12:00 PM
Connect Directly

Fraud And Corruption Trends To Watch In 2014

Many of the regulatory efforts in the coming year to stem fraud and corruption will have a financial services focus, according to an EY forecast.

Fraud may be a moving target, but banks of all sizes are going to be under closer scrutiny than ever in the coming year for potentially fraudulent actions. That's the warning from advisory firm EY, which has identified several key themes on the fraud and corruption front for 2014. Among those trends are that the financial services industry will feel the impact of regulation "stronger than ever," according to a company statement. According to EY:

"Notwithstanding the billions of dollars in restitution, fines and litigation costs incurred to date by banks and securities firms, regulatory pressure is not expected to dissipate in 2014. Important themes from 2013 will likely continue as the industry responds to broad regulatory focus on systemic risk and reacts to Consumer Financial Protection Bureau (CFPB) rulemaking on mortgage loans, student loans and credit cards. Regulatory enforcement pressure, which heretofore has focused on the largest institutions, may also migrate to midsized banks in 2014 prompting reassessment and enhancement of risk and compliance efforts at this tier."

[What are the implications of the record fine imposed on JPMorgan for its actions in the mortgage-backed securities market prior to the financial crisis? JPMorgan $13B Mortgage Settlement May Be Only the Beginning]

A related challenge for financial services companies -- not just banks, but also insurers and other firms that handle funds -- predicts EY, is that their anti-money laundering and corruption programs will face greater regulatory scrutiny in the coming year:

"Global regulators and the Department of Justice continue to press large, global financial institutions on the issues of money laundering, trade sanctions and bribery and corruption, stressing the need for robust program controls, sophisticated monitoring systems and knowledgeable personnel at the watch. The regulatory scrutiny is now moving beyond the traditional banking sector into non-banks, including credit card issuers, insurance providers and gaming enterprises, prompting the need to seriously review and enforce their compliance programs and controls."

EY also emphasizes that in the coming year the burden of dealing with cybercrime, fraud and other breaches will not be limited to IT, security functions or operations. It "will become part of a General Counsel's responsibility set," the EY report predicts. "These risks are requiring immediate and planned responses organized by inside and outside counsel. Additionally the potential shareholder impact, risk due to state-run and industrial cyber-espionage, loss of highly valuable IP, unique business process, or client data elevates the responsibility of cyber-security to a Board level exercise."

Fortunately for financial institutions, their investments in big data and analytics to provide greater customer and transactional insights are likely to start paying off on the fraud front, according to the EY forecast, which suggests, "The opportunity to leverage 'Big Data' in the context of compliance and anti-corruption will allow companies to ask new questions." According to EY:

"Data analytics, traditionally the domain of marketing and sales, has effectively migrated into the realm of internal audit, compliance, and corporate oversight. Companies now have opportunities to use forensic data analytics for proactive monitoring of business data. Organizations will be able to develop a better understanding of the risks and rewards of forensic data analytics and how these techniques can be used to transform data to help detect potential instances of fraud and implement effective fraud risk mitigation programs."

Non-financial services-related predictions among EY's 2014 fraud and corruption trends forecast include the need to balance growth opportunities in Africa with perceived corruption risk, and ongoing compliance challenges for life sciences companies operating in emerging markets.

Katherine Burger is Editorial Director of Bank Systems & Technology and Insurance & Technology, members of UBM TechWeb's InformationWeek Financial Services. She assumed leadership of Bank Systems & Technology in 2003 and of Insurance & Technology in 1991. In addition to ... View Full Bio

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
User Rank: Author
12/31/2013 | 1:43:16 AM
re: Fraud And Corruption Trends To Watch In 2014
Yes, I agree, analytics and big data expertise will be a must in basically all functional areas of the enterprise, including legal & compliance.
User Rank: Author
12/25/2013 | 4:21:43 PM
re: Fraud And Corruption Trends To Watch In 2014
The burden of dealing with cybercrime, fraud and anti-money laundering is changing the nature of general counsel office's skill set. How does a lawyer go about obtaining these skills?I predict these legal departments will be hiring their own security and forensic data analytics professionals or partner with the IT department and other analytical areas within the bank or brokerage firm.
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Janice, I think I've got a message from the code father!
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.