economic downturn may impact fraud, and in particular, fraud threats within your organization How and why fraud threats are changing – the shifting landscape of fraud What you can do to protect your organization What you can learn from financial institutions as key partners in fighting fraud 2
  • 4. Fraud: The Big Picture Fraud is the intentional deception or misrepresentation made for unlawful or unfair personal gain or to damage another individual. Fraud is ubiquitous, almost all organizations have been victims at one time or another, even if they don’t formally admit it. Fraud is increasing every year, and declining economic environments create unique risk management challenges for businesses. Criminal organizations that profit from fraud view the current economic conditions as an opportunity, not a threat. Thieves are sophisticated and evolve with technology quickly. They are very entrepreneurial and stick with old cons and incorporate new ones as needed. Organizations do not get much sympathy from boards, senior management, investors, law enforcement and other stakeholders, who expect companies to take the offensive against fraud, corruption and abuse. 3
  • 5. Fraud: The Big Picture The good news: By tightening your own internal controls, improving information security and adopting fraud control services offered by financial institutions and other partners, you can avoid or at least contain fraud losses, while also contributing to the “greater good” – driving down the ability of criminals to profit from fraud and protecting consumer confidence in the payments industry. 4
  • 6. Evolving Fraud Fraud threats are growing and evolving, and affect all kinds of companies, as seen in these examples Corporate Account Takeovers Criminals are targeting cash management customers Use clever social-engineering techniques in their phishing e-mails to get consumers to sign up Transfers funds, for example in the US, using ACH fund transfer facilities Strong customer authentication, fraud detection and transaction verification can significantly, if not dramatically, reduce the threat and damage caused by these crimes Phishing Using Stolen Corporate Logo A letter on vendor letterhead asking that their account number for EFT credit deposits be amended to a new number. The corporate client updated their A/P system, began sending EFT payments to the new account (5 payments in a 9 day period). Vendor tells corporate client that they had not received payment, and upon investigation it was determined the letter received to amend the account was false. The other FI was contacted and froze the funds in the account. $4M had been withdrawn of the total $720M that had been transferred at the time the account was frozen. 5
  • 7. Impact of Fraud on Corporations Percentage of Company Revenues Lost to Fraud 1 Over two-thirds of companies experience some fraud losses, 5% or More 0% according to the CICA / RBC Business Monitor (Q4 2008). One-half of 4% to <5% 1% respondents estimate that less than 3% to <4% 0% 1% of company revenues are lost due to fraud. About one-third believe 2% to <3% 2% they’ve lost no revenue due to fraud. 1% to <2% 8% <1% 50% None 32% Don't Know 6% 0% 10% 20% 30% 40% 50% 60% Research indicates few organizations really understand what fraud is actually costing their business. Some commentators put the estimate of losses from fraud at 7% of revenue2. Others consider 7% high as an impact of fraud on businesses in general but recognize that some companies will experience significant frauds that will result in losses at this level, particularly in high risk frontier and emerging markets3. They see continuing opportunity for significant fraud losses as many organizations continue to underestimate avoidable fraud losses and fail to develop adequate controls. 1 CICA/RBC Business Monitor (Q4 2008) 2 Association of Certified Fraud Examiners 2008 Report to the Nation on Occupational Fraud and Abuse 3 PricewaterhouseCooper, Fraud in a downturn, 2009 6
  • 8. Impact of Economic Downturn on Fraud Employee Misconduct The Corporate Executive Board1 has seen startling trends internal fraud, including: A 20% increase in observations of misconduct from the first to the second half of 2008; A 5% decline in frontline employee perceptions of senior management's commitment to integrity; An increase in the number of disengaged employees, from one in ten to one in five, causing declines in companywide productivity of up to 5%. When employees perceive a weak ethical culture, misconduct significantly rises. 1 Corporate Executive Board/Business Week, How to deal with Employee Fraud and Misconduct, 12 June 2009 7
  • 9. Impact of Economic Downturn on Fraud - Internal Criminal organizations thrive during economic downturn: it becomes easier to infiltrate organizations and recruit insiders to help with fraud schemes as employees are more vulnerable due to family hardships. they can exploit greater weaknesses as companies are cutting oversight positions and reducing spending or resources devoted to internal controls According to a 2009 PWC report, “Fraud in a Downturn”, they see increased opportunity for rogue traders to operate undetected as control environments weaken. There are also significant influences that will provide pressure or incentives for some staff to trade beyond the limit of their authority. In tough economic times, it becomes easier for people to rationalize fraud and corruption increases. Employees become cynical about the ethical culture of the typical corporation. Rogue traders are not a threat faced only by investment bankers Many organizations use hedging strategies in their treasury function of trade commodities. The losses reported by Societe Generale in 2008 were an early warning of the impact of a declining economy on the heightened risk of fraud and irregularity. Additionally, PWC believe that as companies whose revenues are dropping sail ever closer to breaching their banking covenants, the temptation to ‘massage the numbers’ will increase. 8
  • 10. Corporate Actions Taken to Prevent Fraud4 Improve internal controls 83% Codes of business conduct and ethics for all employees 65% External audits 47% Conduct background checks on new employees 43% Conduct internal audits to test compliance 42% Workplace whistle-blower hotline available 36% Staff training in fraud awareness 28% Appoint compliance officer 15% No action taken 9% Other 2% 4 CICA/RBC Business Monitor (Q4 2008) 9
  • 11. Corporate Actions Taken to Combat Fraud5 Investigate suspicious activities using internal resources 88% Involve legal counsel 53% Dismiss employee without making a criminal complaint 38% Investigate suspicious activities using external resources 30% File criminal complaint against perpetrator as a deterrent for others 28% Contact internal audit 23% Involve external auditors 14% Do nothing 1% Other 4% 5 CICA/RBC Business Monitor (Q4 2008) 10
  • 12. Corporate Actions Taken to Prevent and Combat Fraud Mitigating Fraud Risk via a Culture of Integrity The key to corporate integrity and reduced misconduct is "organizational justice“ When employees believe their company has strong organizational justice, the company's overall commitment to integrity rises and misconduct drops. To create a culture of organizational justice, companies should start by following these three simple guidelines: 1. Equip managers to deal decisively and consistently with instances of misconduct or unethical behaviour; 2. Show the whole employee population how the company deals with misconduct; and 3. Close the loop with employees who report misconduct, so they know that appropriate actions were taken. 11
  • 13. Framework for Fraud Management There are five key components to the fraud management framework – prevention, detection, investigation, containment & recovery, and analysis & recommendations. This successful approach can be implemented in organizations of any size to effectively mitigate the risk of fraud. Some example activities are listed below and can be refined based on your own corporate needs. Prevention Control access to cheques, cards, electronic payments Screen new hires Train staff on fraud awareness Segregate duties Reconcile daily Protect sensitive data, systems, documents, passwords, PINs Analysis & KYC (+ suppliers, referral sources) Detection Recommendations Audit & monitor internal procedures Improve internal control processes Rigorously monitor financial position Invest in vendor fraud solutions Utilize FI electronic solutions & services Containment & Recovery Investigation Report unauthorized transactions to FI Implement investigative and escalation immediately processes Enforce a policy of zero tolerance 12
  • 14. Payment Fraud Statistics & Strategies The results of the 2009 AFP Payments Fraud and Control Survey* indicate that payment fraud is rampant and growing, as a majority of organizations experienced attempted fraud or actual payment fraud in 2008. Key findings include: 71% of organizations experienced attempted or actual payments fraud in 2008. 30% of organizations reported that incidents of fraud increased in 2008 over previous year Cheques continue to be the preferred target of thieves – 91% of organizations were victims of attempted or actual cheque fraud in 2008 Other targeted payment types for fraud included: ACH (AFT) debits (28%) or credits (7%) Consumer credit / debit cards (18%) Corporate / commercial cards (14%) Wire transfers (6%) * 2009 Association for Financial Professionals Payments Fraud and Control Survey 13
  • 15. Payment Fraud Statistics & Strategies – Cheques While cheques are losing ground to credit & debit cards and electronic payments, they remain a leading payment vehicle across North America. Approximately 5 million cheques and money orders are cashed on a daily basis in Canada. In 2008, the amount of money being exchanged in Canada in the form of cheques represented close to 1 trillion dollars. Cheque fraud is one of the fastest growing financial crimes today and projections indicate it will grow by 25 per cent each year (CBA). Forged signatures and endorsements, counterfeit cheques, kiting, physically altered amounts and / or payees are a few of the methods criminals exploit when attempting to pocket your business’ money. According to the 2009 AFP Payment Fraud and Control Survey*: Cheques continue to be the preferred target of fraudsters. E.g: Counterfeit cheques using the organization’s MICR line data (72%) Altered payee names on cheques issued by organizations (59%) Altered employee pay cheques (27%) 47% of organizations that were victims of at least one attempt of cheque fraud in 2008 suffered a financial loss resulting from cheque fraud * 2009 Association for Financial Professionals Payments Fraud and Control Survey 14
  • 16. Payment Fraud Statistics & Strategies – Cheques How to Protect Against Cheque Fraud: 1) Internal controls are crucial and are one of your best lines of defence against cheque fraud. Best practices include: Reconcile your accounts daily Separate the accounts payable and receivable roles Periodically change cheque stock, destroy your old, unused cheques, and always lock up blank cheques. Ensure all cheques issued from a single account look and feel the same. Minimize the number of manual or rush cheques and closely examining those that are issued When using a laser printer to print cheques, ensure access is password-protected and that cheque paper has toner anchorage features Place stop payments on cheques not cashed in a timely manner Monitor payment activity carefully and conduct surprise and scheduled audits 2) Leverage cheque security features 3) Reduce the use of risk-prone cheques in favour of electronic payments 4) Take advantage of corporate card payment services to replace many cheque payments 5) Utilize fraud control / security services offered by your financial institution (e.g. Positive Pay, Enhanced Positive Pay) With strong internal controls, electronic and card payment solutions, and fraud services, your company can reduce the risk of cheque fraud 15
  • 17. Payment Fraud Statistics & Strategies – Card Fraud While card payments are subject to greater controls than cheques, they can be vulnerable to particular types of attacks. Some common types include: Lost and stolen card fraud Non-receipt fraud – Cards intercepted in mail before customer ever receives card Counterfeit cards (skimming) – Magnetic stripe data on cards can be copied at tampered POS device or ABM and transferred onto a counterfeit card Card-not-present (CNP) fraud – Stolen or compromised card data used to commit fraud online or by phone Data breaches (i.e., “account data compromises”) Rollout of Chip Technology in Canada Enhanced security is coming for card users in Canada, as Chip cards and terminals will be rolled out over the next several years. Chip-based credit cards will require the use of a PIN as well. Security is improved as data on Chip is extremely difficult to copy or change Counterfeiting (skimming) of credit and debit cards should be reduced, but will take some time. Customer confidence should improve, along with less need to report / dispute unauthorized transactions or obtain replacement cards 16
  • 18. Payment Fraud Statistics & Strategies – Card Fraud How to Protect Against Card Fraud: Use Chip cards as soon as they are available Ensure your card users always check their statements regularly, verify that all transactions are legitimate and report any unauthorized transactions to your financial institution as quickly as possible Always memorize and protect your PIN; don’t allow corporate card users to share cards / PINs Treat the card like cash - - keep it in secure place For internet purchases, ensure your users are registered for Verified by Visa and MasterCard SecureCode Determine access rules for who can be issued a corporate card and enforce control procedures when adding or changing employees Take advantage of corporate card control features, such as the ability to set merchant types where corporate cards can be used, reduce spending limits, disallow out-of-the country transactions, etc. 17
  • 19. Payment Fraud Statistics & Strategies – Electronic Fraud Criminals attack Internet users in a variety of ways, including: Phishing Emails that pretend to be from your bank or other financial institution, urging you to click on a link that takes you to a fake website that appears to be identical to that of your bank or FI. You are then asked to verify your personal security and account information. If acted upon, the criminal may now have the required information (e.g., account number and password) to commit fraud on your account. Trojans Types of computer viruses which can be installed on your computer without your knowledge. They are capable of logging your keystrokes thereby capturing your passwords and other personal or account information that allow the criminal to then complete fraud on your accounts. Data Breaches (Account Data Compromises) In 2008 there were a reported 285 million compromised data records including payment transactions information. Although the revenue impact and operating expense impact were mainly suffered by card issuers and financial institutions, the impact to corporate clients is inconvenience - fraud on accounts, cards being preventatively blocked and reissued. 18
  • 20. Payment Fraud Statistics & Strategies – Electronic Fraud How to Protect Against Electronic Fraud: 1. Just as you protect your business with locks on doors and burglar alarms, it is vital that you take steps to ensure that your computers are protected against the latest threats. Use anti-virus software and keep it up-to-date on a regular basis Use a firewall Download the latest security updates (or patches) for your web browser and operating system Engage experts to stress test systems 2. Improve your customer authentication processes for both online and telephone transactions. Combination of user ID and password Multifactor Authentication (MFA) New processes which leverage Chip technology are now being explored in Canada, after being used with success in Europe and other parts of the world. 3. If applicable to your business, PCI Compliance Standards should be followed: Build and maintain a secure network Protect cardholder data Maintain a Vulnerability Management Program Implement strong access control measures Regularly monitor and test networks Maintain an Information Security Policy 19
  • 21. Fraud Prevention Practices & Tools Strategic Framework People and Processes Develop board and audit committee oversight Attract and hire professional staff Establish code of conduct Perform employee background checks Endorse board approved reporting structure Conduct fraud awareness training and ensure consequences are understood Rigorously monitor financial position Segregate duties Align audit with regulatory mandates Make vacations mandatory Consider implementing Committee of Sponsoring Organizations (COSO) Limit authority to initiate / originate movement of funds framework Report unauthorized transactions to your FI immediately Consider insuring employees with access to electronic payments Establish account and transaction controls Physical and Virtual Environment Secure Your Corporate Identities Secure your floor, department, office, files and data Reconcile daily if possible Maintain tight controls over cheque stock and cheque printing processes Monitor wire and EFT activity Use cheques with a variety of security features Structure accounts to facilitate early fraud detection Implement stringent controls around electronic payment initiation: password, Protect documents containing corporate identity – statements, cheques, reports session and user management, payment authentication Protect PINs and passwords Establish and automate transaction approval thresholds Keep financial documents secure at all times and shred when disposing Utilize systems with built in controls Understand rights and privileges that you provide to your partners and vendors Maximize automation and straight-through processing Designate a compliance officer Segregate and back up sensitive data Pay companies to monitor your websites 20
  • 22. Fraud Prevention Practices & Tools Strategic Framework Develop board and audit committee oversight Establish code of conduct Endorse board approved reporting structure Rigorously monitor financial position Align audit with regulatory mandates Consider implementing Committee of Sponsoring Organizations (COSO) framework Consider insuring employees with access to electronic payments 21
  • 23. Fraud Prevention Practices & Tools People and Processes Attract and hire professional staff Perform employee background checks Conduct fraud awareness training and ensure consequences are understood Segregate duties Make vacations mandatory Limit authority to initiate / originate movement of funds Report unauthorized transactions to your FI immediately Establish account and transaction controls 22
  • 24. Fraud Prevention Practices & Tools Physical and Virtual Environment Secure your floor, department, office, files and data Maintain tight controls over cheque stock and cheque printing processes Use cheques with a variety of security features Implement stringent controls around electronic payment initiation: password, session and user management, payment authentication Establish and automate transaction approval thresholds Utilize systems with built in controls Maximize automation and straight-through processing Segregate and back up sensitive data 23
  • 25. Fraud Prevention Practices & Tools Secure Your Corporate Identities Reconcile daily if possible Monitor wire and EFT activity Structure accounts to facilitate early fraud detection Protect documents containing corporate identity – statements, cheques, reports Protect PINs and passwords Keep financial documents secure at all times and shred when disposing Understand rights and privileges that you provide to your partners and vendors Designate a compliance officer Pay companies to monitor your websites 24
  • 26. Final Thoughts As seen with the longevity of cheque fraud, payment fraud continues to be a never ending story. Payment fraud will continue to evolve as new payment types become available such as wireless mobile payments which launched in Canada in June 2009. Criminals will continue to switch their attack methods away from the more secure payment types e.g. Chip cards to other types of payment fraud such as international card fraud in non-Chip countries like the US. Criminals’ sophistication and nimbleness will continue to increase. They will constantly be looking for ways to take advantage of any gaps in the system to perpetrate fraudulent activities. It’s important to stay vigilant and on top of emerging trends. Questions? 25