WHY CRIME? Financial Fraud Action UK report Q4 2016 WHY CRIME? - - PowerPoint PPT Presentation

why crime
SMART_READER_LITE
LIVE PREVIEW

WHY CRIME? Financial Fraud Action UK report Q4 2016 WHY CRIME? - - PowerPoint PPT Presentation

Oct 01, 2023 282 likes •636 views

WHY CRIME? Financial Fraud Action UK report Q4 2016 WHY CRIME? Financial Fraud Action UK report Q4 2017 WHY NOW? A steep learning curve ? I NEED CYBER @Many in our industry 3 EVERYONE HAS A FRAUD EXPOSURE OUR CLIENTS HAVE

slide-1
SLIDE 1

WHY CRIME?

Financial Fraud Action UK report – Q4 2016

slide-2
SLIDE 2

WHY CRIME?

Financial Fraud Action UK report – Q4 2017

slide-3
SLIDE 3

3

WHY NOW?

A steep learning curve?

‘I NEED CYBER’

@Many in our industry

slide-4
SLIDE 4

EVERYONE HAS A FRAUD EXPOSURE

slide-5
SLIDE 5

OUR CLIENTS HAVE EVOLVED

The coconut represents old style IT security; Like a fortress this fruit is hard outside but soft inside. The mango represents the new cyber age approach to IT security. Organisations that work towards the mango model and harden the core of their IT:

  • Understand their important data, like products, clients

and contracts

  • Can identify their key processes like research &

development, sales tools etc.

  • Protect their critical applications; finance, HR
  • Can identify other vital infrastructures and systems
  • They have a business continuity or disaster recover plan

that includes a Cyber event

  • They know which Cyber event will impact them the

most.

slide-6
SLIDE 6

REMEMBER FIDELITY?

slide-7
SLIDE 7

7

LOVE IS THE SWEETEST THING…

slide-8
SLIDE 8

8

‘THAT HR GIRL IS REALLY HELPFUL, ISN’T SHE?’

slide-9
SLIDE 9

HOW COULD THESE LOSSES HAVE BEEN AVOIDED?

However far less of a large loss issue – financial controls improving

9

Common themes around finance controls Too much trust? Do you understand your

  • wn markets?

How often do you check you bank account and payments in / out? Who checks what senior management are doing? Will your auditors detect the fraud? No segregation of duties

slide-10
SLIDE 10

OLD FASHIONED CRIME……

slide-11
SLIDE 11

11

THEY FOUND THE NEEDLE IN THE HAYSTACK!

slide-12
SLIDE 12

12

THE REPEAT ORDER, ANOTHER £160,000 WON. OR WAS THAT LOST?

slide-13
SLIDE 13

13

WE DON’T NEED COMMERCIAL CRIME

slide-14
SLIDE 14

‘SOCIAL ENGINEERING’ ARRIVES…….

slide-15
SLIDE 15

15

THIS DOESN’T ADD UP …

slide-16
SLIDE 16

16

THE CEO HAS CALLED – HE NEEDS MONEY TRANSFERRED!

slide-17
SLIDE 17

17

‘WE NEED TO TALK ABOUT YOUR ACCOUNT’

slide-18
SLIDE 18

▪ Where you have stock or valuable assets there is no better control than good physical security – locks, safes, alarms – and restrict the value if possible. ▪ Always be vigilant – even an internal request to transfer money should be

  • ratified. Regardless of whom is asking.

▪Ensure management are ‘on board’ with risk controls – there is no point having rules if management can circumvent them. ▪Payment diversion frauds – these can all be eradicated if the Finance team paused, took time out, and dialled their normal contact on a separate phone line. ▪Ensure fraud is addressed at board level – with communication and training

  • f the issues to all within the organisation.

PROTECTING YOU

18

A number of frauds could be eradicated by simple checks and controls

slide-19
SLIDE 19

CYBER THEFT

slide-20
SLIDE 20

Then versus now……

slide-21
SLIDE 21

21

EMAIL CLOAKING?

slide-22
SLIDE 22

22

‘IT IS EASIER TO TAKE ORDERS OVER THE NET’

slide-23
SLIDE 23

23

‘FISHING or PHISHING?’ and now SMISHING!!!

slide-24
SLIDE 24

Cyber issues

24 Boardroom matter, highlight to finance staff, train and communicate Issues to consider: Understand that continual attention is required to your IT systems Identify the typical fraudsters techniques - web page scraping; phishing; vishing; trojan horses Do not rely on your bank or finance house to make good any losses What systems can help strengthen your banking mechanisms? E-mail cloaking – highlight any mail from outside your organisation.

slide-25
SLIDE 25

THE ‘WTF’ INCIDENT I MEAN OF COURSE - ‘WHAT’S THIS FRAUD’

slide-26
SLIDE 26

26

OUR BOOKING SYSTEM IS ROBUST

slide-27
SLIDE 27

27

THIS IS HAPPENING, AND IT IS BEING REPORTED

slide-28
SLIDE 28

28

RSA EXPERIENCE OF RECENT CRIME POLICY LOSS

40% employee 60% third party

slide-29
SLIDE 29

29

COMMERCIAL CRIME COVER IS VITAL

Commercial Crime has a broad Insuring Clause

  • RSA Commercial Crime – Insuring Clause reads –

criminal, fraudulent or dishonest taking ‘by any person’

  • Cyber frauds are unlikely to be covered under Fidelity

wordings or under ‘Crime’ extensions to Management Protection contracts

  • Cyber wordings are evolving – on Theft cover – be

careful to read the terms and conditions

  • Be cautious on ‘knowingly surrendered’ exclusions –

these will really impact the cover where an Insured has been duped

  • Be cautious on ‘social engineering’ exclusions or sub

limits. The Devil is in the detail

slide-30
SLIDE 30

BUT MOST INSURED’S TAKE THIS APPROACH

slide-31
SLIDE 31

31

COMMERCIAL CRIME COVER CHALLENGES

Why do the majority of businesses fail to buy the cover ?

  • Client perception – it won’t happen to

me

  • Cost – often deemed as plc protection
  • Access – no etrade
  • Advice – brief note in ‘Uninsured’

portion of renewal report

  • Insurer’s can ask a lot of detail
slide-32
SLIDE 32

32

WHAT’S NEXT?

slide-33
SLIDE 33

33

WHAT’S NEXT?

  • It’s PROFESSIONAL ADVICE
  • It’s potentially life threatening to a business
  • You don’t know what you don’t know
  • RESILIENCE is the key – both for the

insurance industry and our clients

  • RSA have the capability and desire to help
  • ur brokers and their clients.

CII Harrogate Summary

slide-34
SLIDE 34

questions

ANY QUESTIONS?