ABA Banking Journal
No Result
View All Result
  • Topics
    • Ag Banking
    • Commercial Lending
    • Community Banking
    • Compliance and Risk
    • Cybersecurity
    • Economy
    • Human Resources
    • Insurance
    • Legal
    • Mortgage
    • Mutual Funds
    • Payments
    • Policy
    • Retail and Marketing
    • Tax and Accounting
    • Technology
    • Wealth Management
  • Newsbytes
  • Podcasts
  • Magazine
    • Subscribe
    • Advertise
    • Magazine Archive
    • Newsletter Archive
    • Podcast Archive
    • Sponsored Content Archive
SUBSCRIBE
ABA Banking Journal
  • Topics
    • Ag Banking
    • Commercial Lending
    • Community Banking
    • Compliance and Risk
    • Cybersecurity
    • Economy
    • Human Resources
    • Insurance
    • Legal
    • Mortgage
    • Mutual Funds
    • Payments
    • Policy
    • Retail and Marketing
    • Tax and Accounting
    • Technology
    • Wealth Management
  • Newsbytes
  • Podcasts
  • Magazine
    • Subscribe
    • Advertise
    • Magazine Archive
    • Newsletter Archive
    • Podcast Archive
    • Sponsored Content Archive
No Result
View All Result
No Result
View All Result
ADVERTISEMENT
Home Cybersecurity

Running the Footrace Against Fraud

October 19, 2018
Reading Time: 4 mins read

By Monica C. Meinert

Special Report on Payments

  • New developments on the road to real-time payments.
  • A policy perspective on faster payments evolution.
  • Payments trends to watch in 2019.
  • “Open banking”: aspirational slogan, business model or regulatory regime?

Like a pair of competitive distance runners racing each other around a track, financial innovation and fraud are never far apart. With each stride the banking industry takes toward new technologies, fraudsters are just inches behind, finding new ways to leverage those same advancements to compromise and exploit consumers’ financial data.

For payments fraud professionals, fighting fraud can seem like a marathon with a finish line that keeps moving further and further away. Traditional methods of fraud—like phishing, business email compromise, wire scams and check fraud—are still in play and growing more targeted and sophisticated. But technology is also giving rise to all-new types of fraud the industry hasn’t seen before.

Data loss fuels the fraud cycle

The overarching themes shaping today’s fraud landscape are “digital, automated and scalable,” according to Mary Ann Miller, senior director at NICE Actimize, a company that provides fraud prevention, anti-money laundering and risk management solutions to the financial industry.

Driving these increasingly complex attacks is the lucrative prospect of credential collection. Today, consumer credentials have become valuable commodities that can be sold for profit on the dark web, Miller explains. The desire for credential collection is evident in the recent uptick in scalable attacks targeting login pages, advanced botnet attacks and “peeking events,” where fraudsters “peek” at consumer accounts, check balances and then sell high-value consumer data.

Another up-and-coming fraud tactic involves the creation of “synthetic IDs” where fraudsters splice together stolen information from multiple consumers to create new customers that don’t actually exist. Using these newly fashioned identities, fraudsters can open new bank accounts or lines of credit and obtain driver’s licenses or passports.

There’s also phone porting, where fraudsters hijack a consumers’ mobile phone number by contacting the telephone company and porting the number over to a new device. With just a few pieces of personal information (like a Social Security number, date of birth or address), fraudsters can take control of the consumer’s phone and game multifactor authentication systems, gaining access to bank accounts, cloud accounts and other secured accounts.

It’s not just individual actors

Fraud today is not just being conducted by shady criminals operating from a dark corner of the internet. Over the past few years, nation-states have emerged as a critical cyber threat, engaging in state-sponsored hacking targeting the U.S. economy and critical infrastructure sectors.

“The velocity of risk is increasing. We’re facing increasing levels of systemic risk,” notes Reid Sawyer, SVP for credit, political and security risk at JLT Specialty, an insurance brokerage and risk management firm. “Within hours of U.S. [policy] action, foreign intelligence services can start to target the financial sector.”

Taken together, the fraud landscape has evolved to the point where Sawyer characterizes it as “crime as a service.” “The democratization of cyber attacks, the ability to lease tools to attack institutions means that I don’t have to have the technical skill points, I just have to understand where to find the right tool to launch against you,” he explains.

‘Trust is the victim’

Banks are responsible for safeguarding massive amounts of customer data, with varying degrees of value and sensitivity level. And as fraud tactics continue to evolve, keeping it safe is becoming increasingly difficult.

“From the technical side, [the data is] sitting across endpoints, it’s in hybrid cloud servers, it’s sitting everywhere in your organizations to the point where your CISOs would probably tell you that they can’t track the amount of data the organizations have,” Sawyer says. Yet, at the same time, banks are being held increasingly more accountable for the security of that data.

When banks fail to prevent fraud, ultimately what suffers is the trust relationship they share with their customers. “The victim of this is the trust proposition you have,” adds Sawyer. “It drives us back to: are we measuring what matters?” And the answer to that question is: not necessarily.

“When the CISOs report up to the board, they’re really reporting on vulnerabilities. They’re describing: how tall is my fence? What’s my cyber maturity? What are my defenses? That doesn’t describe risk.”

From ‘failsafe’ to ‘safe to fail’

The reality is that most companies at some point will be confronted with some type of data breach. For banks, that means acknowledging the fact that it’s not a question of “if” but “when” and planning accordingly. “We need to shift the mentality from ‘we cannot fail’ to ‘how can we fail safely?’” says Sawyer.

He urges bankers to take a second look at how they’re measuring and monitoring risk and reporting up to the board and senior management. “It’s understanding, where is it that it’s going to have balance sheet impacts? Does a breach in Q2 create a liquidity event for me in Q3?”

And when it comes to communicating that information up the chain, “if we can’t take our nomenclature and describe it in plain English, we really fail,” Miller says. Fraud professionals must understand “what are the threats and put them in key terms that executives can understand.”

Finally, she notes that customer service plays a role in fraud mitigation as well. “As financial institutions, our job is really taking an unfortunate fraud event and turning it into a loyalty building event. We know [breaches] are happening, we know that they’re continuing to scale up and be daily occurrences. But what we can do is making sure we’re reacting to and protecting our customers.”

ADVERTISEMENT

Tags: Cloud computingCyber crimeCybersecurityData breachesFraudIdentity fraudPayments systemRisk management
ShareTweetPin

Author

Monica C. Meinert

Monica C. Meinert

Monica C. Meinert is a senior editor at the ABA Banking Journal and VP for executive communications at the American Bankers Association.

Related Posts

ABA suggests splitting proposal to expand Fedwire, NSS operating hours

FATF releases revisions to international standard for payment transparency

Compliance and Risk
June 18, 2025

FAFT announced several revisions to its recommendation on payments transparency, which it said will enhance the safety and security of cross-border payments to better detect financial crime.

Senate Democrats seek proposals for regulatory changes following recent bank closures

Stablecoin bill clears Senate

Newsbytes
June 17, 2025

The Senate voted in favor of legislation to establish a regulatory framework for payment stablecoins, with proposed amendments to establish routing mandates and interest rate caps for credit cards left out of the final bill.

Is deepfake technology shifting the gold standard of authentication?

Will fraud prevention ever be autonomous?

Technology
June 17, 2025

Anti-fraud systems are learning to anticipate fraud rather than merely react to it. Better anticipatory abilities inch systems closer to full automation.

New infographics provide advice for identifying money mules, check fraud

Banking agencies seek public comment on strategies to combat payments fraud

Compliance and Risk
June 16, 2025

The FDIC, Federal Reserve and OCC issued a request for comment on potential actions to help consumers, businesses and financial institutions mitigate risks related to payments fraud, particularly check fraud.

Illinois lawmakers vote to delay implementation date for state interchange fee law

Illinois pushes back implementation date for state interchange fee law

Newsbytes
June 16, 2025

Illinois Gov. JB Pritzker signed into law a bill that extends by a year the effective date of a first-of-its-kind state law restricting interchange fees.

CFPB claims ‘complex’ pricing drives up cost of financial products

ABA, associations reiterate concerns about CFPB nonbank registry

Compliance and Risk
June 16, 2025

ABA joined two associations in reiterating their concerns about the CFPB’s nonbank registry, which the current bureau leadership has proposed to eliminate.

NEWSBYTES

Treasury official outlines principles for Bank Secrecy Act modernization

June 18, 2025

Report: Bank merger activity continues at steady pace

June 18, 2025

CFPB proposes ending using civil penalty funds for consumer education, financial literacy

June 18, 2025

SPONSORED CONTENT

AI Compliance and Regulation: What Financial Institutions Need to Know

Unlocking Deposit Growth: How Financial Institutions Can Activate Data for Precision Cross-Sell

June 1, 2025
Choosing the Right Account Opening Platform: 10 Key Considerations for Long-Term Success

Choosing the Right Account Opening Platform: 10 Key Considerations for Long-Term Success

April 25, 2025
Outsourcing: Getting to Go/No-Go

Outsourcing: Getting to Go/No-Go

April 5, 2025
Six Payments Trends Driving the Future of Transactions

Six Payments Trends Driving the Future of Transactions

March 15, 2025

PODCASTS

Podcast: Staying close to clients amid tariff-driven volatility

June 18, 2025

Podcast: Old National’s Jim Ryan on the things that really matter

June 12, 2025

Podcast: What bankers need to know about ‘First Amendment audits’

June 5, 2025
ADVERTISEMENT

American Bankers Association
1333 New Hampshire Ave NW
Washington, DC 20036
1-800-BANKERS (800-226-5377)
www.aba.com
About ABA
Privacy Policy
Contact ABA

ABA Banking Journal
About ABA Banking Journal
Media Kit
Advertising
Subscribe

© 2025 American Bankers Association. All rights reserved.

No Result
View All Result
  • Topics
    • Ag Banking
    • Commercial Lending
    • Community Banking
    • Compliance and Risk
    • Cybersecurity
    • Economy
    • Human Resources
    • Insurance
    • Legal
    • Mortgage
    • Mutual Funds
    • Payments
    • Policy
    • Retail and Marketing
    • Tax and Accounting
    • Technology
    • Wealth Management
  • Newsbytes
  • Podcasts
  • Magazine
    • Subscribe
    • Advertise
    • Magazine Archive
    • Newsletter Archive
    • Podcast Archive
    • Sponsored Content Archive

© 2025 American Bankers Association. All rights reserved.