Cybercrime and payment fraud were the hot topics of the 2022 AFP Conference in Philadelphia.
From October 23rd to 26th, the Association for Financial Professionals brought together thousands of finance professionals to share best practices. We had the opportunity to attend the major talks around fraud, and here are our main takeaways.
Payment fraud: key data
According to the 2022 AFP Payments Fraud and Control Report, 71% of organisations were exposed to payment fraud in 2021. And when Tammy Jo Bianchi (Director of Cash Management at Commonwealth of Pennsylvania) and Kim Sipes (Director of Treasury at Duke Energy) asked the AFP attendees: “in the last two years, has your organisation been targeted by payment fraud?” 95% of the room said yes! Among those, 68% of organisations were targeted by Business Email Compromise fraud, 35% of them experienced a financial loss which accounted for $6.6B in total reported losses in 2021.
Payment fraud: what? who? how?
Chris Buyers, Sr. Product Manager at PNC shared an edifying example of what a payment fraud can look like. Chris told the true story of a criminal who impersonated the CEO of a european aeronautical company, requesting them to to wire €42 million for an “acquisition project”. Before they realized it was a scam, the company executed the payment and lost those €42 million. What happened next? Both the CEO and CFO of the company got fired.
And unfortunately, this is not an isolated case and it can involve a lot of different stakeholders within an organization. The departments most likely to be targeted are the Accounts Payable and the Treasury.
“Fraudsters are using social media, Linkedin.. they are able to map your entire organization, they are sending notes to the people in Treasury, they try to get you to give them passwords. When your email or password is compromised, they can get into your bank account.” said Frank d’Amadeo, Director of Treasury Operations at Con Edison.
Indeed, fraudsters try to appear as trustworthy as possible. Linkedin can be a great source of data for them, but they will also analyze your email signature and imitate the font, among other techniques. “They even knew my favorite color!” added Kathy Mertes, Vice President of Digital Payments Strategy and Solution at Conduent.
How to prevent payment fraud to happen within your company?
According to Lynn Cirrincione, Director of Cash & Banking Operations at Allstate:“Every single person in the organization must know what the fraud schemes are.”
It is important to empower your employees to question suspicious emails or payment requests. But educating is not enough and fraud can come from anywhere, at any time. Franck D’Amadeo testified: “Recently, we lost $80,000 in one of our subsidiaries. The supplier they were dealing with got hacked. They failed in identifying a change in payment instructions.”
Simply put, when it comes to B2B payments, you want to make sure you are paying the right person. Bank account validation requires manual cross-checking of multiple data sources, resulting in a high risk of error. “We have to be diligent to make sure we know our payees” said Kathy Merthes.
So what is the key to being best-in-class in fraud prevention? Controlling the accuracy of all your supplier data, all along your Procure to Pay process.
Companies need to automate these controls so that supplier data are under continuous monitoring.
Eliminating the risk of fraud within your organization is really about regaining control over your supplier data from the moment you integrate it in your system, until the payment is executed.
Finance teams deserve more time and peace of mind.
Trustpair is the leading payment fraud prevention platform for large corporations. We secure your B2B payments all along the Procure to Pay process by providing continuous, real-time international account validation. To prevent payment fraud, we recommend that you work with accurate supplier data in your systems. Get in touch with us to learn more about how we help you eliminate fraud in your B2B payments.