The forthcoming Payment Systems Regulator (PSR) rules on statutory customer reimbursement of authorised push payment (APP) scam losses are poised to bring significant changes to the UK banking sector. Due to be implemented in October 2024, the reforms will for the first-time place 50:50 liabilities on both the victim’s bank and the recipient financial institution.
UK banks now face a race against time to configure processes to mitigate the risk of unwittingly onboarding fraudulent customers or allowing fraudulent funds to be received into customer accounts. Failure to do either could mean potentially significant increases in reimbursements to scam victims, with an inevitable impact on operating profits. With the October deadline fast approaching, Metro Bank teamed up with LexisNexis® Risk Solutions to tackle the PSR challenge head-on, yielding some impressive results.
These are accounts explicitly set up to knowingly receive fraudulent funds. Typically, they begin their illicit activity shortly after creation. Once the account is open, the mule may try to move funds as quickly as possible to avoid detection, using a series of transfers under their control. In other cases, accounts may be dormant for an extended period after opening, before seeing a sudden spike in low-value payments, designed to build a legitimate payment history, followed by the movement of laundered funds in their control.
These are accounts that knowingly send and receive fraudulent payments. They may begin as genuine customer bank accounts, but following an unseen prompt, suddenly or gradually become complicit in mule activity. Financially vulnerable groups such as students or those most affected by the cost-of-living crisis may knowingly give up their account details to criminal gangs in exchange for a cut of the funds.
Those who are transferring money without realising they are involved in laundering the proceeds of fraud. Often these are genuine individuals that are tricked into becoming a mule and moving funds with no awareness of the illegality of their actions. They may be victims of romance or investment scams, or believe they are legitimately employed as a ‘money transfer agent’, for example. Again, gangs will often target vulnerable groups – particularly students or those with financial worries – via social media with ‘too good to be true’ offers to make fast money without leaving home.
Mule herders extensively use social media to recruit new mules, often by flaunting images of exuberance and wealth on sites heavily populated by students, such as Tik Tok or Instagram. Paired with cleverly-wording advertisements, they encourage targets to get involved in ‘legitimate’ money-making schemes with no risk of reprisal. COVID and the UK cost-of-living crisis means more people than ever find themselves susceptible to such offers of a boost in income. Indeed, recent CIFAS figures show a notable increase in the over 30s being recruited as mules.
The challenge of deciphering between fraudulent mule activity and genuine customer transactions cannot be overstated. LexisNexis Risk Solutions, working alongside our banking customers, deploy a variety of strategies to tackle this problem, including data sourced from our global contributory database of transactional insights, the LexisNexis® Digital Identity Network®, as well as beneficiary account intelligence, UK Banking Consortium members, and advanced analytical techniques combined with custom models.
In approaching the problem for Metro Bank in the UK, the team at LexisNexis Risk Solutions drew upon the latest modelling techniques and industry intelligence to deliver a solution that was not only capable of detecting mule activity effectively in near real-time, but doing so in a scalable manner that could be adapted to suit Metro Bank’s changing requirements efficiently.
During the build, our expert Professional Services team of fraud data scientists worked closely with Metro Bank fraud teams, deriving first-hand insight from their investigations team that would ultimately help them to configure a solution to deliver optimum build and performance.
In just six months, using this trend analysis, the model successfully identified over £2.5 million of outgoing proceeds-of-fraud payments for Metro Bank, an uplift of 105% on previous fraud measures and representing over 20% of the total value of confirmed fraud payments detected over the period. In addition, one in eight (13%) of customer accounts flagged by the model over the period were analysed and later confirmed to be mules. Had these mule payments not been stopped, it would have been a significant cost to the bank under new PSR rules. However, with the full extent of unchecked mule accounts residing within UK banks being almost impossible to quantify, the total value of potential reimbursement losses is likely much higher and puts a strong imperative on banks to establish robust monitoring processes for both outgoing and incoming payments across their network.
The initiative has enabled Metro Bank to manage financial and reputational risk where there is a clear risk of money laundering, resulting in a broader reduction in successful first party fraud of up to 44%, equating to a 71% increase in historic detection volumes and landing a severe blow to fraudsters. Owing to the implementation of this model, Metro Bank can now successfully identify and resolve mule accounts far earlier, as well as mitigating any further suspicious incoming payments that could originate from an external fraud victim. In turn, this enables Metro Bank to greatly reduce the potential impact of the PSR’s shared reimbursement rules.
– Adam Glowaski, Fraud Analytics Manager at Metro Bank
Such is the success of this initiative; Metro Bank is already deploying a secondary machine learning model to complement existing strategies and further help identify behaviour patterns that might help indicate where customers have unwittingly become money mules.
James Rushe
Engagement Manager
LexisNexis Risk Solutions