Scam Robocalls -What you need to know

It’s no laughing matter when it comes to call center fraud. Fraud is not just on the increase in call centers in general (up 350 percent from 2013 to 2019), but the growth of fraud in the middle of the COVID-19 epidemic requires companies and customers to be more vigilant than ever.

 

 

 

To successfully tackle contact center fraud, businesses must be prepared. Scammers have access to sensitive user data gained via illegal routes and are equipped with powerful technologies. Furthermore, unscrupulous callers may use automated systems and customer service employees to update account information, transfer money, and more.

 

 

 

Fortunately, there are methods for detecting incoming call fraud in real time, enabling agents to regain control over their clients’ security without affecting the entire customer experience. For example, speech analytics software allows contact centers to evaluate previous fraudulent calls, design a fraudulent scorecard, and use real-time analytics to give advise to employees on the phone if a call is detected as potentially fraudulent.

Download our white paper, Sitel + CallMiner Survey: Preventing Fraud and Preserving CX with AI, for more details on fraud prevention using speech analytics and AI.

 

 

 

Organizations can easily identify dangers like as fraud and harmful calls by recognizing key signs of fraud and malicious callers.

After reading the suggestions below, tell us: How can your firm protect itself against incoming phone fraud?

Inbound Call Fraud Indicators That Agents Can Recognize

 

 

1. Fraudulent callers may try to establish a connection with a certain agent.

“Fraudsters utilize a variety of techniques to deceive contact center operators and shop employees. Most people aren’t aware they’ve been a victim of fraud until it’s too late. Before demanding that a specific agent or retail associate pay a financial amount to their bank account, some scammers create a connection with them over time. 

 

 

They employ flattery and name-dropping to induce terror, and they use flattery to develop trust. Other fraudsters phone claiming to be a client and gradually change passwords and make account adjustments over a few interactions so they have complete access before making large transactions. The strategy a fraudster takes is determined on the industry and the kind of calls you handle on a regular basis.” – Using Speech Analytics to Detect Fraud, @CallMiner, @CallMiner, @CallMiner, @CallMiner, @CallMiner

 

 

 

2. The caller is having trouble answering KBA questions.

“Knowledge-based authentication (KBA) is a security technique that asks end users to answer particular security questions in order to offer correct authorisation for online or digital activity.” The concept behind KBA is that computers may verify whether a user is the real owner of a password-protected area or not by asking questions that only the target person would know the answers to.” — Techopedia, Knowledge-Based Authentication (KBA); Twitter: @techopedia

 

 

 

 

 

3. The caller is unable to provide answers to queries about their business with your contact center.

“Replace the old knowledge verification procedure with a new one.” Don’t merely ask callers for their date of birth, postal address, or any other basic piece of information to identify themselves. Replacing these inquiries with ones that are particular to the individual’s business with your contact center is a better option. Use information that only the caller and the agent would have access to. You want to depend on account-specific expertise that isn’t accessible outside the company.” — Matt Grech, How to Stop Fraud in Call Centers, Call Center Fraud Prevention: How to Stop Fraud Finally and Forever, GetVoIP; @getvoipreviews on Twitter

 

 

 

 

4. Caller information does not match customer history.

“Historical data is critical, and agents should have access to transaction information, prior support contacts (across all channels) and how they were resolved, account balance notifications, payment reminders, and more.” This 360-degree visibility is the bedrock of real omnichannel service and the key to completely comprehending a customer’s journey. This knowledge not only gives the agent the context he or she needs to vet the person on the other end of the line, but it also makes for better customer service.” – John Cray, BAI; Twitter: @BAI Info; Beating thieves at call center fraud

 

 

 

 

 

5. The caller is angry and too demanding of procedural exceptions.

 according to Jerry Silva, an analyst with International Data Corp., who stated that contact centers with banks and call center personnel fall subject to social engineering in an interview with Bank Info Security. This happens when agents end up circumventing regulations in order to appease “an irate client,” who is really a burglar seeking to gain sensitive personal data.” – Trisys; Twitter: @TrisysInc; Decrease Risk and Manage Fraud in Financial Call Centers

6. The caller refuses to verify their email account and insists on switching to a less secure service.

“Gmail accounts are simple to set up and may seem to be legitimate email accounts. If a client requests that forms or information be sent, it is best practice to validate the email address that the organization has on file and to send just that account. Replying to the fraudster’s email account merely adds to the fraudster’s plot. Verify the customer’s email address, and only send information to that address.” — Linn Foster Freedman, Lexology’s Call Center Fraud Threats; @lexology on Twitter

 

 

 

 

 

7. In a short period of time, the caller makes several requests to modify critical information.

“Our financial services customers claim that cross-channel fraud accounts for up to 30% of all fraud against consumer accounts. For example, fraudsters often start by socially engineering contact center operators to give over or modify important information, which they then exploit in subsequent online transactions to steal money from customers’ accounts.” – Avivah Litan, Forbes; Twitter: @forbes; Preventing Fraud in the Call Center with Phone Printing and Voice Biometrics

 

 

 

8. To get access to sensitive account information, the caller employs any known “social engineering” approach.

“The human element – the exact thing that attracts fraudsters to contact center fraud – may also be a financial institution’s first and most effective line of defense.” For instance, training on how to spot persons who are trying to “socially engineer” discussions in order to get information. – How Banks Can Put a Stop to the Growing Call Center Fraud Problem, Deluxe FS; @deluxecorp on Twitter

 

 

 

 

9. The caller makes an emotive plea to break usual practice.

“With financial contact center fraud, fraudsters might request that bank account passwords be changed or new credit or debit cards be delivered to a new address, all while deleting any legitimate cards attached to the account.” They can make an emotional plea, claiming that they’ve lost everything in a home fire and want a replacement card to be brought to their hotel as soon as possible. Or they may claim to have misplaced their credit card while abroad and want a replacement to be delivered to a different location than the one on file.” – Kevin Tu, DataVisor, How to Detect Call Center Fraud; Twitter: @datavisor

 

 

 

10. Scammers may find it difficult to keep up with queries that are posed in a conversational tone.

“Effective verification questions are vital, but although the answers are important, the manner in which they are replied is often much more affirming. Furthermore, building a connection with your consumer while unintentionally authenticating them can boost loyalty and customer lifetime value.” — Sam Bouso, Precognitive; Twitter: @precognitiveInc; Preventing Call Center Fraud Using Non-Conventional Verification Methods

 

 

 

 

11. The caller tries to manipulate the situation in order to receive preferential treatment.

“The use of deceit and manipulation to convince unsuspecting contact center personnel to give secret information that may be used to steal additional sensitive information, conduct fraud, or perform an unlawful transaction” is the fundamental definition of social engineering. — Identity Management Institute’s Call Center Employee Fraud Training; Twitter: @identitymate

 

 

 

12. Long pauses after being given questions might suggest a phony caller.

“Most individuals in the United States can readily recite their social security number when asked. If the caller stops, asks your representative to wait, or says that he or she forgot it as part of your verification procedure, this is a sign that things isn’t quite right.” – Call center fraud is on the increase; here’s how your credit union can stay safe. MAP; @mapcuso on Twitter

 

 

13. Scam callers may have a pattern of making many access attempts with incorrect information.

“By employing key indicator words, patterns and trends might develop – for example, a contact center can see that someone contacted eight times to register a new account, but the caller provides incorrect information when asked for something they should know.” — Michele Masterson, Smart Customer Service; Twitter: @smartcustserv; 3 Best Practices to Avoid Contact Center Fraud

 

 

14. Fraudulent callers may be unable to answer sensitive inquiries about a consumer.

“When a consumer phones a call center, customer care agents should be prepared to ask security questions that only authorized customers may answer.” This is why it’s critical to include questions that enable consumers to submit replies that are unique and relevant to them, as well as questions that are powerful enough to ensure data security.” — Mia Papanicolaou, Call Center Management, 5 Call Center Security Tips For Protecting Customer Data and Preventing Breaches; Twitter: @MonetSoftware

 

 

Inbound Call Fraud Indicators That Software Can Detect

 

15. Scammers may be deterred by real-time, multi-layered verification systems.

“The ability to complete the authentication process in real time using multi-layered verification techniques deters fraud while also making it simpler for genuine consumers to access or establish accounts,” says the company. — John Dancu, CUInsight; Twitter: @CUinsight, The continuous increase of contact center fraud

 

 

 

 

16. If two-factor verification is needed using an existing account phone number, scammers may give up.

“When a contact center employee receives a caller who wants to perform a transaction on a specific account, the account owner receives notification of the transaction through his mobile phone.” To complete the intended transaction, a consumer must input a code supplied to his or her cell phone. It’s effective because few fraudsters know how to overcome it, and doing so generally takes a long period and a lot of money.” — Anna Rodriguez, author MyCustomer; Twitter: @MyCustomer; Seven ways contact center managers may protect their organization against fraud

 

 

 

17. Scammers could try to get around knowledge-based authentication systems.

“On the front end, KBA deters fraudsters by employing multiple-choice questions to verify that someone is who they claim to be. What’s vital is to assess the back-end controls and procedures in order to avoid bad actors from deceiving the system.” – EVS; Twitter: @goevs; How to Prevent Fraud in Call Centers

 

 

18. The caller’s phone behavior or number is unusual for their area.

According to Vijay Balasubramaniyan, founder, CEO, and CTO of Pindrop Security, an in-depth examination at a phone number may also be valuable in spotting fraud. ‘An example of this is a phone number that is fully unallocated in the United States’ phone numbering network. ‘You’re seeing it appear despite the fact that it’s not a real phone number,’ he explains. ‘You may also look at the phone number’s velocity — how many times does it call over a period of time, and what are its calling patterns?’ — Jeff Goldman, eSecurity Planet, How to Prevent Contact Center Fraud; Twitter: @eSecurityP

 

 

 

19. Customer behavior seems to be out of the ordinary across channels.

“Today, a customer’s path to complete a single activity may entail many channels – for example, signing into an account, then a webchat, and finally a phone call.” Contact center activity may be fed into an analytics or even a rule-based fraud detection platform to detect fraud by identifying abnormalities for a specific client or in contrast to a peer group.” – Peter Mullen, VXI; Twitter: @vxiglobal; Preventing fraud at the contact center

 

 

 

20. Automated analysis of incoming calls and phone information fails.

“Enabling correct identification assessment in the contact center depends on endpoint-centric methods, which look at the originating call and the originating phone to check the authenticity of the individual calling.” “The strongest way for identifying fraudsters that call into organizations,” according to Litan, is the combination of phoneprinting technology and voice biometrics. – Gartner’s Analysis and Recommendations: Pindrop; Twitter: @pindrop; 3 Key Call Center Questions Answered

 

 

 

21. The caller’s device and access information are notably different than usual.

“Identity-based risk detection identifies patterns of an identity’s usage across a broad range of consumer activities in order to determine whether a particular identity is in the hands of fraudsters who are actively attempting to exploit it.” Monitoring the features of digital-identity proxies such mobile phone numbers and email contact information isolates incidents when fraudsters modify customer contact information to protect the victim from further verification efforts.” – Experian, call center fraud prevention; Twitter: @Experian US

The caller’s side of the Session Initiation Protocol for Telephones reveals questionable data.
“Fraudsters with a basic understanding of telephony may spoof the ANI, which stands for Automatic Number Identification and serves as a proxy for the phoning party’s phone number. The ANI value may be modified, but when it is, it leaves behind additional information that is incompatible with the new value, indicating spoofing.” – To identify call center fraud, sophisticated signaling is used. Twitter: @flowroute; 

 

 

 

 

23. The multi-factor authentication procedure has baffled the caller.

“MFA, or multi-factor authentication, is a better option than KBA. The MFA employs a method that gives each caller their own unique identification token. This token is derived from the device and carrier information on your phone. Another benefit of MFA for businesses is that it can recognize the qualities of specific sounds and transform them into a voice print. After gathering all of this data, you may input it into a database. The machine then analyzes all of the data to send fraudsters to a database where they would be blacklisted from the company’s and consumers’ information.” — Ilsa Morales, United World Telecom, Authentication and Fraud Prevention in Call Centers

 

 

 

 

24. Scammers may be calling if they are unable to perform callback verification for key account changes and transactions.

“Out-of-band authentication” is a procedure that needs two signals from two distinct channels to get access to an account. Instead of one authentication channel, attackers would have to compromise two independent and unrelated ones. If you get an email from a vendor, for example, you should phone them at the number you have on file to confirm that they received the email. This is particularly true if they are providing you with fresh account details. For instance, you could be asked to pay money to a different account from the one you’ve previously used.” – Out-of-Band Authentication Is the Key to Preventing Wire Fraud, Bridge Bank; Twitter: @bridgebank

25. The caller does not pass the voice biometrics check.

“Voice Biometrics software uses a person’s unique voiceprint to identify them. Vocal biometrics technology is used to identify a person based on their voice patterns, similar to how everyone has a unique fingerprint or retina.” –