What Is Funds Transfer Fraud?

Funds Transfer Fraud involves a variety of deceptive schemes whereby a threat actor convinces an
unsuspecting victim to transfer funds to another party under fraudulent circumstances. Threat
actors exploit trust and complacency to manipulate victims into transferring funds electronically
leading to financial losses.

What Is A Funds Transfer Loss Authentication Endorsement?

A funds transfer loss authentication endorsement is an amendment to an insurance policy designed to mitigate losses incurred through the unauthorized or fraudulent transfer of funds. The endorsement requires the policyholder to implement and maintain a secondary means of authentication to verify bank account coordinates when initiating a payment to new customers, as well as verifying requests to change the bank account coordinates of existing customers.

How Does A Funds Transfer Loss Authentication Endorsement Apply?

The endorsement requires the policyholder to verify, through a secondary means, bank account
coordinates of new accounts, and when processing changes to an existing account.

Example:
You’re expecting an invoice via email from a vendor. You receive what appears to be a legitimate invoice, but it includes a note advising that the bank account coordinates have changed. For coverage to apply, the endorsement requires that the change be verified through a secondary means. A phone call to a trusted person on the receiver’s end would satisfy the requirement.

Why Is It Important To Verify Customer Bank Account Information And Why Does My Insurer Require It?

As a condition of the policy, it’s important to authenticate customer bank account information to ensure a claim involving funds transfer fraud is paid. Requiring verification is a preventative measure that helps to ensure the legitimacy of the receivers account information and reduces the likelihood of fraud, thereby enhancing your security posture and reducing the probability of experiencing a funds transfer fraud claim.

Don’t Be A Victim

  • Be suspicious of any request to change bank coordinates.
  • Scrutinize the email address from where the change instructions were sent.
  • Implement multi-factor authentication (MFA) on email accounts.
  • Provide cyber awareness education to your employees.
  • Test your employees cyber awareness through simulated phishing exercises using tools that
    mimic real-world threats.
download this article