Multi-layered Fraud Strategies are Crucial to Win the Battle against Authorized Push Payment Fraud
This blog was co-authored by ACI’s Jay Floyd and Iain Swaine, head of Cyber Strategy for BioCatch in the EMEA region
Have you ever received a text from your bank asking you to confirm a transaction by replying Yes or No? You then realise you don’t recognize the transaction, reply No, and receive another text instructing you to call a telephone number to discuss this unknown payment further. Suddenly you’re hit with the fear that someone has hacked into your bank account. But, do you ever consider that the text you received was, in fact, a scam?
Authorized Push Payment Fraud is rising at alarming rates
Fraudsters no longer use just one tactic to trick their victims in order to access personal details and money. They have built up an arsenal of different approaches to scam people, loosely summarized under the umbrella term ‘social engineering.’ One type of fraud that has seen an alarming 50 percent year-on-year rise in the UK, along with significant increases in other parts of Europe and beyond, is the so-called Authorized Push Payment (APP) fraud, where cybercriminals trick consumers or businesses to send them money from their account. According to the March 2019 UK Finance Report, fraudsters stole £1.2bn last year, £354m of this total was through APP fraud.
Fraudsters will often use complex and convincing scams to lure their victims into transferring money. One tactic APP fraud scammers are favoring at the moment is SMSishing: the scam involves sending a text message to their target, pretending to be from a bank, and asking them to either call urgently regarding a security issue or update their personal details. Another tactic employed by fraudsters is ‘spoofing,’ which makes the SMS appear as part of an existing thread of genuine messages from the bank to make them look more convincing.
This year we’ve seen a number of European banks become victims of Vishing and SMSishing attacks, with customers losing up to tens of thousands of pounds. The problem with APP fraud is that once the victim has been tricked into transferring money to a fraudster, it will almost be impossible to get the money back because the transaction is instant and the cybercriminal can move on to the next target without being caught.
Detecting the fraudster and protecting the customer
With APP fraud on the rise and scammers using more sophisticated tactics to lure their targets, businesses must evolve their fraud strategies to combat security threats. Utilizing specific APP detection technology combined with layers of behavioral biometrics capabilities can help detect APP fraud much quicker.
Behavioral biometrics technology can identify a wide range of cyberthreats in real-time, by analyzing more than 2,000 behavioral parameters of online banking users in real-time, for example the way users interact with online applications and devices. It will also use subtle tests known as “invisible challenges” into online banking sessions. Users subconsciously respond to these challenges, without sensing any change in their experience. The responses provide additional behavioral data that can be used to distinguish a real user from an imposter, whether human or robotic.
These profiles identify a user based on their unique behavior. How a consumer interacts within a session differentiates them from any other potential user, including hackers and automated attacks. The technology can also recognize a range of human and non-human, malware, remote access trojans (RATs) and robotic activity in order to flag and catch fraudulent behavior in real-time.
In order to effectively detect and prevent APP scams, the latest behavioral biometrics analysis extracts powerful insights that suggest a genuine customer is under pressure to complete a payment which the fraudster is directing them to do on the telephone.
Positively profiling the customer
Armed with behavioral analytics to detect fraud, businesses should use positive profiling – a combination of consortium intelligence and big data analytics. Positive profiling allows businesses to separate legitimate customers from the fraudsters. It means building comprehensive customer profiles based on detailed behavioral data from multiple businesses and externally confirmed fraud intelligence, so organizations can screen the customer rather than just the transaction.
By producing more accurate results, positive profiling will enable businesses to tailor the customer experience, improve conversion rates and maximize revenue and, most importantly, block fraud.
Prevent future scams
While it’s critical to implement the right fraud prevention solutions, there is no doubt that fraud tactics will continue to evolve. But, so is the banking industry’s capability of stopping a threat. The advent of open APIs means financial institutions will be able to use overlay services such as ‘Confirmation of Payee’ to pre-empt and prevent fraud before a transaction happens.
Industry efforts to solve these issues are underway in the UK, for example, by creating a facility to cross-check the account name with the account details and give the payer certainty. There is recognition in the industry that real-time fraud monitoring needs to be an essential part of the payments processing solutions that a bank employs.
Banks are also working with telecom organizations to block text messages that spoof their identities and block numbers that have been linked to fraud. Ultimately, it’s vital that organizations take a multi-layered approached to prevent fraud – implementing one solution without other defenses will simply prove ineffective. Effective APP fraud strategies should combine both intelligence-driven tools and systems that provide greater assurance that a customer is transferring money to a legitimate recipient, while also addressing standards and guidance provided by institutions.
This article first appeared in SC Magazine.
Want to improve customer service and reduce fraud? Download our guide: The Six-Step Guide to Leveraging Machine Learning for Payments Intelligence
Meet with ACI Worldwide at Sibos 2019 in London, September 23-26 (Booth Q125) to find out how to accelerate your business with payments intelligence, real-time payments and Open Banking strategies. Explore the future of payments with our Request for Payment (RfP) demo and walk away with an exclusive giveaway.
Related Blog Posts
How to be a Payments Trailblazer – The Seven Habits of Highly Innovative Organizations
The new Culture of Innovation Index from Ovum and ACI identified segments—from banks to intermediaries to merchants to corporates—at the cutting edge (of innovation) across the payments ecosystem. But what is most notable about those segments that have reached ‘trailblazing’ status is the apparent lack of commonality between them. No one segment, nor one region fosters better innovation. In fact, what’s driving these segments/organizations to be best of breed is their own culture of excellence. The only thing they have in common is their attitude.
New Survey Results How Lenders Can Capture More of the Billion Dollar Pie
It should come as no surprise that the disruption found throughout the world of payments would impact the world of consumer finance. Fact is, the eCommerce experience enjoyed by shoppers has created an undeniable ripple effect for everyone from bankers to lenders. And with billions of dollars at stake, it’s important to understand the impact of this paradigm shift, especially as it applies to the growing demographic known as Gen Z.
Success Speaks: Surprising New Ways Students Want to Pay
Colleges and universities are facing the dual tasks of accommodating not only new payment methods, but also a new generation of students, Gen Z, whose expectations differ greatly from even millennials. How can higher education institutions meet these demands?
In our latest Success Speaks webinar, experts from Temple University, FutureCast, ACI and MTFX Group of Companies explored today’s payments landscape for colleges and universities, payment desires of Gen Z, innovations the higher education sector is already implementing and how schools can better assist with international payments.
Why Banks Must Democratize Machine Learning for Fraud Prevention and Payments Intelligence
Banks are already actively on the path to digital transformation, considering new technologies, new customer experiences and new business models. A critical piece of this digital transformation centers on better understanding the wealth of data within the banks’ systems and mining it for improved customer insight. In the New Payments Ecosystem, data is as valuable to the bank and its customers as the deposits held in their accounts, and it should be protected, and leveraged for the benefit of the customer.
Paying Tuition – How Can Universities Make It Painless?
Six in ten families feel anxious about bills, five in ten paid a tuition bill late in the past year, and university student financial services leaders have fewer staff and smaller budgets to help families with their bills.
Survey Shows Millennials Aren’t as ‘Digitally Savvy’ When it Comes to Tax Refunds
It was not so long ago that checks, stamps and envelopes occupied more than the junk drawer in most American households. But as electronic payments and text messaging grew, asking, “Do you have a stamp?” was more likely to be met with a confused look than an actual stamp.
And yet, a recent online survey by YouGov and ACI indicates that there’s still a place for checks when it comes to paying taxes or – at least for Millennials – receiving refunds.
University Payments Made Simple for Students and Parents
According to Sallie Mae, a significant portion of tuition revenue for higher educational institutions comes from students (27%) and parents (44%), with students struggling more to pay their bills on time. As our team gets ready to head to New Orleans for Ellucian Live 2019, we looked at what’s new in the payments realm for higher education institutions, and what students and parents need to ensure their payments are made on time and with less friction. A recent survey from Aite Group, “U.S. Consumer Payments Experience: A Blueprint for Creating Positive Behaviors,” which surveyed 2,425 U.S. consumers, sheds some light on this topic.
Gen Z: Chronic Late Payers
Why More Than Half of Gen Z Pays Late
The newest generation of consumers to enter the workforce is Dazed and Confused about how to make bill payments (and they most likely don’t get that reference). In fact, 80% of Gen Z contact companies with billing questions and 53% pay their bills late. But it doesn’t have to be this way.
Success Speaks: How Roanoke College Simplified Higher Education Billing and Commerce
Campus commerce has quickly become the ultimate test for payment software providers, IT professionals and administrators. Technology stacks and service offerings are continuously challenged by rapid innovation, just as budgets have begun to shrink. And to top it off, cybersecurity threats lurk around every corner, and even a single breach can destroy student confidence in their institution of higher learning.
Success Speaks: Exploring the Future of Payments Collections in Auto-Finance with SAFCO
When it comes to improving collections, there’s one simple question your organization should ask before embarking on any type of payments project: what does “customer service” mean to our customers?