Fightback against cyber criminals starts here

The battle between financial institutions and cyber criminals is a constant one, where the attackers often seem to have the upper hand, but fighting cybercrime is not a lost cause. Far from it.
Fightback against cyber criminals starts hereThe battle between financial institutions and cyber criminals is a constant one, where the attackers often seem to have the upper hand.
Governments are trying to stem the tide through cyber assessment frameworks and regulations, while criminals and their associates are responding with sophisticated counter measures to preserve their lucrative business.
A well structured ecosystem of partners is the criminal’s strongest weapon, impenetrable to law enforcement agencies that are suffering from a shortage of skills and technical resources – it took the FBI all of two years to infiltrate The Dark Markets forum where some 2,500 criminals were trading stolen financial information and more.
Bringing hackers to justice is a greater challenge than arresting them, not to mention recovering the stolen funds. The evidence needed in court might be overseas, deleted or encrypted. Once that evidence has been secured, lawyers may lack the technical knowledge and skills to present complicated technical information to juries, helping them understand the intricacies of these types of cases.
For example, in a case called ‘malware-enabled money laundering’, an Eastern European gang used malware to transfer almost £1m from five compromised bank accounts through 166 ‘mule’ accounts. The money was later withdrawn at various currency exchanges across London. While the Metropolitan police did manage to infiltrate their operations and prosecute those responsible, only £190,000 has ever been recovered.

Fighting cybercrime is not a lost cause

Fighting cybercrime is not a lost cause. Far from it. Financial institutions and governments can disrupt the organised gangs by putting compliance departments at the frontline and arming them with the knowledge, tools and support they need to prevent hackers from moving the illicit money around.
Criminals move money in a number of ways, such as utilising unsuspecting citizens, recruited as money mules with lucrative home employment offers, or criminals paying each other with stolen credit/debit cards. Using prepaid cards is also popular, as they are a cheaper alternative to hiring money mules and can be readily purchased anonymously. Further, criminals can use synthetic identities to pass the KYC (Know Your Customer) screening and thus apply for reloadable prepaid cards that have the same use as debit, ATM or credit cards.
The scale and variety of scams is getting larger as the cyber gangs find more ways to exploit financial institutions. The good news is that there are anti-financial crime technology vendors innovating with machine learning, AI (Artificial Intelligence) and blockchain, as well as growing public private collaboration initiatives with cyber threats as one of the key focus areas. 
What compliance departments can do now to take control over the cyber threats is to create an ecosystem of partners embracing counterparties, law enforcement and technology vendors. Such collaboration will not only better enable information, resource and capability sharing, but also deliver a powerful collective response to cyber crimes by blocking the ‘dirty money’ flow. 
Mariola Marzouk, Compliance Product Manager 31 March 2017