UK BANKS STRUGGLE IN WAKE OF DATA SECURITY BREACHES
LONDON - The repercussions of the recent loss by HM Revenue and Customs (HMRC) of 25 million people's personal information on the UK child support database are now being felt by banks, as they deal with the resulting increased threat of fraud and identity theft.
Data security losses are occurring so frequently that banks need to continually modernise their anti-fraud defences to keep pace. Exposure on the same scale happened in the US, with the Bank of America and TJX data loss scandals, but most monitoring systems designed to pick up unusual account activity are not designed to operate on this scale of exposure.
Fraudsters could create new accounts or, more likely, hijack existing ones. "The risk of existent accounts being taken over by fraudsters is greatest. Once you've bypassed the initial authentication process, you can do wire fraud, online fraud, via the call centre, and that's where the risks lie," says Amir Orad, executive vice-president and chief marketing officer for risk management software firm Actimize.
Existing monitoring systems need to strike a difficult balance between under-monitoring a vast exposure, and over-monitoring, which leads to an increased level of false positives, creating cost, inconvenience and inefficiency for banks and customers.
"The only way around the problem is to improve analytics and false positive rates. An enterprise-wide approach is needed to look at risks across the internet, automatic teller machines and elsewhere - combining systems," says Orad.
The cost of parallel investigations on different aspects of the same fraudster's activities have led many to extol the virtues of an umbrella enterprise risk management approach, which would force the fraudsters to continually move around to probe weaknesses.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Printing this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. Copying this content is for the sole use of the Authorised User (named subscriber), as outlined in our terms and conditions - https://www.infopro-insight.com/terms-conditions/insight-subscriptions/
If you would like to purchase additional rights please email info@risk.net
More on Regulation
Industry calls for major rethink of Basel III rules
Isda AGM: Divergence on implementation suggests rules could be flawed, bankers say
Saudi Arabia poised to become clean netting jurisdiction
Isda AGM: Netting regulation awaiting final approvals from regulators
Japanese megabanks shun internal models as FRTB bites
Isda AGM: All in-scope banks opt for standardised approach to market risk; Nomura eyes IMA in 2025
CFTC chair backs easing of G-Sib surcharge in Basel endgame
Isda AGM: Fed’s proposed surcharge changes could hike client clearing cost by 80%
UK investment firms feeling the heat on prudential rules
Signs firms are falling behind FCA’s expectations on wind-down and liquidity risk management
The American way: a stress-test substitute for Basel’s IRRBB?
Bankers divided over new CCAR scenario designed to bridge supervisory gap exposed by SVB failure
Industry warns CFTC against rushing to regulate AI for trading
Vote on workplan pulled amid calls to avoid duplicating rules from other regulatory agencies
Bank of Communications moves early to meet TLAC requirements
China Construction Bank becomes last China G-Sib to release TLAC plans
Most read
- Top 10 operational risks for 2024
- Top 10 op risks: third parties stoke cyber risk
- Japanese megabanks shun internal models as FRTB bites