Authorised Push Payment Fraud
Bank transfer fraud affects all companies, whatever their size or sector of activity. Although fraud is now better known to the general public, it is no less threatening in the face of unscrupulous fraudsters with increasingly technical and sophisticated methods.
Both professionals and private individuals are affected, from bankcard and cheque fraud to in-house fraud and scams. Cybercriminals are cunning and know how to deceive their victims. Every potential victim needs to be vigilant.
Since the health crisis and the spread of teleworking, every department within a company is exposed to major risks of fraud. The finance department in particular is the main target of fraudsters when it comes to transfer scams. Weaknesses are highlighted and exploited to obtain fraudulent payments.
Of the various types of bank transfer fraud, the most popular is the fake supplier fraud, which involves impersonating a company’s supplier, but other types of fraud also exist.
Fake supplier fraud
48% of frauds
Social engineering & identity theft
False supplier fraud is the fraudster’s favourite technique
Fake bank advisor fraud
Identity theft & manipulation
Fake banker fraud involves impersonating an official entity
Fake President fraud
38% of frauds
Pressure & identity theft
The fraudster puts pressure on the financial department, often by telephone via deepvoice.
Phishing, a dreadful form of e-mail and SMS fraud.
The techniques most commonly used in bank transfer fraud (or FOVI) are identity theft and social engineering. The way in which the victim is contacted and approached varies. In phishing, for example, the fraudster sends an e-mail or text message to encourage the victim to enter sensitive data (bank details, login details, bank card, etc.) on a fraudulent page. Another risk concerns online credit card payments, which are often subject to phishing attacks. Companies are weak in the face of these attacks and have very little recourse, even if legal proceedings are initiated. Victims are often hit by a rebound attack. In other words, once a company has fallen victim to a money transfer scam, the next victim is often one of its customers or suppliers. There are no borders to this threat, the fraudster is difficult to identify and the chances of a refund of the amount stolen are very slim. Fraudsters are usually organised in groups and carry out these scams in order to finance larger illegal operations.
Worldwide, it is estimated that almost half of all companies have been the victim of a fraud attempt, but few are willing to share their experiences. As a result, they do not lodge complaints, even though they have few rights to assert when faced with a situation of bank transfer fraud. By making as many companies as possible aware of the different techniques used, how to protect themselves and the risks involved, the fight becomes a collective one.
Fraud is a collective battle!