View all newsletters
Receive our newsletter – data, insights and analysis delivered to you
  1. Analysis
June 10, 2022

‘Continuous approach to KYC essential in fight against identity fraud’: Fourthline’s Ro Paddock

Ro Paddock, Head of Anti-Financial Crime at Fourthline tells Douglas Blakey what banks need to do to combat the growing threat of identity fraud

By Douglas Blakey

Identity fraud continues to rise despite technology becoming better at detecting counterfeit ID documents. Fraudsters are adapting with increasing evidence of criminals using social engineering to defeat banks’ defence systems. Ro Paddock, Head of Anti-Financial Crime for digital identity and verification specialists Fourthline tells Douglas Blakey how banks can fight back

Free Report
img

Prepare for changes in the Payments market

 The Payments market has seen drastic changes in the past few years, with this only expected to continue. What does your company need to do to prepare for what’s to come? GlobalData’s Payment Trends for 2022 report explores the key trends in technology, consumer habits, and regulations shaping the market. We also identify the leading companies in this changing market, giving you a competitive market outlook. This report covers the impact of:
  • ESG
  • E-commerce
  • Mobile payments
  • Alternative payment rails (Real-Time Payments, Blockchain, BNPL)
  • Fraud & Cybersecurity
  • Regulations
Download the report now to learn essential strategies to maximize your growth in the face of rapid change.
by GlobalData
Enter your details here to receive your free Report.

Identity fraud schemes are becoming increasingly prevalent, with 47% of the detected financial fraud attempts in Europe involving social engineering.  For example, recruiters or ‘pickers’ will seduce or coerce young people to collaborate in fraud via social media (such as, Snapchat, Instagram) by posting “Quick Cash” images.

Indeed, the rise of social engineering fraud is sinister development that merits greater coverage than it has to date.

Ro Paddock is Fourthline’s fraud and risk mitigation expert. With a post-graduate degree in Information Systems and Computer Forensics and a bachelor’s degree in Psychology, Ro is passionate about applying the principles of human behaviour to fraud prevention.

Prior to joining Fourthline last year, Ro was Head of AFC at German neobank N26, where she oversaw KYC, AML and fraud.

She tells RBI that social engineering fraud consists of abusing a legitimate ID obtained through deceptive tactics. The actual owner of the ID is the victim of a fraud scam. Moreover, the individual is not aware that their ID is being used for illicit purposes. The criminal’s goal remains the same: the ID predator tricks its prey into giving up sensitive personal data.

The four steps of a social engineering fraud

Says Paddock, such a fraud strategy typically consists of four steps. First, the perpetrators start to collect valuable information to detect vulnerable targets, providing them access to sensitive data. They then develop a relationship with these targets through various communication channels (i.e., phone, SMS, email, in-person). Thereafter, the target is then persuaded to share personal data such as a PIN, a bank account, or a bank card. And finally, this enables the perpetrators to execute their ID Fraud.

The six principal methodologies of social engineering fraud uses

Paddock says that successful fraudsters will use phishing/vishing/smishing-this happens when the attacker uses impersonation to exploit the target’s trust via email, phone, or SMS.

Pre-texting or impersonation: uses a false identity to gain the victim’s confidence to obtain information or access to a person, company, or computer system.

Phone spoofing occurs when a caller deliberately falsifies the information transmitted to a phone’s caller ID display to disguise their identity.

Victims may also suffer Spear-phishing or Business Email Compromising: phishing custom-tailored to target key employees, particularly C-level ones, via social media or email. This tactic often targets employees with access to company finances and tricks them into making money transfers to the fraudster’s bank accounts.

Other tactics include baiting, such as planting an infected device or some promise to get victims to bite the bait and collaborate. And lastly, Quid Pro Quo attacks promise a form of service in exchange for sensitive, lucrative information, like when fraudsters impersonate HMRC in the UK or the US Social Security Administration.

Fourthline is one of the fastest growing KYC software experts in Europe and participated as a key partner in the Europol 7th European Money Mule Action (EMMA 7) initiative.

Paddock stresses the success of the initiative, with EMMA7 resulting in over 1,800 arrests and the identification of over 18,000 money mules.

Says Paddock: “Bank must adopt a continuous approach to KYC to help combat these schemes. So, banks must verify and authenticate a customer’s identity throughout the entire customer lifecycle.”

Fourthline describes this continuous KYC approach as “Identity Monitoring.”

Identity Monitoring takes a holistic view on fraud detection, creating multiple touchpoints to verify and authenticate a customer’s identity throughout the entire customer lifecycle. The faster that banks appreciate that KYC is not just for onboarding and that KYC compliance is essential throughout the customer lifecycle from start to finish, the better might be the chance of fighting back against the fraudsters.

More on cybersecurity from GlobalData:

Top trends impacting cybersecurity in 2022

Why does cybersecurity matter for businesses?

What is a cyberattack?

GlobalData cybersecurity market forecast & industry insight

GlobalData thematic team podcast: The Colonial Pipeline Cyberattack: one year on:

Ro Paddock, Fourthline speaks with RBI editor Douglas Blakey

Free Report
img

Prepare for changes in the Payments market

 The Payments market has seen drastic changes in the past few years, with this only expected to continue. What does your company need to do to prepare for what’s to come? GlobalData’s Payment Trends for 2022 report explores the key trends in technology, consumer habits, and regulations shaping the market. We also identify the leading companies in this changing market, giving you a competitive market outlook. This report covers the impact of:
  • ESG
  • E-commerce
  • Mobile payments
  • Alternative payment rails (Real-Time Payments, Blockchain, BNPL)
  • Fraud & Cybersecurity
  • Regulations
Download the report now to learn essential strategies to maximize your growth in the face of rapid change.
by GlobalData
Enter your details here to receive your free Report.

NEWSLETTER Sign up Tick the boxes of the newsletters you would like to receive. A weekly roundup of the latest news and analysis, sent every Wednesday. The industry's most comprehensive news and information delivered every month.
I consent to GlobalData UK Limited collecting my details provided via this form in accordance with the Privacy Policy
SUBSCRIBED

THANK YOU

Thank you for subscribing to Retail Banker International