Swift unveils tool to help banks spot fraudulent transfers

In the wake of the $81 million Bangladesh Bank hack, Swift is prepping a new tool designed to help banks pick up on fraudulent transfers by sending them daily reports of their payment message flows.

3 comments

Swift unveils tool to help banks spot fraudulent transfers

Editorial

This content has been selected, created and edited by the Finextra editorial team based upon its relevance and interest to our community.

The Daily Validation Reports, to be offered to clients from December, will be based on Swift's records of customers' messages, providing an independent means of verifying messaging activity and spotting unusual patterns and fraud attempts and boosting the chances of cancelling bad transfers.

The reports will be provided "out of band", through a separate channel, so that firms will have access to independently sourced information even if their own systems or staff have been compromised, says Swift.

The new service comes as a response to a host of cyberattacks on Swift members. In the Bangladesh Bank hack, crooks deleted records of fraudulent Swift messages sent from the bank's terminals, meaning that the theft took days to discover.

Stephen Gilderdale head, customer security programme, Swift, says: "A key step in the modus operandi in recent wire fraud cases at customer firms involves the attackers concealing their fraudulent messaging activity on customers’ local systems. Smaller institutions, in particular, are currently dependent on the accuracy of the data on their own systems, but in the event of a security breach, their locally stored payment and reconciliation data may be altered or unavailable.

"Daily Validation Reports will provide a reliable and independent source of information, providing such institutions with an activity lens to help them quickly detect fraud - whether perpetrated by external attackers or by malicious insiders."

Sponsored [Webinar] Microservice Architecture: The answer to modern payments processing

Comments: (3)

A Finextra member 

Banks have to follow sanctions screening as determined by the regulator on transactions before sending.  This can create a delay in the transaction being completed where the transaction fails a sanctions process and requires manual intervention.  Given the risks involved in getting this wrong maybe a function that has the ability to stop or temporarily hold a transaction at SWIFT would be appropriate? 

Perhaps this could utilise artifical intelligence, where transactions outside of normal expectations are held at SWIFT while confirmation is sought from the sending bank. 

Ketharaman Swaminathan

Ketharaman Swaminathan Founder and CEO at GTM360 Marketing Solutions

Difficult to come to terms that SWIFT hasn't been sending banks "daily reports of their payment message flows" so far.

Ketharaman Swaminathan

Ketharaman Swaminathan Founder and CEO at GTM360 Marketing Solutions

"Swift Creates Payment Pattern Anomaly Alerts for Customers" - WSJ.

Anomaly alerts - now that makes a lot of sense. And it's easy to come to terms with the possibility that anomaly detection technology to drive these alerts hasn't been available for much of the 30+ years of SWIFT's existence.

[New Impact Study] Mastering the Transition to ISO 20022: Strategies for Compliance and Automated TeFinextra Promoted[New Impact Study] Mastering the Transition to ISO 20022: Strategies for Compliance and Automated Testing in Financial Services