Financial fraud losses across payment cards, remote banking and cheques totalled £768.8 million in 2016, an increase of 2 per cent on the previous year, figures from Financial Fraud Action UK show.
Impersonation and deception scams, as well as online attacks to compromise data, continued to be the primary drivers behind financial fraud losses in 2016. In all of these methods criminals target personal and financial information, including card data, which is then used to facilitate fraud.
The 2016 financial fraud data shows:
Losses due to payment card fraud were £618.0 million, an increase of 9 per cent from £567.5 million in 2015. A total of £982.4 million of attempted card fraud was prevented by banks and card companies, equivalent to £6.10 in every £10 of fraud being stopped.
Over 2016, card spending increased by six per cent, meaning card fraud as a proportion of spending equates to 8.3p for every £100 spent.
Within the overall card fraud figures, losses on card purchases made remotely increased by 9 per cent to £432.3 million.
Remote banking fraud losses totalled £137.1 million, a 19 per cent decrease from £168.6 million in 2015. A total of £205.4 million of attempted remote banking fraud losses were prevented, equivalent to £6 in every £10 of fraud being stopped.
Cheque fraud losses fell by 28 per cent to £13.7 million, the lowest ever annual total. A total of £196.2 million of attempted cheque fraud was prevented, equivalent to £9.40 in every £10 of fraud being stopped.
There were a total of 1,857,506 cases of financial fraud.
Katy Worobec, Director of Financial Fraud Action UK (FFA UK), said:
“Banks take the threat of fraud extremely seriously and continuously invest in advanced detection and verification systems to protect customers. At the same time criminals continue in their attempts to circumvent this security by targeting customers for their personal and security information. It’s vital that everyone follows the advice of our Take Five campaign and safeguards their details.
“The payments industry can’t stop all fraud on its own, so it’s essential that every organisation with a role to play unites to tackle it. We are particularly working with law enforcement and government, through the Joint Fraud Taskforce. It’s also vital for any organisation holding personal data to ensure they have robust systems in place to prevent data breaches.
“Across the industry, and with partners, we are developing new processes to help police intervene when potential victims visit a bank branch, and we are exploring new ways to track stolen funds moved between multiple bank accounts.”
The full set of financial fraud data for 2016, including breakdowns by fraud type, has been published today by FFA UK, the organisation leading the collective fight against financial fraud on behalf of the payments industry.
The bulletin explains that criminals use impersonation and deception scams to target customers for their personal or financial information, such as passwords, payment card details or bank account information. The criminal purports to be from a legitimate and trusted organisation, such as a bank, the police, a utility company or a government department and typically contacts a customer by means of a phone call, text message or email.
The fraudulent approach may involve a claim there has been suspicious activity on an account, account details need to be ‘updated’ or ‘verified’, or a refund is due. Intelligence suggests there has been an increase in more sophisticated phishing emails purporting to be from major online retailers and internet companies, brands which a large proportion of recipients are likely to use.
FFA UK is running the Take Five to Stop Fraud campaign, backed by every major bank and card company, to raise awareness of these scams and how customers can protect themselves. Earlier this month there was a dedicated day of activities in thousands of bank branches across the country as part of the campaign.
Take Five urges people to guard their personal and financial details and never to assume an email, text or phone call is authentic, even if it includes a reference to some of their basic details. It reminds people to pause and think carefully before responding to any requests for information and not to be pressured into making decisions.
Information gained from data breaches also continues to be a driver of fraud. This data may also be used to commit fraud directly, for example the use of stolen card details to make remote purchases.
FFA UK is urging any organisation that holds personal and financial information to ensure it has robust security systems in place to prevent a data breach. There are a number of tools to build up customer profiles which can be used by retailers who sell remotely, so cardholders can be verified and payment can be received securely.
Tackling fraud effectively requires a combined response across a range of organisation. FFA UK has a central role in the Joint Fraud Taskforce, which is using the collective powers, systems and resources of government, law enforcement and industry to crack down on financial fraud.
Tony Blake, senior fraud prevention officer at the Dedicated Card and Payment Crime Unit, said:
“Fraudsters are often extremely professional, so it’s important that you stay alert and guard your personal and financial details. Always take a moment to consider carefully any requests for your information and never disclose your security details, such as your PIN or full banking password.
“Criminals will do all they can to scare and pressure you into acting quickly without thinking. Don’t let anyone rush you. If you are ever the slightest bit unsure, put the phone down or don’t reply to the text or email. Instead contact the organisation on a phone number that you trust, such as the one on their official website.”
Anyone who thinks they have been a victim of fraud should contact their bank and Action Fraud immediately.