Appendix B – Fraud Types that May Impact a Member Organisation and Its Customers.
No: 44021528
Date(g): 11/10/2022 | Date(h): 16/3/1444
Effective from Oct 11 2022 - Oct 10 2022 To view other versions open the versions tab on the right
The following is a non-exhaustive list of fraud types that should be considered by a Member Organisation when relevant to its products.
•
Social engineering (e.g., capture of customer credentials; investment scams; purchase scams; invoice scams; advance fee scams).
•
Account takeover (e.g., gaining access to a customer product or device to control assets or transact).
•
Impersonation (e.g., obtaining personal information to use for own benefit; assuming the identity of another to access products; impersonating a government body to obtain customer information).
•
Internal fraud (e.g., misappropriation of assets; procurement fraud; theft of assets or cash; theft of intellectual property; falsification of information; unauthorised passing of information to third parties; false expense claims; abuse of authority; collusion; use of organisation assets for own gain; diversion of funds).
•
Accounting fraud (e.g., concealment; false invoicing; payroll fraud; improper revenue recognition; overstatement of assets; understatement of liabilities; customer overbilling; treasury and investment fraud).
•
Application fraud (e.g., failing to disclose information; falsification of information; providing false documents).
•
Wholesale Payment Endpoint Security fraud.
•
Banking and payment products: Credit/Debit card fraud; Online or mobile app payment fraud; Cheque fraud; ATM fraud; Mule fraud.
•
Credit and lending products: Mortgage fraud; Loan fraud.
