Bank’s battle against insider frauds ignitors and mitigators: an emerging nation experience

Roy, Neha Chhabra; Basu, Sankarshan

doi:10.1108/jfm-04-2020-0021

Cited by 6 publications

(9 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the USA and Nigerian banks, scholars (Okoye and Gbegi, 2013; Ramamoorti, 2008) examined how poor internal control, poor cyber security and poor corporate governance practices affected profitability. Researchers (Roy and Basu, 2021; Uchenna and Agbo, 2013) found that employees exploited loopholes in the infrastructure, technology, database and communication systems to commit crimes in Nigeria and Kenya. Some studies (Çetinkaya and Damar, 2019) found that social and political pressures, easy escape policies, weak internal control systems and inadequate supervision work as pull factors for employees to commit fraud.…”

Section: Literature Reviewmentioning

confidence: 99%

See 1 more Smart Citation

Sustainable response system building against insider-led cyber frauds in banking sector: a machine learning approach

Roy

Prabhakaran

2022

JFC

View full text Add to dashboard Cite

Purpose This paper aims to focus on the different types of insider-led cyber frauds that gained mainstream attention in recent large-scale fraud events involving prominent Indian banking institutions. In addition to identifying and classifying cyber fraud, the study maps them on a severity scale for optimal mitigation planning. Design/methodology/approach The methodology used for identification and classification is an analysis of a detailed literature review, a focus group discussion with risk and vigilance officers and cyber cell experts, as well as secondary data of cyber fraud losses. Through machine learning-based random forest, the authors predicted the future of insider-led cyber frauds in the Indian banking business and prioritized and predicted the same. The projected future reveals the dominance of a few specific cyber frauds, which will make it easier to develop a fraud mitigation model based on a victim-centric approach. Findings The paper concludes with a conceptual framework that can be used to ensure a sustainable cyber fraud mitigation ecosystem within the scope of the study. By using the findings of this research, policymakers and fraud investigators will be able to create a more robust environment for banks through timely detection of cyber fraud and prevent it appropriately before it happens. Research limitations/implications The study focuses on fraud, risk and mitigation from a victim-centric perspective and does not address it from the fraudster’s perspective. Data availability was a challenge. Banks are recommended to compile data that can be used for analysis both by themselves and other policymakers. Practical implications The structured, sustainable cyber fraud mitigation suggested in the study will provide an agile, quick, proactive, stakeholder-specific plan that helps to safeguard banks, employees, regulatory authorities, customers and the economy. It saves resources, cost and time for bank authorities and policymakers. The mitigation measures will also help improve the reputational status of the Indian banking business and prolong the banks’ sustenance. Originality/value The innovative cyber fraud mitigation approach contributes to the sustainability of a bank’s ecosystem quickly, proactively and effectively.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

“…In banks, the least secure encryption system serves as an easy target for fraudsters. An inefficient IT control system is another fraud enabler (Roy and Basu, 2021). Poor internal control measures can sometimes result in criminal activities going undetected for 12 months and even five years (Van Akkeren and Buckby, 2017).…”

Section: Literature Reviewmentioning

confidence: 99%

Sustainable response system building against insider-led cyber frauds in banking sector: a machine learning approach

Roy

Prabhakaran

2022

JFC

View full text Add to dashboard Cite

show abstract

“…Banks manage the dynamically rising digital disruptions that prevent emerging nation banks from adhering to standard best practices (International Finance Corporate, 2021). Some of the challenges are stability (Batten et al, 2017), reputation and risk management (Ketterer, 2017;Roy and Basu, 2021a). Cyber-attacks are the most significant challenge among all technological disruptions that affect the banking business (Chhabra and Viswanathan, 2020;Roy and Vishwanathan, 2018;Touri, 2009) around its reputation, sustainability and stability (Thompson et al, 2017).…”

Section: Introductionmentioning

confidence: 99%

“…They identified that fraud could happen because of either party involvedthe victim or the criminal. The authors of recent studies (Blass and Grossman, 1996;Eaton and Korach, 2016;Najafabadi et al, 2015;Resnik and Finn, 2018;Roy and Basu, 2021a) believe that investigations should focus on involved parties since both are internal to the fraud and can be easily monitored and controlled (Swaby, 2012). As part of the root-cause analysis, both the victim (bank) and the fraudster (an insider employee in this case) provide reasons for the fraud.…”

Section: Introductionmentioning

confidence: 99%

“…Cyber fraud studies (Feily et al, 2009;Tamrin et al, 2017;Swaby, 2012) observed that criminals could exploit banks and perpetuate such crimes if they are internal systems entities that act as organized and well-connected communities. Previous studies (Roy and Prabhakaran, 2022;Roy and Basu, 2021a) focused on generic mitigation solutions that were less cost-effective for stakeholders. As cyber frauds continue to threaten the banking ecosystem, a more sophisticated, innovative and persuasive vigilance approach against the traditional silobased monitoring system is necessary to combat the dynamic cyber threat in the banking ecosystem.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Internal-led cyber frauds in Indian banks: an effective machine learning–based defense system to fraud detection, prioritization and prevention

Roy

Prabhakaran²

2022

AJIM

View full text Add to dashboard Cite

PurposeThe study aims to overview the different types of internal-led cyber fraud that have gained mainstream attention in recent major-value fraud events involving prominent Indian banks. The authors attempted to identify and classify cyber frauds and its drivers and correlate them for optimal mitigation planning.Design/methodology/approachThe methodology opted for the identification and classification is through a detailed literature review and focus group discussion with risk and vigilance officers and cyber cell experts. The authors assessed the future of cyber fraud in the Indian banking business through the machine learning–based k-nearest neighbor (K-NN) approach and prioritized and predicted the future of cyber fraud. The predicted future revealing dominance of a few specific cyber frauds will help to get an appropriate fraud prevention model, using an associated parties centric (victim and offender) root-cause approach. The study uses correlation analysis and maps frauds with their respective drivers to determine the resource specific effective mitigation plan.FindingsFinally, the paper concludes with a conceptual framework for preventing internal-led cyber fraud within the scope of the study. A cyber fraud mitigation ecosystem will be helpful for policymakers and fraud investigation officers to create a more robust environment for banks through timely and quick detection of cyber frauds and prevention of them.Research limitations/implicationsAdditionally, the study supports the Reserve Bank of India and the Government of India's launched cyber security initiates and schemes which ensure protection for the banking ecosystem i.e. RBI direct scheme, integrated ombudsman scheme, cyber swachhta kendra (botnet cleaning and malware analysis centre), National Cyber Coordination Centre (NCCC) and Security Monitoring Centre (SMC).Practical implicationsStructured and effective internal-led plans for cyber fraud mitigation proposed in this study will conserve banks, employees, regulatory authorities, customers and economic resources, save bank authorities’ and policymakers’ time and money, and conserve resources. Additionally, this will enhance the reputation of the Indian banking industry and extend its lifespan.Originality/valueThe innovative insider-led cyber fraud mitigation approach quickly identifies cyber fraud, prioritizes it, identifies its prominent root causes, map frauds with respective root causes and then suggests strategies to ensure a cost-effective and time-saving bank ecosystem.

show abstract

Insider employee-led cyber fraud (IECF) in Indian banks: from identification to sustainable mitigation planning

Roy

Prabhakaran

2023

Behaviour & Information Technology

View full text Add to dashboard Cite

Bank’s battle against insider frauds ignitors and mitigators: an emerging nation experience

Cited by 6 publications

References 30 publications

Sustainable response system building against insider-led cyber frauds in banking sector: a machine learning approach

Sustainable response system building against insider-led cyber frauds in banking sector: a machine learning approach

Internal-led cyber frauds in Indian banks: an effective machine learning–based defense system to fraud detection, prioritization and prevention

Insider employee-led cyber fraud (IECF) in Indian banks: from identification to sustainable mitigation planning

Contact Info

Product

Resources

About