Transactional Insurance Fraud Threats

2015 Pindrop Security™. Confidential.

TRANSACTIONAL INSURANCE FRAUD THREATS

Matt Garland, Vice President of ResearchPindrop SecurityAugust 26, 2015


NOTE

These slides are from a webinar held August 26,

2015.

You may view a recording of the webinar at

www.pindropsecurity.com/webcast-archive

http://www.pindropsecurity.com/webcast-archive

http://www.pindropsecurity.com/webcast-archive

2015 Pindrop Security™. Confidential.2015 Pindrop Security™. Confidential.

Physical

THE PHONE IS THE WEAKEST LINK

1995 2010


Physical Online


1995 2010


Physical PhoneOnline


1995 2010


PHONE VULNERABILITIES


CUSTOMER SERVICE REPRESENTATIVES

• Human Element• Social Engineering• Focused on customer

service


KNOWLEDGE BASED AUTHENTICATION

• Social Media• Online Black Markets• Data Breaches• High Failure Rates (15-

15%)


CALLER ID / ANI

• Easy and cheap to spoof caller ID and ANI


VOICE BIOMETRICS

• Voice Distortion• Background Noise• Call Quality• Enrollment• Privacy Issues


THE GROWTH OF PHONE FRAUD


RISING PHONE FRAUD


PHONE FRAUD RATES

Avg. C

all C

enter

Banks

Brokera

ges

Credit C

ardReta

il

Mobile

Dev

ice In

suran

ce1 in 2200 1 in 2650 1 in 3000

1 in 900 1 in 1000

1 in 300


FRAUD EXPOSURE

Banks Brokerages Credit Card Mobile Device Insurance

$0

$2,000,000

$4,000,000

$6,000,000

$8,000,000

$10,000,000

$12,000,000

$14,000,000

$16,000,000


OTHER LOSSES

Reputational Risk


OTHER LOSSES

Customer Privacy /Data Breaches

Reputational Risk


OTHER LOSSES

Customer Privacy /Data Breaches

Customer ExperienceReputational Risk


PHONE FRAUD TECHNIQUES


PHONE FRAUD STEPS

Reconnaissance Account Takeover Fraud Triggers Monetize the Attack


PHONE FRAUD STEPS



PHONE FRAUD STEPS



PHONE FRAUD STEPS



RECONNAISSANCE

• Identify policy holders• Determine policy value• Collect KBA answers


ACCOUNT TAKEOVER

• Change contact information• Reset password• Setup online account


REDUCE FRAUD TRIGGERS

• Verification intercept


MONETIZING ATTACKS

• Loans or surrenders of policies

• Loans or liquidation of retirement accounts

• File fraudulent claims


DETECTING PHONE FRAUD


BEST PRACTICES

Track Phone Fraud


BEST PRACTICES

Track Phone Fraud Detect Phone Fraud


BEST PRACTICES

Track Phone Fraud Detect Phone Fraud Authenticate Callers


LOSS• Packet loss • Robotization • Dropped frames

SPECTRUM• Quantization • Frequency filters• Codec artifacts

NOISE• Clarity• Correlation • Signal-to-noise ratio

147 audio features

UniquePhone

Geo-Location Risk Factors

PHONEPRINTING™

Phoneprint™

Call AudioRequires 15 seconds

of call audio

Risk Score

Call Type


RISK BASED AUTHENTICATION

Quick verification of good calls reduces call

time and improves customer satisfaction

Bad callers are flagged and losses stopped


CONCLUSION

• The phone channel represents the weakest link for transactional fraud attempts

• Phone channel fraud is a significant and increasing risk for insurance providers

• Best Practices• Monitor and track fraud back to phone channel• Use PhoneprintingTM to detect phone fraud• Implement risk-based authentication


PINDROP SECURITYPhone Fraud Stops Here.

For more information contact [email protected]

Business

Transactional Insurance Fraud Threats