The Payments Association: Is enough being done to tackle scams and fraud?

Jane Jee, Nick Fleetwood, Fabien Ignaccolo and Neil Turner, all part of The Payment Association’s Project Financial Crime, which delivers community-driven solutions and awareness that addresses the problems posed by digital and financial criminal activity, came together for Payment Expert to share their thoughts on the importance of tackling fraud during the cost of living crisis. 

Financial crime experts know that criminals will exploit the government’s cost-of-living schemes that are intended to help vulnerable people, just as they did when targeting vulnerable customers during the pandemic. So, is enough being done to protect vulnerable customers before they fall victim?

While the National Audit Office (NAO) published figures from HMRC indicating that around £4.5bn was lost due to error or fraud when COVID-19 support schemes were rolled out, the actual figure could be higher because it is an ongoing estimate. Recommendations have been made to HMRC and HM Treasury for future schemes, but there will be similar exploitation from fraudsters during the cost-of-living crisis. Although the NAO and Home Office are developing a second Economic Crime Plan, it will be delivered too late to help the most vulnerable during the current difficulties.

There will also be more ‘deep fake’-style attacks that are mostly automated. This type of attack has already been used with some success in ‘fake president fraud’, which involves a criminal posing as a company executive and persuading an employee to transfer large sums of money. The first one that shook the industry was in 2019 when a CEO fell victim to a deep fake voice attack, costing an energy firm $249,000. It should be recognised that this technology is now widespread and would be a simple tool for fraudsters to adopt.

The speed at which new fraud vectors are being created is unlikely to slow and the risk of financial crime will always be greater during periods of economic uncertainty. Criminals will try to exploit the uncertainty and anxiety that the current financial situation in the UK will create – from gas and electricity scams to purchase scams relating to paying for Christmas or next year’s holiday, as well as targeting businesses with invoice scams and tax change fraud.

No silver bullet

Although fraud reduction rates are lowering in the UK, it should be noted that this is partly because fraud levels here were particularly high to start with. This still leaves some margin for improvement when compared to the reduction of fraud in mainland Europe after the Payment Services Directive 2 (PSD2) entered into force. Nevertheless, with stronger customer authentication mechanisms in place, criminal attacks will likely be deflected towards the enrolment and re-enrolment of a user.

The picture is not all doom and gloom though. Authorised push payment (APP) fraud, which occurs when a person is tricked into sending money by a fraudster posing as a genuine payee, has recently declined, with losses down 13% in the past six months. This decline is being attributed to the success of Confirmation of Payee (CoP), although overall figures and the sums involved are still too high.

Nevertheless, a PSR policy paper released in October 2022 states that CoP hasn’t been the silver bullet on APP fraud that they hoped it would be. Although CoP is useful to prevent impersonation fraud, it is unlikely to tackle romance scams (which involve people being duped into sending money to criminals who go to great lengths to gain their trust and convince them that they are in a genuine relationship), or purchase scams. 

In a purchase scam, someone is tricked into believing they are paying for goods or services which they then never receive. In that instance the name on the account will match the details that are given by the criminal so they would pass CoP checks.

Adapting to new regulations and technological innovation

The one thing that has been demonstrated in the past five years is the ability for fraudsters to adapt to new opportunities and threats and continue to innovate in their ability to exploit any weakness. Behind every scam and fraud is an individual or business who suffers potential material loss and emotional anguish at the crime committed against them. During times of economic hardship, research indicates that financial crime can increase by 75%-100% on current levels.

With the cost of living crisis and expected recession, now is the time for financial institutions to create customer-centric approaches to prevent criminals from exploiting their customers. What CoP has proven is that wide scale adoption of modern technology that drives collaboration can have a material impact on financial crime.

Looking ahead, the focus needs to be on similar solutions that enable information sharing, the training of models, which can adapt to fraud innovations, and policies that protect consumer interests. Ultimately, the only way to protect the consumer is to make the UK financial environment, where customers send money, as hostile to criminals as possible by:

  • Improving checks when accounts are opened, first receive a payment and when money is removed from the account.
  • Securing the transaction process itself through the screening of inbound and outbound transactions by both the sending and receiving banks.
  • Smoother onboarding of new financial crime prevention technologies to enable the banks to innovate as quickly as the criminals.
  • Collaboration and data sharing tools to drive an increase in the level of intelligence and responsiveness to fraud threats.

Now is the time for the financial Industry to invest in financial crime prevention measures to adapt to new regulation and put their customers at the heart of their response to preventing fraud and scams. There is no silver bullet when it comes to fighting financial crime, however. It will only be reduced by the continuing concerted efforts of all parties – the government and industry working closely together.