Since the holiday season is particularly prone to payment scams, we wanted to share this 2022 Guide to Payment Fraud Prevention. We gathered testimonials from financial professionals, experts we met at the Association for Financial Professionals (AFP) and feedback from our clients, and decided to share our key learnings for 2022.
Payment Fraud: Key Data
According to the 2022 AFP Payments Fraud and Control Report, 71% of organisations were exposed to payment fraud in 2021. At the 2022 AFP Conference, Tammy Jo Bianchi (Director of Cash Management for the Commonwealth of Pennsylvania) and Kim Sipes (Director of Treasury at Duke Energy) asked the attendees: “in the last two years, has your organisation been targeted by payment fraud?” 95% of the room said yes! Among those, 68% of organisations were targeted by Business Email Compromise fraud, 35% of them experienced a financial loss totaling $6.6B in 2021 reported losses.
Payment Fraud: What? Who? How?
Chris Buyers, Sr. Product Manager at PNC, shared with us an edifying example of what a payment fraud can look like. Chris told us the true story of a client, in which a criminal impersonated the CEO of a European aeronautical company to request a €42 million wire payment for an “acquisition project”. Before they realized it was a scam, the company executed the wire transfer and lost those €42 million. What happened next? Both the CEO and CFO of the company were fired.
Unfortunately, this is not an isolated case. It can involve many different stakeholders within an organization, with the most likely targets being the Accounts Payable and the Treasury departments.
“Fraudsters are using social media, Linkedin.. they are able to map your entire organization, they are sending notes to the people in Treasury, they try to get you to give them passwords. When your email or password is compromised, they can get into your bank account.” says Frank d’Amadeo, Director of Treasury Operations at Con Edison. Indeed, fraudsters try to appear as trustworthy and legitimate as possible. Linkedin can be a great source of data for them, but they will also analyze your email signature and imitate the font, among other techniques. “They even knew my favorite color!” adds Kathy Mertes, Vice President of Digital Payments Strategy and Solution at Conduent.
How to Prevent Payment Fraud Within Your Company?
According to Lynn Cirrincione, Director of Cash & Banking Operations at Allstate:“Every single person in the organization must know what the fraud schemes are.” It is important to empower your employees to question suspicious emails or payment requests. However, educating is not enough and fraud can come from anywhere, at any time. Frank D’Amadeo testifies: “Recently, we lost $80,000 in one of our subsidiaries. The supplier they were dealing with got hacked. They failed in identifying a change in payment instructions.”
Bank account validation requires manual cross-checking of multiple data sources, resulting in a high risk of error. “We have to be diligent to make sure we know our payees” says Kathy Merthes.
So what does it take to be best in class in fraud prevention? Here are our 5 top tips.
- Do not pay your suppliers in a hurry
- Protect your supplier files against data theft
- Automate your supplier data checks
- Monitor all controls continuoulsy
- Raise awareness among all teams involved in the Procure 2 Pay process
Eliminating the risk of fraud within your organization is really about regaining control over your supplier data from the moment you integrate it in your system, until the payment is executed.
There would be much more focus on value and revenue growth if finance departments had more peace of mind.
💡 Trustpair is the leading payment fraud prevention platform for large corporations. We secure your B2B payments all along the Procure-to-Pay process by providing continuous, real-time international account validation. To prevent payment fraud, we recommend that you work with accurate supplier data in your systems. Get in touch with us to prevent fraudulent B2B payments in your organization.