combating email fraud
play

Combating Email Fraud Maitham Al Lawati, CISSP, CISM, CRISC, CCSP, - PowerPoint PPT Presentation

Jun 12, 2023 •177 likes •298 views

Combating Email Fraud Maitham Al Lawati, CISSP, CISM, CRISC, CCSP, CEH, ISO27001 LI General Manager Risk, Compliance & MSS ISO27001:2013 u2 Do you know that the bad guys can send spoofed emails on behalf your domain name and they can

  1. Combating Email Fraud Maitham Al Lawati, CISSP, CISM, CRISC, CCSP, CEH, ISO27001 LI General Manager – Risk, Compliance & MSS ISO27001:2013

  2. u2 Do you know that the bad guys can send spoofed emails on behalf your domain name and they can be reached to your partners, customers and maybe even to your own staff?

  3. Slide 2 u2 user, 11/4/2017

  4. Organizations Problems with Email 1 .…Fraud email is sent to customers & business partners.. ‐ 100 billion spam messages globally per day ‐ 2.1 million phishing messages per day ‐ 73% of data breaches begin with a fraudulent email 2 It is difficult to identify fraudulent email. ‐ Phishing emails have a 70% open rate ‐ 50% of users to open phishing email will open the URL or attachment

  7. Fraud Email is the Start of a Data Breach • 73% of data breaches begin with fraudulent email. The below scenarios are common methods to breach consumers devices or employee’s “bring your own devices”. User Credential Compromise • URL to website to capture login credentials • Compromised username & password often reused across websites Malware Installation Fraud Expenses • Email often spoofs YourCompany.com, YourCompamy.com, Brand Erosion or other trusted domain Untrusted Emails

  8. Difficult for Companies to Identify Emailers • Outsourcing companies send email spoofing FROM:@company.com from their own IP addresses. Good Subject: “New Benefits Website” Outsourced Business Services Server? From: company.com ‐ HR To: customer@Gmail.com ‐ Recruiting ‐ Benefits administrators Bad ‐ Operations Subject: “10% Off” Server? ‐ Customer Service Center From: company.com To: customer@Gmail.com ‐ IT ‐ Marketing Email campaigns ‐ Sales Partners Good ‐ (…) Subject: “Account is Locked” Server? From: company.com To: customer@Gmail.com The IT needs to distinguish fraud emails senders vs. outsourced senders.

  10. DMARC Benefits for Financial Services Gain 24/7/365 Email Spoofing Visibility Leverage DMARC Authentication to Strengthen Email Security & Brand Protection Decrease Fraudulent Email Delivery to by Over 99% Restore Trust with Consumers via email communication

  11. How well does it work?

  12. Summary of DMARC Recommendations Establish Monitoring with DMARC DMARC Declare Increase Configure Policy Goal: DMARC DMARC ‘quarantine’ SPF & DKIM Policies Security or ‘reject’ Recommendations 1) Have a DMARC policy goal for each domain and sub‐domain 2) Create a DMARC policy on each sub‐domain to detour spoofing 3) Predefine the advancement criteria from p=none to p=quarantine to p=reject 4) Ensure DMARC pass rate of 98% ‐ 100% before advancing the DMARC policy 5) Advance all parked domains to p=reject as a final state

Recommend

Combating Drivers License Fraud By Owen McShane Director of Investigations New York State

Combating Drivers License Fraud By Owen McShane Director of Investigations New York State

Combating Drivers License Fraud By Owen McShane Director of Investigations New York State Department of Motor Vehicles Combating Drivers License Fraud Facial Recognition Name Matching Software Document Scanning Workstations

518 views • 23 slides
Combating Fraud While Protecting Aid for True Students May 21, 2014 The webcast will begin at

Combating Fraud While Protecting Aid for True Students May 21, 2014 The webcast will begin at

Combating Fraud While Protecting Aid for True Students May 21, 2014 The webcast will begin at the top of the hour. There is no audio being broadcast at this time. If you need assistance, contact Blackboard Collaborate: 866-388-8674.

666 views • 55 slides
WHAT YOU ARE UP AGAINST COMBATING FRAUD Garry W.G. Clement, CFE,CAMS, AMLP President and CEO

WHAT YOU ARE UP AGAINST COMBATING FRAUD Garry W.G. Clement, CFE,CAMS, AMLP President and CEO

WHAT YOU ARE UP AGAINST COMBATING FRAUD Garry W.G. Clement, CFE,CAMS, AMLP President and CEO Clement Advisory Group 905-355-1066, fax:905-355-3210 cell:905-375-5076 gclement@clementadvisorygroup.ca www.clementadvisorygroup.ca We are what we

857 views • 49 slides
Combating Click Fraud Using Premium Clicks Sid Stamm , RavenWhite Inc. and Indiana University

Combating Click Fraud Using Premium Clicks Sid Stamm , RavenWhite Inc. and Indiana University

Combating Click Fraud Using Premium Clicks Sid Stamm , RavenWhite Inc. and Indiana University Joint Work With Ari Juels , RSA Laboratories, RSA/EMC Corp Markus Jakobsson , RavenWhite Inc. Research Performed at RavenWhite Inc. 1 Click

600 views • 46 slides
Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention

Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention

Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention Case Studies Our Commitment Spring ISD Source: ACFE & Fraud Overview What Is Fraud? Fraud is any intentional act or

405 views • 18 slides
The European Anti-Fraud Office Duan STERLE dusan.sterle@ec.europa.eu OLAFs MANDATE The

The European Anti-Fraud Office Duan STERLE dusan.sterle@ec.europa.eu OLAFs MANDATE The

The European Anti-Fraud Office Duan STERLE dusan.sterle@ec.europa.eu OLAFs MANDATE The mission of OLAF is threefold: l To protect the financial interests of the European Union by combating fraud, corruption and any other illegal

263 views • 22 slides
Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is

Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is

Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is fraud? Definition Facts Four factors Fraud risk assessment Four evaluation criteria Common fraud schemes Case studies

707 views • 60 slides
What is Fraud ? The Fraud Act 2006 defines fraud as . Headed by Investigations Manager

What is Fraud ? The Fraud Act 2006 defines fraud as . Headed by Investigations Manager

Points to cover Leicester City Council Revenues & Benefits Investigation Team What is Fraud? Fraud Awareness Key issues for the Team Audit and Risk Committee Referrals & Investigation Process Sanctions &

69 views • 4 slides
The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of

The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of

The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of Presentation General measures of fraud Past measurement of fraud The annual fraud indicator and fraud Theres no fraud here, Ive

684 views • 26 slides
09/28/2005 Shalendra Chhabra MS Thesis Defense - Fighting Spam, Phishing and Email Fraud

09/28/2005 Shalendra Chhabra MS Thesis Defense - Fighting Spam, Phishing and Email Fraud

09/28/2005 Shalendra Chhabra MS Thesis Defense - Fighting Spam, Phishing and Email Fraud University of California, Riverside Acknowledgements Grateful to: UCR, My Advisor Dimitrios Gunopulos, My Mentors William S Yerazunis and Bhiksha Raj

572 views • 43 slides
Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud

Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud

Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud Examiners (ACFE) is an international, professional organization dedicated to fighting fraud and white-collar crime . As fraud becomes increasingly more

373 views • 24 slides
Definition of Fraud Fraud is an intentional deception made for personal gain Fraud Triangle

Definition of Fraud Fraud is an intentional deception made for personal gain Fraud Triangle

MMTCTA Fraud Internal Controls Presented By Ron Smith & Greg Chabot, RHR Smith & Co. May 14, 2015 About RHR Smith & Company: RHR does approx 130 of Maines 500 Municipalities In the past year RHR has Investigated 23+

506 views • 39 slides
The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager

The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager

The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager makes $2.25MM disappear! It must be Magic! Fraud Statistics 5% of GWP lost to employee fraud & abuse More than $3.5 Trillion per year

559 views • 44 slides
Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud &

Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud &

Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud & Abuse (Fraud) Practice Group and the Accountable Care Organization Task Force (ACO TF) (a joint endeavor of the Antitrust; Fraud and Abuse; Health

408 views • 26 slides
Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud

Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud

Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud Procurement Qualifications Sickness / Attendance / Time Recording Ghosts Salary payments Prescriptions Health Tourists

619 views • 9 slides
The Work of the New Zealand Serious Fraud Office White Collar Crime and Serious Fraud Conference

The Work of the New Zealand Serious Fraud Office White Collar Crime and Serious Fraud Conference

The Work of the New Zealand Serious Fraud Office White Collar Crime and Serious Fraud Conference AUCKLAND 2 JULY 2010 WHAT IS THE SERIOUS FRAUD OFFICE? SFO: An Overview Mandate investigate and prosecute serious or complex fraud Part 1 -

421 views • 13 slides
Risky Business: How Companies Fall Victim to Fraud Presented by: Tony Okray Julie Latchaw

Risky Business: How Companies Fall Victim to Fraud Presented by: Tony Okray Julie Latchaw

6/5/2016 Risky Business: How Companies Fall Victim to Fraud Presented by: Tony Okray Julie Latchaw Julie Lombardi Member FDIC Agenda: Fraud Statistics Fun With Numbers Check Fraud & ACH Fraud Your Role in Preventing Fraud Fraud

238 views • 13 slides
What Keeps You Up at Night? Issues of Fraud and Abuse Compliance Series How to Handle the Bad

What Keeps You Up at Night? Issues of Fraud and Abuse Compliance Series How to Handle the Bad

What Keeps You Up at Night? Issues of Fraud and Abuse Compliance Series How to Handle the Bad Email or Social Media Post 37 Offices in 18 Countries How to Handle the Bad Email or Social Media Post How to Handle the Bad Email or Social

450 views • 44 slides
Onyx Fraud is rife online Online fraud aggregated 10bn in 2017 Fraud costs are increasing, due

Onyx Fraud is rife online Online fraud aggregated 10bn in 2017 Fraud costs are increasing, due

Onyx Fraud is rife online Online fraud aggregated 10bn in 2017 Fraud costs are increasing, due to technology sophistication Internet provides unrestricted access to a larger pool of potential victims Banks should arm themselves with

276 views • 16 slides
CYBER FRAUD Presented by: JACK R. SUDOL, MBA Cyber Fraud FBI Announcement Between October

CYBER FRAUD Presented by: JACK R. SUDOL, MBA Cyber Fraud FBI Announcement Between October

CYBER FRAUD Presented by: JACK R. SUDOL, MBA Cyber Fraud FBI Announcement Between October 2013 and December 2016 the FBI reported 40,203 incidents of BEC/EAC totaling $5.3 Billion Dollars of Losses! The number of wire fraud scams

997 views • 20 slides
Fraud Presentation Presented by Stephen B. Sm ith, CPA Williams-Keepers LLC To Boone County Bar

Fraud Presentation Presented by Stephen B. Sm ith, CPA Williams-Keepers LLC To Boone County Bar

Fraud Presentation Presented by Stephen B. Sm ith, CPA Williams-Keepers LLC To Boone County Bar Association May 14, 2003 Perpetrators Employees are engaged in 64% of fraud cases Manager/executive fraud is 3.5 times as costly as fraud

501 views • 30 slides
Association of Certified Fraud Examiners ACFE 2018 GLOBAL STUDY ON OCCUPATIONAL FRAUD AND

Association of Certified Fraud Examiners ACFE 2018 GLOBAL STUDY ON OCCUPATIONAL FRAUD AND

Association of Certified Fraud Examiners ACFE 2018 GLOBAL STUDY ON OCCUPATIONAL FRAUD AND ABUSE 1 Key Findings 2 The Red Flags of Fraud Understanding and recognizing the behavioral red flags displayed by fraud perpetrators can help

323 views • 8 slides
Fraud Awareness Corporate Fraud Team Agenda for today Introduction to the session (Paul

Fraud Awareness Corporate Fraud Team Agenda for today Introduction to the session (Paul

Fraud Awareness Corporate Fraud Team Agenda for today Introduction to the session (Paul Sutton, Chief Finance Officer) The Corporate Fraud team role, how to make referrals (John Short- Interim Senior Fraud Investigations Officer)

265 views • 23 slides
FRAUD AND ERROR The Basics What is Benefit Fraud The Law states that anyone who submits a

FRAUD AND ERROR The Basics What is Benefit Fraud The Law states that anyone who submits a

Fraud Investigation - Clare Lewis FRAUD AND ERROR The Basics What is Benefit Fraud The Law states that anyone who submits a claim form containing false information or misses out relevant information from the form or fails to declare

162 views • 13 slides

More recommend