Combating fraud in the digital world with the support of AI

SMART Cybersecurity Handbook 2022 Information Security

Traditionally, cybersecurity entailed a reactive approach where organisations used learnings from previous compromises to improve their defences. With technology evolving and people embracing the likes of mobile wallets, banking apps and other solutions to manage transactions, businesses must rethink how best to bolster anti-fraud mechanisms. The answer lies in artificial intelligence (AI).

“Since the onset of the Covid-19 pandemic, financial institutions have accelerated their digital transformation programmes. Many customers have embraced using online channels for everything from applying for loans and buying goods, to performing international transfers and other high value transactions. This has seen branch visits and ATM transactions reducing considerably over the past 18-months,” says Marcin Nadolny, head of EMEA Banking and Insurance Fraud at SAS.

However, as customers move to the digital world, so too are fraudsters. Cyber fraud, digital payments fraud, identity theft and employee embezzlement are all on the increase. In fact, the pandemic has seen the fraud and financial crime landscape shifting to become even more technology-driven than in the past. Cybercrime-as-a-service, digital fingerprints for sale, SIM swapping, social engineering, malicious use of AI and digital skimming even when cards are not present are just some of the new styles of attacks to take note of.

Key tools in the battle

Data and analytics have become key tools to combat the surge in financial-related crimes. AI and specifically machine learning, can provide financial institutions with automated algorithms that incorporate a cross-channel view of customer behaviour, help to spot complex fraud trends and reduce false positives in parallel. Information about devices, the geolocation of users and even behavioural biometrics are playing the role of additional fuel for analytics.

“In the current fast-moving world, models require the right data to spot fraud, but also models should be adaptive, that means being able to adjust automatically and to catch constantly changing behaviours. Dynamic behavioural profiles and adaptive machine learning ensures organisations always stay up to date with changing fraud trends.” adds Nadolny.

Grozdana Maric, head of CEMEA Fraud and Security Intelligence at SAS, agrees that fraud detection and investigation can be significantly supported by AI and machine learning technologies.

“Fraud risk is escalating for financial institutions and other business. Using the technology and analytics to address all types of fraud becomes an increasing need, allowing for more sophisticated detection and investigation methods, reduced costs and increased efficiencies,” she says.

Real-time decisions

Sophisticated analytics techniques provide businesses with a significant advantage to manage and control fraud losses in real-time, reduce the number of false positives and to enhance overall investigation. Instead of simply reacting to past information, machine learning delivers a forward-looking advantage.

“But this does not mean introducing more authentication. Instead, it is about incorporating stronger authentication into the environment. Admittedly, it is becoming more complex to authenticate users without causing delay in the convenience consumers are seeking from digital channels. Things like 3D Secure authentication, one-time passwords, biometric security measures and tokens can all be considered to increase security without impeding the flow of the customer experience,” says Maric.

An additional advantage of using AI and machine learning is that decisions whether to approve or deny payments are no longer purely based on amount, time, data and merchant. Systems are ‘trained’ to look at what the usual customer behaviour is. If a transaction differs significantly, such as small-value purchases from places the person has not been, or banking through a new device, it automatically gets flagged on the system. And because the decisions are AI-driven, decisions to stop transactions happen in milliseconds in time to approve or decline a payment.

“Today, fraud detection entails a comprehensive approach to match data points with activities to find what is abnormal. Fraudsters have developed sophisticated tactics, so it is essential to stay on top of these changing approaches of gaming the system. The fraud detection and prevention technology chosen should be able to learn from complex data patterns. It should use sophisticated decision models to better manage false positives and detect network relationships to see an holistic view of the activity of fraudsters and criminals,” says Maric. “Combining machine learning methods – including deep learning neural networks, random forests and support vector machines – as well as proven methods, like logistic regression, has proven to be far more accurate and effective than approaches based only on rules.”

The importance of connections and interactions

Building from here, exploring connections and interactions between people to catch more fraud becomes increasingly important in the connected landscape. Through this network analytics driven by AI and machine learning, organisations can better identify suspicious communities, organised crime groups, collusion between employees and customers and even direct and indirect links to known fraud cases.

“Business and governments alike have embraced technologies like data visualisation and AI to greatly reduce and even prevent the economical and reputational repercussions of fraud. Analysts and investigators work together, breaking down siloes, scoring and prioritising alerts based on severity, then route high-priority alerts for more in-depth analysis. And while it will take time for more organisations to embrace this, given the severity of digital fraud, they need to do it sooner rather than later,” concludes Nadolny.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
Phishing attacks through SVG image files
Kaspersky News & Events Information Security
Kaspersky has detected a new trend: attackers are distributing phishing emails to individual and corporate users with attachments in SVG (Scalable Vector Graphics) files, a format commonly used for storing images.

Read more...
Crypto in SA: between progress and precaution
Information Security
“As cryptocurrency gains momentum and legitimacy, it’s becoming increasingly important for people to pay attention to financial security”, says Richard Frost, head of technology and innovation at Armata Cyber Security.

Read more...
Cyber recovery requires a different approach to disaster recovery
Information Security
Disaster recovery is about getting operations back on track after unexpected disruptions; cyber recovery, however, is about calculated actions by bad actors aiming to disrupt your business, steal sensitive data, or hold your system hostage.

Read more...
MDR users claim 97,5% less
Sophos Information Security
The average cyber insurance claim following a significant cyberattack is just $75 000 for MDR users, compared with $3 million for endpoint-only users, according to a new independent study.

Read more...
The impact of GenAI on cybersecurity
Sophos News & Events Information Security
Sophos survey finds that 89% of IT leaders worry GenAI flaws could negatively impact their organisation’s cybersecurity strategies, with 87% of respondents stating they were concerned about a resulting lack of cybersecurity accountability.

Read more...
Efficient, future-proof estate security and management
Technews Publishing ElementC Solutions Duxbury Networking Fang Fences & Guards Secutel Technologies OneSpace Technologies DeepAlert SMART Security Solutions Editor's Choice Information Security Security Services & Risk Management Residential Estate (Industry) AI & Data Analytics IoT & Automation
In February this year, SMART Security Solutions travelled to Cape Town to experience the unbelievable experience of a city where potholes are fixed, and traffic lights work; and to host the Cape Town SMART Estate Security Conference 2025.

Read more...
Kaspersky KATA 7.0 for targeted attack protection
Information Security Products & Solutions
] Kaspersky has announced a major update to its Kaspersky Anti Targeted Attack (KATA) including enhanced network detection and response (NDR) capabilities with deeper network visibility, internal threats detection and other critical security features.

Read more...
The role of advanced technologies in ransomware recovery
Information Security
As businesses increasingly adopt cloud technologies, the complexities of maintaining resilience and ensuring rapid recovery from such incidents become even more pronounced. The integration of advanced technologies is essential to navigate these challenges effectively.

Read more...
Cybersecurity best practice
Information Security Security Services & Risk Management
Breach and attack simulation has become an essential element of cybersecurity strategies in any modern business by allowing companies to actively detect and resolve vulnerabilities through real-world attack simulations.

Read more...