Issue 14
November 2024
Welcome to the MBA's News Digest!
Dear readers,
Roughly 65% of financial organisations have dealt with ransomware-related issues in 2024, reports the Financial Services Information Sharing and Analysis Centre.
US banking giant JP Morgan Chase, takes to suing customers who illegally withdrew thousands of dollars from its ATMs, thanks to a glitch in the system.
In the UK, Manchester Crown Court sentences man to 6 years and 9 months in custody for defrauding elderly customers out of an estimated £958,949.
Best wishes,
The MBA team
Basel AML Index updates methodology to reflect rising global fraud risks
29 October 2024
‘Statistics from global financial centres (e.g. US, UK, Switzerland, Canada) indicate that fraud is among the top offences reported in suspicious activity reports submitted by banks and other regulated entities. According to the U.S. 2024 National Money Laundering Risk Assessment, “[f]raud remains the largest and most significant proceed-generating crime for which funds are laundered in or through the United States.” Singapore’s 2024 National Risk Assessment likewise identifies fraud – particularly cyber-enabled fraud – as one of the country’s key money laundering threats. The threat posed by fraud is not just about financial systems, but about its devastating impact on ordinary individuals and companies. Introducing the 2024 INTERPOL Global Financial Fraud Assessment, INTERPOL’s Secretary General referred to an “epidemic in the growth of financial fraud, leading to individuals, often vulnerable people, and companies being defrauded on a massive and global scale”. The assessment highlights the prevalence of investment, romance and advance payment fraud schemes.’
The future of money and payments - speech by Andrew Bailey
26 October 2024
‘In this speech, Andrew Bailey emphasises the need to modernise payment systems, particularly cross-border and wholesale payments, by harnessing digital technology. He discusses the roles of central bank and commercial bank money, the importance of innovation, and the potential for a retail Central Bank Digital Currency (CBDC) if innovation in commercial banks does not happen.’
Sibos 2024: Navigating partnerships between banks and fintechs
1 November 2024
‘Kostelijk noted that banks are often responsible for regulatory compliance on behalf of their partners, even when those partners aren’t held to the same standards. This creates a “complex situation”, especially in outsourcing arrangements, where banks may face additional dependencies and risk management responsibilities. She advised banks against linking to “whatever the partner in whatever shape or form is doing”, warning that in a heavily regulated environment, a fintech partner with lax compliance standards could bring regulatory scrutiny onto the bank. “[The regulator] then will call upon us banks to say, well, you referred your customers to this company, you solve it,” Kostelijk stated, emphasising the need for carefully structured “outsourcing” models. Manish Kohli, Head of HSBC’s Global Payments Solutions, added that for banks with the right controls in place, the regulatory environment can actually serve as a “big tailwind towards fintech and bank collaboration”. Partnerships with fintechs, he noted, allow banks to bring new solutions to market faster while upholding regulatory priorities.’
Banks must enhance cybersecurity measures
4 November 2024
‘While we welcome the central bank’s actions, we also urge the banks and financial institutions to be more proactive in ensuring the financial security of their customers. Measures such as keeping their cybersecurity systems updated or using artificial intelligence or machine learning to detect unusual trends in bank identification number attacks are not enough. They also need to educate their customers about the potential risk of sharing personal data online and suggest ways to protect their data online. However, given the sophistication of technology that cyber criminals apply, it is not realistic to expect that simply raising users’ awareness about cybersecurity can prevent such digital financial crimes. Banks and financial institutions have to invest in better online technology and enhanced security protocols to prevent cyber and malware attacks. The government, on the other hand, should revisit and ensure that our laws and regulations on online financial crimes prioritise and protect consumers’ interests and guarantee compensation to victims.’
JP Morgan sues customers over viral TikTok cheque fraud
29 October 2024
‘US banking giant JP Morgan Chase, is suing customers who allegedly took advantage of a glitch by illegally withdrawing thousands of dollars from its ATMs. The “infinite money glitch”, as it became known on TikTok, allowed the bank’s customers to write a large cheque to themselves, deposit it and then withdraw the funds before the cheque bounced. Two individuals and two businesses are facing lawsuits in courts in Houston, Miami and Los Angeles. They are being asked to return the money with interest, pay related overdraft fees and cover legal expenses as well as other costs suffered by the bank.’
Fraudster sentenced to over six years after stealing over £950,000 from vulnerable customers
1 November 2024
‘A man has been sentenced at Manchester Crown Court to 6 years and 9 months in custody for defrauding elderly customers out of an estimated £958,949. He posed as a bank employee working to investigate fraud, tricking customers into handing over control of their bank.’
Quality data is required to maximise AI efforts
30 October 2024
‘Address autocomplete or lookup services are valuable pieces of technology to use at the customer onboarding stage. They provide accurate address data in real-time when onboarding new customers by delivering a properly formatted, correct address when they commence inputting theirs. They also reduce the number of keystrokes required, by up to 81 per cent, when typing an address. This speeds up the entire onboarding process, reducing the probability of the user not completing an application to access a service, for example. This approach to first point of contact verification can be extended to email and phone, so that these important contact data channels can also be verified in real-time.’
Report finds lenders increasingly targeted by fake identity scams
1 November 2024
‘The percentage of synthetic identities among accounts opened by U.S. lenders for auto loans, bank credit cards, retail credit cards and unsecured personal loans reached an all-time high at the end of the first half of 2024, the credit reporting agency TransUnion said in a new report on fraud. As a result of the increase, lenders were exposed to $3.2 billion in potential losses, which is also an all-time high and 7% more than the end of the first half of 2023… TransUnion also found an increase in “credit washing,” which is a scam where criminals using synthetic identities attempt to wipe out negative information from an identity’s credit history by making a false claim of identity fraud. “These false credit report disputes could be made against accounts opened using a stolen consumer identity or synthetic identity, or unauthorized transactions on a consumer’s legitimate credit account,” according to the report.’
ABA’s Thurlow: Bank innovation needed to reach younger customers
28 October 2024
‘In her speech, Thurlow discussed the tsunami of banking regulation facing the industry, saying the regulatory environment “has made us all compliance officers and risk managers.” But she also stressed the need for banks to remain relevant to the next generation of customers. Today’s young people are turning to nonbank apps and other products for their money management, with banks serving as little more than “paycheck motels,” Thurlow said, quoting banking and fintech consultant Ron Shevlin. “Tech companies have taken the friction out of our products and moved consumers and their money to their balance sheets, and that’s outside of the regulated industry,” Thurlow said. “At this rate, all we will have left on our balance sheets are high-cost deposits and commercial loans, and the regulators should be pretty afraid of that profile. I know I am. But it’s also a wake-up call for innovation.’
FS-ISAC releases guide for financial institutions on ransomware defense
1 November 2024
‘The guide, published in partnership with cloud services provider Akamai, focuses on ransomware mitigation best practices, incident response and crisis management, consideration for paying ransoms and resources for further study. In 2024, roughly 65% of financial organizations reported having dealt with ransomware-related issues, according to FS-ISAC. “Ransomware is one of the few threats that can truly disable a financial services institution. Increasingly innovative, aggressive and frequent, ransomware attacks can disrupt customer services, halt business operations, and damage the institution’s standing with customers and regulators.” ’
Level 15, Newton Tower,
Sir William Newton Street,
Port Louis, Mauritius.
Tel: (230) 213 2390
Fax: (230) 213 0968
2024 © All Rights Reserved. Mauritius Bankers Association Limited