Fraud News Update 03.09.17 – This week’s edition features: Black Market (data 4 sale), DOJ Guidelines (corporate compliance), Anatomy of an Attack (wordpress websites), Internal Investigations (preserving privilege), Data Privacy (what your car says about you) and Highlights (from our recent social media feed).
As leaders in the fraud consulting arena, read on for more topical information and our insights, observations and unique commentary on some of the weekly fraud news stories.
Like our content? Feel free to share Fraud News Updates with your network or colleagues.
New Age Classified Ads: Data 4 Sale
It wasn’t that long ago when one could go to the Classified section of any newspaper in the country and find just about any thing one could imagine for sale.
However, newspapers are quickly becoming a thing of the past (like dinosaurs) as are many of their more well-known features…like comic strips and classified ads. Traditional print publications are being replaced by digital news sources and for many legitimate sellers, sites like Ebay have picked up where the Classified ads left off.
But what about the truly bad actors? Today’s big data breach environment has created job security for them. Stolen data is being increasingly bought, sold, traded or bartered on black market websites and the rash of recent breaches continues to fuel the underground economy.
It’s a supply and demand world and data’s a commodity. Those who have it are sellers…those who don’t are buyers. Not really comforting to know that their wares are YOUR personally identifiable information, is it?!
Corporate Compliance Guidelines
On February 8, 2017, the U.S. Department of Justice released new guidelines that “prosecutors may ask when evaluating a company’s compliance program in the context of a criminal investigation.
Given the constantly changing fraud, legal and regulatory landscape, companies would be wise to review these guidelines to ensure their compliance programs are currently robust enough before getting caught in the government’s crosshairs down the road.
The U.S. government’s giving everyone advance warning so there’s absolutely no reason not to review now. This is like being given the answers to the test by the professor before you take it! Fail at your own risk!
Anatomy of a Website Attack
It seems like everyone’s a specialist these days…doctors, lawyers, fraud professionals, etc. Everyone has a niche, something they do often or better than anyone else. The same holds true with cybercriminals.
WordPress is a common platform for website development so it stands to reason that the bad actors have taken notice of that technology trend and seek to exploit WP vulnerabilities whenever possible.
Knowing that’s one thing, seeing it in print is another. So, when this piece showed up in my inbox the other day detailing the anatomy of an organized crime rings WP attack, it caught my attention. See the focus on attack methods, volumes, financial benefits, legal retribution, hosting locations and the money trail. Interesting read.
Internal Investigations – Preserving Privilege
Internal investigations like those involving False Claims Act (FCA) violations can be challenging. Besides getting the facts, investigators and in-house lawyers must take care to get it right, ensuring that legal protections, like attorney client privilege are preserved.
Here’s a quick look at some of the important considerations that lawyers and investigators should follow during FCA cases. Most of these suggestions generally apply in other types of cases as well so it’s a good refresher.
Data Privacy – What Your Auto Says About You
Compared to the cars of yesteryear which were easy to open up the hood and work on, today’s high-end cars are controlled by computers, circuit boards and sophisticated electronics. The increased implementation of technology in cars makes it harder for the average weekend mechanic to fix their own car, a fact which is generating increased service revenue for local dealerships.
On board technology which governs a car’s performance generates data. Add to that, wi-fi along with increased IOT technology and it’s “data palooza” coming from your vehicle.
With this kind of data generating technology, if you have any kind of privacy expectation while driving your car, fa-get about it! Privacy has “gone out the window” (Pun intended).