must know about wire fraud
play

Must Know About Wire Fraud April 8, 2015 Moderator E. Andrew - PowerPoint PPT Presentation

Nov 17, 2023 •121 likes •639 views

5 Things Your Credit Union Must Know About Wire Fraud April 8, 2015 Moderator E. Andrew Keeney, Esq. Presenter R. Johan Conrod, Jr., Esq. R. Johan Conrod Jr., Esq. 150 West Main Street, Suite 2100 Norfolk, VA 23510 (757) 624-3183

  1. 5 Things Your Credit Union Must Know About Wire Fraud April 8, 2015 Moderator E. Andrew Keeney, Esq. Presenter R. Johan Conrod, Jr., Esq.

  2. R. Johan Conrod Jr., Esq. 150 West Main Street, Suite 2100 Norfolk, VA 23510 (757) 624-3183 rjconrod@kaufcan.com E. Andrew Keeney, Esq. 150 West Main Street, Suite 2100 Norfolk, VA 23510 (757) 624-3153 eakeeney@kaufcan.com http://www.kaufmanandcanoles.com/movies/credit-unions.html

  3. Introduction • The goal of this Webinar is to provide credit unions practical tools to – Understand the fundamentals of authentication processes, – Know how wire fraud bond coverage works just in case a fraud occurs, and – Recognize best practices to prevent wire fraud and protect bond claims These materials have been prepared for informational purposes only and are not legal advice. This information is not intended to create, and receipt of it does not constitute, an attorney-client relationship. Internet users should not act upon this information without seeking professional counsel from a lawyer licensed in the reader’s home jurisdiction.

  4. Wire Fraud Is Everywhere Criminals are creative – a Overall, Wire Fraud Wire Fraud incidents recent widespread scam cases have risen are increasing at a targeted HELOCs and tenfold in the past 10 faster rate than even involved more than two years (Wall Street identity theft (WSJ, dozen credit unions Journal, 10/9/13) 10/9/13) (Credit Union Times, 11/25/14)

  5. The 5 Things 1. What is authentication? 2. How is authentication applied in real life? 3. What wire fraud coverage is available under my fidelity bond? 4. Do other bond coverages apply? 5. How can I best protect my credit union?

  6. THE BASICS OF IDENTITY AUTHENTICATION

  8. Point of Clarification **FFIEC guidance relates specifically to online banking -Most wire transfer requests are made through phone, facsimile or in-person requests, not via your online banking system -However, the principles that form the foundation of the FFIEC guidance are critical to understanding authentication in general, including as it relates to wire transfers

  9. AUTHENTICATION FACTORS RECOGNIZED BY THE FFIEC Authentication refers to the process by which a credit union verifies that the person making a request is authorized to make the request Authentication can be either “single - factor” or “multi - factor” – the more factors, the more security The 3 categories of “factors” are: (1) something you know (password or PIN), (2) something you have (ATM card or phone number that can be called), or (3) something you are (fingerprints, retina scans, etc.)

  10. Multi-factor Authentication • Multi-factor authentication refers to the act of using more than one category of factor when authenticating a person’s identity • Using an ATM machine is a classic example of multi-factor authentication: the PIN is “something you know,” and the ATM card itself is “something you have”

  11. Critical Point! For example, asking for “Multi - factor” authentication multiple passwords is not refers to multiple different multi-factor authentication, types of authentication, not because all passwords fall multiple uses of the same under the “something you type of authentication know” type of authentication

  12. FFIEC Guidance • Single-factor authentication is “inadequate in the case of high-risk transactions involving access to customer information or the movement of funds to other parties.” • In other words, you typically must use some form of multi-factor authentication when wiring funds • However, multi-factor authentication alone might not be enough in today’s Internet environment – procedures such as “dual control” may be required – Dual control requires authentication information from more than one member to authorize a transaction

  13. “Single Factor Authentication”

  14. Survey Question # 1 “Multi - factor authentication” refers to: a. An algebraic equation you must know for the SAT; b. How NASA calculates coordinates for the Mars rover landing; c. The act of using more than one category of factor when authenticating a person’s identity

  15. UCC Article 4A Shifts risk of loss from financial institutions to Deals with wire fraud member if CU uses “commercially reasonable authentication in commercial security procedures” set forth transaction context and risk shifting in a written agreement with the member that governs the transaction at issue

  16. Commercially Reasonable Security Procedures • Does not require use of the “best” available procedures, just those that are reasonable under the circumstances • 4A gives examples – “algorithms or other codes, identifying words or numbers, encryption, callback procedures, or similar security advices” • Handwriting analysis is not a commercially reasonable security procedure

  17. Commercially Reasonable Security Procedures, cont. • “One size fits all” procedures are not sufficient – procedures must fit the particular member • 4A says in assessing commercial reasonableness, courts should consider “the wishes of the customer expressed to the bank, the circumstances of the customer known to the bank, alternative security procedures offered to the customer, and security procedures in general use by customers and receiving banks similarly situated”

  18. Patco Construction Co., Inc. v. People’s United Bank 684 F.3d 197 (1 st Cir. 2012) • $588,851 in fraudulent withdrawals from Patco’s account • Bank claimed its security procedures were reasonable and therefore Patco had risk of loss • Trial court agreed with Bank – But appeals court reversed, finding that procedures were not commercially reasonable

  19. Patco Construction Co., cont. • Bank used third-party security software with multiple security options, including user IDs and passwords; invisible device authentication via “cookies”; risk profiling via assessment of geo-location, IP address and transaction history; and use of “challenge questions” • But Bank mis-stepped in 2 big ways: – Bank lowered threshold for use of challenge questions to $1, which meant that questions were used every time Patco performed any transaction – Bank did not follow up on warnings generated by software system • Fraudsters used a keylogging malware, which discovered the challenge questions and enabled the theft

  20. Patco Construction Co., cont. • According to appeals court, failing to follow up on software warnings and lowering challenge question threshold to $1 were both commercially unreasonable under the circumstances • The Bank argued that lowering challenge question threshold to $1 for all bank customers helped bank better catch small frauds • But appeals court rejected this position – the court said that the question of commercial reasonableness must be analyzed on a customer by customer basis • “One size fits all” solutions are not reasonable , said the court

  21. Choice Escrow & Land Title, LLC v. BancorpSouth Bank, 754 F.3d 611 (8 th Cir. 2014) • $440,000 fraudulent wire from Choice’s account to an account in the Republic of Cypress • Prior to fraud, Bank had offered heightened security procedures but Choice declined them • Appeals court found that because Choice turned down procedures that were commercially reasonable, risk of loss fell on Choice and not Bank

  22. Choice Escrow & Land Title, LLC, cont. • Court recognized that security procedures must evolve as fraudsters become more sophisticated – so a procedure that is reasonable today may not be tomorrow • Bank offered “dual control” option to Choice because multi-factor authentication standing alone may not have been sufficient • Choice declined dual control, and instead used single-control process, which only required authentication information from one employee rather than two

  23. Survey Question # 2 Yes or No : Handwriting analysis is a commercially-acceptable security procedure under the UCC?

  24. FIDELITY BOND COVERAGE FOR WIRE FRAUD

  25. BOND COVERAGE IS NOT AN EXCUSE TO AVOID IMPLEMENTING ADEQUATE SECURITY PROTOCOLS • “Insurance coverage is not a substitute for an information security program. …[T]he Security Guidelines require a financial institution to implement and maintain controls designed to prevent those [fraudulent] acts from occurring.” – Interagency Guidelines Establishing Information Security Standards , Board of Governors of the Federal Reserve System

  26. “Don’t worry, insurance will cover it.”

  27. Typical Bond Language

  28. Alternate Coverage **Note that at least one major credit union bonding company has recently changed its funds transfer coverage so that, instead of providing full coverage, the insurer shares all funds transfer loss above $25,000 50/50 with the credit union

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CYBER FRAUD Presented by: JACK R. SUDOL, MBA Cyber Fraud FBI Announcement Between October

CYBER FRAUD Presented by: JACK R. SUDOL, MBA Cyber Fraud FBI Announcement Between October

CYBER FRAUD Presented by: JACK R. SUDOL, MBA Cyber Fraud FBI Announcement Between October 2013 and December 2016 the FBI reported 40,203 incidents of BEC/EAC totaling $5.3 Billion Dollars of Losses! The number of wire fraud scams

997 views • 20 slides
Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention

Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention

Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention Case Studies Our Commitment Spring ISD Source: ACFE & Fraud Overview What Is Fraud? Fraud is any intentional act or

405 views • 18 slides
Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is

Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is

Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is fraud? Definition Facts Four factors Fraud risk assessment Four evaluation criteria Common fraud schemes Case studies

707 views • 60 slides
What is Fraud ? The Fraud Act 2006 defines fraud as . Headed by Investigations Manager

What is Fraud ? The Fraud Act 2006 defines fraud as . Headed by Investigations Manager

Points to cover Leicester City Council Revenues & Benefits Investigation Team What is Fraud? Fraud Awareness Key issues for the Team Audit and Risk Committee Referrals & Investigation Process Sanctions &

69 views • 4 slides
The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of

The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of

The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of Presentation General measures of fraud Past measurement of fraud The annual fraud indicator and fraud Theres no fraud here, Ive

684 views • 26 slides
and Education (WIRE) Jane Hillston University of Edinburgh What is WIRE? WIRE is a working

and Education (WIRE) Jane Hillston University of Edinburgh What is WIRE? WIRE is a working

Women in Informatics Research and Education (WIRE) Jane Hillston University of Edinburgh What is WIRE? WIRE is a working group of Informatics Europe, aiming to raise awareness and promote good practice with respect to women in

366 views • 9 slides
Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud

Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud

Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud Examiners (ACFE) is an international, professional organization dedicated to fighting fraud and white-collar crime . As fraud becomes increasingly more

373 views • 24 slides
Definition of Fraud Fraud is an intentional deception made for personal gain Fraud Triangle

Definition of Fraud Fraud is an intentional deception made for personal gain Fraud Triangle

MMTCTA Fraud Internal Controls Presented By Ron Smith & Greg Chabot, RHR Smith & Co. May 14, 2015 About RHR Smith & Company: RHR does approx 130 of Maines 500 Municipalities In the past year RHR has Investigated 23+

506 views • 39 slides
Randomness Some content taken from Silence on the Wire by Michal Zalewski Todays Agenda

Randomness Some content taken from Silence on the Wire by Michal Zalewski Todays Agenda

Randomness Some content taken from Silence on the Wire by Michal Zalewski Todays Agenda Randomness in Private Key Generation Randomness in Election (fraud) Randomness in Coin Flipping What is random? Chosen without method

693 views • 35 slides
N D WIRE NETTING e M h P i t c h s f D I A W r e o i 1. 60 1 .60 ) m m (

N D WIRE NETTING e M h P i t c h s f D I A W r e o i 1. 60 1 .60 ) m m (

WOVEN WIRE WONDERS N D WIRE NETTING e M h P i t c h s f D I A W r e o i 1. 60 1 .60 ) m m ( 1. 60 1 .60 1. 20 1 .20 2. 00 2 .00 2. 00 1 .62 IN FOOD PROCESSING, OUR CONVEYOR BELTS ARE USED IN WASHING, BAKING,

254 views • 6 slides
The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager

The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager

The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager makes $2.25MM disappear! It must be Magic! Fraud Statistics 5% of GWP lost to employee fraud & abuse More than $3.5 Trillion per year

559 views • 44 slides
Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud &

Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud &

Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud & Abuse (Fraud) Practice Group and the Accountable Care Organization Task Force (ACO TF) (a joint endeavor of the Antitrust; Fraud and Abuse; Health

408 views • 26 slides
Wire Scanner Reliability Improvement Plans Omar Garza I&C Engineering Group Leader Wire

Wire Scanner Reliability Improvement Plans Omar Garza I&C Engineering Group Leader Wire

Wire Scanner Reliability Improvement Plans Omar Garza I&C Engineering Group Leader Wire Scanner System Overview Problem Wire Scanners 41 Wire Scanners (not including Hall C) Device Location Issue IHA0L10 Injector Multiple

519 views • 11 slides
Wire Fraud in Real Estate Transactions Craig Goldenberg Senior Division President Craig

Wire Fraud in Real Estate Transactions Craig Goldenberg Senior Division President Craig

Wire Fraud in Real Estate Transactions Craig Goldenberg Senior Division President Craig Goldenberg Senior Division President Direct Operations in ME, NH, NY, NJ, MD, DC, VA Division President of New York Direct Operations CIO of Stewart

409 views • 38 slides
Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud

Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud

Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud Procurement Qualifications Sickness / Attendance / Time Recording Ghosts Salary payments Prescriptions Health Tourists

619 views • 9 slides
Longwall Mine Layout Welded Wire Panels Installed in Areas between Pillars 10 Gage Welded Wire

Longwall Mine Layout Welded Wire Panels Installed in Areas between Pillars 10 Gage Welded Wire

Longwall Mine Layout Welded Wire Panels Installed in Areas between Pillars 10 Gage Welded Wire Mesh TX Meshing Using Controlled Resistance Welded Wire Roof Support Current welded wire technology has been in effect and unchanged for years.

374 views • 18 slides
The Future of Long-Term Care A Changing Profile Candace Chartier, CEO April 5, 2016 The

The Future of Long-Term Care A Changing Profile Candace Chartier, CEO April 5, 2016 The

The Future of Long-Term Care A Changing Profile Candace Chartier, CEO April 5, 2016 The Ontario Long Term Care Association Who We Are Ontario Long Term Care Association is the largest association of long- term care providers in

639 views • 31 slides
Status of the LHCb Experiment RRB meeting 23 October 2002 CERN, Geneva on behalf of the LHCb

Status of the LHCb Experiment RRB meeting 23 October 2002 CERN, Geneva on behalf of the LHCb

CERN-RRB-2002-136 Status of the LHCb Experiment RRB meeting 23 October 2002 CERN, Geneva on behalf of the LHCb Collaboration Tatsuya Nakada CERN and University of Lausanne 1 Contents 1) General Issues -milestone status -LHCb organization

537 views • 34 slides
pLayer-i An Internet based muzik player -Maninder Singh -Nishant R Shah -Ramachandra Shankar

pLayer-i An Internet based muzik player -Maninder Singh -Nishant R Shah -Ramachandra Shankar

pLayer-i An Internet based muzik player -Maninder Singh -Nishant R Shah -Ramachandra Shankar Understanding and porting a widely used application Mp3 decoding is computationally very intensive and hence hardware usage would be a

253 views • 13 slides
The Dataflow Model: A Practical Approach to Balancing Correctness, Latency, and Cost in

The Dataflow Model: A Practical Approach to Balancing Correctness, Latency, and Cost in

The Dataflow Model: A Practical Approach to Balancing Correctness, Latency, and Cost in Massive-Scale, Unbounded, Out-of-Order Data Processing Tyler Akidau, Robert Bradshaw, Craig Chambers, Slava Chernyak, Rafael J. Fernandez-Moctezuma, Reuven

660 views • 19 slides
TMUG Trilogy Macintosh User Group since 2005 8 MAY 2017 Apple Logos through the years

TMUG Trilogy Macintosh User Group since 2005 8 MAY 2017 Apple Logos through the years

TMUG Trilogy Macintosh User Group since 2005 8 MAY 2017 Apple Logos through the years TMUG: 8 MAY 2017 AGENDA Welcome to new members Anyone get a new Apple "toy" since we last met? What's New in the Wonderful World of

711 views • 35 slides
Final Recommendations TCCOG - Emergency Medical Services Task Force 11 December 2017 1 Cornell

Final Recommendations TCCOG - Emergency Medical Services Task Force 11 December 2017 1 Cornell

Cornell University Final Recommendations TCCOG - Emergency Medical Services Task Force 11 December 2017 1 Cornell University Agenda 1. Introduction 2. Recommendations Optimize County EMS Resources Mitigating Call Volume

655 views • 34 slides
The PowerPoint Pitch to Investors Jason Tagler www.CEOPitchCoach.com JASON TAGLER | PAGE 1

The PowerPoint Pitch to Investors Jason Tagler www.CEOPitchCoach.com JASON TAGLER | PAGE 1

The PowerPoint Pitch to Investors Jason Tagler www.CEOPitchCoach.com JASON TAGLER | PAGE 1 AGENDA Why am I here? www.CEOPitchCoach.com Your opening sentence Presentation skills PowerPoint slides for your verbal presentation

802 views • 53 slides
SOUND, INTERPRETATION, & ATMOSPHERE the phenomenology of sound enters deeply into

SOUND, INTERPRETATION, & ATMOSPHERE the phenomenology of sound enters deeply into

SOUND, INTERPRETATION, & ATMOSPHERE the phenomenology of sound enters deeply into human beings' feel for existence, as processed by the spoken word. - Walter Ong Yanny or Laurel? YANNY VS. LAUREL -How many heard Yanny? -How many

769 views • 14 slides

More recommend