Hoosier Banker 29 IBA INSURANCE SOLUTIONS Incidents continue to be reported to banks and their insurers involving data compromises that occur at bank customers’ locations. This article from my good friend, Craig M. Collins, president of financial services of Intact Insurance Specialty Solutions, provides information about some of the most common and evolving methods of data compromise. Chuck Maggard President/CEO IBA Insurance Solutions cmaggard@inbankersins.com IBA Insurance Solutions is a Preferred Service Provider and subsidiary of the Indiana Bankers Association. Wire Fraud How your customers are becoming victims Banks are saddled with a dual duty when it comes to wire transfers – securing against wire fraud through their own policies and procedures, and helping customers secure themselves against data compromise. Fraudsters are accessing customer information from hacked emails or websites, stolen checks and public filings. They also obtain information from the customers themselves through deceit or false pretenses, such as calling and claiming to be someone from the bank. The first step in helping your customers is to ensure they are aware of the most common ways their data can be compromised. 1. “This is your banker calling.” Through fake or scam phone calls, someone claims to be calling from the bank and asks the customer for their banking information. If the information is provided, the fraudster sets up online banking for the customer’s account without their knowledge and causes funds to be transferred via the online banking platform. 2. They know everything about you. Familiar with data scraping? Data scraping is the process of extracting data from a website or social media platform using automated tools. This process enables the collection of vast amounts of publicly available information. Scammers can catalog and aggregate data to create enormous datasets, which they sell to cyber criminals who use them to create personal or professional profiles of individuals. This information can be used in a variety of ways to trick your customers into revealing their private banking information. 3. Your email has been compromised. The fraudster monitors customer’s email traffic and presumably gathers necessary information from valid emails and other public sources (e.g. public mortgage records), then poses as the customer and sends emails to the bank requesting additional wire transfers. Typically, the customer is unaware this is happening. In some situations, a fraudster hacks a customer’s email, or the email of someone outside the bank with whom the customer has business dealings. The fraudster gathers the necessary information and intercepts an email from the other party to the customer with wire transfer instructions that are fraudulent. 4. If it sounds too good to be true … A “too good to be true” job is posted online. The applicant is hired sight unseen, and the “employer” offers to pay the applicant upfront, then asks the applicant to accept deliveries or make purchases on the employer's behalf. The employer sends a bad check to be deposited in the applicant’s personal bank account which ultimately bounces, and the applicant’s account is emptied. It’s important to arm your customers with ways to protect themselves. Remind your customers often of the following helpful tips:
RkJQdWJsaXNoZXIy MTg3NDExNQ==