I was called by the police...
Yesterday, I was busy typing words (bushi), and then a phone call came. When I saw the unknown number, I was not ready to answer it, but the other person persisted, so I answered the call directly.
…
Then the call was hung up.
He didn't come to the door later, so I don't know what the specific situation was. However, from this incident, I thought that online fraud is really popular in our country now, so I did a little research on the information:
- The amount of telecom network fraud cases registered every year exceeds 20 billion, and the actual scale is nearly 100 billion.
- When victims are defrauded and suffer financial losses or apply for loans, banks cannot perceive the risks of information flow, making risk control difficult.
Today we will look at how to fight fraud from a bank’s perspective. (Why not a government department? Just download the anti-fraud app.)
Why do banks need anti-fraud systems?
First of all, according to relevant regulations such as the "Bank Card Acquiring Business Management Measures", banks and payment institutions must strictly follow the principles of " whoever opens an account (card) is responsible" and "whose user (merchant) is responsible" when engaging in acquiring business. Bear the main responsibility for customer (merchant) management.
In addition, according to the "Overall Situation of the People's Bank of China's Anti-Money Laundering Supervision and Management Work in 2019" released by the Anti-Money Laundering Bureau of the Central Bank. In 2019, the Anti-Money Laundering Bureau punished 422 banks, with a total fine of 154 million yuan.
Moreover, banking institutions with a large number of accounts (merchants) involved in gambling and fraud cases and serious violations will be subject to supervision through notifications and criticisms, interviews and interviews, administrative penalties, suspension of new account openings, suspension of payment and settlement business, and revocation of relevant licenses or business licenses. measure. The responsibilities of the person in charge of the account opening outlet, the managers of the superior jurisdiction bank and the provincial management bank, as well as the personnel in relevant line positions such as business, operation management, compliance and monitoring will be held accountable.
Therefore, banks must play their responsibilities as platform entities and do a good job in anti-fraud.
What aspects does the bank mainly focus on?
The overall solution for joint prevention and control of financial card disconnection is mainly focused on the above six aspects. Taking the anti-fraud warning I have experienced before , it is basically based on personal authorization and linkage with the public security, targeting transactions/credit and other scenarios to provide early warning of fraud risks. , to protect potential victims. " Other black and gray products " are aimed at the two underlying core infrastructures of black and gray products: receiving mobile phone numbers and dialing IP addresses to achieve real-time monitoring in financial business scenarios.
Anti-telecom fraud product architecture
Generally speaking, anti-telecommunications fraud will be divided into three stages before, during and after the event, and the whole process of risk defense will be carried out:
Let’s talk about each stage one by one:
Anti-fraud risk verification
Combined with the current needs of the banking industry to identify telecom fraud, one of the most direct and effective prevention and control methods is to use known telecom fraudster information for precise prevention and control. By providing anti-fraud risk verification capabilities, the mobile phone number of the card holder can be verified during the user's card opening process, and enhanced verification can be performed on card holders who are involved in electronic fraud.
Risk account warning
This part is a big project, and the entire framework will be relatively complicated. We will briefly show it through the following diagram:
For drug- and fraud-related websites and apps , we can monitor related gambling and fraud websites in international export traffic based on the same origin DNS and CDN service providers, combined with domestic and foreign search engines, active communication forums for gambling and fraud websites, and international export traffic
The continuous monitoring of gambling-related and fraud-related websites/APPs is to conduct accessibility testing, identify gambling-related and fraud-related websites/APPs for gambling-related and fraud-related websites/APPs discovered through multi-channel monitoring, and conduct site identification, site scanning, and verification of relevant websites. Gambling and fraud-related websites conduct continuous activity monitoring.
For risk verification:
- Comparison with the bank's own model gray list can directly help the bank consolidate the risks of gambling and fraud in the account.
- Conduct inspections on bank card transactions involving gambling and fraud detected during monitoring inspections to determine whether there are abnormal transaction characteristics involving fast in and out, sudden changes in accounts, night transactions, etc.
Transaction risk verification
In the specific verification stage, we will conduct three stages of verification in the data layer, model base layer and output layer, and finally achieve the stratification of risk levels to facilitate subsequent hierarchical management and control according to different risk levels.
Data layer: It will include intra-industry transaction data and gambling- and fraud-related seed cards to clarify the data. Transactions can be connected in series based on the encrypted transaction records and gambling- and fraud-related seed cards to build a transaction network .
Model base layer : On the one hand, a drug- and fraud-related feature library is established through the upstream and downstream characteristics of transactions and transaction frequency characteristics ; on the other hand, fund characterization is based on the network location of intra-bank transactions in the transaction network . For example, the upstream of the transaction involves If the card is fraudulent, the transaction will involve the risk of fraud and money laundering. And based on the types of transaction capital risks analyzed by capital qualitative analysis, the account nature of the bank's existing accounts is analyzed . For example, the transaction funds are gambling recharge funds. If our bank's account is upstream of the transaction, our bank's account will be subject to gambler risk. Final risk assessment
Output layer: Classify risk types according to upstream, midstream and downstream, as well as the type of fraud (spinach and fraud) ; at the same time, the risk level is divided into 1~5, and the investigation priority can be set according to different risk levels, and classified according to different risk levels. Control
Conclusion
The above is about the configuration of the bank's anti-fraud system. Each bank will be different (maybe because their data sources and data types are different. For example, some banks may rely on internal data, such as customer transaction history and behavior patterns. While other banks may use external data sources such as blacklists, credit scores and public data).
If you need a complete anti-fraud solution, you can click >>> Telecom Anti-Fraud Solution