OFFICIAL PUBLICATION OF THE INDIANA BANKERS ASSOCIATION

Vol. 108 2024 No. 5 (Sept/Oct)

Faster Payments, Faster Fraud? Not So Fast!

Is the notion of “faster payments, faster fraud” just a myth? It appears so, at least for two community banks that participated in a recent Federal Reserve online town hall discussing fraud management strategies for the FedNow Service.

The $1.3 billion-asset North American Banking Co. in Minnesota allows consumers to use the FedNow Service for instant payments and is now rolling the option out to business customers. The bank deploys controls like velocity, limits and other measures that enable the bank to pull suspect transactions out of the process safely before they are settled via a vendor.

“While FedNow does have instant payment capability, the only instant part of it is the actual execution of the payment,” said Ryan McNaughton, vice president of information technology. “The lead time between when somebody wants to execute a payment and when it actually goes through is where we are focusing all of our risk mitigation activities. We are not seeing much in the way of fraud or attempted fraud on the FedNow network.”

The $8.7 billion-asset 1st Source Bank, South Bend, first allowed business customers to conduct transactions via the FedNow Service with plans to extend capabilities to consumers. The bank also uses vendors to connect with the FedNow Service, as well as to help the bank stop fraudulent transactions before they are settled using risk mitigation measures that also include Know Your Customer controls.

“KYC is everything. We know our clients, and we can put internal controls on each of those clients – on who can approve payments that potentially leave our portals, as well as transaction limits and daily limits,” said Jim Hunt, division head of payment strategy.

The bank also partners with vendors to comply with the requirements of the Treasury Department’s Office of Foreign Assets Control to minimize fraud and other illegal activities by sanctioned countries and other bad actors.

If transactions are automatically stopped by any of these measures, the goal is to then manually determine as quickly as possible if they are, indeed, fraudulent, according to Hunt.

“We really haven’t seen any fraud, and we are definitely scaling transactions quickly,” he said. “However, we always have to be aware that bad actors out there will find ways to exploit. There’s always that next risk. Our concern is that we don’t get complacent, so we try to make sure our solutions are state-of-the-art.”

FedNow Service’s Implementation of ISO 20022

The FedNow Service has several built-in capabilities to help banks and their vendors mitigate fraud, including the implementation of ISO 20022, a new messaging standard that enhances communication between financial institutions globally.

One of the biggest benefits of ISO 20022 is enhanced fraud and financial crime prevention. The structured and expanded payment format allows for more data to be included with every transaction. With elements like LEI and the purpose code, it’s easier to see where payments are going and why they’re being sent. Structured name and address details for senders and beneficiaries help improve AML and KYC practices, which make screening more efficient and accurate.

Unlike traditional Fedwire payments where senders try to fit in data wherever they can, the ISO 20022 format is highly structured with certain data restricted to specific fields. This enables artificial intelligence to detect payment anomalies that could indicate fraud or financial crimes.

Additional FedNow Service Mitigation Tools

The FedNow Service includes additional tools for financial institutions to combat fraud, including:

  • the ability to establish risk-based transaction value limits;
  • the ability to specify conditions under which transactions would be rejected, such as by account number (i.e., a “negative list”);
  • message signing to validate that message contents have not been altered or modified; and
  • reporting features and functionality, including reports on how many payment messages were rejected based on a participating financial institution’s settings.

The Federal Reserve is exploring other features like value limits that could be tailored to certain uses, aggregate value, or volume limits for specific periods (for example, per business day), and/or centralized monitoring performed by the FedNow Service, such as functionality that leverages advanced statistical methods and historical patterns to identify potentially fraudulent payments.

Do faster payments automatically lead to faster fraud? Not yet, likely because of the risk mitigation controls financial institutions and their vendors put in place and other built-in risk mitigation measures within the FedNow Service. But don’t become complacent – continue evolving your fraud prevention practices, including educating your customers on how to spot would-be fraudsters from duping them into making instant payments.

Peter Glick has over 25 years of experience at financial institutions and finance-related services companies. In his current role, he helps community financial institutions operate safely, soundly and competitively, while meeting their clients’ needs. Glick earned his bachelor’s degree from American University and an MBA from the University of Chicago.

Email Peter at PGlick@PCBB.com

PCBB is an associate member of the Indiana Bankers Association.

Get Social and Share!

Sign Up to Receive this Publication in your inbox

More In This Issue