Fraud Magazine Jan2021

DISAPPEARING DEVELOPING ENTIRE FRAUD 5 MOST SCANDALOUS OILfield FRAUD p.
44 EDITOR SAYS
PRINTER INK P. 8 PICTURE p. 24 FRAUD CASES OF 2020 p. 36 FAREWELL p. 50
VOL. 36 | NO. 1 | JANUARY/FEBRUARY 2021

Fraud-Magazine.com
r e m o t e
but
engaged
Conducting
investigations
from afar
P. 28
Prepare to Pass the CFE Exam
The CFE Exam Prep Course® gives you flexibility to prepare for the CFE Exam on
your schedule. Including study questions and practice exams, the CFE Exam Prep
Course will help you prepare to pass the rigorous CFE Exam.
Includes a two-year subscription to the

online Fraud Examiners Manual!
1,300+ STUDY QUESTIONS PRACTICE EXAMS FRAUD EXAMINERS MANUAL

Review sample exam questions with Evaluate your preparedness for the CFE Explore topics in depth with the
explanations of the correct answers. Exam with practice exams and results. Fraud Examiners Manual.
Visit ACFE.com/CFEPrep to learn more.

CONNECT
FROM THE PRESIDENT WITH US
FM
WE’RE REMOTE, BUT WE MUST CONNECT Read more Fraud

Magazine content online
2
at Fraud-Magazine.com.
020 is officially behind us, but its repercus-

sions will live with us for a long time. Noth-
ing prepared us — professionally or personally
FM
— for the pandemic. COVID-19 probably has perma-
nently changed the ways we operate. But we’ve been Download the Fraud
resilient as we work through tremendous disruptions. Magazine app for
We’re fighting the good fight to protect our organiza- iPhone or Android.
tions from fraud despite our limitations.
In October 2020, I had the honor of conducting an
ACFE webinar with a group of expert fraud examin-
ers to discuss the challenges and difficulties they and Like the ACFE on
their colleagues are facing. The two-hour discussion Facebook for the latest
flew by with the three speakers from consulting, news, photos, videos and
industry and law enforcement sectors. The discussion exclusive online content.
was so robust, we decided to expand the session to
become this issue’s cover story.
Our quarterly Fraud in the Wake of COVID-19 mem-
ber survey tells us 38% have already observed a signifi- Follow @TheACFE
cant increase in fraud, and 90% expect to see it increase in the next 12 months. (See ACFE.com/ on Twitter and keep
covidreport.) These results were the launching pad for our webinar and cover-article interviews. informed on breaking
The webinar covered a gamut of topics, but the cover story examines the paramount ques- news and industry trends.
tion: How do we stay engaged in our fraud examinations when we must be apart? The three
experts lament, as you do, our lack of physical interaction and inability to make connections.
The experts agreed that we, more than ever, must leverage up-to-date technology to perform
our jobs because we often can’t be present in person. They stressed the importance of brain- Make connections with
storming with IT departments to improve communication among remote staff members. fellow fraud fighters in
The experts feel extra pressure because even basic interviews now rely so much on technol- the ACFE Community at
Connect.ACFE.com.
ogy. As one of them said, we must be “overprepared” for the inevitable mishaps and interrup-
tions — especially for organizations operating in multiple countries.
Because our investigation procedures have changed, the experts also stressed that we must
closely work with our legal departments to ensure we’re still complying with all laws and regula-
tions. Even a basic component like maintaining evidentiary chain of custody are more difficult View stories and photos
in a remote environment. There’s just so much more to scrutinize now. on Instagram and never
It’s clear that the fraud risk landscape has changed dramatically since the beginning of miss exclusive Fraud
Magazine content.
the pandemic. However, if we come together and work collaboratively with IT, legal and other
groups — internally and externally — then we can share our knowledge and experience to figure
out the necessary solutions. Coincidentally, harnessing this collective knowledge and experience
is the hallmark of strong fraud risk assessments, which organizations must revisit as they seek
to assess and navigate the “next normal” in their fight against fraud. CONTRIBUTE
Just as fraudsters are looking for new ways to steal during the pandemic, we must find novel Share your expertise
methods to catch them. Even if we must do that remotely. ■ FM and earn up to 10 CPE
credits annually for your
published work. Visit
Bruce Dorris, J.D., CFE, CPA, is president and CEO of the ACFE. Reach him at: Fraud-Magazine.com/
President@ACFE.com. getpublished.
FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 3

Contents Volume 36, No. 1, January/February 2021
COVER STORY
28
Remote but engaged:
Conducting investigations from afar
By Dick Carozza, CFE
How do fraud examiners conduct fraud

examinations when they often can’t
meet their team members and subjects
in person? These experts — during
pandemic constraints — discuss their
biggest investigation hurdles, main-
taining professional skepticism, best
practices, eDiscovery challenges, chain
28 REMOTE BUT ENGAGED of custody, interviewing constraints
and more.
FEATURES
24 DEVELOPING THE ENTIRE FRAUD PICTURE 36 5 MOST SCANDALOUS FRAUDS 50 FAREWELL
Developing Keys to the kingdom:
24 44
the entire fraud picture oilfield fraud
By Alexis C. Bell, CFE By Rick Roybal, CFE
5 Most scandalous A pillar of anti-fraud
36 50
fraud cases of 2020 education says farewell
By Hailey Ayres and Mason Wilder, CFE By Emily Primeaux, CFE
4 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

Publisher John Gill, J.D., CFE
Editor-in-chief Dick Carozza, CFE
Contributing editors
Cora Bullock; Scott H. Patterson;
Randi Zimmer, CFE
Legal editor Ron Cresswell, J.D., CFE
COLUMNS AND DEPARTMENTS Contributing writers
Robert Tie, CFE, CFP; Donn LeVie Jr., CFE;
FROM THE PRESIDENT GLOBAL FRAUD FOOTPRINT Emily Primeaux, CFE
We’re remote, but 2021 outlook for fighting Designers

Tracy Paccone, Jennifer Rother
we must connect fraud in Europe
Guest designers
Bruce Dorris, J.D., CFE, CPA 3 By Mason Wilder, CFE 20 Becky Plante, Mia Bain
Circulation manager Aimee Jost, CFE
FRAUD IN THE NEWS FRAUD BASICS Advertising coordinator Travis Kolaja
Contact: (800) 245-3321 | tkolaja@ACFE.com
Ponzi schemer flees on wa- Open public entities’
Editorial Advisory Committee
ter scooter, shysters rent ledgers for transparency Jonathan E. Turner, CFE, CII, chair; Emmanuel A. Ap-
parking spots and more By Ken Dieffenbach, CFE 58 piah, MBA, CPA, CFE; Johnnie R. Bejarano, DBA, CFE,
CPA, CGMA; Richard Brody, Ph.D., CFE, CPA; Jeimy
Compiled by Dick Carozza, CFE 6 J. Cano, Ph.D., CFE, CAS; Courtney Castelino, CFE,
CPA, CA, CBV, CFF; Franklin Davenport, CFE; David J.
CAREER CONNECTION Clements, CFE; Peter D. Goldmann, CFE; Katya Hirose,
J.D., CFE, CAMS; Robert Holtfreter, Ph.D., CFE; Robert
CASE IN POINT Time to shake things up Kardell, CFE, CPA; Thomas Cheney Lawson, CFE, CIA;
Philip C. Levi, CFE, CPA, FCA; Robert Loh, CFE, CFCS,
The case of the By Tracy G. Swaim, CFE 62 CIRA; Larry Marks, CFE, CISA, PMP, CISSP, CSTE; Jim-
disappearing printer ink my S. Pappas, CFE; Cecily Raiborn, Ph.D., CFE, CMA,
CPA (Texas); Dorothy Riggs, CFE; Daniel Semick, MPA,
By Michael Yamma, CFE, and TAKING BACK THE ID CFE, CGFM; Rob E. Shaff, CFE; Katharina Shamai, CFE,
CIA, CA, IIA; Herbert Snyder, Ph.D., CFE; Stéphane
Brian Malloy, CFE 8 Covid-19 and utility Vuille, CFE, PCI
bill scams 2020-2021 Board of Regents

Lyn Cameron, CFE, LL.B; Kenneth R. Dieffenbach, CFE;
By Robert Holtfreter, Ph.D., CFE 64 Bruce Dorris, J.D., CFE, CVA, CPA; Eric R. Feldman, CFE;
Bethmara Kessler, CFE; Jeanette LeVie, CFE; Victoria
Meyer, CFE, FCCA, MICA; John Warren, J.D., CFE
Fraud Magazine (ISSN 1553-6645) is published bimonthly
by the Association of Certified Fraud Examiners, 716 West
Avenue, Austin, TX 78701-2727, USA. Periodical postage
paid at Austin, TX 78701 and at additional mailing offices.
Postmaster — Please send address changes to:
Fraud Magazine | ACFE Global Headquarters
716 West Avenue | Austin, TX 78701-2727, USA
(800) 245-3321 | +1 (512) 478-9000
Fax: +1 (512) 478-9297
8 DISAPPEARING INK Subscriptions

ACFE members: annual membership dues include
$45 for a regular one-year subscription; $15 for an
electronic member subscription, and $15 for student
FRAUD EDGE and retired member subscriptions. Non-member sub-
scription rates are $65. Membership information can
Cyberattacks in higher be obtained by visiting ACFE.com or by calling (800)
education at an 68 ALAN E. SMALL, CFE 245-3321, or +1 (512) 478-9000. Change of address
notices and subscriptions should be directed to Fraud
epidemic level Magazine. Although Fraud Magazine may be quoted
with proper attribution, no portion of this publication
I’M A CFE
By Cindy Greenman Ph.D., CFE; may be reproduced unless written permission has been
obtained from the editor. The views expressed in Fraud
Ross Johnston, Ph.D., CPA; and Alan E. Small, CFE Magazine are those of the authors and might not re-
Derrick Esplin, Ph.D., CPA 12 By Dick Carozza, CFE 68
flect the official policies of the Association of Certified
Fraud Examiners. The editors assume no responsibility
for unsolicited manuscripts but will consider all submis-
sions. Contributors’ guidelines are available at Fraud-
INNOVATION UPDATE CPE QUIZ 72 Magazine.com. Fraud Magazine is a double-blind,
peer-reviewed publication.
Are data-sharing
To order reprints, visit Fraud-Magazine.com/reprint or
consortiums the future email reprints@fraud-magazine.com.
of anti-fraud? © 2021 Association of Certified Fraud Examiners, Inc. “ACFE,” “CFE,” “Certified
Fraud Examiner,” “CFE Exam Prep Course,” “Fraud Magazine,” “Association of
By Vincent M. Walden, CFE, CPA 16

Certified Fraud Examiners,” “Report to the Nations,” the ACFE Seal, the ACFE
Logo and related trademarks, names and logos are the property of the Association
of Certified Fraud Examiners, Inc., and are registered and/or used in the U.S. and
countries around the world.

FRAUD in the news Read more news at Fraud-Magazine.com
PONZI SCHEMER FLEES ON WATER SCOOTER ACROSS AND UNDER LAKE SHYSTERS RENT U.K. PARKING
Bernie Madoff needed an underwater information with conspiracy to com- SPOTS THEY DON’T OWN
scooter! Accused Ponzi schemer Matthew mit fraud.
According to the BBC, Simon
Piercey, 44, tried to escape authorities on According to court documents, from
Gallagher received complaints from
a red submergible Yamaha 350Li scooter about July 2015 through August 2020,
tenants at his London flat that strang-
across, and under, Shasta Lake Nov. 16, Piercey carried out an investment fraud
ers were leaving cars in the dedicated
2020, in California, according to a U.S. scheme that raised a total of approxi-
parking bays. He found that a fraud-
Department of Justice (DOJ) release and mately $35 million in investor funds.
ster was charging eight pounds per
The New York Times. Piercey used his firms, Family Wealth
day via the “Just Park” website for his
Piercey, of Palo Cedro, California, Legacy and Zolla, to solicit funds from
tenants’ parking spaces.
fled in his truck to Shasta Lake when investors using a variety of false and
Other fraudsters were also raking
members of the California Highway Pa- misleading statements, including those
in the pounds at other dedicated park-
trol tried to apprehend him. They arrest- about trading algorithms, the success of
ing spots around London through the
ed him after he emerged from the lake on the companies’ investment strategies
online parking service and app.
the scooter in wet street clothes. A grand and the liquidity of investments.
The Just Park’s company founder
jury had returned an indictment Nov. 12 (See the DOJ release, tinyurl.com/
and CEO apologized for the purloined
after charging him with wire fraud, mail y442vzef, and “Ponzi Scheme Suspect
parking problems. “We do have strin-
fraud, money laundering and witness Uses Underwater Scooter to Flee F.B.I.,”
gent checks in place to prevent spaces
tampering. by John Ismay, The New York Times, Nov.
from being listed fraudulently,” he
Kenneth Winton, 67, of Oroville, 18, 2020, tinyurl.com/y3mgn4rp.)
said. The company said it removed
California, Piercey’s business partner,
the unauthorized advertisements.
was charged separately by criminal
(See “Just Park apologises after
scammers place fake parking space
ads,” by Jon Douglas, BBC News, Nov.
8, 2020, tinyurl.com/y2b9trkm.)
ALLEGED FRAUDSTERS STEAL $6 MILLION IN FORECLOSURE SCHEME

Many distressed Southern Californians lost their homes because nine people allegedly
claimed they’d prevent foreclosures, but instead they stole $6 million from the victims.
According to the Los Angeles Daily News, the nine defendants claimed they could
halt foreclosures if homeowners would send them monthly payments. The alleged
fraudsters would then delay foreclosures and evictions by filing fraudulent bankruptcy
documents, false court documents and false fractional interest grant deeds, according
to the California attorney general.
The culprits would send the documents to the servicers of mortgage loans, which
would initially stop foreclosures by invoking the bankruptcy “automatic stay.” Regard-
less, victims would still lose their homes.
(See “9 people accused in Southern California foreclosure fraud scheme,” City News
Service, Los Angeles Daily News, Nov. 21, 2020, tinyurl.com/y57db767.)

ACFE Group Training
Anti-Fraud Training for Your Team
Increase your team’s ability to detect and prevent
fraud with knowledge and solutions that can be
applied immediately in a cost-effective way. Our
instructors bring years of fraud fighting experience
directly to you by using course materials from the
world’s leading provider of anti-fraud education.
1-day and multi-day course topics include Bribery and Corruption,

Financial Statement Fraud, Professional Interviewing Skills and more.
CONVENIENT DYNAMIC NASBA COMPLIANT

Group Training is conducted at a Your team’s specific concerns and Group Training courses adhere
time that works with your team’s questions will be addressed and in a to NASBA standards to meet the
schedule at your facility. training that focuses on your continuing professional education
organization’s unique needs. needs of your staff.
CFE Exam Review virtual formats

Course available
Get your team on the fast track to passing the Livestream training to any number of
CFE Exam with a private CFE Exam Review employees with no travel required.
Course. Our expert instructors give your staff Virtual classes can be viewed from
the tools they need to pass the CFE Exam in multiple locations at once and offer a
an efficient 4-day course. convenient way for you to provide
high-quality training to your teams.
Bring the ACFE’s premier anti-fraud training to your organization.

ACFE.com/OnSiteTraining
CASE IN POINT Case history applications
The case of the disappearing

Printer ink
Despite futurists’ predictions, we don’t live in a paperless business world. Printer
ink and toner are still an expensive necessity. Fraudsters depend on ink costing or-
ganizations more than caviar. Here’s how to prevent this asset misappropriation and
possibly save millions.
S cores of people get taken to the

cleaners in Las Vegas. It’s just
that the one who ends up in the
red usually isn’t the local government.
But that happened to be the case when a
municipal purchasing analyst managed
to steal $6,715,531 in toner and ink car-
tridges from her employer within eight
years. That’s an average of $746,170 in
toner and ink per year!
The Las Vegas Valley Water District
hired Jennifer J. McCain-Bray in 2001
and in late 2007 promoted her to be its
purchasing analyst. She worked with de-
partment vendors and ordered supplies
but also began stealing what eventually
would amount to thousands of toner and
ink cartridges. (See the U.S. Department Court records from McCain-Bray’s of purchasing records, and McCain-Bray
of Justice release, Jan. 29, 2019, tinyurl. prosecution indicate that she also failed could read the laser printing on the wall.
com/y8wbhufg.) to report $2,339,156 in taxable income She resigned in December 2015. McCain-
McCain-Bray’s fraud was simple. from cartridge sales between 2011 and Bray was eventually sentenced to 51
She’d order unneeded cartridges and 2015. That averages to $467,831 in stolen
months in federal prison and ordered to
then ship them under a fake vendor toner income per year in just those five
pay back the entire $6.7 million.
name using the water district’s shipping years.
system to a company in New Jersey that McCain-Bray used the extra cash to
purchased and sold toner and ink on- remodel her home; travel; and buy gifts
Employee theft is on the rise
line. Her fake vendor enabled McCain- for herself, friends and family. Her hot The ACFE 2020 Report to the Nations
Bray to misuse the water district’s streak ended when a coworker became shows that theft of noncash property,
shipping system, so it even paid postage suspicious about a package addressed such as office supplies, rose from about
on the stolen cartridges. to the fake vendor. That led to a review 10% to 18% of fraud cases between 2002

and 2020. Those frauds had a nearly 2004, tinyurl.com/y4av4x25; and “Why
$80,000 median loss. COLUMNIST Printer Ink is the Other Black Gold,” by
So, what causes employees to steal?
MICHAEL YAMMA, Robert Siegel and Audie Cornish, NPR,
CFE
They might have reduced hours, pay or INVESTIGATOR, OFFICE OF May 24, 2012, tinyurl.com/y3335svf.)
benefits. And the ACFE notes that em- THE CITY AUDITOR, Gone are the resale days of dark
ployees who exhibit “excessive control AUSTIN, TEXAS alleys and trench coats laden with stolen
issues or unwillingness to share duties” goods. The ease and ubiquity of e-com-
COLUMNIST
might be a fraud risk. (See the ACFE merce has resulted in new outlets for
BRIAN MOLLOY, J.D.,
Report to the Nations, ACFE.com/RTTN.) CFE people to fence stolen items as easily as
Revenge or “seeking justice” can be CHIEF OF INVESTIGATIONS, non-fraudsters perusing Amazon. Some
a reason for stealing at work. Perhaps a OFFICE OF THE CITY grey market websites are dedicated
AUDITOR, AUSTIN, TEXAS
fraudster has received a poor evaluation to selling printer toner and ink. They
from management and is concerned provide instant offers and resell them at
about losing their job, or they see no
opportunity for advancement, hence
Printer toner and ink a markup that’s still well below the retail
price of new toner and ink. The transac-
their revenge. Maybe they feel their hard are popular theft tar- tion is just a FedEx shipment and PayPal
work has gone unnoticed and underap-
preciated, hence their justice seeking.
gets because of their transfer away.
However, simple greed and the high retail prices and Disappearing ink happens
opportunity of easy money often can be
the determining factors at work. Based
ease of resale. more than you think
So, is employee toner theft just a Vegas
on the McCain-Bray story, fraudsters problem because “what happens there
can make a lot of cash by selling stolen only happens there?” Well, it turns out
office supplies. Keeping these motives in toner and ink cartridge theft occurs
mind, let’s focus on why one mundane across the world. Where there’s an ag-
and ubiquitous item — toner — seems others can excuse excessive toner use to grieved employee and weak controls,
to stand out in the supply cabinet as the their organizations by saying, “We just toner theft can follow.
jackpot of office supply theft. use a lot of ink.” A municipal employee from San
Printer toner and ink are also popu- Diego County stole $360,000 in ink
Why toner and ink? lar theft targets because of their high cartridges between 2007 and 2012 and
Not all office supplies are equal in the retail prices and ease of resale. They’re sold them to an online ink and toner
eyes of a person looking to make an easy so expensive because many manufac- marketplace. For his efforts, he received
buck. Printer toner and ink are particu- turers sell their printers at cost or a loss a three-year jail sentence. (See “County
larly prone to theft partially because of with the hope of locking users into buy- worker loses benefits for stealing,” by
their relatively small size. Like all the ing their toner or ink, which is how they Jeff McDonald, The San Diego Union-
other supplies an office consumes, print- make their profit. It’s not uncommon to Tribune, Dec. 5, 2013, tinyurl.com/
ing supplies aren’t always looked after spend more on toner after only a couple yx94js5n.)
with the same level of scrutiny as the refills than on the printer that uses it. A former municipal Philadelphian
actual printers. This doesn’t make much Costly cartridge fun facts: Accord- mail room clerk received two years in
sense when you think about it. After all, ing to PC World, ink can go for $22 per prison for stealing $1,368,091 worth of
what’s easier to stuff in a backpack — a quarter ounce, which is pricier than ink and toner cartridges in six years.
desk printer or a cartridge of ink? Russian caviar; and a New York Times Like McCain-Bray, he managed to use
Also, most employees’ only interac- economist found that printer ink was the city’s UPS account to ship his stolen
tion with the printer and ink world is priced at about $4,731 a gallon. The ink and toner to his co-conspirators.
the five seconds it takes to make a copy price-to-size ratio is great if you’re look- Records show he made $545,412 from the
or retrieve a document. So, fraudulent ing to steal from work. (See “Irate over sales. That means he got just under 40%
office-supply purchasing agents or Ink,” by Tom Spring, PC World, Feb. 5, of retail value for his hot toner and ink.

CASE IN POINT Case history applications
It seems like a steep discount, but then through tips. That’s, by far, the larg- records might also help you identify un-
again, it was all profit. (See U.S. Depart- est method for discovering workplace usual working patterns if physical access
ment of Justice release, June 9, 2015, frauds. Also, asset misappropriation is records aren’t available.
tinyurl.com/yywpaue8.) the most common workplace fraud — Once you identify a subject em-
Owners of a Florida furniture store representing 86% of frauds. Add those ployee, review their web-browser history
opened two ghost companies that leased up and a fraud hotline will help fight and do a keyword search of their work
Xerox printers. The leases came with toner and ink theft. emails. Look for terms like pre-owned,
seemingly unlimited toner replace- Secondly, ensure your organization used, toner, ink, cartridge, the brand
ment. The fraudsters would order more has adequate separation of duties. All of printer you have, plus the names of
cartridges than the printers needed the cited fraudsters took advantage of ink and toner resellers. Review their
and then resell them. They eventually their authority for ordering and receiv- browser history for resellers and market-
worked themselves up to at least 63 ing of goods. places like eBay, craigslist and Facebook
Xerox machines so they could order and This is so simple, but likely none Marketplace.
of the victimized entities took the time Interview your warehouse staffers
resell toner in bulk.
to compare their toner purchases with if they do the initial delivery intake.
They sold enough to receive about
their paper purchases. Ask if any employees like their pack-
$11 million from one buyer in Miami.
ages handled in particular ways or are
They were prosecuted for stealing ap- Toner, of course, is only used to
extra demanding. Ask about standard
proximately $24 million in toner from print on paper, so anyone spending
practices for receiving and delivering
Xerox in a scheme that lasted from 2008 more money on toner should see a
packages and if anyone has requested
until 2013. If the $11 million is roughly matching increase for paper. Search for
exceptions to those practices. It might
their total gains from the sales, then a period in your purchase records when
even be helpful to ask those employees
these guys got an impressive 46% of toner purchases increased. It’s time to
who receive the most packages.
retail value for their stolen toner. That’s investigate if you don’t see a matching
a solid step up from the Philadelphia pattern in paper purchases.
Don’t cry over spilled ink
employee. (See “Xerox scam nets Haynes Take these next steps if you’ve
Who knew ink and toner could be such
Brothers furniture family members found some evidence of suspicious
fertile soil for fraud? If you take some of
prison time,” by Frank Fernandez, The purchasing. If your potential toner thief the simple steps we’ve shared, it should
Daytona Beach News-Journal, July 29, is as bold as some of those above, they meaningfully reduce the likelihood your
2019, tinyurl.com/y36gbsae.) might be using your entity’s shipping toner will end up for sale somewhere
function to mail toner that was formerly on the internet. And if these steps lead
Guarding against toner yours. Review your shipping records for you to catch a toner fraudster magenta-
and ink theft new addresses and new vendors. handed, don’t feel too cyan. You’re not
How do you prevent your organization If you’re concerned with purchasing alone, and you probably won’t be the last
from being the next toner donor to an records, you might need to start look- to find your ink disappearing. ■ FM
aspiring office supply dealer? We’ve ing into the employee who orders the
identified several things you can do to ink. Review physical entry records like Michael Yamma, CFE, is an investiga-
lessen the chances your toner ends up badge-swipe data. tor for the City of Austin, Texas, Office
on the internet. Employees who are over-purchasing of the City Auditor. Contact him at
We have two general recommenda- and then stealing ink want to avoid at- Michael.yamma@austintexas.gov.
tions before we get to the inky specifics. tention as much as possible when they
First, fight toner and all other types of remove toner from the premises or ship Brian Molloy, J.D., CFE, is chief of in-
fraud with a fraud-reporting hotline. it to their buyers. Look for the suspected vestigations for the City of Austin, Texas,
As detailed in the Report to the Nations, employee arriving at work unusually Office of the City Auditor. Contact him
43% of workplace frauds are discovered early or staying late. Computer log-on at brian.molloy@austintexas.gov.

For Anti-Fraud Training.
For Your Team.
For Your Organization.
Group Membership. Discounted Anti-Fraud Training. Executive Roundtables.
ACFE.COM/CORPORATE
FRAUD EDGE A forum for fraud-fighting faculty in higher ed
Cyberattacks in higher education

at an epidemic level
Cybercriminals hit public institutions hard with ransomware in 2019 and 2020.
Colleges and universities lost millions to fraudsters. These thieves endangered
students’ records and stole PII, which they sold on the dark web. Administrators must
train students, educators and staffs to avoid opening suspicious email attachments.
T he University of Utah cyber

event started with “an unknown
entity” hacking into the Col-
lege of Social and Behavioral Science
COLUMNIST
CINDY GREENMAN,
PH.D., CFE
ASSOICATE PROFESSOR,
by Art Raymond, Deseret News, Aug. 21,
2020, tinyurl.com/yyutuorb.)
The university continued to down-
play the incident and claimed the cyber
computer servers on July 19, 2020, which DIXIE STATE UNIVERSITY extortionists encrypted only .02% of
left them temporarily useless. Admin- the available data stored on the system
COLUMNIST
istrative officials immediately notified before the university’s information
ROSS JOHNSTON,
law enforcement and the university’s security office discovered the attack.
PH.D., CPA
information security office (ISO). The ASSISTANT PROFESSOR, (See “University of Utah pays $450K to
university then hired an outside consult- DIXIE STATE UNIVERSITY Stop Cyberattack on Servers,” by Scott
ing firm with specialized experience to Pierce, Salt Lake Tribune in U.S. News
COLUMNIST
assist. The firm’s technicians immediate- & World Report, Aug. 22, 2020, tinyurl.
DERRICK ESPLIN,
ly isolated the hacked computer systems com/y64vwjyj.)
PH.D., CPA
from the rest of the university’s systems. CHAIR, DIXIE STATE Ten days after the attack, the
They then scrubbed the systems, and the UNIVERSITY ACCOUNT- university sent a notice to faculty and
ING, FINANCE AND DATA
ISO reinstalled the pertinent data from ANALYTICS students to ask them to update the
previous backups. passwords they used to access the
Because the systems contained pays $457K After Ransomware Attack,” school’s network. The university’s chief
student and employee personally iden- information officer (CIO) said the delay
by Lindsey O’Donnell, threat post, Aug.
tifiable information (PII), the university was because the university was involved
21, 2020, tinyurl.com/y6rklgwm.)
— in agreement with its consulting firm in the investigation and to ensure that
and insurance company — decided to The University of Utah paid the “password resets went smoothly in each
pay a $457,059.24 ransom, which the unnamed cyber extortionists via Bitcoin campus entity.”
hcakers demanded. The university did and the hackers provided a code that The CIO said the university was
disclose its insurance policy covered released the locked data servers. Cyber- ascertaining the type of data accessed.
part of the ransom. The university had He said the event had helped the school
crooks regularly specify digital cryp-
to pay the remainder. It didn’t disclose specifically identify a weakness in its
tocurrencies for transactions because
the breakdown of the payments, but it security system. The CIO said the uni-
did specify that it didn’t use any grant they’re fundamentally untraceable. (See versity corrected that vulnerability. (See
monies, donations, tuition fees or “Cyber swindlers take University of Utah the Deseret News article, tinyurl.com/
taxpayer funds. (See “University of Utah for nearly $500K in ransomware attack,” yyutuorb.)

The University of Utah has approxi- Woo said. (See Michigan State Universi- The wording of the UCSF statement
mately 24,500 undergraduate students, ty won’t pay ransom after cyber attack,” itself does seem to suggest that back-
and about 8,500 graduate students by Steve Marowski, MLive, June 3, 2020, ups weren’t available. According to
and about 1,600 faculty members. (See tinyurl.com/y2takbxg.) the Forbes’ article, if that’s the case, Ian
the Salt Lake Tribune article, tinyurl. Soon after the six-day deadline, Thornton-Trump, CISO at the company,
com/y64vwjyj.) At that time, university some of the leaked PII stolen from the Cyjax, said the question is why “execu-
officials were continuing to review the school’s department of physics and tives are willing to pay a $1 million ran-
accessed information and said it would astronomy was available for purchase som to cybercriminals, but not willing
release more details. (See the threat post on the dark web. (See “Cyberextortion to pay a fraction of that to implement
article, tinyurl.com/y6rklgwm.) Threat Evolves,” by Lindsay McKenzie, or maintain backups?” (See the Forbes
Inside Higher Ed, June 11, 2020, tinyurl. article, tinyurl.com/y6yfd28b.) Cyjax
Cybercriminals hit three com/ybgg87nf.) offers incident response services and
schools within two weeks UCSF confirmed it paid a ransom threat intelligence.
The University of Utah joins the club of $1.14 million (the highest reported Columbia College of Chicago
of many higher-education institutions ransom so far) to the criminals behind confirmed its IT systems detected a
that cybercriminals have targeted. In the a Netwalker ransomware cyberattack. breach of its computer system that was
spring of 2020 alone, ransomware at- On June 1, 2020, the hackers behind contained to a limited number of serv-
tacks hit Michigan State University, Co- the campaign attacked UCSF networks ers within the college. The college also
lumbia College Chicago and the Univer- within the school of medicine IT envi- confirmed that the hackers used the
sity of California, San Francisco (USCF), ronment. Thankfully, the attack didn’t same NetWalker ransomware used in
within two weeks. Cybercriminals used affect patient care delivery operations or the other two attacks.
the malicious software, NetWalker, and research work on a cure for COVID-19. College officials sent an email to the
gave them six days to pay, or they’d sell However, data on a “limited number of in which they admitted cybercriminals
the stolen PII. servers” was successfully encrypted ac- had accessed some employee, student
Michigan State University ap- cording to an UCSF statement published and college data, but they were still
pears to be the only one of the schools June 26. investigating the incident. They didn’t
that chose not to pay the ransom. The The encrypted data “is important to reveal how much money the hackers de-
intrusion was limited to just the depart- some of the academic work we pursue manded. (See “Breaking: Columbia stu-
ment of physics and astronomy. MSU’s as a university serving the public good,” dent information at risk in ransomware
information technology teams took the UCSF statement said. Although attack,” by Kendall Polidori and Mari
swift action to prevent further exposure, the cyberattack probably didn’t expose Devereaux, The Columbia Chronicle,
including taking the impacted servers patient records, the university said, “We June 5, 2020, tinyurl.com/yy77tftx.)
and workstations offline and notifying therefore made the difficult decision to
law enforcement, the university said. pay some portion of the ransom, approx- Emboldened cybercriminals
“First and foremost, our priority is imately $1.14 million, to the individuals pursuing larger targets
determining what information was com- behind the malware attack in exchange Generally, hackers use ransomware, or ma-
promised and then working with anyone for a tool to unlock the encrypted data licious software, to prevent owners of in-
who may have been affected to provide and the return of the data they ob- formation from accessing it on their com-
them with the appropriate support,” said tained.” (See “The University of Califor- puter networks. The cyber-extortionists
MSU Chief Information Officer Melissa nia Pays $1 Million Ransom Following then ask for money (typically in the form
Woo. “The safety and security of our IT Cyber Attack,” by Davey Winder, Forbes, of Bitcoin) in return for codes to unlock
systems and the people who use them June 29, 2020, tinyurl.com/y6yfd28b.) access to the information.
are of paramount importance to MSU. It There is plenty of interest in not Just a few years ago, ransomware
is why MSU continues to work diligently only how the attackers managed to get attacks only happened to a few un-
to strengthen and improve our informa- their foothold onto the school of medi- lucky entities and they were forced to
tion security systems and share best cine network but also whether backups pay a few hundred dollars to regain
practices with our campus community,” of the encrypted data were available. access to their computer files. Now,

FRAUD EDGE A forum for fraud-fighting faculty in higher ed
cybercriminals have stopped targeting targeted 13 percent of all higher educa- Diverse constituents particu-
select individuals and are pursuing tion institutions. (See “13% Of The larly endanger higher ed
much larger targets, businesses, cities Higher Education Sector Has Been Higher education is highly susceptible
and school systems. They’ve turned it Infected With Ransomware,” by Joel
because hackers use malware that
into a $13 billion-a-year industry. Alcon, BitSight, Oct. 13, 2016, tinyurl.
they typically deliver surreptitiously in
Dozens of large ransomware as- com/y4hxrcyr.)
phishing emails. With the number of
saults happen every month with the Another report by Emsisoft, a
average payout of more than $120,000. cyber research firm, found ransomware students, faculty and staff that all have
South Korean web provider, Nayana, attacks in 2019 impacted 89 universi- access to higher-education learning
paid a ransom of $1 million in 2017. ties, colleges and school districts, with platforms extortionists can easily gain
The cybercriminals hacked into more operations at up to 1,233 individual access when just one person clicks an
than 153 Linux servers and shut down schools potentially affected across the attachment or link in a phishing email,
more than 3,400 websites. The hackers U.S. In some of these cases, schools invade the network with malware
originally demanded $4.4 million, but closed and others couldn’t access data and search for the most valuable data
the company negotiators were able to about students’ medications or aller-
without detection. (See “Study: Higher
convince them that the company didn’t gies, and students’ grades were lost.
education is the top target for ransom-
have the funds to pay that amount. (See The “extreme level” invasions cost
ware attacks,” Axiom Resources, June
“The 5 biggest ransomware pay-outs of thousands of server and device shut-
all time,” by Luke Irwin, IT Governance, downs, and lost data. (See “The State 2020, tinyurl.com/y4ptj2gp.)
Oct. 2, 2019, tinyurl.com/y7k66o4t.) of Ransomware in the U.S.: Report and Chris Ross, senior vice president at
A report from BitSight Insights Statistics 2019, Emsisoft, Dec. 12, 2019, Barracuda Networks, says that univer-
found ransomware attacks in 2016 tinyurl.com/u2pjvbo.) sity servers are becoming increasingly
STOP ONLINE FRAUD

WITH SHAPE SECURITY
Less Fraud, Less Friction, Less Effort
Shape AI Fraud Engine (SAFE) blocks fraud missed

by existing tools, slashes friction for legitimate consumers
by up to 90%, and reduces workloads for fraud teams
For more information, please visit shapesecurity.com

appealing targets for cybercriminals be- had experienced at least one security Cindy Greenman, Ph.D., CFE, is an
cause they hold treasure troves of valu- incident since the lockdown, with more associate professor of accounting at
able data, including sensitive student than half (51%) recording an increase in Dixie State University in St. George,
and employee data, such as addresses, the number of email phishing attacks,”
Utah. She’s received the ACFE Educator
passwords, payment details, bank infor- Ross says in the techhq.com article.
of the Year. Greenman is a member of
mation and confidential research. (See
the ACFE Arizona Chapter. Contact her
Blackbaud university ransomware – the
Training, training, training at drcindygreenman@gmail.com.
danger of supply chain attacks,” by Mark
Because most ransomware is delivered
Jones, techhq.com, July 24, 2020, tinyurl.
through phishing emails, the keys to
com/yxm45waf.) Ross Johnston, Ph.D., CPA, is an as-
prevention are awareness and training.
During the global pandemic, more sistant professor of accounting at Dixie
Educating faculty, staff and students on
students are depending on virtual learn- State University. Contact him at ross.
how to identify unsafe emails can greatly
ing, the risks are greatly increased and johnston@dixie.edu.
reduce the chances of a ransomware at-
access points for hackers are multiplied.
“With more students than ever rely- tack. Schools can also attempt to prevent
stolen PII by ensuring that they aren’t hold- Derrick Esplin, Ph.D., CPA, is chair of
ing on cloud infrastructure to manage
the transition to digital classes and ing onto information they no longer need. the Dixie State University Accounting,
online exams, the threat facing them (See “Cyberextortion Threat Evolves,” by Finance and Data Analytics Department
has never been higher,” Ross says. “In Lindsay McKenzie, Inside Higher Ed, June in St. George, Utah. Contact him at der-
fact, our recent research found that 46% 11, 2020, tinyurl.com/ybgg87nf.) FM ■ rick.esplin@dixie.edu.
ACHIEVING
EXCELLENCE WITH
A GLOBAL VISION
Our Offerings:
Forensic Investigation Due Diligence
Hard Disk Imaging Background Checks
Brand Protection and IPR Physical Security
Cyber Security Training and Certifications
OUR PRESENCE { INTERNATIONAL OFFICES: INDIA | UAE | SRI LANKA | SINGAPORE

INDIA OFFICES: DELHI | MUMBAI | BENGALURU | CHENNAI | HYDERABAD | KOLKATA
www.netrika.com info@netrika.com Toll Free: 1800 121 300000

INNOVATION UPDATE Practical anti-fraud ingenuity
Are data-sharing consortiums

the future of anti-fraud?
More organizations are collaborating with data-sharing consortiums to safely ex-
change fraud risk profile information that could improve their internal prevention
and detection activities. Here’s an interview with Matt Galvin, global VP of ethics
and compliance at Anheuser-Busch (AB) InBev, who discusses how cross-company
collaboration might affect the anti-fraud profession.
I n 2019, the ACFE and SAS Institute

released the Anti-Fraud Technol-
ogy Benchmarking Report, derived
from the answers to a 19-question survey
COLUMNIST
VINCENT M.
WALDEN, CFE, CPA
MANAGING DIRECTOR,
numerous reasons, such as privacy con-
cerns and logistical challenges in dis-
closing their data to other organizations.
If organizations could truly figure
sent to 41,181 randomly selected ACFE out ways to anonymously share fraud
DISPUTES AND INVESTI-
members. More than 1,000 responded. GATIONS PRACTICE risk indicators — such as those from ac-
(See ACFE.com/techreport.) One ques- ALVAREZ & MARSHAL tual cases of bribery, conflicts of interest,
tion that caught my attention was, “Are financial misstatements or misappropri-
organizations contributing to data- ation of assets — it would revolutionize
sharing consortiums to help prevent or If organizations could our profession. With that in mind, Fraud
detect fraud?” I was surprised to learn
that more than a quarter of the respon-
truly figure out ways Magazine interviewed Matt Galvin, a rec-
ognized thought leader in compliance
dents (29%) do contribute to some to anonymously share and anti-fraud technology innovation.
form of data-sharing consortium that
feeds particular data into an aggregated
fraud risk indica- Galvin is vice president, global ethics
and compliance at Anheuser-Busch (AB)
database that all member organizations tors — such as those InBev and leads a team of more than 50
can access.
According to the report, consor-
from actual cases legal, compliance and fraud risk profes-
sionals globally.
tiums design these initiatives to help of bribery, conflicts Galvin spearheads BrewRIGHT,
member organizations benefit from the
collective data by identifying trends
of interest, financial AB InBev’s award-winning compliance
technology and transaction monitoring
and protecting themselves from known misstatements or platform. BrewRIGHT uses machine
threats. Another 21% reported they
don’t contribute to a consortium but
misappropriation of learning and behavioral analytics to
monitor billions of dollars in third-party
would be willing to do so in the future. assets — it would payment activities, investigations and
(See the figure on page 17.)
Naturally, organizations can reap
revolutionize our travel and entertainment data, and
many other compliance modules as
significant benefits by sharing data. But profession. part of a data-driven compliance ap-
as the report indicates, organizations proach. Galvin is also very interested in
might opt out of such initiatives for the concept of corporate data-sharing

ARE ORGANIZATIONS CONTRIBUTING TO DATA-SHARING CONSORTIUMS TO HELP
��
PREVENT OR DETECT FRAUD?
50%
Do not contribute and
have no plans to do so 29%
Currently contribute
21%
Do not currently contribute, but
would be willing to contribute in
the future
Cover and graph from the 2019 ACFE Anti-Fraud Technology Benchmarking Report
consortiums and has facilitated many of data set and with any sort of data collect such a data set, and by then it might
discussions with other business leaders science approach, the more structured be obsolete. Or, perhaps, we can all start
on the topic. data that you have with meaning- to work as part of a cross-company con-
Here’s the interview with Galvin, ful input [e.g., confirmed fraudulent sortium and obtain that data set a whole
shortened and edited for clarity. payments], the better your predictive lot faster.
models get. Prediction to me is like the
FM: As head of ethics, compliance Holy Grail. But to get there you need FM: What information would be
and investigations at AB InBev, why a pretty robust data set as well as a lot shared? And how would it be kept
do you see the need for companies to of instances of what a fraudulent — or sanitized or anonymous?
collaborate and share fraud risk data non-compliant — transaction looks Galvin: We have a number of models
in a consortium-type manner? like. that we’re evaluating. One would be a
Galvin: Well, we’ve been working on I’m happy to report, I guess, that as vendor profile repository [i.e., a black-
BrewRIGHT platform for roughly four a single company, I haven’t had the num- list of high-risk vendors], and another
years now, and one of our stated goals ber of instances of fraud and corruption would be a transactional profiling re-
at the outset was to get to the point of needed to create a data set robust enough pository [i.e., a library of validated risky,
prediction in terms of intercepting for to get to effective prediction. So, where can fraudulent or non-compliant transac-
instances of fraud or corruption before I get that sort of data set? I could track this tions]. Actually, I’m very excited as I’ve
they would occur. Now, with any sort data over time, but it could take years to recently been thinking about how to

INNOVATION UPDATE Practical anti-fraud ingenuity
put contracts on a distributed ledger. model, you just get feedback on how be captured in payments or sales. For
As background, a distributed ledger is good the recipe is — effectively laying example, most follow generally ac-
a database that is consensually shared the groundwork for distributed ledger cepted accounting principles [GAAP]
and synchronized across multiple sites, technology. and/or international financial reporting
institutions or geographies and acces- standards. I’ve talked to a lot of different
sible by multiple people. For reference, FM: What risks or challenges do you multinational companies in the mar-
blockchain is a type of distributed see that companies need to think ket — across energy, pharma, technol-
ledger. through? Would it be a one-size-fits- ogy and consumer products, to name
Currently, there’s a fascinating legal all consortium, or does it need to be a few — and I don’t believe that every
contract consortium in place now that broken down by industry or com- algorithm I have will work for everyone
I’m partnering with to take [AB In- pany size? everywhere. But I do believe that some
bev’s] higher-risk vendor management Galvin: Two separate questions, right? of my algorithms work for everyone
contracts and put them on a distributed How universal can it be and then how somewhere.
ledger in a way that would allow us to would it actually work? The two are
extract the key aspects of the data for somewhat related. When I look at AB FM: What advice do you have for
each contract. InBev as a company, we’re operating in investigators or compliance profes-
The nice thing about this kind of over 80 countries where roughly 90% sionals for becoming more familiar
distributed ledger technology is it allows of our value chain is local. So as much with this consortium concept?
Galvin: In the short term, where I’ve
seen companies have greater successes
is when faced with the choice between
For the investment price of a data scientist on your building or buying technology, they
compliance or investigations team (which, in the choose to build. For the investment
price of a data scientist on your compli-
current economy, you can get someone decent), you ance or investigations team (which, in
the current economy, you can get some-
can start to understand the challenges that
one decent), you can start to under-
you have and start figuring out things that can stand the challenges that you have and
start figuring out things that can create
create a lot of quick wins for you. a lot of quick wins for you.
Next, I would start looking at what
data sets you have that are going to
be overlapping with other organiza-
you to reliably share information blindly as we’re global, we are also hyper- tions — instead of buying or renting a
(or anonymously), but also only shares local. This creates a virtual laboratory third-party tool that sort of sends your
what you need to. In many respects, of events and risk algorithms to learn own data back at you. That’s not really
like with a lot of our transactional pay- from throughout the supply chain improved by any sort of expertise, nor
ment models, you wouldn’t share any because we’re working with so many is that learning in any sort of important
transaction-specific information at all. people locally in different markets. way. This is where the consortium is go-
What you would be sharing is the for- Now, that doesn’t mean every algo- ing to bring tremendous value — where
mula [or algorithm] generated from the rithm I’ve developed will work for every you can get a lot of quick wins, leverag-
transaction and then get feedback on company everywhere. But it does give ing the collective knowledge of broad,
that formula from other members of the me a high degree of confidence. From an diverse data sets.
consortium. It’s basically like sharing accounting perspective, most compa-
the recipe of a fraud-risk event without nies — regardless of industry — follow FM: So, your advice is, if you’re not
sharing any of the ingredients. In that the same accounting rules of what must doing analytics now internally, you

need to think about hiring a data to not replicate processes, and some- Galvin: So, I am working right now with
scientist. Because eventually, when thing that should indeed be centralized. one company on a tech solution to get
this consortium is ready, you need to In the future, compliance and something in beta in the first quarter of
have something to contribute. anti-fraud should not really function as this year, and then I believe things will
Galvin: Yes. You mentioned those stats something that everybody does manu- start moving very quickly. Stay tuned.
that SAS and the ACFE put out about ally and in a silo. There’s going be some ■ FM
different developments and appetite aspects of it that you couldn’t replicate
for fraud-based consortiums, and there as a consortium, sure, but so much of
are different appetites and experiences what we do as compliance officers and Vincent M. Walden, CFE, CPA, is
with that. But when you look outside of investigators in our own companies is a managing director with Alvarez &
fraud, you can think about the founda- the same as what other compliance of- Marsal’s Disputes and Investigations
tion principles of how the credit card ficers and investigative professionals do Practice and assists companies with
system works in the banking industry. at their companies. That’s going to work their anti-fraud, investigation and
To me, it’s no accident that credit a lot better as part of consortium where compliance monitoring programs.
cards are way advanced in terms of collaboration is key. He welcomes your feedback. Contact
machine learning to spot fraud because Walden at vwalden@alvarezandmarsal.
they are centralized, and a lot of transac- FM: Do you think you can give a com. Walden thanks Matt Galvin for his
tions flow through them. It’s a consor- time frame for when a viable con- contributions to this column. Contact
tium of banks sharing credit card fraud sortium beta would be available to Galvin at linkedin.com/in/matt-galvin-
risk data. That was a decision by banks organizations? a039631.
DETECT AND PREVENT SYTHETIC IDENTITY FRAUD
AI SOLUTIONS FOR CYBER FRAUD

AND THREAT INTELLIGENCE
Download the Latest Security Bulletin at Fiverity.com

to Stop Synthetic Identify Fraud
GLOBAL FRAUD FOOTPRINT Examining cross-border issues
2021 outlook for fighting

fraud in Europe
Increased risks and pressure to do more with less
The pandemic is leading to increased fraud and criminals’ evolving tactics. Fraud
examiners are facing budgetary and logistical constraints, and operational limitations.
Here’s how these conditions could affect European anti-fraud efforts this year.
T he ACFE Fraud in the Wake of

COVID-19: Benchmarking Report,
December 2020 Edition (ACFE.
com/covidreport), said 79% of respon-
COLUMNIST
MASON WILDER,
CFE
inadequate security measures or insuf-
ficient awareness of victims.
“There has been a significant spike
in phishing attacks since March 2020,
dents have seen an increase in the ACFE SENIOR
and the vital necessity to prevent and
RESEARCH SPECIALIST
overall level of fraud and 90% expect an detect is more crucial than ever,” Thalien
increase in the next year. says. “Attackers are using COVID-19 as
Europol features these COVID-19 bait to impersonate different media of
electronic payment processing —
fraud scams on its website, among information and thereby trying to mis-
discussed cyberfraud related to the
others: lead our employees or customers.”
pandemic.
• Bogus websites featuring fake news The increased risks of cybercrime
“Anyone who downloads COVID-
about the virus or posing as chari- associated with COVID-19 are exacerbat-
19-related applications can also be
ties to steal personally identifiable ed by organizations’ shifts in business
tricked into downloading ransomware
information or infect visitors with operations. “The means of working from
because it was disguised as a legitimate
malware. home has increased usage of personal
application,” Thalien says.
• Fake apps claiming to display live computers and phones, making it even
Europol’s “Internet Organised
information about the virus but more difficult to identify and protect
Crime Threat Assessment,” published
will infect devices with malware or systems and information,” Thalien says.
Oct. 5, 2020 (tinyurl.com/y65x94lr),
ransomware. (See “Remote but engaged,” on page 28.)
reported organized criminal elements A report from the Council of
• Fake investment opportunities re-
tweaking existing forms of cybercrime Europe’s Committee of Experts on the
lated to products or services that can
to exploit the pandemic, which caused Evaluation of Anti-money Laundering
prevent, detect or cure the virus. (See
tinyurl.com/y49azw8n.) an amplification of existing problems by Measures and the Financing of Terror-
In an interview with Fraud Maga- limiting the investigative capacities of ism (MONEYVAL) found that “all juris-
zine, Natina Thalien, CFE, the global law enforcement authorities. The report dictions noted a significant and rapid
head of security for governance, risk also attributed the success of most social growth in the number of frauds related
and compliance at Ingenico Group — a engineering and phishing attacks, which to COVID-19 and the adaptation of well-
fintech company in Paris involved in enabled other types of cybercrime, to known fraud to the new (confined and

more remote) lifestyle of individuals and The Fraud Examiner, Oct. 2020, tinyurl. $950 million in assets, before the lender
businesses.” com/y44t5wak.) was shut down in July 2020. Internal and
MONEYVAL’s report also said In the recent Wirecard fraud scan- external audits didn’t detect the crimes.
that criminals are seeking to exploit dal, auditors signed off on Wirecard’s (See “Wirecard Echoes in Austrian Bank
temporary weaknesses in anti-money financial statements without indepen- Fraud Raise Awkward Questions,” by
laundering (AML) and counterterror- dently verifying the existence of more
Boris Groendahl, Bloomberg Quint, Aug.
ism financing controls (CFT) of financial than $2 billion of cash assets, which
15, 2020, tinyurl.com/y5r68nkn.)
institutions, designated non-financial supposedly sat in Filipino banks. (See
businesses and professions and virtual “Wirecard Left Insolvent After Massive,
asset-service providers. MONEYVAL said Disparate regulations
Easily Avoidable Accounting Scandal,”
that companies are adding to their risks by Mason Wilder, The Fraud Examiner,
in EU nations
when they relax or deprioritize mea- July 2020, tinyurl.com/y2m6cv5q.) After a string of financial scandals,
sures and controls to boost economies. Following the Wirecard scandal, European organizations face major chal-
(See “Money laundering and terrorism Germany’s coalition government agreed lenges. They’re paying the price from
financing trends in MONEYVAL juris- on reforms that would extend the pow- ignoring or insufficiently heeding the
dictions during the COVID-19 crisis,” ers of its national financial supervisory work of anti-fraud professionals against
MONEYVAL, Sept. 2, 2020, tinyurl.com/
authority, BaFin, to include the ability the backdrop of across-the-board fraud
y4wh4tvj.)
Relaxation of anti-fraud controls
doesn’t bode well for 2021 European
fraud outlooks, especially when exist-
ing controls have failed to prevent “There has been a significant spike in phishing attacks
major crimes. AML procedures, such as
customer due diligence or know-your-
since March 2020, and the vital necessity to prevent
customer requirements, couldn’t stop and detect is more crucial than ever,” says Natina
the laundering of billions of dollars
through Danish Danske Bank, Swedish Thalien, CFE. “Attackers are using COVID-19 as bait to
Swedbank AB, German Deutsche Bank
and many other major financial insti-
impersonate different media of information and there-
tutions in Latvia, Malta and Portugal. by trying to mislead our employees or customers.”
(See “Europe Seeks Greater Powers to
Tackle Its Money-Laundering Prob-
lem,” by Patricia Kowsmann, The Wall
Street Journal, May 7, 2020, tinyurl.
com/yyqha9tc.)
The International Consortium of to obtain information from third par- increases and operational limitations
Investigative Journalists’ publication ties, conduct forensic investigations because of COVID-19.
of its FinCEN Files investigation also and inform the public earlier about its The European Commission (EC), the
highlighted the failure of financial efforts. (See “Wirecard scandal drives
European Union’s executive arm, has
institutions’ anti-money laundering German coalition to tighter oversight,”
cited the disparate nature of European
measures, including those of several by Michael Nienaber, Reuters, Oct. 7,
countries’ anti-fraud regulations and
European banks, in preventing mas- 2020, tinyurl.com/y36t46g8.)
called for numerous uniform improve-
sive amounts of money laundering. In another European fraud scandal,
similar to the Wirecard incident, Martin ments to anti-money laundering
(See “The FinCEN Files: Another Major
Leak Implicates Major Banks in Money Pucher, former CEO of Austria’s Com- requirements. (See Kowsmann’s article
Laundering Scandal,” by Mason Wilder, merizialbank, admitted to faking almost in The Wall Street Journal.)

GLOBAL FRAUD FOOTPRINT Examining cross-border issues
Overall budget for

4% 9% 46% 28% 13%
anti-fraud programs
Level of anti-fraud staffing 5% 9% 53% 24% 9%
Investment in anti-fraud technology 6% 9% 37% 33% 15%
Use of fraud-related consultants

or other external resources 8% 10% 44% 26% 12%
Budget for anti-fraud training and

professional development 10% 14% 39% 26% 11%
Budget for travel for anti-fraud staff 22% 16% 40% 16% 6%
0% 10% 20% 30% 40% 50% 60% 70% 80% 90% 100%
Significant decrease Slight decrease No change Slight increase Significant increase
Figure 1: Expected change in anti-fraud program budgets and resources over the next 12 months
60%
51% 51%
50%
46%
40%
Preventing fraud
31%
30%
26% 26% Detecting fraud
21% 21%
20% Investigating fraud
20%
10%
3%
2% 2% 1% 1% 1%
0%
Significantly more Slightly more No change Slightly easier Significantly easier
challenging challenging
Figure 2: Change in the difficulty level of anti-fraud activities

EUROPEAN BANKING AUTHORITY RECOMMENDATIONS
• Harmonizing the EU’s legal framework for customer due diligence measures and
AML/CFT systems.
• Increasing the powers that AML/CFT supervisors are afforded to ensure financial institu-
tions’ compliance with their obligations.
• Reevaluating the list of entities obliged to comply with AML/CFT legislation to potentially
include virtual asset service providers, investment firms and investment funds.
• Clarifying legislation to ensure money laundering risks are addressed consistently.
In March 2020, the EC issued a call Historic Recession,” PYMNTS.com, Sept. These difficulties will likely contin-
for advice on money laundering reforms 28, 2020, tinyurl.com/y6ccqobd.) ue for European anti-fraud professionals
to the European Banking Authority Cybercrime risks continue to rise in 2021. But these difficulties won’t only
(EBA), which responded with its recom- because of the pandemic. Thalien says affect anti-fraud professionals, accord-
mendations in September 2020: organizations need to focus resources ing to Britta Bohlinger, CFE, founding
• Harmonizing the EU’s legal frame- on security awareness to mitigate the director of European risk mitigation
work for customer due diligence risks of social engineering attacks such firm, RisikoKlar, in an interview with
measures and AML/CFT systems. as phishing. Fraud Magazine conducted via email.
• Increasing the powers that AML/CFT “It just takes one phishing e-mail “I don’t see the anti-fraud profes-
supervisors are afforded to ensure fi- to flip a company upside down, so a sion in isolation,” she says. “It’s embed-
nancial institutions’ compliance with continuous phishing simulation is key,” ded in wider shifts and societal changes,
their obligations. she says. “With a continuous simula- whether resulting from COVID, eco-
• Reevaluating the list of entities tion, the reminders of phishing stay at nomic downturn, elections ahead or in
obliged to comply with AML/CFT leg- the forefront of the employees, because some parts of the world an increasing
islation to potentially include virtual people understand phishing, but they willingness to address climate change as
asset service providers, investment don’t practice it in reality,” she says.
a core matter spanning industries and
firms and investment funds. However, the task might prove more dif-
professions.
ficult than it sounds on the surface. “The
• Clarifying legislation to ensure “So, it is hard, some might argue
challenge is having the budget, time and
money laundering risks are addressed — potentially misleading — to single
consistently. resources to be able to conduct a proper
out one biggest question mark for 2021
(See “EBA Report on the Future phishing simulation or campaign within
beyond the certainty that more change
AML/CFT Framework in the EU,” Euro- a company,” Thalien says.
and requirement for agile solutions
pean Banking Authority, Sept. 10, 2020, and cross-discipline collaboration are
tinyurl.com/yy2qqqh6). Fraud conditions increase,
required in order to address the pressing
Even if European countries stan- budgets decrease
issues,” Bohlinger says.
dardize anti-money laundering expec- The ACFE’s COVID-19 benchmarking
tations, organizations will still need report showed that between 14% and
to navigate the implementation of any 38% of respondents anticipate budget
changes during a stubborn pandemic decreases in their organizations for vari- Mason Wilder, CFE, is a senior re-
that could still cause major recessions. ous anti-fraud expenses. (See Figure 1 on search specialist with the ACFE. Contact
(See “European Businesses Could Face page 22.) him at mwilder@ACFE.com.

Developing the entire
fraud picture By Alexis C. Bell, CFE
Not every fraud scheme results in stolen money
CFEs should consider all aspects of a fraud case when calculating the impact of fraud.
Here are three primary calculations when reporting the amount of fraud impact:
total exposure fraud amount known loss
M
ost organizations that have an Fraud can absolutely occur without
internal fraud risk manage- a loss of money.
Total exposure
This is the complete exposure to a
ment program find them- Not convinced? Let’s take a look
company should an employee commit
selves playing the loss game.
at a misuse fraud scheme: an asset fraud from the first day of their em-
They measure key perfor-
misappropriation scheme under the ployment and with every transaction.
mance indicators based on how much or
subcategory of non-cash: asset misap- This represents the maximum risk for
little they lose to fraud. However, as they
propriation > non-cash > misuse. In this
move up the maturity curve, sophisti- fraud based on the total activity of the
example, an employee with access to a
cated organizations understand fraud employee during their entire tenure.
bulldozer during the workweek uses it
is about more than loss. To illustrate, The total exposure reflects the amount
on the weekends, without permission,
ask yourself: Can there be a fraud com- of money for which their direct supervi-
for the employee’s separate company,
mitted without the presence of a loss? sor is accountable yet typically does not
which they own on the side. No cash is
What about a mortgage fraud where properly manage.
lost. However, there’s wear and tear on
counterfeit documents are submitted to Many times, fraudsters are in a posi-
that asset that wouldn’t have occurred
the lender inflating their assets? What if tion of trust where a common internal
otherwise. This would be more than
the borrower makes all their payments control weakness is a lack of proper
a mere policy violation. It would be a
on time for the life of the loan? There is fraud, and remember: Fraud is a crime. supervision. In the microfinance sector,
no monetary loss, but the borrower re- for example, loans can be as small as
Now that you understand not all
ceived a loan they would not otherwise $20 or $40. A common misconception is
fraud produces a loss, let’s examine the
be entitled to based upon fraudulent the notion that a loan officer distributes
calculations you should report from all
documents. small amounts, and those amounts are
materialized fraud events.
Here, the primary fraud scheme (the not germane to financial statements.
main scheme) is classified as an industry Reporting fraud impact However, a loan officer has access to the
distributions for every loan they ever
specific scheme: Financial institution In the absence of collusion, employees
fraud > lending fraud > loan disburse- made. Over the course of a long period
can only manipulate activity based on
ments > loan origination > overstated of time, that amount can, in aggregate,
the assets, processes and records to
assets. become material to the organization.
which they have access. It is important
The secondary fraud scheme (a to understand the level of risk for fraud Examples of total exposure calcula-
supporting scheme perpetrated so the is based on three factors: total exposure, tions include:
primary fraud scheme can be more fraud amount and known loss. Only •Loan officer — The total exposure for a
successful) is classified as a core fraud amounts substantiated by documented loan officer is equal to the distributions
scheme (those all organizations experi- evidence will be reported in each of the for their loans during their tenure. For
ence risk from, regardless of industry): impact calculations. All three of these example, if a loan officer worked in the
Fraudulent statements > non-financial > calculations are critical in effective fraud company for five years, calculate their
internal documents. risk management. distributions from the date of hire to

Developing the entire fraud picture
either the termination date or the cutoff classifying criminal charges. In some for $500 and then fraudulently reversed
date for the analysis. countries, the classification can be the that entry, did fraud occur? Because
•Chief executive officer (CEO) or chief difference between misdemeanors the person entered the transactions
financial officer (CFO) — The total expo- and felonies where there’s a monetary fraudulently, the answer is yes. In this
sure for a CEO or CFO is equal to the total element to the classification. The clas- example, the fraud amount is $1,000.
assets on the balance sheet. Both In cases of financial statement
executives have access to all the fraud involving revenue recogni-
assets under their control. Take tion, one benefit to the fraudster
into consideration their operat- lies in the shifting of the timing
of the transactions. The core
ing areas of responsibility. If they
are at the international level, use
The amount of the fraud scheme is classified as:
the consolidated balance sheet at Fraudulent statements > financial
the global level. If the executive fraudulent transactions > revenue recognition > timing dif-
is at the subsidiary level, use the ferences (overstatements).
balance sheet for their operating is meaningful in Recognizing revenue before
company. it is earned in one month and
Use the most current date classifying criminal then reversing it the next month
relative to the time frame in is still fraud. This is a common
question. For example, if it is
now February and there are
charges. In some scheme in shifting revenue from
January to the previous month
known fraud amounts commit-
ted in October of last year, and
countries, the of December to meet analyst
projections at year end. This
classification can be
the fraudster was still in the type of fraud affects manage-
company as of the first week of ment bonuses and can manipu-
December, the balance sheet
the difference between
late the stock price for publicly
total assets figure should be as of traded companies.
the end of November.
Another example is:
misdemeanors and (one transaction for $2,468) + (one
Fraud amount transaction for $-3,690) = (fraud
This is the total amount of fraudu- felonies where there’s a amount of $6,158)
lent transactions. Keep in mind Where: |$2,468| + |$-3,690| =
that this is the sum of the abso-
lute value of the transactions.
monetary element to the $6,158.
Fraud can occur without a
For example: (one transaction for
$12,345) + (one reversal of $6,789)
classification. readily identifiable amount. In
cases of a counterfeit document
= (fraud amount of $19,134). such as a fake resume (classified
Getting this number wrong as a core fraud scheme: fraudu-
could significantly understate lent statements > non-financial
the fraud amount. In this exam- > employment credentials), it
ple, one transaction for $12,345 and one sification can also affect the determina- is difficult to assign a number based
reversal of $6,789 calculates as a fraud tion between the amount of mandated on transactions. Therefore, you must
amount of $19,134 because the math- prison terms (jail time), and the calcula- calculate the total salary and benefits
ematical equation would be: |$12,345| + tion of fines and penalties. (typically around 30 percent of sal-
|-$6,789| = $19,134. To better understand this concept, ary) given to the employee as the fraud
The amount of the fraudu- ask the question, if someone entered a amount. This is income, associated
lent transactions is meaningful in fraudulent transaction into the system benefits and any sales commissions,

“Fraud can absolutely occur
without a loss of money.”
if applicable, they would not have Total restitution includes at a

received without the fraud act. minimum the cost of the investiga-
Understand the full
tion, the cost of litigation and the impact of fraud before
Known loss amount of loss. In some cases, it
finalizing your report
This is the known amount of fraud can also include other factors to Consider three primary calculations
based on evidence gathered during make the company whole from when you are reporting the amount
the course of the investigation. the fraud act(s), such as the cost of of fraud impact: total exposure, fraud
Remember, only amounts substan- monitoring imposed against the amount and known loss. They are dis-
tiated by documented evidence company from a deferred prosecu- tinct from each other. Each conveys
tion agreement. Thus, the known meaningful information that an or-
will be reported in this impact cal-
loss is just one part of the total ganization should communicate to
culation. Known loss will often be
stakeholders.
presented as net of recovery (when restitution calculation.
There is value in the ability
Another consideration of
you identify and recover over to report these figures to manage-
known loss is that it is the amount
payments and under-deductions ment. It gives them the information
known at that time. It is im- they need to make informed deci-
to suppliers) or restitution (recom-
portant to understand that the sions about fraud risk and how they
pense for injury or loss: restoration
investigation might not uncover can allocate resources to effectively
of something stolen and returned
all aspects of the total fraudulent manage that risk. Likewise, the
to its owner). board can make informed decisions
activity. Investigations are limited
It is important to understand about how best to fund and support
by the amount of resources they
the known loss amount for filing have — time, people, tools. Some the fraud risk management pro-
insurance claims to mitigate the schemes might remain hidden. gram. ■ FM
impact of the loss (when available) Therefore, the verbiage includes
as well as to submit during crimi- the word “known” because that is Regent Emeritus Alexis C. Bell,
nal proceedings to seek restitution the amount that is supported by CFE, is the founder and managing
from the fraudster and for civil evidence as of that point in partner of Fraud Doctor LLC. Contact
damages in a lawsuit. the investigation. her at alexis.bell@fraud-doctor.com.

REMOTE
BUT ENGAGED
BY DICK CAROZZA, CFE
How do fraud examiners conduct fraud exami-
nations when they often can’t meet their team
members and subjects in person? These experts
— during pandemic constraints — discuss their
biggest investigation hurdles, maintaining pro-
fessional skepticism, best practices, eDiscovery
challenges, chain of custody, interviewing con-
straints and more.
You’ve organized an interview with a subject whom you suspect has been
embezzling from your company. But he and you won’t be in the same room.
His lawyer and all your team members also will be in separate rooms. All in
front of computer screens. Sound familiar? Is this any way to conduct a fraud
examination?
That’s just one of the questions the speakers pondered during the recent
ACFE “Fraud in the Wake of COVID-19” webinar. They later elaborated for Fraud
Magazine on their webinar comments and discussed other aspects of remote
investigations.
Here we give you some of the insights of Anthony Campanelli, CPA, CFF,
partner at Deloitte Financial Advisory Services LLP; Leah Lane, CFE, director
of Texas Instruments global investigations; and Steven Merrill, chief of the FBI
Financial Crimes Section, to further help you in your investigations.
Merrill says investigators have to contend with the risk
that witnesses will record interviews. “As such, each
interviewer should be appropriately cautious”
steven merrill
BIGGEST HURDLES
“The inability to meet face-to-face with — and structured data — such as account- Merrill says distracting external stim-
witnesses, subjects, and custodians of re- ing and financial information,” he says. uli during online interviews and conversa-
cords are difficult hurdles for investigators Campanelli says hurdles can include: tions — gadgets, family members, pets,
that they must overcome while investigat- • Discerning the matters that require noises — interrupt the connections and
ing fraud remotely,” Merrill says. “Focus is immediate investigation. rapport investigators need to maximize
a vital factor necessary to develop rapport • Accessing personnel across different the results.
and a personal connection. When meeting time zones when the investigation “It is also more difficult during a re-
in person, the investigator creates a private team would’ve been onsite. mote interview for an investigator to detect
environment and minimizes interruptions truthful and untruthful non-verbal behav-
• Identifying signs of verbal or non-
so both the investigator and the witness iors,” Merrill says. “Moreover, interviewers
verbal deception in interviews.
can focus on the interview or other tasks at in private face-to-face settings have the
• Exchanging key documents during an
hand,” he says. “Unfortunately, the inves- luxury of time to let relationships organi-
interview.
tigator cannot ensure or even control the cally develop.
environment during remote interactions, • Executing certain forensic collections “They are not concerned that technol-
hindering productive developments.” of laptops and mobile devices without ogy issues will interrupt, or even prevent
Lane concurs. “I think interviews warning. the meeting if the witnesses aren’t tech-
are definitely the most challenging to ex- • Obtaining relevant accounting savvy, experience connection issues or
ecute remotely because we are not able and financial data relevant to the spontaneously terminate internet calls,
to travel and perform those interviews in investigation. which leaves investigators little or no abil-
person like we’ve done in the past,” she • Relying on scanned documents in- ity to return focus to critical interactions,”
says. “In-person or face-to-face interviews stead of original. he says.
allow us to observe the interviewee and • Waiting on court re-openings to view Merrill says investigators have to con-
their behavior a great deal more than in- residing physical files. tend with the risk that witnesses will re-
terviews through technology.” (See more cord interviews. “As such, each interviewer
• Working without the ability to “walk
on the aspects of remote interviewing in the halls” and have impromptu con- should be appropriately cautious,” he says.
the sidebar, “Crucial parts of the interview versations with company personnel. “The interviewer’s strategic decision re-
process,” on page 32.) Lane says one of the biggest hurdles garding when to conduct the interview
Campanelli says as the COVID-19 pan- to investigating in a remote environment within the scope of the overall investiga-
demic continues, virtual work and social- is technology. “I think we all have to rely tion becomes perhaps even more impor-
distancing orders have made investigat- on technology in a way that we’ve not had tant, knowing any comment may become
ing fraud in a remote environment more to do in the past,” she says. “We have to public thereafter.”
complex. not only utilize technology to do inter- The inability to meet face-to-face
“But many of the challenging hurdles views but we also have to use it to collect with clients, coworkers and subjects can
can be overcome with proper planning and evidence that we might have collected affect key investigative procedures, Cam-
the deployment of technology designed to in person prior to COVID-19, and to have panelli says. “For instance, conducting in-
identify and analyze relevant unstructured meetings with executives, subject matter terviews with key personnel, exchanging
data — such as email and text messages experts and HR.” of confidential documents, and device/

CRUCIAL PARTS OF THE
INTERVIEW PROCESS
“A successful interview requires the investigator to plan and think data collection may be impacted,” he says.
through numerous aspects, including how to properly prepare for “However, the current environment does
the interview, how best to build a sincere rapport with the particular not mean that these procedures cannot be
witness, what questions to ask, what environment best serves the executed efficiently. Give careful consid-
goal of the interview,” says Steven Merrill, chief of the FBI Financial eration when planning an investigation
to ensure you execute impacted investiga-
Crimes Section.
tive procedures in a manner that does not
“It also includes the investigator’s analysis of the witness’
impair the legitimacy of an investigation.”
verbal and non-verbal behavior during the interview. Regarding Campanelli says the inability to in-
preparation, our current remote posture constrains investigators teract face-to-face with clients poses
and examiners’ ability to control environments to increase chances additional challenges for cross-border
of success,” Merrill says. investigations. “Cross-border investiga-
“For instance, the preparation phase not only includes options already pose several distinct consid-
portunities to review reports, interviews, etc., but to tactically erations, including language barriers, cul-
determine where and when the interview will take place,” he says. tural differences and resource limitations,”
“If a remote environment diminishes preparatory advantages, in- he says. “Such challenges further the need
vestigators and examiners should determine whether the exercise for companies to adapt their cross-border
will provide the anticipated results.” investigative strategies so they can pro-
Merrill says the success of his interviews has largely been ductively and proactively investigate al-
legations of potential misconduct outside
based on his ability to develop rapport with the person facing him.
the U.S.”
“I’ve always aimed to develop a level of rapport, so the witness
Lane agrees. “One of the most impor-
believes I am non-judgmental, and both trusts and confides in me.” tant challenges in performing electronic
He says some rapport development techniques are impossible collection is cross-border captures,” she
without sharing space with another party, such as comfortable body says. “I think we all need to stop and re-
language, sharing a drink or meal, or even noticing and comment- mind ourselves that just because you can
ing on how the interviewee presents themselves. capture something in another country, is
“I’ve been in interviews where 95% of the time together was it legal to actually do so and then transport
spent building rapport,” he says. “However, when done remotely, it back to your home country?”
we tend to feel more rushed or ‘on a clock.’ A good interviewer
understands that the interview is like a baseball — versus a football Increased professional
game — there is no ticking clock.
“Some interview environments showcase comfort, such as a
skepticism
Fraud examiners, by nature, are skeptics
living room, or cozy café, while others may highlight the gravity of when it comes to discovering evidence.
the situation, like a police station interview room. When we use Pandemic conditions have necessitated
interviews effectively and carefully, they can be a powerful tool. increased professional skepticism.
Hence, the interviewer needs to evaluate how to mitigate the loss “When people feel like they have no
of the optimal desired effect that occurs with remote interviews. choice or they have a great financial need,
“We often only get one chance to interview someone — only they may commit fraud for the first time,”
one chance to size up your subject or witness through review of Lane says. “That’s why I think red flags are
both verbal and non-verbal behaviors,” Merrill says. “Both are more important than ever and need to be
tremendously important. I recommend trying to create environ- scrutinized more heavily in today’s envi-
ments that enhance your ability to capture 100% of the non-verbal ronment. I think as investigators, we really
need to follow up every suspicious item
behavior despite virtual settings.”
that we can.”
Campanelli says that while we expect have someone sit with your interviewee
the number of fraud cases will continue to during the interview.”
increase as a result of the pandemic and Campanelli agrees that over-planning
the new remote-work environment, it’s is paramount. He provides these best
more important than ever for investigators practices:
to apply increased levels of professional • Ensure the interviewee is on-camera.
skepticism throughout investigations’
• Utilize the best video technology
lifecycles. Anthony campanelli, available.
“Investigators can carefully analyze cpa, CFF
electronic documents to identify red flags • Organize key documents for use dur-
or indications of manipulation, such as ing interviews and reduce the need to
fabrication of invoices, differences in in-
Campanelli says share screens.
voice templates etc. For example, conduct- that while we • Rehearse the interview flow to ensure
ing a forensic analysis of PDF file metadata technology and document sharing
can help determine if documents were expect the number works properly.
recently manipulated — and, often, by
• Provide sufficient time for interviews
whom,” Campanelli says. “If discrepan- of fraud cases will and be cognizant of time differences.
cies are found, investigators can discuss
them with appropriate personnel —ideally continue to increase • Consider the number of individuals
on videoconferencing — to assess verbal who’ll be interviewed and determine
and non-verbal cues.” as a result of the whether any special language skills
are needed.
Best practices
pandemic and the • Assess what could go wrong and how
you’d react.
“The FBI has successfully investigated even
our most sophisticated cases throughout
new remote-work • Prepare your steps if your subject
confesses during a guilt-confession or
the pandemic,” Merrill says. “To the extent environment, it’s admission-seeking interview.
possible, the FBI has continued to conduct
field operations while taking the utmost more important
precautions to ensure everyone has proper
personal protective equipment (PPE), and than ever for eDiscovery collections’
that our personnel have enough PPE for
our witnesses and subjects.” investigators to challenges
Lane says that best practices for get- In normal times, discovering and gathering
ting the most out of remote interviews are, apply increased electronic evidence can be daunting. Lay a
of course, evolving. “The first best practice pandemic on top of that process, and your
is preparation,” she says. “You have to al- levels of challenges grow exponentially.
most be over-prepared for remote inter- “Data collection should run in a near-
views. You have to prepare how you are professional normal state since enterprise collections,
going to present evidence virtually and such as email, are typically done remotely,”
still be able to observe the interviewee.
skepticism Campanelli says. “Custodian devices —
which can be imaged remotely or physi-
“Ensure the interviewee has video and throughout cally shipped in — present a larger, yet
audio capabilities. Have a backup plan in
place in case that technology fails,” Lane investigations’ solvable logistical challenge. After iden-
says. “Review the backup plan with the tifying relevant data sources, discovery
interviewee at the beginning of your inter- lifecycles. specialists can coordinate with IT teams to
view in case any disconnections or inter- access and download enterprise or cloud
ruptions occur. If it is possible arrange to data sources.

“An in-country evidence custodian can help when
evidence is collected abroad while you are working
remotely in another part of the world,”
Lane says.
Leah lane, cfe
“When custodian devices with enter- manager typically controls a chain-of-

prise collection capability for PCs are in
Chain of custody custody register of the persons and/or
If evidence is subject to change over time
place, there should be little to no impact locations from which documentation or
or susceptible to alteration, the offering
to collections beyond internet upload evidence can be obtained. The register,
party might need to establish that the
speeds,” Campanelli says. he says, typically contains:
evidence hasn’t been altered or changed
“In the absence of enterprise collec- • Type of document: e-mail, internal
from the time it was collected through its
tion capability, collections will likely re- memorandum, written note, etc.
production in court. Fraud examiners do
quire custodian notification, increasing • Dates and times related to the docu-
this by establishing a chain of custody to
the risk that information may be deleted ment collection.
establish authenticity.
or destroyed,” Campanelli says.
The chain of custody is both a pro- • Document numbering.
“Such an approach might involve
cess and a document that memorializes • Details of the persons involved in the
mailing an encrypted hard drive preloaded (1) who has had possession of an object and collection.
with scripts directly to custodians to con- (2) what they’ve done with it. It’s simply a
nect to their devices. Devices can then be • Retention period, if any.
means of establishing no material change
accessed and controlled remotely, or even • Physical storage and security con-
of alteration to evidence. (See the ACFE
automatically, to securely extract and col- siderations, especially for hard-copy
Fraud Examiners Manual, tinyurl.com/
lect the data,” he says. documentation.
y4r3cack.)
“Server eDiscovery software solutions “To maintain an accurate and com-
Obviously, keeping chain of custody of
further enable for the digital production, plete chain of custody, it’s critical to limit
evidence has become more difficult during
review, and tagging of documents,” Cam- the number of individuals handling evi-
the pandemic.
panelli says. dence and any transfer involves properly
“An in-country evidence custodian
sealed packaging and signed receipts,”
(For more information on remote data can help when evidence is collected abroad
Campanelli says.
collection see the July/August 2020 Fraud while you are working remotely in another
Magazine “Innovation Update” column by part of the world,” Lane says. “When you
Vincent M. Walden, CFE, CPA, “Forensi- need to store or transport the evidence, date secured and
cally preserving electronic evidence dur- attach a chain-of-custody form. Some key privacy maintained
ing a lockdown,” tinyurl.com/y6fzsotx.) points of information that form should Lane believes confidentiality of internal
Merrill says reviewing records is best have is a description of all evidence or investigations is the cornerstone for your
done collaboratively in person with all par- property collected during the investiga- employees to place trust in your office.
ties so they can exchange information tion, who initially collected it and when, “This is accomplished by securing inves-
and ask probing questions. “This critical who it was collected from and who has tigative data and maintaining privacy on
process is severely impacted without the controlled access to it.” case-related documents,” she says. “This is
ability to personally verify comprehension Campanelli says investigations might really difficult when you have to go outside
of the materials and verify the records are require collection of hard-copy and elec- your company’s firewalls to use technology
exactly what is sought.” tronic documentation. The investigation for interviews.

“You should have your IT security will need to provide resources to test multi-factor authentication) to safe-
department research and approve what- adherence and measure quality. guard against unauthorized access to
ever technology you use in your investi- • Give adequate consideration to local sensitive data.
gations. You should also mention in your data privacy laws (e.g., General Data
interviews that all documents presented Protection Regulation, California
today belong to the company and are pro- Consumer Privacy Act) because of im-
Together apart
We’ve scratched the surface. This, of
tected under company policy,” Lane says. plications for handing organization-
course, is an ongoing story. Agree, dis-
Campanelli says investigators are of- al, employee and third-party (such
agree and add to this information at
ten confronted with the challenges of bal- as vendors) data to those outside the
Fraud-Magazine.com. Begin a thread in
ancing document preservation with con- organization.
the online ACFE Community, tinyurl.com/
fidentiality and privacy concerns. “There • Consider necessary communication
y33erqgv.
are potentially severe consequences for channels to implement and enable
Despite the odds, you’ve persevered
missteps,” he says. effective remote information-sharing
in your job regardless of pandemic condi-
He says those involved should: among investigative teams.
tions. Charge on — remote but engaged.
• Institutionalize the journey of infor- • Consider whether online sites are ■ FM
mation governance (IG) in your orga- secure enough to exchange electronic
nization’s culture. The IG governance documents. Dick Carozza, CFE, is editor-in-chief of
structure will need to approve poli- • Establish additional security mea- Fraud Magazine. Contact him at dcarozza@
cies and standards. Your organization sures (e.g., remote desktop access, ACFE.com.
March 10-12, 2021 | Online Virtual Conference
The 2021 ACFE Fraud Conference Europe will be online

March 10-12, 2021. Learn anti-fraud best practices from leading
experts, plus network online with fellow fraud fighters.
Watch sessions
online or
on-demand.
Earn CPE.
Learn more at FraudConference.com/Europe.
05
most
SCANDALOUS
fraud cases
of 2 0 2 0
We were all glad to discard our 2020 calendars.

Fraudsters took advantage of COVID-19 conditions,
but not all of them needed a pandemic to pull off
some big frauds. We’ve distilled a long list of cases
to give you a few shockers.
By Hallie Ayres and Mason Wilder, CFE

D
espite the seemingly unending and
unpredictable chaos of 2020, one
aspect of contemporary culture
was entirely — and unfortunately —
precedented: the continued prevalence
of big frauds. To take stock of last year
and its implications for the anti-fraud
profession, the ACFE compiled a list
of the top five most scandalous frauds
of 2020, as well as a few dishonorable
mentions, with the assistance of the
ACFE Advisory Council. These fraud
cases will not only live on in infamy, but
also provide meaningful insights for anti-
fraud professionals.
01/ COVID-19 frauds

infect society
Perhaps, unsurprisingly, the most widespread and impactful frauds of this year were directly connected
to the novel coronavirus. As the pandemic led to massive shutdowns in many nations, governments responded
with a wide range of stimulus measures, including loans, enhanced unemployment benefits, direct payments to
citizens and more.
Some fraudsters were quick to exploit these government stimulus plans, while others used COVID-19 as
a premise for a plethora of cyberfraud and consumer fraud schemes ranging from phishing attacks to sales of
counterfeit personal protective equipment, testing kits and bogus cures.
By the beginning of August, Reuters reported that U.S. losses related to coronavirus fraud had reached $100
million, with a large swath of cases originating in identity theft. Cases like these were especially common with
fraudsters who used stolen personally identifiable information (PII), such as Social Security numbers (SSN), to file
for unemployment benefits as more and more workers faced furloughs and desperately sought funds. (See U.S.
cornonavirus fraud losses near $100 million as COVID scams double,” by Steve Gorman, Reuters, Aug. 4, 2020,
tinyurl.com/yyfwz5fq.)
Myra Walker, a New Jersey retail worker who was furloughed in March, found she’d been victimized by this type
of scheme in the same way many others have discovered these frauds: when she applied for unemployment benefits.
The U.S. Department of Labor informed her that someone had already created an account under her name
and had used her SSN to receive payments starting in February. While the U.S. Federal Trade Commission (FTC)
received more than 3.2 million reports of identity theft and other consumer frauds in 2019, these numbers are
often severely understated, and will no doubt be much higher this year.
(See “Woman tries to file for unemployment but can’t. Someone else is
getting benefits in her name.” by Karin Price Mueller, NJ.com, May 12,
2020, tinyurl.com/y2ucxucq.) A woman walks out of a drugstore
The same breed of identity theft remained prevalent after Congress in Times Square Nov. 15, 2020.
passed a bailout package that included stimulus checks to an estimated (Photo by Paul Marotta/Getty
Images)
150 million eligible households. Scammers posing as government
employees attempted to swindle taxpayers out of funds by asking for
financial information, claiming it was necessary for the victim to receive
their promised funds. (See “Coronavirus stimulus check scams are out
to swindle you out of $1,200: What you need to know,” by Susan Tompor,
Detroit Free Press, March 28, 2020, tinyurl.com/tmnwwz2.)
5 m o s t s c a n d a l o u s f r a u d c a s e s of 2 0 2 0
5 most scandalous fraud cases of 2020
Stolen PII has also been the catalyst for frauds that originate
through contact tracing text message scams. Fraudsters devised
schemes to masquerade as contract tracers, sending fake text
messages, which contained links that installed malware onto
their victims’ phones thus allowing the fraudsters to access bank- 02/ Wirecard’s
missing $2 billion
ing information and SSNs. (See tinyurl.com/y9qdgp9u, FTC.)
While identity theft and types of financial fraud dominated
the fallout of the pandemic, the coronavirus also exposed the
medical and public health industries to a range of scams. In May,
the city attorney of Los Angeles sued Wellness Matrix Group for
selling coronavirus testing kits they claimed had been approved When the German financial technology
by the FDA and a “virucide” that purportedly killed the virus. company Wirecard delayed the public release
City attorney Mike Feuer said the company “attached false gov- of its 2019 financial results in June 2020 after
ernment registration numbers to these products and fabricated revealing it couldn’t account for more than
phony scientific studies and white papers to substantiate their $2 billion in cash assets, the news reduced
false claims.” (See “LA Sues California Company, Alleging ‘So- the company’s stock price by more than 90
phisticated’ COVID-19 Fraud,” by Tom Dreisbach, May 27, 2020, percent and prompted the resignation of CEO
NPR, tinyurl.com/ydbvaxhe.) Markus Braun. Soon after, Braun and several
A majority of coronavirus-related scams feature fraudsters other executives were arrested on accounting
preying on those who are dependent on government aid or sim- fraud and market manipulation charges.
ply trying to keep themselves safe and healthy. However, some Founded in 1999, Wirecard, which
business owners committed another brand of coronavirus fraud processes payments and sells data analytics
to scam the U.S. government.
services, was at one point considered to be
After the Small Business Administration (SBA) rolled out
one of Europe’s foremost technology firms.
the Payroll Protection Program, valued around $650 billion in
Between 2013 and 2018, the company’s
loans to small businesses, a moving company owner in Florida
reported revenues quadrupled, coming in at
received nearly $4 million in loans, which he’d declared would
nearly $2.2 billion in 2018. With nearly 6,000
cover his company’s monthly payroll. However, an investigation
employees spread over 26 countries and a
revealed that his company’s monthly expenses averaged around
place on Germany’s list of top 30 companies,
$200,000. The man was arrested, and charged with fraud, after
the fintech behemoth must have thought itself
he was involved in a hit-and-run while driving a luxury Lambo-
too large to fail. (See “Wirecard CEO quits after
rghini, which he’d bought with money from his loan. (See “He
$2 billion goes missing and fraud accusations
bought a Lamborghini after getting a $4 million PPP loan. Now
fly,” by Charles Riley and Eoin McSweeney,
he faces a fraud charge,” by Jay Weaver, Miami Herald in Tampa
CNN Business, June 19, 2020, tinyurl.com/
Bay News, tinyurl.com/y66uk9gp.)
yxlssj9v.)
Assistant U.S. Attorney Michael Berger noted that SBA loan
After a series of fraud allegations and
scammers had become increasingly common because the agency
investigations into its accounting practices
was so overrun with applications that it had stopped checking
over the course of 2019, Wirecard confessed
the accuracy of applicants’ claims. The Florida man’s criminal
to the disappearance of more than $2 billion
affidavit recounts, “In the ordinary course of providing the loan
from its assets. Shortly before the explosive
guaranty, neither the SBA nor any other government agency
announcement, Wirecard was worth more
checked IRS records to confirm that the applicant had paid the
than $26.9 billion but plummeted to less than
payroll taxes represented in the PPP applications.”
$3.6 billion by the end of June 2020.
From benefits fraud, loan fraud, identity theft and non-
Though the announcement of the missing
delivery scams, to counterfeit products, telemedicine fraud,
$2 billion sank Wirecard’s value drastically
insurance fraud, contact tracing scams and supply-chain fraud,
and nearly immediately, the company’s
fraudsters exploited the global COVID-19 pandemic like no other
downfall began in January 2019, when the
crisis in recent memory. /01

Corporate headquarters of payments processor Wirecard during a raid by
investigators July 1, 2020, in Aschheim, Germany. (Photo by Lennart Preiss/
Getty Images)
Financial Times published an

investigation that came to light
via a whistleblower who alleged
a series of forged contracts and
suspect transactions in Singapore.
Despite the denial from Wirecard,
authorities in Singapore promised
an investigation, and Wirecard’s
shares dropped significantly. (See
“Executive at Wirecard suspected
of using forged contracts,” by
Dan McCrum and Stefania Palma,
Financial Times, Jan. 30, 2019,
tinyurl.com/y73d29n8.)
Financial Times solidified
Wi r e c a r d’s r e p u t a t i o n f o r
suspicious dealings in late 2019
deleted. (“Wirecard says it cannot rule out ‘fraud of considerable
with the publication of documents
proportions,’ ” Reuters, June 18, 2020, tinyurl.com/ybqzd8pr.)
that exposed reports of inflated profits and sales at Wirecard’s
Soon after, Braun resigned and Wirecard filed for
Ireland and United Arab Emirates offices. Wirecard also denied
insolvency to protect itself from the $4 billion owed to investors.
these claims, though a separate KPMG investigation revealed
that Wirecard hadn’t made enough information public to fully (See “Police Raid Wirecards’ Offices In Two Countries,”
absolve themselves of Financial Times’ claims. (See “Wirecard’s PYMENTS.com, July 1, 2020, tinyurl.com/yx8m7sgn.)
suspect accounting practices revealed,” by Dan McCrum, EY auditors faced significant criticism for signing off on
Financial Times, Oct. 14, 2019, tinyurl.com/y4zdub7z.) Wirecard financial statements for 2016 through 2018 without
Following the disappearance of $2 billion in cash, Wirecard independently confirming the existence of cash assets. (See
claimed the money had been held in bank accounts in the “Critics’ Ire Turns On Auditor EY After Wirecard Collapse,” by
Philippines, but these banks refuted the claim. (See “Wirecard Jean-Philippe Lacour, Barron’s, June 28, 2020, tinyurl.com/
stock plummets 37% after the payments firms says $2 billion in y223934h.) This oversight has now become the subject of a
missing cash likely doesn’t exist,” by Shalini Nagarajan, Markets German lawsuit that alleges EY overlooked $1.1 billion worth of
Insider, June 22, 2020, tinyurl.com/y3kzgzbz.) assets that had been incorrectly processed. (See “Ernst & Young
Braun even attempted to suggest that Wirecard had been Sued Over Wirecard as Accounting Woes Add Up,” by Karin
the victim of fraud: “It cannot be ruled out that Wirecard has Matussek, Bloomberg, June 8, 2020, tinyurl.com/y4el4bzx.)
become the aggrieved party in a case of fraud of considerable Apparently, Wirecard’s story will continue throughout
proportions,” he said in a video statement that has since been 2021. /02

03/ FinCEN files identifying involved parties and only filed

exhibit huge money-laundering cases SARs years after the transactions in many
cases.
JPMorgan, the largest U.S.-based
In September 2020, leaked documents Crimes Enforcement Network (FinCEN). bank based in the U.S., was found to have
provided to BuzzFeed News, and passed After receiving the trove of documents transferred more than $1 billion for one of
along to the International Consortium of from BuzzFeed News, ICIJ enlisted the the key figures in Malaysia’s 1MDB fraud
Investigative Journalists (ICIJ), implicated assistance of more than 400 journalists scandal and more than $2 million for a
major international banks — including — dispersed among 88 countries and 110 Venezuelan energy company that alleg-
Deutsche Bank, JPMorgan Chase, HSBC, news organizations — to investigate the edly scammed the government and played
Standard Chartered and Bank of New York inflammatory materials. The ICIJ thor- a role in causing electrical blackouts that
Mellon — in the laundering of more than oughly investigated these 2,100 reports, consistently left millions of people without
$2 trillion linked to oligarchs, criminals but they’re only a miniscule fraction of the reliable access to energy. Of the total $2
and terrorists from 1999 to 2017. (See “Dirty 12 million SARs reported to FinCEN from trillion identified in the complete investi-
money pours into the world’s most pow- 2011 to 2017. (See “Global banks defy U.S. gation, around $1.3 trillion moved through
erful banks: The FinCEN files,” by Jason crackdowns by serving oligarchs, criminals Deutsche Bank, while JPMorgan handled
Leopold et al., BuzzFeed, Sept. 20, 2020, and terrorists,” ICIJ, Sept. 20, 2020, tinyurl. $514 billion.
tinyurl.com/y434smjo.) com/yxfxkbec.) Elizabeth Rosenberg, a former U.S.
The ICIJ’s reporting involved ana- The ICIJ’s report noted that even Treasury Department sanctions official,
lyzing more than 2,100 suspicious ac- though the guilty banks had been fined told The Wall Street Journal, “The FinCEN
tivity reports (SARs) filed by banks and for money laundering violations, they files illustrate the alarming truth that
other financial firms to the U.S. Financial kept processing transactions without an enormous amount of illicit money is
Samsung’s succession gone wrong

Authorities in South Korea indicted Lee Jae-yong, the vice chairman
Dishonorable of Samsung and arguably the most influential South Korean busi- a s of p res s time,
mentions nessman, along with 10 other current and former Samsung officials.
The charges include stock price manipulation, unfair trading and
L ee J ae-yong
h a d n’t been
audit-rule violations. They stem from an allegedly systematic effort a rres t ed becau s e
The unfortunate deluge of to help transfer managerial control of Samsung to Lee from his fa- t h e S eou l Central
fraud cases each year makes ther, Lee Kun-hee, who was incapacitated by a heart attack in 2014. D i s t ric t Cou rt has
it impossible to highlight all (Lee Kun-hee died Oct. 25, 2020.) r ef u s ed to is s u e
but the most inflammatory Lee Kun-hee was previously convicted twice of bribery and other
a wa rrant f or his
stories, so we’ve included a corruption charges, and Lee Jae-yong previously spent a year in
a rres t.
few dishonorable mentions confinement on charges that he bribed the impeached and ousted
that feature fraud cases nota- former president of South Korea, Park Guen-hye. However, as of
ble for the brazenness of the press time, Lee Jae-yong hadn’t been arrested because the Seoul
fraudster or the sheer shock Central District Court has refused to issue a warrant for his arrest.
at the degree of ineptitude (See “Samsung’s heir faces fraud charges,” by Kang Jin-Kyu, Asia
or scandal. Times, Sept. 1, 2020, tinyurl.com/yxzmkxft; “Samsung Chief Lee
Jae-yong To Be Arrested On Fraud Charges,” by Tom Grater, Dead-
line, June 4, 2020, tinyurl.com/y28jf8wk; “Samsung Heir Is Indicted
but Avoids Jail,” by Choe Sang-Hun, The New York Times, Sept. 1,
2020, tinyurl.com/yyydjspp.)
(Photo by Chung Sung-Jun/Getty Images)

sloshing around our financial system, and that U.S. banks play host and
facilitator to rogues and criminals that represent some of America’s most
insidious national security threats.” (See “Leaked Treasury Documents
Prompt Fresh Calls for Updated Anti-Money-Laundering Regulations,”
by Ian Talley and Dylan Tokar, The Wall Street Journal, Sept. 21, 2020,
tinyurl.com/yxh9chuj.)
While the FinCEN Files have exposed the vast and rampant cul-
ture of money laundering that has plagued the highest echelon of the
American financial system, they’ve also unearthed the ways in which
Treasury is unequipped to properly surveil the trillions of transactions
that pass through U.S. banks every day.
Banks tend to file a staggering number of SARs to satisfy supervisors The headquarters of Deutsche Bank in Frankfurt,
and auditors, but this strategy obscures Treasury officials from sifting Germany (Photo by Thomas Lohnes/Getty Images)
out potential laundering cases, especially when they’re filed years after
related transactions occur. “That formula is not the ideal way to protect
America from security threats and crime,” Rosenberg said. /03
Carlos Ghosn’s disappearing act Oh, the irony

In May 2020, U.S. authorities arrested a former U.S. Sometimes, those closest to the anti-fraud profession end up
Green Beret soldier and his son, both of whom were on the criminal side of fraud examinations. Despite their seem-
wanted by the Japanese government for assisting ingly good intentions, our final dishonorable mentions are almost
Carlos Ghosn, the former CEO of Renault and Nissan, laughable for their callousness in turning their anti-fraud work on
in escaping from Japan to Lebanon in late 2019. its head.
Ghosn was awaiting trial on charges of alleged In Nigeria, Ibrahim Magu, the acting chairman of the country’s
financial misconduct when he was smuggled onto a Economic and Financial Crimes Commission, the agency respon-
private jet and taken to Lebanon, via Istanbul, despite sible for looking into and charging companies and individuals
being prohibited from leaving Japan. In September with financial crimes, was arrested for involvement in re-looting
recovered funds. (See “Nigeria’s anti-corruption boss arrested for
2020, U.S. Magistrate Judge Donald Cabell approved
corruption,” by Aanu Adeoye,” Mail & Guardian, July 9, 2020,
the extradition of the men, sending the final decision
tinyurl.com/y4vdrnmg.)
up to the U.S. State Department. Despite attempts
On the other side of the world, the Las Vegas-based fraud
by the men’s lawyers to block Japan’s request, on
prevention startup NS8 was forced to lay off hundreds of em-
Oct. 29, 2020, the State Department declared the
ployees after the SEC announced an investigation that alleged
men will be sent to face trial in Japan’s court system.
the company had reported fraudulent revenue and customer
(See “Men accused of helping ex-Nissan chief Carlos
information. Adam Rogas, the CEO of NS8, resigned follow-
Ghosn escape from Japan arrested,” by Luke Barr,
ing the investigation announcement and has been charged with
ABC News, May 20, 2020, tinyurl.com/y5cagthf; securities fraud and wire fraud for lying to investors after secur-
new source for approved the men’s extradition; “2 ing $123 million in venture capital — $17 million of which Rogas
Americans accused of helping ex-Nissan Chair Ghosn kept for himself. On Oct. 28, 2020, NS8 filed for bankruptcy. (See
escape fight extradition,” by David Yaffe-Bellany, “Fraud Prevention Startup NS8 Lays Off Hundreds, CEO Departs
Bloomberg News in The Detroit News, Oct. 18, Amid SEC Fraud Investigation,” by David Jeans, Forbes, Sept. 11,
2020, tinyurl.com/y3xekhlt. “Two Americans Can Be 2020, tinyurl.com/y3zt5dkg; “CEO Of Cyber Fraud Startup NS8
Extradicted to Japan in Carlos Ghosn Escape Case, Arrested By FBI, Facing Fraud Charges,” by David Jeans, Forbes,
State Department Rules,” by Mark Maremont and Sept. 17, 2020, tinyurl.com/yynaku4g; “CEO’s fraud charges push
Nick Kostov, The Wall Street Journal, Oct. 29, 2020, Las Vegas tech firm into bankruptcy,” by Jonathan Ng, Las Vegas
tinyurl.com/y658nsbn.) Review-Journal, Oct. 28, 2020, tinyurl.com/y39vfssm.)

04/Airbus’ routine briberies

In January 2020, France-based aviation In late 2012, the U.K. Serious Fraud Of- Though Airbus was the subject of these
company Airbus agreed to pay combined fice investigated GPT Special Project Man- investigations, the company initiated the
penalties of more than $3.9 billion, the agement Ltd., a subsidiary of Airbus, for probes after finding a trail of questionable
largest fine ever recorded in a bribery case, compliance issues in contracts with Saudi business practices during an internal audit
to settle foreign bribery charges from au- Arabia. The same office launched a crimi- in 2016. Airbus subsequently reported these
thorities in the U.S., France and the U.K. nal investigation into Airbus in late 2016 in findings to French authorities — a strategic
The settlement put an end to nearly four response to suspicion that Airbus actively move that’s estimated to have saved Airbus
engaged in fraudulent dealings predicated a fine that likely would’ve been closer to
years of investigations surrounding allega-
$8 billion. (See “Airbus Enters Into A Co-
tions that Airbus hired third parties to bribe on bribery and corruption. (See “SFO Charg-
ordinated Resolution Of Foreign Bribery
government officials in various countries to es Airbus Unit, Three Individuals in Saudi
Investigation With U.S., U.K. And French
purchase Airbus’ planes, helicopters and Probe,” by Ellen Milligan, Bloomberg, July
Authorities For A Total Of €3.6 Billion,” by
satellites — instigated by Airbus’ ongoing 30, 2020, tinyurl.com/y3wvgw6g”; “Air-
Jonathan S. Kolodner et. al., Mondaq, March
competition with rival Boeing. bus to pay SFO €1bn in corruption settle-
2, 2020, tinyurl.com/yywbsvwy).
The company also entered into a de- ment,” BBC News, Jan. 31, 2020, tinyurl.
In the DOJ’s announcement of the
ferred prosecution agreement with the com/yy36ehdz.)
settlement, U.S. Attorney Jessie K. Liu un-
U.S. Department of Justice as a result of the As a result of the Serious Fraud Of-
derscored the importance of the interna-
settlement, after facing charges in the U.S. fice’s allegations after their probes, U.S. tional scope of the investigation with the
of conspiracy to violate anti-bribery provi- and French authorities joined the inves- cooperation of three nations. “This case
sions of the Foreign Corrupt Practices Act tigation, which led to the nearly $4 billion exemplifies the ability of our prosecutors
and conspiracy to violate the Arms Export settlement, split between the countries with and law enforcement to work with our for-
Control Act and its implementing regula- 2.1 billion euros going to France, 984 mil- eign counterparts to ensure that corruption
tions, the International Traffic in Arms lion euros to the U.K. and the remaining around the world is prevented and punished
Regulations. (See “Airbus to Pay $4 Billion 526 million euros to the U.S. (See tinyurl. at the highest levels,” Liu said. (See tinyurl.
to Settle Corruption Inquiry,” by Liz Alder- com/t22s7cu.) com/v3h3lel.) /04
man, The New York Times, Jan. 31, 2020,
tinyurl.com/t22s7cu.)
Prompted by a March 15, 2020, report
by The Wall Street Journal that document-
ed Airbus’ $4 billion bribery settlement,
multiple law firms filed a class-action law-
suit in August 2020 on behalf of share-
holders who claim that Airbus misled
them and misrepresented their operations
from 2016 to the present. (See Andrew
J. Korneck, et al. v. Airbus, tinyurl.com/
y6bjnk9g.)
Airbus A320 assembly at Hamburg,

Germany, factory (Photo by Sean Gallup/
Getty Images)

05/Luckin Coffee’S
large mug of fraud
The Nasdaq-listed, Chinese-based coffee
company Luckin Coffee Inc., which man-
aged to overtake Starbucks in total loca-
tions within just more than two years of
being founded, announced in April 2020
that an internal audit revealed allegations
of fabricated sales figures. (See Luckin Scan-
dal Is Bad Timing for U.S.-listed Chinese
Companies,” by Selina Wong and Matthew
Campbell, Bloomberg Businessweek, July
29, 2020, tinyurl.com/y6xq95dd.)
The discovery resulted in a drop in
the company’s stock of more than 90 per-
cent within a month and led to the firing Luckin Coffee at Beijing Mall, Wangfujing (Photo by N509FZ/Creative Commons
of Luckin’s CEO Jenny Qian and COO Jian Attribution-Share Alike 4.0 International license)
Liu, who also lost their seats on the board
of directors.
In July, a filing issued by the U.S. Secu- chairs, they operated out of kiosks with no from being traded beginning in April after
rities and Exchange Commission (SEC) con- seating to minimize rent and labor costs. its shares had plunged by 83 percent follow-
firmed more than $300 million in fabricated The coffee was far cheaper than a cup at ing the exposure of the fraud. As of press
revenue that began around the time of the Starbucks, though this level of immense time, the chain remains in operation. In
company’s IPO on Nasdaq and determined discounting didn’t make up for Luckin’s fact, app downloads surged directly fol-
that the stock should be delisted because of operating expenses. As company records lowing the news of the fraud as Luckin at-
public interest concerns. show, in 2018, Luckin was operating at ex- tempted to regain its company’s value by
Luckin took the coffee shop industry penses that were almost triple its total sales. offering a free cup of coffee to new custom-
by storm in 2017, when Joy Capital — one In January of 2020, Luckin’s stock was ers. (See “Luckin Coffee ousts chairman Lu,
of the largest venture capital firms in China valued at $50 a share; the initial value had names GUO as CEO,” Reuters, July 13, 2020,
— along with the Singapore fund GIC, in- been a mere $17. However, at the end of the tinyurl.com/yxgxs2m4; See “Luckin Coffee
vested in its app-based takeout and delivery month, an investigations firm released an fires CEO, COO after sales fraud investiga-
coffee service, according to the Bloomberg 89-page document chronicling results of a tion,” by Amelia Lucas, CNBC, May 12, 2020,
Businessweek article. The influx of capital consumer research study that claims Luckin tinyurl.com/ycjepyts; “Demand for Luckin
valued the company at nearly $1 billion and had been inflating its revenue and the total app surges as Chinese rush to drink up after
allowed the chain to open nearly 5,000 lo- number of items sold per day. As a result of admission of fraud,” by Sophie Yu and Jen-
cations throughout major Chinese cities. the study, Luckin’s stocks plummeted, but nifer Hughes, Reuters, April 7, 2020, tinyurl.
Bolstered by this initial success, Luckin con- the company recovered within a month. com/yxarp3ep.) /05
vinced investors like BlackRock and banks However, auditors quickly confirmed the
such as Credit Suisse Group AG to back the truth of the report, which led COO Jian Liu Hallie Ayres is a freelance writer and
business. In May of 2019, when Luckin took to declare that the company had forged guest contributor to Fraud Magazine.
its shares public, it raised $561 million and more than $300 million in revenue, accord- Contact her at halliehalliehalliehallie@
dominated the Nasdaq stock exchange. ing to the Bloomberg Businessweek article. gmail.com.
In hopes of competing with Star- By mid-May 2020, Luckin Coffee had
bucks in China, Luckin operated accord- fired its CEO and COO, and suspended six Mason Wilder, CFE, is a senior re-
ing to an almost opposite business model: other employees who played a part in the search specialist with the ACFE. Contact
instead of building stores with tables and scheme. The NASDAQ barred Luckin stock him at mwilder@ACFE.com.

KEYS TO THE KINGDOM:
OILFIELD SERVICES COMPANY USES

BILLING SCHEMES TO SIPHON $2
MILLION FROM FORMER EMPLOYER
e didn’t take long check off to get the new business off the the Desert Rose employee who performed
to come up with ground. vendor due diligence, would give him the
the idea. As he put A month later, he’d ticked off many okay. Mike and Jerry had become good
down the large Ma- of those to-dos and was well on his way to friends over the years. Jerry was correct;
son jar of sweet tea, Jerry scribbled down becoming the principal of his new venture, Mike approved Diamond in five minutes.
some additional notes in his company Diamond Machine Works. Never mind Jerry’s business model was very sim-
notebook, which he always kept by his that he was still working for his employer, ple: provide general oilfield labor services,
side. He used it as some might use a thumb Desert Rose Petroleum. Never mind that also known as roustabout services, to in-
drive. It was a repository of his operational Desert Rose’s conflict-of-interest policy stall and maintain equipment and other
notes, passwords, musings and his busi- prohibited employees from engaging in oilfield assets.
ness plans. Housed in this notebook was personal business ventures that could Jerry hired 10 men with broad ranges
his dream to bring in more money than he lead to divided loyalties. Had someone at of experience. During their brief inter-
ever thought possible. Desert Rose been paying attention, they views, the prospective employees had
While his dream was still a few would’ve seen Jerry’s noncompliance with said they wouldn’t mind working 12-hour
months away from taking off, the reality the policy. But no one seemed to notice or days. In return, Jerry had promised to keep
was, Jerry needed cash today. He’d just care. So, Jerry devoted himself to ensuring them busy five days a week with possible
paid for his eldest daughter’s wedding, his that Diamond would profit from Desert overtime hours on weekends and holidays.
twin sons had just begun their sophomore Rose’s lack of attention. With a crew ready to work and a company
year at college, and his youngest teenage On a Friday afternoon, with a click of issuing work orders, Diamond Machine
daughter — who’d always had a sense of the mouse, his resignation letter hit his Works was truly open for business.
entitlement — was asking for a new car supervisor’s inbox. By the time his boss Every evening, Jerry’s foreman, his
for her 16th birthday. had read the electronic missive, Jerry “Pusher,” received work orders from Desert
Jerry had also recently complained to had placed on each colleague’s desks his Rose. The next morning before the sun had
several colleagues about the bills piling up, new Diamond business cards and a $100 a chance to peek over the desert plains, the
along with the 20 miles of his Texas ranch Amazon gift card — a small token of his crews would drive their company trucks
that needed new fencing. And his wife’s gratitude. to the “leases” (a term used by exploration
cosmetic surgery invoices were coming He also left each of them a handwrit- and production companies to denote the
in fast and furious. The pressure for ad- ten note entreating them to consider his leased property from local landowners)
ditional cash was heavy on his mind. These business when new projects became avail- to complete their tasks. Workers took few
money woes took him away from the half- able. With or without the note, Jerry knew breaks, and the last crews wouldn’t leave
eaten chicken-fried steak and cold lump of that his colleagues would most likely use their jobsites until the sun dipped in the
mashed potatoes on the plate. his services. West. Work from Desert Rose was mostly
“No time to eat,” he said quietly as “Why not?” he asked himself. “Every- consistent; it always had equipment on the
he scooted his chair back. He stood up, one knows me, and I know that my rates aging leases that needed repair.
drained his tea, picked up the bill and left will be lower than everyone else’s.” And, that’s how it went for the next
$20 on the counter as he quickly left the He was also confident that Desert three months. Regardless, Jerry’s income
restaurant. Rose would quickly add him to their ap- statement was in the red. He just wasn’t
Speeding past the Pecos city-limit sign proved vendor list without having to go going to make his new company work if
on his way back to his company field office, through the time-consuming vendor-on- he stayed at the current rates and with his
Jerry knew he had a long list of tasks to boarding process. He reasoned that Mike, current business model.
Keys to the kingdom: oilfield fraud
added a half hour here or maybe an hour page that piqued his interest. The instruc-
there, it would still be allowed. He even tions were fairly easy, and after a few tries,
On a Sunday afternoon, six months after he
brazenly invoiced Desert Rose for the work he had it. He pulled out the retirement card
had left Desert Rose, he saw the handwrit-
he couldn’t get to. He was very selective in his former employees gave him and suc-
ing on the wall. He’d have to make some
what he chose to falsely invoice them for. cessfully forged many of their signatures.
tough decisions, which included letting
He made sure it would be work that really The next day, bleary-eyed but hum-
some of his excellent performers go. Over
could wait or could be considered simply ming along with massive amounts of caf-
the next couple of weeks, he’d hand out
busy work. feine, Jerry submitted a false invoice for
pink slips to half of his labor force. It hurt
“Invoice 23654. Three hours and a $2,275. Because this invoice was over the
because he’d made some solid friends with
two-man crew to spray the weeds and automatic-approval amount, he had to
his crew members. But the greater pain
spread caliche around the well pad. That’s include a forged signature of one of his
was the draining personal and company
reasonable,” he said to himself. former colleagues. Before he’d left Desert
bank accounts.
The names on the invoice were ficti- Rose, he’d forwarded several of his work
For solace, and to stir the creative
tious. The work description was very much emails to his home email. One of those
juices, Jerry returned to his notebook and
busy work. The total for Invoice 23654 was contained a list of unique identification
began to jot down some questions: How
$360. He reasoned that this was an invoice numbers for all the Desert Rose foremen.
can I bring in more to offset my debt? Can I
that wouldn’t even get a second glance, Typically, employees don’t share this
offer more services without having to take
and he was right. type of information among themselves,
out additional loans? How can I cut a few
corners to squeeze out more margin? In the previous year, Desert Rose’s ac- but Jerry and his former colleagues col-
If anyone had been watching his face counting department had built in a new lected and distributed the list in case
as he finished writing down the last ques- process that would automatically approve they had to approve each other’s invoices
tion, they would’ve seen his face relax. The invoices below a $1,000 threshold. When if someone were out sick or on vacation.
proverbial lightbulb had turned on. Jerry Jerry worked for them, he thought it was a With the forged signatures and the
saw some opportunities for committing solid idea to free up foremen like him from unique identifiers, Desert Rose would pro-
fraud. He began to outline his mental some of the time-consuming process of cess these invoices without much fuss or
checklist. invoice review. Now, he thought that the further review. The invoicing system raised
His first task was to text all the Desert procedure was brilliant and would help some red flags, but the company didn’t
Rose foremen: “Send me more jobs, I’m further his scheme. have an official process to review or vali-
taking on more crews. Diamond is grow- He smiled as he submitted the last in- date those flags, so the invoices were ap-
ing. ” This text was the first lie but cer- voice into Desert Rose’s online invoicing proved. Twelve hours later, Jerry received
tainly not the last. system and entered the total on his 10-key the automated email with “Invoice Ap-
The next day, his Pusher’s phone was pad. All of today’s invoices totaled $15,750, proved” in the subject line.
blowing up with texts, emails and calls a 45% increase from his previous largest “Genius, Jerry. This is too easy, espe-
from Desert Rose clamoring with new daily amount. He could feel his tension cially when you have the keys to the king-
orders. drain away. dom,” he said to himself.
“I’ve got too many jobs,” the Pusher
told Jerry. “I don’t have enough crews,”
he said. Two years later, on a chilly Saturday after-
“Not a problem. Take on what you can, Over the next few weeks, he’d open the noon as he sipped his beer and watched his
but send me all the details of the jobs you emails he’d received from Desert Rose’s beloved Texas Tech Red Raiders play, he
can’t do. I’ll sub it out.” Lie No. 2. Jerry had online invoicing system and read that suddenly had this feeling come over him.
no intention of subbing out the work. they’d been approved. One night after his The dream that he’d played out in his mind
That evening, he invoiced Desert family had gone to bed, he wondered if so many times years earlier had become a
Rose for the work the Pusher’s crews had there was a way to bring in even more. First, reality. His wallet wasn’t strained, his wife
completed. The service hours were pretty he Googled the phrase “best way + forge continued to seek out the latest beauty
much in line with what Desert Rose’s ap- + signature.” He scrolled down the search treatments and undergo new cosmetic sur-
provers expected, but Jerry knew that if he results page and opened the “WikiHow” geries, and the now 18-year-old daughter

Elevate Your Career.
Join the ACFE.
Professional Sharpen your skills with world-class

training opportunities and become a
Development Certified Fraud Examiner.
Networking Connect with more than 85,000

anti-fraud professionals through
Opportunities events and online communities.
Career
Ca eer Use the members-only Job
Board, online career center
Support
pport and free career webinars.
Get exclusive resources like

Knowledge
K owledge Fraud Magazine®, newslet-
and
a d Tools ters and free webinars.
Visit ACFE.com/membership to learn more.

Keys to the kingdom: oilfield fraud
• Provide ongoing conflict-of-interest and ethics training to ensure employees receive critical guidance on
recognizing and handling conflicts.
• Ensure your new vendor due diligence policy addresses former employees who want to work as contrac-
tors for your organization.
• Perform periodic due diligence on current vendors to review vendor financial health.
• When your company has implemented automated-invoicing approval processes, perform periodic in-
voice reviews of random invoices to ensure reasonableness and validate that the controls are operating
effectively.
• Develop a policy and process by which alerts from invoicing systems are investigated, reviewed and
cleared.
• Perform a vendor audit risk assessment to identify potential audits. Ensure the risk assessment consid-
ers both financial and operational risks.
• Conduct ongoing vendor audits to ensure goods and services have been received and validate invoice
amounts.
was a freshman in her posh condo, just there might be something more than
a mile from where his Red Raiders were just some contractor back-office issue. Almost four years to the date of leav-
playing. Life was certainly good. The auditors’ hunch and keen data ing Desert Rose, Jerry found himself
However, Jerry didn’t know that analysis paid off. When they made an dressed in a suit seated behind a long
Desert Rose’s internal audit depart- unannounced visit to Diamond’s Pecos wooden table. The table hid his tapping
ment had recently commenced several office, Jerry’s wife, Helen, quickly texted feet and his sweaty hands. Resting his
contractor audits. Audit wouldn’t have him “ASAP … come to office; auditors.” hands on the wool cloth, his fingers ner-
normally selected Diamond Machine Less than 30 minutes later, Jerry was vously strummed the material. The judge
Works because its annual expenditures in the office. The auditors asked him calmly read out the charges, which in-
cluded multiple counts of identity theft,
didn’t meet the dollar-risk threshold. to provide payroll and other employee
one count of wire fraud and one count
However, this year the audit department records for the field employees. Jerry
of money laundering. Jerry’s attorney
had begun to flag numbers of invoices also downloaded and gave the auditors
could proffer little. He reasoned that
and analyze keywords in invoices’ de- GPS data records for their trucks for the
Jerry should serve three years. However,
scription fields. This latter area moved previous two years.
the judge ordered Jerry to serve 10 years
Diamond to the audit shortlist. As the auditors inquired about and to pay back around $2 million in
Desert Rose’s auditors had identified Diamond’s operations, Jerry would fre- restitution. Desert Rose and the courts
certain repetitive keywords that al- quently interject, “You know, you guys had taken away the keys and changed
ways appeared in the same order. For owe me for the last two months. I have the locks. (See the case that this article is
example, 25 invoices with service de- a number of invoices that you haven’t based on at tinyurl.com/yaszgauh.) ■ FM
scriptions for the same group of leases paid yet.” His plea for money fell on
for the same crew read, “Cleaned sight deaf ears. It was true, he hadn’t been
Rick Roybal, CFE, is project manager at
glasses, tightened valvs, and picked up paid. But once the auditors identified Martindale Consultants Inc. in Roanoke,
trash.” The same three keywords in the numerous anomalies, Desert Rose’s Texas, and president of the Oil and Gas
same order with the same misspelled controller had placed Diamond on Vendor Roundtable. Contact him at
word “valve” had the auditors thinking “Payment Hold.” rick@vendoraudit.org.

NEW! DOCUMENTARY SELF-STUDY CPE COURSE
NEW!
Collared: A Story of Insider

Trading and White-Collar Crime
This unique online self-study course includes the feature-length documenta-
ry, “Collared: A Story of Insider Trading and White-Collar Crime.” In the docu-
mentary, you will learn about the most prolonged insider trading scheme ever
discovered by American and Canadian securities investigators, described by
leading scholars, experts and the frauster who perpetrated the scheme.
In this course, you will learn what constitutes insider trading and the ways
that inside traders rationalize their criminal behavior. Additionally, you will
discover methods used by insider traders to avoid detection and ways to
identify and prevent insider trading.
YOU WILL LEARN HOW TO:

• Discover what constitutes insider trading
CPE Credit
• Recall ways that insider traders rationalize 4
their criminal behavior
• Identify the consequences of an insider
trading conviction
• Determine ways to identify and prevent
Course Level
insider trading
Overview
• Recognize methods used by insider traders
to avoid detection
$159.20 Members / $199 Non-Members Prerequisite

None
Visit ACFE.com/Collared to learn more.

From its early days as The White Paper to the
72-page bimonthly publication it is now, Fraud
Magazine’s continued credibility and necessity
to the anti-fraud profession is in part thanks to
the leadership of its editor-in-chief, Dick Caro-
zza. After 25 years at the helm, Carozza is step-
ping back and retiring. Here we take a look at
the history of Fraud Magazine and the large role
Carozza played in its success.
By Emily Primeaux, CFE

Photos by Karl Massdam
Dick Carozza
On a sweltering day in the

summer of 1995, Dick Carozza
stepped foot into the Gregor
Building in Austin, Texas, for
the first time. He and his wife,
Sue, had recently relocated to
Austin — she’d taken a posi-
tion as the cancer epidemiolo-
gist for the State of Texas to
be closer to her Austin-based
family.
Carozza, who’d quit his job to follow

Sue, saw an advertisement in the Austin
American-Statesman (the major daily
newspaper for Austin) calling for someone
to create a magazine for the ACFE. Carozza
was keen to start a magazine from scratch,
so he mailed in his résumé post-haste.
Following an initial interview with
then-CEO Kathie Green (now Lawrence),
Carozza met ACFE founder and Chairman, community relations and development for
Multiple states and the local hospital because they wanted to
Dr. Joseph T. Wells, CFE, CPA. “Of course, a hodgepodge of industries start a magazine.
he wore a Hawaiian shirt,” Carozza says
Ever since Carozza can remember, he’s He then moved to Colorado to work on
in an interview with Fraud Magazine. “I
wanted to work in the editorial field. He a magazine and marketing at a nonprofit.
thought, ‘Well, this is interesting.’ ” Dr. embarked on his career by obtaining his Carozza met Sue in Colorado and in 1983
Wells shared his vision of the ACFE and degree in journalism from the University — shortly after they were married — they
how this magazine could benefit anti- of Missouri in Columbia. His major was in moved closer to Carozza’s family in New
fraud professionals working in the field. the magazine sequence with an emphasis Hampshire.
Carozza was sold. in design. Carozza worked for the Catholic Dio-
Since that stifling Texas day, what be- “I really enjoyed design work,” Caro- cese of Manchester, which covered New
gan as The White Paper has morphed into zza says. “At one point I wanted to be a Hampshire, as the director of commu-
Fraud Magazine, a bimonthly publication graphic artist, but I did a lot of editing nications. He handled publications and
when I was in high school, so I thought, public relations work. Sue worked for a
that brings fraud fighters top-tier anti-
well, I’ll play both.” few years for an environmental consult-
fraud principles, profiles, education and
But magazine work wasn’t abundantly ing firm. She happened upon a newspaper
more. Carozza’s 25-year endeavor to help
available then, so he worked as a journal- advertisement for an epidemiologist posi-
fraud fighters battle corrupt and nefari- ist for a daily newspaper and did design tion at the New Hampshire Department of
ous conduct using practical content has work on the side. After working as the city Public Health. Though she had no experi-
consistently empowered ACFE members editor of a small-town Kansas newspaper ence in epidemiology — her degree was
to persist. for 2½ years, he became the director of in fisheries and wildlife from Texas A&M

ACFE STAFF and FRIENDS
reflect on Fraud Magazine’s
University in College Station — she enjoyed statistics and numbers, so she success under Dick Carozza’s
applied and got the job. “She went from counting fish to counting people,” guidance
Carozza jokes.
Sue’s jump into the world of epidemiology would be the catalyst for
bringing them to Texas … eventually. She was enjoying epidemiology, but
she figured if she was going to do anything in the field she’d need a gradu-
ate degree, so she applied to Johns Hopkins University and the University of “When Dick Carozza came to
North Carolina (UNC) — both had stellar public health schools — and ended work for the ACFE 25 years ago,
up in Chapel Hill at UNC. our association was seven years
Carozza didn’t find work immediately, traveling back and forth from New
old and had less than 10,000
Hampshire to North Carolina for interviews and to visit Sue. After 11 months he
landed a job as the director of communications for the Motor and Equipment members. He retires as the
Manufacturers Association in the Research Triangle Park in North Carolina. third senior employee when
“I knew nothing about cars or trucks, but they needed someone to do their our membership is over 85,000.
publications, and they said, ‘you can learn,’ ” Carozza says. “Basically a theme Everyone loves Dick and with good
of a good part of my career is I find myself in these new professions and new
reason. He is diligent, respectful
industries where I know nothing — like book publishing, the medical field,
the auto parts industry and fraud examination — but I had a good education
to our authors and his fellow
in journalism to be able to ask the right questions and find the right sources employees, and has a great sense
and to learn. That’s been the fascinating part: to be in all of these different of humor. Plus he is an amazing
industries meeting various types of people and learning what I need to know writer with an uncanny ability to
in order to write about those industries.” bring out the best in others. We
will miss him immensely.”
Carozza modernizes The White Paper — Dr. Joseph T. Wells, CFE, CPA,
Once Sue graduated with a doctorate from UNC, they made their move to Austin, founder and Chairman of the ACFE
and Dick got the job at the ACFE after interviewing with Dr. Wells. “They offered
me the job, and I was slightly bummed because it had only been two months of
my little vacation between jobs,” Carozza says with a laugh.
At that point the ACFE was producing a printed newsletter called CFE News
and a publication called The White Paper, which followed a magazine format.
“What they wanted to do was combine the two and come up with a professional “The best thing I can say about Dick
magazine,” Carozza says. “That was enticing to me. I could start from scratch, Carozza is that I’ve never heard
and I was eager to do that.” anyone say anything negative about
But when Carozza started, the ACFE was still relatively small. “I remember him. That is the absolute truth.
Joe, Kathie and Jim [Ratley, the ACFE’s former president] telling me, ‘We’re
not association people, we’re investigators.’ They were figuring it out as they
He started one month after I did,
went along. so I witnessed firsthand how he
“Because the whole area of fraud was new to me, I was learning how to created a brand-new magazine from
put out this magazine at the same time I was learning the field and getting to basically scratch. From the first
know people,” he says. “I remember they had the San Antonio annual confer- issue, the magazine has not only
ence shortly after I started in July, so I said, ‘If you’re having a conference, why
looked good, but it has educated
can’t I go?’ … So, I went for a day.”
Carozza says he quickly bought into Dr. Wells’ mission of providing the and informed thousands of fraud
best anti-fraud training and service in the world. “I like to have a mission within examiners for 25 years. Thank you,
my job, not just a means to make money,” he says. “I’d worked for nonprofits Dick, for the contribution you have
and service organizations where you’re helping members obtain their goals.” made to the ACFE membership.”
Giving practical tools to fraud fighters was appealing to Carozza. When
he first interviewed at the ACFE, Carozza says he thought all accountants — John Gill, J.D., CFE,
and auditors searched for fraud. He was surprised when he realized finding ACFE vice president - education

Dick Carozza
fraud wasn’t necessarily on their roster of issue of The White Paper in its refur- The White Paper became Fraud Maga-
duties. But when they did discover fraud, bished form. Carozza and Dick Reeves, zine in May/June 2004 after the Enron and
they often didn’t know how to report it, a GRAMMY award-winning freelance WorldCom scandals. Carozza says that the
investigate it or — most importantly — designer in Austin, comprised the en- Sarbanes-Oxley Act of 2002 — which was
how to prevent and deter it. tire editorial staff until Carozza hired created in the wake of these massive corpo-
“That’s always been Joe and Jim’s in- an assistant editor a few years later. rate frauds to help protect investors from
tent,” Carozza says. “It makes more sense fraudulent financial reporting by corpora-
to prevent and deter fraud than it does tions — was a boon for the ACFE because
to find it, investigate it and get rid of it.
Revamped Fraud Magazine
it had a tremendous emphasis on anti-
It’s much more economical — you save
highlights newsmakers, fraud efforts within organizations. The
tremendous amounts of money that you
whistleblowers ACFE’s president at the time, Toby Bishop,
would lose to fraud, and there’s less repu- Carozza says he was excited to use a bi- used the momentum to help take the as-
tational damage. And those are really im- monthly publication to give anti-fraud sociation more global, and the magazine
portant reasons, especially for large firms. professionals who were hungry for some changed names.
“Back then, and even now to a certain practical, down-in-the-trenches informa- In 2008 and 2009, the recession and
extent, many corporations didn’t want tion. “And not necessarily to catch the bad sub-prime mortgage crisis created anoth-
to use the ‘f’ word, ‘fraud.’ That was the guys,” he says. “Information to find the er boost for anti-fraud efforts and Fraud
beauty of the ACFE at this point — they evidence, the hard evidence, that shows Magazine expanded to 72 pages. “Accoun-
gave tools to people who were fraud exam- that there is or isn’t fraud. That this per- tants had to play catch up in their anti-
iners or who wanted to be fraud examiners son is culpable or not culpable. … If fraud fraud education,” Carozza says. “I’ve seen
but saw no clear way of doing that in their examiners don’t have the tools, then they the membership grow exponentially, so
jobs,” he says. can’t find the evidence of fraud. If they our scope has changed quite a bit in the
In January/ February 1996, the aren’t trained in the ACFE Fraud Tree, then magazine since 2004.”
ACFE published the first 56-page they don’t know what to look for.” Carozza says the May/June 2004 Fraud
Magazine featured its first “newsmaker,”
Douglas R. Carmichael, CFE, the initial
chief auditor and director of professional
standards of the Public Company Account-
ing Oversight Board. And the first of many
“Looking back on my career in editorial, I can point to two cover whistleblower profiles was of Marta
individuals who stood out as much more than bosses; they Andreasen, the European Commission’s
were mentors and role models for me. Dick was one of former chief accounting officer, in the
those individuals. I learned a great deal from Dick simply September/October 2004 issue.
by watching the way he approached his responsibilities “The most gratifying part of my job is
interviewing whistleblowers through the
and treated the people around him. Integrity is woven years,” Carozza says. “I admire them so
into everything he does, but he doesn’t take himself too much. I ask myself often, ‘Could I do what
seriously. Dick has a great sense of humor and emanates they’re doing?’ I’ve never met a whistle-
a personable warmth. I never doubted that he really cared blower that has not paid for their truth, for
about my well-being and respected my opinions. I feel very their honesty — professionally, financially
fortunate to have worked for him early on in my career. He and personally.”
absolutely helped to shape the way I choose to show up for Carozza says his interview with Bun-
myself and others as a leader.” natine “Bunny” Greenhouse in the July/
August 2006 issue (Bunny was the U.S.
Army Corps of Engineers whistleblower)
— Katie Ford, executive director at Truth Be Told (truth-be-told.org)
was the first interview that really created
and a former Fraud Magazine assistant editor
his passion for telling whistleblower sto-
ries. “Against all odds, she pushed,” he
says. “Once I interviewed her and then
met her at the annual conference, I started

“The quality of Fraud Magazine over these many
decades under Dick’s direction has elevated the “Dick Carozza was one of the first employ-
prestige of our profession. He is also one of the ees I met when I started at the ACFE in
kindest, most humble and genuine souls I’ve ever 1996. I worked with Dick as the circula-
met, which lifts us all.” tion director for The White Paper, which
— Jeanette LeVie, CFE, is currently Fraud Magazine. Working
ACFE vice president and chief operating officer with Dick was always such a pleasure. If
he was having a bad day you would never
know it because he always had a positive
attitude. Dick and I could sit for hours
“Dick was wonderful to work with and was always and talk about the good times we all had
open to my creative ideas, and contributed many at the ACFE — great memories. I will
of his own. I know the magazine and anti-fraud always to be grateful for the support Dick
profession wouldn’t be what it is today without provided me during my years of working
his dedication, ingenuity and drive for top-notch with him. I wish Dick a restful retirement
storytelling. I wish Dick all the best for this next and joyful years ahead.”
chapter!” — Angela Fletcher, CFE, ACFE review course
— Helen Elliott, creative lead at St. Edward’s University and manager, one of Carozza’s first ACFE colleagues
former Fraud Magazine art director
Fraud Magazine gained more notori- within the boundaries of the Fraud Exam- fraud schemes and criminology; and pre-
ety when Carozza nabbed interviews with iners Manual. But we’ve tried to push the venting and deterring fraud.
whistleblowers Cynthia Cooper, CFE, and envelope.” “I’m glad to have been a small part
Sherron Watkins. Cooper formerly served When Sue joined the faculty at Texas of that,” he says. “I’ve wanted to be able
as the vice president of internal audit at A&M University and they moved to Col- to challenge fraud examiners to think a
WorldCom where her team exposed the lege Station, Carozza agreed to stay on as little broader than where they are, or to
largest accounting fraud in U.S. history. editor-in-chief as a contractor at the behest give them something they want more edu-
Watkins is the former vice president of cor- of Dr. Wells. They now live in Corvallis, cation on that they haven’t been getting.
porate development at Enron. She alerted
Oregon, where Sue has been faculty at With my leaving, there’ll be a chance for
then-Enron CEO Kenneth Lay of account-
Oregon State University in the College someone to expand tremendously in areas
ing irregularities in financial reports and
of Public Health and Human Sciences I hadn’t considered.”
was called to testify before committees of
since 2009. Carozza has continued to Carozza also has enjoyed working with
the U.S. House of Representatives and Sen-
ate about her warnings to Lay. Each woman run the magazine and travel to the an- the many authors who have contributed
was named as one of three “People of the nual conferences, and occasionally to their work to the magazine, plus the edito-
Year” by Time magazine in 2002. Austin, ever since. rial staffers that have come and gone during
Carozza says the work has allowed his tenure. “I want to thank the editors that
him to meet many other fascinating peo- I’ve collaborated with: Stephanie Dodds,
ple. He mentions George J. Mitchell, the re-
New expansion for
Katie Ford, Suzanne Mahadeo, Amy Logan,
nowned mediator for the Northern Ireland Fraud Magazine Cora Bullock — who’s still a contributing
peace process; U.S. Sen. Paul Sarbanes and “The ACFE has been able to give CFEs not editor — and Emily Primeaux — now a
U.S. Rep. Michael G. Oxley (the Sarbanes- just a platform, but the bona fides, the pro- contributing writer,” he says. “And our in-
Oxley Act); U.S. Sen. Chris Dodd (the Dodd- fessional support and reputation that they ventive art directors, from Dick Reeves to
Frank Wall Street Reform and Consumer didn’t have before,” Carozza says. “There are Helen Elliott to Becky Plante, really made
Protection Act); Preet Bharara, former U.S. a lot more CFEs in the governments around the magazine sing. Designers Tracy Pac-
attorney for the Southern District of New
the world, and it really holds a lot of weight cone and Jennifer Rother also contribute
York; and actor Richard Dreyfuss.
because they deliver results.” their talent. It’s one thing to have a good
“In the magazine, we’ve tried to em-
Carozza expands, saying that these article; it’s another to have the art direction
phasize areas of anti-fraud principles that
maybe the rest of the association isn’t,” days when CFEs approach fraud exami- to attract people to read it.
he says. “We overlap a lot with ACFE ma- nations, they know how to investigate for “My thanks also go to our longtime
terials, and we don’t include things that fraud and interview subjects; about law re- talented contributing writers, Bob Tie,
are outside the canon — we still exist lated to fraud; about financial transactions, CFE, and Donn LeVie Jr., CFE; contributing

Dick Carozza
editors, Scott Patterson and Randi Zimmer, CFE; and

“I remember the first time I spoke to Dick on the
phone for my assistant editor interview. He asked contributing columnist, Mason Wilder, CFE. Carozza also
if I was an introvert or extrovert, and when I noted thanks Circulation Manager Aimee Jost, CFE; Advertising
I was an extrovert, he said gleefully, ‘Great! So am Coordinator Travis Kolaja, Legal Editor Ron Cresswell,
I! So, you won’t be annoyed when I call you.’ That J.D., CFE; and Kate Pospisil, CFE, who maintains Fraud-
level of management and sense of humor is rare. Magazine.com. “This magazine has always been a team
effort to get it to the members on time every two months,”
Not only is Dick a crackerjack editor, always
Carozza says.
staying abreast of the seemingly endless updates,
“Though Joe Wells still reads every word of every
changes and reversals to the AP style guide, he’s a
wonderfully compassionate person. I remember issue, he’s always had a hands-off approach with the
how lovingly and patiently he tended to his magazine,” Carozza says. “I’ve appreciated his support
mother-in-law when she moved into the house he through the years.
shares with his wife, Sue. He often speaks of his “The ACFE members are the greatest. I’m always
pride for Sue, an epidemiologist, and the rest of his challenged by their resolute devotion to prevent and deter
family. It’s been my pleasure to continue contact fraud especially when they’re fighting uphill battles,” he
with him via my contributing editor position, and I
says. “I’ve learned so much from the hundreds of authors
shall miss his patience, enthusiasm and energy for
and columnists who’ve appeared in the magazine’s pages.
all things anti-fraud and writing.”
“I want to thank so many other ACFE individuals in
— Cora Bullock, former Fraud Magazine assistant editor the last quarter-century,” Carozza says. “I’m grateful and
honored for the relationships I’ve had with the wonderful
people who make the ACFE gears mesh.” ■ FM
“I wouldn’t be the writer, editor or Emily Primeaux, CFE, is a contributing writer at Fraud
employee I am today without Dick’s Magazine. Contact her at emprimeaux@gmail.com.
tutelage. I’m forever grateful for the
skills and teachings he’s instilled
in me these past 6½ years. I left
the ACFE knowing I would forever
have a mentor and a friend in Dick
Carozza. He was always patient with
me, but firm in his expectations of
my work. When I expressed a desire
to write more, he encouraged my
passion and let me ‘steal’ some of
the more enticing stories from him.
After his years of service to the ACFE
and the anti-fraud industry, I can’t
think of anyone more deserving of a
peaceful and enjoyable retirement.”
— Emily Primeaux, CFE,

former Fraud Magazine associate editor

Same Great Conference.
Convenient Online Format.
Virtual | June 21-23, 2021
Network Online Earn more than Choose from

90+
ACFE always plans and executes the best
with more than
4,000 30 CPE conferences I have ever attended. Between
the speakers, topics and networking, there
from live and educational is not a better conference available.
attendees on-demand sessions sessions
Virtual 31st Annual ACFE Global Fraud Conference Attendee
Register now at
FraudConference.com
FRAUD BASICS Fundamentals for all
Open public entities’ ledgers

for transparency
Imagine if citizens, journalists, oversight agencies, and internal and external audi-
tors were able to view all transactions of taxpayer and donors’ money online. The
fraud prevention and deterrence possibilities are endless.
T
he 2019 movie, “Bad Educa-
tion,” chronicles the discovery in
2004 by Rebekah Rombom, an
earnest high-school newspaper
reporter, of a $250,000 embezzlement
that eventually snowballed into the
exposure of two senior school district of-
ficials who’d perpetrated a $11.2 million
fraud scheme. (See “Roslyn HS reporter
who broke ‘Bad Education’ story speaks
out 16 years later,” by Rose Weldon, the
island now, April 21, 2020, tinyurl.com/
y5t4n8jx.)
The fraudsters, for many years,
misused school credit cards and created
bogus purchase orders supposedly for
school supplies and equipment, but the
administrators directed the funds into how the school was specifically spend- Property Tax Refund Fraud Scheme
their pockets. ing money. Sentenced to 17½ Years,” June 30, 2009,
My favorite scenes in the movie in- The scheme that Rombom uncov-
U.S. Attorney’s Office, tinyurl.com/yx-
clude the actress playing Rombom shar- ered has some basic elements shared by
ing a purchase order with a chemistry wpxfsk); or Channing Smack, who stole
other fraud cases, like Rita Crundwell’s
teacher who shakes his head and says, $53.7 million theft over 20 years from $370,000 from the Girl Scouts of Greater
“No, I never received those glass beakers the city of Dixon, Illinois [see “Former Los Angeles by facilitating checks to a
…” and when Rombom ventures into Dixon Comptroller Rita Crundwell sham landscaping business he owned
New York City she discovers a school Sentenced To Nearly 20 Years In Federal that provided no actual services to the
“vendor” is located in the superinten- Prison For $53.7 Million Theft From
charity. (See “Westside Man Arrested
dent’s apartment. City,” Feb. 14, 2013, U.S. Department of
On Money Laundering Charges Related
Rombom’s efforts to follow up on Justice (DOJ), tinyurl.com/y8hjtyp8];
school vendors and specific purchases Harriette Walters’ $48 million theft To Alleged Embezzlement Of Nearly
were significantly hampered by her over 18 years from the Washington, $370,000 From Girl Scouts,” Dec. 18,
inability to gain access to records about D.C., government (see “Leader of D.C. 2013, DOJ, tinyurl.com/y2yqa7qg.)

While most entities have several layers of oversight to help ensure managers
use funds appropriately, one primary and persistent problem exists:
Transaction-level spending transparency is often nonexistent.
Publicly traded and privately held download every banking transaction for
companies have similar challenges. But our checking, savings and credit card
COLUMNIST
I’ll only address nonprofits and govern- REGENT KEN accounts. I do a bit of data cleaning,
ment entities in this column because DIEFFENBACH, CFE standardization, and cutting and pasting
their spending of taxpayer funds is SPECIAL AGENT until I have one nice spreadsheet with
U.S. DEPARTMENT
clearly a matter of public interest. (Pri- OF JUSTICE
the date of each transaction, the payee,
vate entities have a plethora of reasons the amount and the category. (My bank
for maintaining privacy about how they automatically categorizes each transac-
of internal controls to help ensure
spend their monies.) tion based on the vendor, and I’ve found
transactions are legitimate, supported
by adequate documentation and are that I rarely need to correct them.)
The problem recorded accurately in the ledger. Now, with that information all
Governmental units and nonprofits What if we made more and perhaps in one place, I can do pivot tables and
worldwide properly manage the vast all this spending data publicly available? charts and graphs and see what it costs
amount of public dollars as intended. Perhaps as a “Report to the taxpayer” to be “us.” My first insight every year
However, some will always find creative or “Report to our donors”? This infor- is always, “Holy cow, the cats cost how
ways to redirect these dollars for per- mation would explain exactly how the much?!” After I calm down, I’m amazed
sonal gain or other improper purposes. government or nonprofits use public at the instantaneous insights I can
While most entities have several layers funds and donations. gain about who we send our money to,
of oversight to help ensure managers Imagine if citizens, journalists, the purpose areas and the percentage
use funds appropriately, one primary oversight agencies, and internal and of overall spending for each type of
and persistent problem exists: Trans- external auditors were able to view this transaction.
action-level spending transparency is level of detail without having to rely on These types of insights are only
often nonexistent. Taxpayers and other audits, data collection efforts, Freedom available with analysis of transaction-
stakeholders shouldn’t be burdened by of Information Act requests, lawsuits, level spending details — if I only relied
having to determine exactly how their subpoenas or site visits. Imagine on my monthly bank statements and
government and nonprofits spend their the power of crowdsourcing all this tax returns, I’d never gain most of these
public dollars. information. insights. Nonprofit board members,
Imagine that a fraud examiner audit-report readers and city council
A solution could quickly determine a school vendor members are at a disadvantage when
I have a solution! Of course, every gov- and its superintendent share an address they rely exclusively on high-level sum-
ernmental and nonprofit entity main- — the first time that superintendent mary analysis without details. Proper
tains an internal accounting system executes a corrupt purchase order not due diligence and oversight requires
that tracks each financial transaction to years into the scheme. more than just the dollar totals.
include the date, payee, amount, fund or And, most of all, imagine the deter- I know what you might be thinking:
program, and other data. rence and prevention effect that would Bad actors will just lie in their account-
For example, let’s say, on Jan. 1, nudge people toward good behavior. ing records. True, that could and likely
2020, a $50,000 bonus was paid to a I have a bit of personal experience is happening at this very moment. But
John Jones, or a $15,000 rent check went here — with spending data, not com- our identification of clear evidence of
to ABC Enterprises. Accounting systems mitting fraud! Once a year, I spend a few falsified records, which can only happen
must also have an accompanying system hours to log on to my bank’s website and with release of all financial information,

FRAUD BASICS Fundamentals for all
will only enhance organizations’ and unfeasible, I offer a model: the U.S. Fed- The details
governments’ abilities to remediate is- eral Election Commission (FEC, fec.gov). Governments and other organizations,
sues swiftly and efficiently. Campaign finance laws require that the of course, need to work on many details.
We’d be able to say to suspected FEC collect, maintain and make publicly How would they handle “public avail-
fraudsters, “You clearly claimed to have available detailed transaction-level data ability”? Would entities simply post data
spent the money on X, but, in reality, you on certain political candidates’ revenues to their existing websites? Would a neu-
did this other thing and intentionally and expenditures. tral entity or a large tech company create
tried to cover your tracks.” Additionally, This data allows anyone to deter- a way to easily host data and perhaps
if a person claims to have sent funds to mine those political candidates who even create simple analysis dashboards?
a vendor, but the hard data shows they prefer Dominos versus Pizza Hut or how How would they handle salary and other
kept the funds for themselves, vendors much a campaign paid a particular ven- sensitive information?
will more readily notice their names dor and when. Some states have similar I propose we start with the pre-
were used falsely. A fraudster working campaign finance disclosure laws and sumption that the public deserves to see
at a high school who creates a sham databases. how every taxpayer dollar and charitable
purchase order stating they purchased The U.S. state of Ohio offers another contribution is used and then work out
“chemistry supplies” runs the risk that a similar model. The Ohio Checkbook, the necessary exceptions.
chemistry teacher or the chemistry club launched in 2014, provides transaction-
The why
The best part of this concept is that it’ll
go a long way to fulfill fraud examiners’
To see how every fire department, school, town
highest calling: fraud prevention and
hall, homeowners’ association, animal shelter deterrence. Would-be fraudsters might
refrain from committing crimes if they
and economic development authority spends the know their credit card transactions,
checks, transfers and contract payments
people’s money would serve to make them more will be shared with the world.
effective and accountable. Crundwell was only caught when
she took a vacation and a co-worker no-
ticed unusual transactions. Walters was
identified when a bank challenged her
will flag the transaction and demand level spending details for every dollar niece’s attempt to negotiate a six-figure
answers. spent by the Ohio state government, check.
Additionally, transparency of public schools systems and units of Would Crundwell have been able
spending data would allow analysis — local government, including credit card to do as much damage if the Dixon
on a level not previously possible — to transactions. (See checkbook.ohio.gov.) taxpayers, mayor or city hall employees
flag suspicious contract-award patterns For example, did you know that on Nov. had earlier access to all her transac-
and other illogical and anomalous 27, 2019, the Ohio Board of Cosmetol- tions? Could Walters’ scheme have been
transactions. Organizations often don’t ogy paid Fusion Technologies East LLC flagged sooner if Washington, D.C., had
appreciate that ensuring procurement $6,785 for “IT & Network Services”? a spending data-sharing program? What
systems are free from price fixing, col- I have no idea what that means, but I if they’d each stopped their schemes
lusive bidding and other unfair prac- discovered this after about 10 minutes at the $45 million mark? Would their
tices is critical to prevention of corrupt of exploring how the board spent $2.8 thefts have ever been identified? Could
contracting practices. million in 2019. someone have flagged Smack before he
Other states have sunshine and collected his 23rd unearned check?
Two models other open-records laws, but I am Disclosure of transaction-level
For those thinking this would be too unaware of any that have this advanced spending details by all publicly funded
cumbersome, complex and generally data-sharing system. and nonprofit entities could usher in a

new era of accountability and transpar-
ency. To see how every fire department,
We all want to see the hundreds of billions in annual
school, town hall, homeowners’ associa-
tion, animal shelter and economic de- charity and public dollars used to help make life
velopment authority spends the people’s
money would serve to make them more
better for everyone — not just a handful
effective and accountable. of fraudsters.
It would allow stakeholders to
provide technical assistance to those
entities that are failing to make spend- rummage through the archived records.
ing data available, and it would allow the We should all have that key and be able
ACFE Regent Ken Dieffenbach,
public to understand exactly what their to review spending data without the risk
CFE, is the special agent in charge of
governments are spending their tax of paper cuts.
the U.S. Department of Justice Office
money on and what they’re doing to find We all want to see the hundreds of
of the Inspector General Investiga-
cost-savings strategies. billions in annual charity and public
dollars used to help make life better for tions Division Fraud Detection Office
In “Bad Education,” the actress
everyone — not just a handful of fraud- and is deputy director of the DOJ OIG’s
playing our intrepid newspaper re-
sters. We have a right to see how govern- Office of Data Analytics. He’s had a
porter, Rombom, visits the assistant
superintendent and asks to see certain ments and nonprofit organizations are 23-year federal law enforcement career
spending records. After much back and spending our money. Readily accessible in fighting fraud. (His opinions in this
forth, the official tosses Rombom a key transaction-level spending transparency column are his own.) Contact him at
to the basement storage room so she can would help. ■ FM kenneth.r.dieffenbach@usdoj.gov.
March 4, 2021 | Online Virtual Conference
The first 2021 ACFE Women’s Summit will

be online March 4, 2021.
Attend and explore common challenges
women face in the industry, ask questions,
share ideas and resources, and support
each other as you navigate your own
professional journey.
Learn more at ACFE.com/WomensSummit

CAREER CONNECTION Building your professional future
TIME TO SHAKE THINGS UP

“Ikigai,” the Japanese notion of being truly fulfilled and how a person’s work re-
lates to their purpose, spurred former paralegal Tracy Swaim to seek more. Con-
versations with a fraud investigator excited her about entering the field. She earned
her CFE and now works in a job that checks all the boxes for her: mission, passion,
vocation and profession.
T en years into my paralegal ca-

reer, 5,000 miles away from my
hometown, and with a spouse
on deployment somewhere in the mid-
COLUMNIST
TRACY G. SWAIM,
CFE
ENTERPRISE FRAUD
what type of person does well in the role.
And I wanted to hear all her stories.
I kept rolling it around in my brain.
How fascinating it all sounded! This
dle of the Pacific, I decided things were MANAGER AT HEARTLAND fraud investigator had a much cooler
too quiet. It was time to shake things up. FINANCIAL USA INC. job than almost anyone else I knew. She
I’d been working in the legal agreed with me that it was very cool and
department of a small bank in Hawaii with briefs and case notes. Did I really do continued to say how much she enjoyed
in a fantastic job. But it didn’t seem to a good job on it? her work.
be pushing the right buttons for me Either by coincidence or some guid- I was familiar with the concept of
anymore. One day, I was presented with ing hand, the universe placed a blog post “ikigai,” the Japanese notion of being
a bankruptcy petition that didn’t look truly fulfilled and how one’s work relates
into my feed reader that evening about
quite right. I saw that it had all the mark- to their purpose. This investigator
questions to ask yourself if you’re look-
ers of bankruptcy fraud. I alerted the at- seemed to be camping out in that sweet
ing for your dream job. I gave the article
torney to whom I reported and wrote an spot covering all the key points: what
the side-eye (how did it know I was un-
internal report for the fraud department the world needs, what you love doing,
fulfilled at work?) and almost went right
to review. I outlined my suspicions, what you’re good at and what you can be
past it. The questions, as it turns out, are
attached the petition and the appropri- paid for.
fairly simple: What did you enjoy writ-
ate account numbers to the report and
ing papers about in school? What do you
moved along with my bankruptcy file. I Boarding the CFE train
find yourself talking about frequently,
had no idea where this would eventually I took the investigator’s suggestion of
lead me and how different things were reading books about, and what gets you
considering the ACFE as a resource to
going to be a few months later. fired up? The answers to a lot of those learn more. The more I investigated
questions, for me, was (and still are) the CFE credential and credentialing
Talking with an anti-fraud pro financial crimes, victim advocacy and process, the better it sounded. I had a
The following morning, a fraud investi- consumer fraud prevention. The stars couple of advanced certifications from
gator at the bank found me at my desk were starting to line up, and I had a lot of the National Association of Legal As-
to ask me some questions about the thinking to do. sistants; one more should be a piece
bankruptcy. After a great conversation, In the following weeks, I had a se- of cake. Spoiler alert: It’s not a piece of
she asked me if I had done this before. ries of conversations with that fraud in- cake.
Done what? I had never written a fraud vestigator about how she got where she Discussions with my husband and
report, but I had plenty of experience is. I couldn’t get enough. We discussed my family highlighted how fortunate I

am to be surrounded by people who be- An opportunity presented itself I started getting that itchy feeling that I
lieve in me. At this point, I should men- when I approached the military base’s needed to get back to work.
tion, my husband was in a submarine Military & Family Support Center (also I started looking online and after a
in the middle of the Pacific Ocean with called Fleet & Family Services) to offer few days of hunting, a job posting nearly
near-zero contact as I was going through my time as a volunteer to talk about per- jumped off the screen at me: fraud
this existential crisis — but no biggie. sonal finance and fraud prevention with investigations supervisor for a regional
What I did get from him boiled service members and their families. bank. This was it. What a great position.
down to “Sounds awesome, you’d be While they didn’t have any volun- I would love to do something like that! I
great — go for it!” That was all I needed teer opportunities at that time, they hadn’t yet managed a team, though I had
to hear to know that he was behind me did have a position open to be facilitate a feeling I’d enjoy it. I took a deep breath
100%. I leaned on my parents — who similar workshops and classes. The and applied.
were five time zones away — to talk coordinator I spoke with encouraged me Fraud investigations management
about study guides, work stress and to apply as a way to work toward being checks all the ikigai boxes for me: mis-
whether I’d even be any good at it. I a personal finance educator. I thought sion, passion, vocation and profession.
leaned on my friends who understood I that was a wonderful idea, but I didn’t Or, what the world needs, what you love
needed dedicated time to study and of- know how to teach stress management doing, what you are good at and what
fered encouragement at every turn. and work-life balance. I was struggling you can be paid for. The world needs
I purchased a couple of used text- with these myself. Well, I got over that dedicated anti-fraud professionals fight-
books by Dr. Joseph T. Wells, CFE, CPA, once she said service members would ing the good fight. I love being a victim
founder and Chairman of the ACFE, appreciate my perspective and probably advocate and helping those who other-
signed up for the CFE Exam Prep Course learn a lot from me. I applied and started wise can’t use the system to fight these
and got to work. working more toward my goal on this battles. I found that in the legal field,
Dedicating 15 hours per week, strange and meandering path toward and I’ve continued to find that in fraud
spread out in evenings and lunch breaks, ikigai. investigations and fraud prevention.
I keep current on fraud trends, and I
I was able to get through the course and At the support center, I was pre-
have a knack for spotting red flags. As a
practice tests in about three months. sented with opportunities to make a real
member of the ACFE, I’m able to attend
I surprised myself when I saw my high impact on my community. I worked with
conferences to meet and learn from
scores and felt so good about my deci- my colleagues to create additional class-
others from around the world. While
sion. I knew that I was on the right track es on entrepreneurship, to incorporate
volunteering to do this is incredibly
when I woke up from dreaming about the consumer fraud and identity theft pre-
rewarding, the fact that we get paid to do
case studies I read and wanted to go back vention into existing personal finance
it is icing on the cake.
to sleep to find out how the stories ended. classes, and host events I otherwise
Today, I lead a team of diverse and
would’ve never dreamed of teaching.
dedicated fraud investigators. Our cases
Educating service members This was well outside my comfort zone,
are fascinating and complex. We help
I wish I could say I changed my career and I loved it. I learned so much about
customers who are victims of all types of
path immediately. I remained in the job adult education, presentation skills and
financial crimes: check fraud, wire fraud
I had for another few months, while workshop facilitation that I carry with
scams, business email compromises,
working at home on victim advocacy me every day through my current role.
identity theft and the current spate of
and consumer fraud prevention articles
unemployment benefit and SBA loan
and presentations. (My goal was, and A move and a fulfilling job
fraud. I find ikigai with each new chal-
still is, to hold workshops in my com- The time came to leave the support
lenge we face.
munity on red flags of fraud, how to center. We were moving back to the East
spot scams and what to do if you’re a Coast for my husband’s next duty station
victim of fraud. I have since hosted these in South Carolina. I took about six weeks CONTINUED ON PAGE 73
events, and they are every bit as fulfill- off to work on some light renovations to
ing as I’d hoped for.) our new home and to get settled in, but

TAKING BACK THE ID Identity theft prevention analysis
COVID-19 and utility

bill scams
The pandemic is bad enough, but scammers are out there waiting to steal your
money and identity via COVID-19 fraud. Here also is the newest utility bill scam.
R obert Smith was worried about

his health. He was exhibiting
COVID-19 symptoms, such as a
fever and cough. He saw an ad for a com-
pany that claimed he could come in for a
free test. However, when he arrived, the
company ran a battery of tests he didn’t
need, including an MRI and complete
blood count test. It turns out that the
company then billed Medicair for all the
tests and pocketed the extra cash.
This fictional case is just like ones
that reporters Monica Williams and Joe
Duce of an ABC affiliate in Phoenix, Ari-
zona, reported on its website (“Charges
announced in 3 COVID-19 related fraud
cases in Arizona,” tinyurl.com/y3rv-
abdp) on May 27, 2020.
Clinical trial COVID-19 scam

The U.S. federal government has in-
vested billions of dollars in companies to
produce a vaccine to prevent individuals
from contracting COVID-19. As their
research studies move forward, the com-
panies have enlisted individuals to take
part in trials to determine the effective-
ness of their products. According to an tinyurl.com/y2wunvyh) on the Federal produced fake websites and promotional
Oct. 23, 2020, article (“COVID-19 clinical Trade Commission’s (FTC) website, the materials to lure volunteers into what
trial: real or fake? Learn how to tell the problem is that fraudsters have taken appears to be valid COVID-19 vaccine
difference,” by Jim Kreidler, advantage of the situation and have trials.

Some individuals have a natural utility bill? That’s probably a scam,”
inclination to help others in situations COLUMNIST
tinyurl.com/y6z88enr). The call says all
like this, not knowing that they might ROBERT you need to do is press a number on your
end up being conned out of their money HOLTFRETER, PH.D., phone to get the refund and discount.
and/or personal identifiable information CFE But you need to stop and think: Do
(PII). According to Kreidler, “They might ACFE ADVISORY COUNCIL utility companies normally do this? No,
AND EDITORIAL ADVISORY
promise you a doctor’s care and more COMMITTEE they don’t! If you overpay a utility bill,
than $1,000 in payment ... but as soon as they’ll normally credit your account.
they try to charge you for access, or ask • The National Institutes of Health Also, utility companies usually don’t
for your Social Security, bank account or (NIH) and the National Library of give discounts when you overpay a bill.
credit card number, your Spidey sense The FTC offers the following advice
Medicine (NLM) maintain ClinicalTri-
should start tingling, because, unfortu- if you receive one of these phone calls:
als.Gov, a free searchable database of
nately, some of these so-called ‘research clinical studies on a wide range of dis- • Hang up immediately. Don’t press
studies’ are fake.” eases. You can also use the database to any numbers or respond to any
Fraudsters commonly take advan- get more information about studies, instructions.
tage of a national and international cri-
including whether they are recruit- • Never give the caller your SSN, ac-
sis and develop related scams according-
ing participants, and their contact count details or anything else. It takes
ly to rob individuals. This clinical trial
information. very little information for scammers
scam is just another prime example. to rob you.
• If you’re interested in volunteering
The FTC offers this advice if you’re
for a COVID-19 trial, you can sign up • Call your utility company, using the
considering to be a volunteer in a
at the COVID-19 Prevention Network number on your bill, and tell them
clinical COVID-19 trial or some other
(coronaviruspreventionnetwork. about the call.
research study:
org), a site run by the NIH’s National • If you want to consider using a third-
• Don’t pay to participate. Real clinical
Institute of Allergy and Infectious party utility company, check with the
trials will never ask you to pay them.
Diseases. utility regulatory agency in your state
• Search the name of the clinical trial If you encounter a trial that asks for (tinyurl.com/y5zg6gde) to understand
and the words “scam,” “review,” or money to participate or requests your PII your rights and how these companies
“complaint” online to make sure the such as your SSN or bank account num- are supposed to work.
trial is real. ber, inform the FTC immediately. You • Tell the FTC at ftc.gov/complaint.
• Legitimate clinical trials must screen should also share your experience with
participants for COVID-19 trials, so your local media outlets and file a com- COVID-19 government
they might ask for your name, contact plaint with your attorney general regard- imposter scams
information, age, gender, race, eth- ing consumer issues, frauds and scams. Since the advent of COVID-19 in early
nicity or various pre-existing condi- You can find your state attorney general’s 2020, fraudsters have been actively
tions (associated with higher risk of office at consumerresources.org. developing numerous scams to steal
a COVID-19-related mortality). But money and PII from individuals and
they never ask you to give your Social Utility bill refund scam businesses. Their scams have addressed
Security number (SSN). Have you ever received a telephone call such issues as stimulus payments and
• Never share financial information that mentioned that you overpaid your “cures” and “treatments” for COVID-19.
(like your bank account or routing utility bill and that you qualify for a Of course, they have an active audience
number). Most trials will offer to pay refund and discount? A lot of individu- because everyone is looking for a magic
people to participate in the trial, but als are receiving them in this new scam bullet from a government agency to ad-
you can ask to be paid by check rather that’s robbing them of their money and dress the problem.
than direct deposit. Beware if they PII. Lisa Lake, a consumer education Businesses have been promot-
offer more than $2,500, about the specialist at the FTC, reported on this ing the government stimulus checks
maximum trials pay for Phase III. scam on Oct. 23, 2020 (“Overpaid your to put more money in the pockets of

TAKING BACK THE ID Identity theft prevention analysis
the NEWEST SCAMS and how to stay safe

CLINICAL TRIAL SCAM Utility Bill Refund Scam COVID-19 Government
• Don’t pay to participate. • Do hang up immediately.
Imposters Scam
• Do search the name of the clinical • Don’t give the caller your SSN, ac- • Do be aware that the government
trial and the words “scam,” “review,” count details or anything else. will never call, text or contact you on
or “complaint” online. social media saying you owe money.
• Do call your utility company, using
• Don’t give your Social Security the number on your bill, and tell them • Do visit government websites directly
number. about the call. for trustworthy information.
• Don’t share financial information • Do consider using a third-party utility • Don’t click on links in an email or text
and beware if they offer more than company, message.
$2,500. • Do say “no” to anyone claiming to be
• Do tell the FTC at ftc.gov/complaint.
• Do check the National Institutes of from a government agency asking for
Health and the National Library of cash, gift cards, wire transfer, crypto-
Medicine. They maintain ClinicalTri- currency or PII.
als.Gov databases.
• Do sign up at the COVID-19 Preven-

tion Network (coronaviruspreven-
tionnetwork.org), if participating in
a trial.
individuals to help the economy and a message from someone claiming contact you by phone, text, email or
keep people working. But individuals to be from a government agency even showing up at your door. Don’t
and businesses need to be vigilant to through social media, it’s a scam. share any of your PII with them.
avoid being scammed because there Report it to the FTC at ftc.gov/com- On the same website, the Consumer
are a lot of imposters in the shadows plaint. If you’re eligible and haven’t Financial Protection Bureau also warns
waiting to pounce on uninformed and yet gotten your EIP, visit IRS.gov for individuals of the following more com-
impulsive victims. They might get in information. mon COVID-19 scams:
touch by phone, email, postal mail, text • Visit government websites directly for • Vaccine, cure, air filter systems and
or social media. So, beware! trustworthy information. Don’t click testing scams. Of course, a cure or
The Consumer Financial Protection on links in an email or text message. vaccine doesn’t exist for this virus
Bureau provides this advice to avoid (You never should anyway!) Instead, yet. If you receive any type of com-
being scammed out of your money and open a new window and search for munication via phone call, email, text
PII from government imposter scams the name of the government agency. message or letter with claims to sell
(tinyurl.com/y42x3djf): Visit coronavirus.gov for continually you any of these products, it’s a scam.
• Know that the government will never updated pandemic information. • Fake coronavirus-related charity
call, text or contact you on social • Say “no” to anyone claiming to be scams. Beware of any telephone call
media saying you owe money or offer from a government agency asking where the caller asks you to make a
help getting your Economic Impact for cash, gift cards, wire transfer, donation to a COVID-19 charity or if
Payment (EIP) faster. If you receive cryptocurrency or PII, whether they you’re contacted with a “follow-up”

call regarding a donation pledge that you need to provide PII or pay by gift don’t have all the answers, but I’ll do my
you don’t remember. If you feel that card, wire transfer, internet currency best to help. I might not get back to you
you’re financially capable of contrib- or mail cash to maintain benefit pay- immediately, but I will reply. Stay tuned!
uting to a charity, then you make the ments. However, the Social Security ■ FM
call to them. Administration (SSA) won’t suspend
• “Person in need” scams. This is a or decrease your payments. Report
coronavirus version of the famous the scam immediately to the SSA Robert E. Holtfreter, Ph.D., CFE, is
grandparents scam. You get a phone inspector general at oig.ssa.gov. a distinguished professor of account-
call supposedly from a relative or ing and research at a university in the
friend who claims to be sick, stranded Spread the word Pacific Northwest. He’s a member of
in another state or foreign country or to help others the Accounting Council for the Gerson
otherwise in some sort of trouble, and Include these important scams and Lehrman Group, a research consulting
they ask you to send cash or gift cards important information to protect your organization, and is a member of the
ASAP without telling anyone. You online identity in your outreach pro- White-Collar Crime Research Consor-
should hang up, collect your thoughts grams and with your family, friends, tium Advisory Council. He’s also on the
and then call the parents of the rela- and business associates. As part of my ACFE’s Advisory Council and the Edito-
tive or friend “in trouble.” outreach program, please contact me if rial Advisory Committee. Holtfreter was
• Scams targeting Social Security ben- you have any questions or identity theft the recipient of the Hubbard Award for
efits. A caller tells you that your Social or cyber-related issues that you would the best Fraud Magazine feature article
Security benefits have been suspend- like me to research and possibly include in 2016. Contact him at doctorh007@
ed or decreased due to COVID-19, and in future columns or as feature articles. I gmail.com.
Are you
winning the fight
against fraud?
SPEND LESS TIME ACQUIRING AND ANALYZING DATA AND
MORE ON STOPPING FRAUD
Helping you manage robust anti-fraud or anti-bribery programs from

detection through to case resolution—to protect your organisation’s
integrity and to meet your anti-fraud compliance obligation.
Ready to focus with HighBond?
See how FraudBond can work for you: wegalvanize.com/fraud-risk-management/

I’M A CFE
Alan E. Small, CFE
Assistant Director,
State of Maryland Office of
Internal Audit and Compliance
Management at
Morgan State University
Alan Small, CFE, first became

acquainted with fraud investiga-
tions in 1973 as a member of
the Baltimore (Maryland) Police
Department. His first assign-
ment was with the criminal
investigation division where
he reviewed and followed the
baseball club plus fishing, crabbing Certified Internal Auditor credential
assignments of experienced
and boating on the Chesapeake in 1985 while still engaged in law
detectives engaged in the in-
Bay. I once hit three home runs enforcement. During this time, I
vestigation of high-profile cases,
in a Lions game! In Baltimore, my was a police agent in the Baltimore
which included fraud. During Police Department assigned to the
favorite activities included playing
the next 48 years, he worked recreational soccer and baseball, fiscal division where I worked with
in areas that required his at- and running varsity track at Cardinal command staff throughout the
tention for either awareness Gibbons High School. agency investigating and resolving
or investigation of fraud. Small fiscal matters.
During my high school years, I
now applies his diverse skills to
volunteered at a local hospital, so I realized I had business acumen,
preventing and deterring fraud
I considered working in the health- so I began work on an MBA in
at Morgan State University
care profession. But I found myself finance from Johns Hopkins Uni-
in Baltimore.
personally engaged with police versity with a focus on accounting,
Interview by Dick Carozza, CFE officers who’d come to the hospital internal auditing and fraud inves-
Photo by Mathew M. Karmel
after a car accident or on investi- tigation. I also realized I needed
I was born in an outlying suburb gations. So, I set my sights on law experience in various fields of busi-
of Baltimore, Maryland, during enforcement. ness to pursue my career objectives
the 1950s. I spent eight summers in law enforcement areas.
I graduated from the University
on Kent Island at our family summer
of Maryland with a bachelor’s in My work in the State of Mary-
residence on the Chesapeake Bay.
business management (cum laude). land Office of Internal Audit and
When I was growing up, some I obtained my certificate in account- Compliance Management at
of my favorite activities included ing, which required 36 credit hours, Morgan State University includes,
playing on the Kent Island Lions and allowed me to obtain the among other duties, conducting

is required to earn the credential.
Applicants can only pass the CFE
My career advice is to talk a little and Exam by intensely studying the
listen a lot. And measure your evidence fraud examination body of knowl-
edge for hundreds of hours. The
twice, but record it only once. ACFE then requires extensive hours
of continuing education to maintain
your credential. Combined with the
experience from applying the prin-
internal audits and reviews; assign- as mailing addresses, were making ciples and practices of the profes-
ing organizational and functional thousands of dollars in furniture sion, you’re ultimately qualified to
activities to ensure that various repairs. work in the field.
control objectives are met; identify- I determined that company Organizations that truly seek to
ing areas of fraud, waste and abuse; checks were being authorized in protect the assets of their opera-
developing a risk-based methodol- the check ledger with what ap- tions often rely on professionals
ogy to identify and select appropri- peared to be authorized signature with the CFE credential to assist
ate university activities for audit; authority. I determined that the them in preventing and detecting
preparing audit plans; and manag- signatures on the canceled checks fraud.
ing all misconduct, fraud, waste and didn’t match the authorized sig-
abuse investigations, and training nature, although there was a very My career advice is to talk a little
programs. close resemblance. The accounts and listen a lot. And measure your
payable manager admitted to forg- evidence twice but record it only
Throughout my career I have had
ing signatures on the checks to the once.
the opportunity to be integrated
unauthorized vendors and setting
and employed into many indus- My greatest personal achieve-
up the post office boxes. He would
tries. I attribute the success of my ment is having raised, with a very
receive the checks and place them
investigative skills that I learned dedicated and loving wife, children
in his personal bank accounts. Sub-
along the way to an enriched ability who have achieved great things
sequently, the company fired the
to use my interviewing and probing personally and professionally. My
employee and prosecuted him.
skills. most cherished business-related
The top fraud examination les- achievement is obtaining a recog-
At one of my jobs, the comptrol-
son I have learned is to challenge nized and respected worthy reputa-
ler assigned me to a furniture
responses to answered inquiries.
retail operation to determine tion among my peers.
Learn how to ask one question five
how the business operated. The
ways to verify the creditability of the I love to attend Ravens and Orioles
comptroller believed expenses
information you are seeking. games with my grandchildren and
were higher than what an operation
their dads. I collect law enforce-
of that size should be experiencing. I first heard of the ACFE through
ment agency coins with my peers,
After several months, I did indeed other law-enforcement peers.
and volunteer in civic and religious
notice that furniture repair expenses Learning that the FBI acknowl-
organizations.
were inconsistent with what a busi- edged the CFE as a professional
ness like this should have. credential for recruiting encour- I am the most-recent past president,
When I examined the invoices, aged me to earn it. 2017-2019, of the ACFE Maryland
I noticed that within a short period The CFE credential has benefit- Chapter and was a member of the
new vendors were added to the ted my career by adding profes- ACFE Advisory Board. n FM
accounts payable journal that the sional recognition to the authority
purchasing department hadn’t ap- I have been given to perform my
Dick Carozza, CFE, is editor-in-chief of
proved. I discovered the vendors, work. A substantial amount of work- Fraud Magazine. Contact him at
which had post office box numbers ing knowledge of the profession dcarozza@ACFE.com.

BOOKS AND MANUALS
Build your anti-fraud library with books and manuals written by
anti-fraud experts. Visit ACFE.com/books.
FRAUD EXAMINERS MANUAL

Your Essential Resource as an Anti-Fraud Professional. The Fraud Examiners
Manual is the definitive body of knowledge for the anti-fraud profession, providing
comprehensive guidance for anti-fraud professionals that no other work can match.
The Fraud Examiners Manual is now available online. With online access,
the Fraud Examiners Manual is more accessible and useful than ever.
Benefits of Online Access Include:

• Real-Time, Ongoing Content Updates — Access the most up-to-date
anti-fraud information available.
• Supplemental Information — Access an expanding collection of country- and region-specific information.
• Optimized for Multiple Devices — Access the Fraud Examiners Manual on all your internet-connected devices.
The Fraud Examiners Manual:

• Describes hundreds of fraud schemes
• Reviews legal principles involved with prosecuting fraudsters
• Provides tools and techniques for gathering information and evidence when investigating fraud
• Explores why people commit fraud and what can be done to prevent it
• Contains a sample fraud examination report, a fraud examination checklist, and sample engagement and advisory letters
$ 119.20 - $ 239.20
$149-$299 Non-Members
NEW!
Fraud Risk Management Guide Crisis of Conscience: Cybercrime Investigators
Research commissioned by the Committee of Whistleblowing in an Age of Fraud Handbook
Sponsoring Organizations of the Treadway Com- By Tom Mueller By Graeme Edwards
mission (COSO) and Co-Sponsored by the ACFE Hardcover, 608 pages Hardcover, 320 pages
Paperback, 130 pages In this book by 2020 ACFE Global Fraud Con- In this book, you will learn how to locate, lawfully
The Fraud Risk Management Guide details ference keynote speaker Tom Mueller, you will seize, preserve, examine, interpret and manage
how to create a comprehensive fraud risk learn about the rise of whistleblowing through the technical evidence that is vital for effective
management program for your organization that a series of riveting cases from the worlds of cybercrime investigation from the perspective of
establishes a visible and rigorous fraud gover- health care and other businesses, Wall Street a field practitioner.
/$65 Non-Members
nance process, creates a transparent and sound and Washington.
anti-fraud culture and more.
$ 20. 00 /$25 Non-Members $ 52.00
$ 59.20 /$74 Non-Members
ACFE.com/books
SELF-STUDY COURSES
Expand your anti-fraud knowledge with our comprehensive,
NASBA-compliant self-study CPE courses. Visit ACFE.com/selfstudy.
WORKBOOK SELF-STUDY Anti-fraud training in digital or print editions
BEST SELLER!
Fighting Fraud in the Finding the Truth: Effective Making Crime Pay: How to
Government Techniques for Interview Locate Hidden Assets
Government entities fall victim and Communication In this course, you will learn how to
to every conceivable kind of In this course, you will gain insight to locate hidden assets and how to
scheme, and everyone pays, In this course, you will discover the identify and trace hidden payments
directly or indirectly. This course skills necessary to become a better and sources of income. You will
focuses on strategies to prevent, communicator and a more effective hear from fraudsters about how
CPE CPE CPE
detect and investigate govern- to hide assets and from anti-fraud
20 ment fraud schemes. 16 interviewer.
20 experts on how to find them.
$ 199. 20 $ 183.20 $ 199.20

$299 Non-Members
$249 Non-Members $249 Non-Members
ONLINE SELF-STUDY Get immediate, 24/7 access to premier anti-fraud training
CPE CPE CPE

2 2 4
NEW! BEST SELLER!

Fraud in Higher Education Social Engineering 10 Infamous Fraud Cases of the
In this course, you will learn how higher educa- In this course, you will learn about how and why 21st Century
tion institutions in the United States operate, how social engineering scams work, from the psycho- In this self-study course, learn from 10 infamous fraud
those operations can be manipulated by people logical aspects to the nuts and bolts of common
cases to better protect your clients, employers and
to defraud those institutions and how technology methods and schemes.
the general public from similar schemes.
71.20 /$89 Non-Members

affects fraud in higher education.
$
$ 71. 20 /$89 Non-Members $ 135.20 /$169 Non-Members
NANO LEARNING 10-minute explorations of anti-fraud topics
CPE CPE CPE

0.2 0.2 0.2
NEW!
Health Care Provider Fraud Behavioral and Lifestyle Red Flags COVID-19 and Consumer Fraud
In this course, you will learn about common prac- of a Fraudster Schemes
tices used by health care providers that cause In this course, you will discover behaviors that This course will address some of the COVID-19
unnecessary costs to health care programs or individuals who engage in fraudulent activity often consumer fraud schemes that have been report-
patients. exhibit that can serve as red flags that something ed and provide you with guidance to help pre-
could be amiss and warrants investigation. vent yourself and others from becoming victims.
$ 8.80 /$11 Non-Members 8.80 /$11 Non-Members
$ $ 8.80 /$11 Non-Members
= This course fulfills the annual ethics CPE requirement for CFEs. For more information on ACFE self-study courses including refund and ordering policies,
fields of study, learning objectives and course levels visit ACFE.com/selfstudy.
CPE QUIZ No. 154 (January/February 2021, Vol. 36, No. 1)
The Fraud Magazine CPE quizzes are now available 5. According to the article, “5 most scandalous fraud cases of
online only. Please visit ACFE.com/FMQuiz or view 2020”:
the CPE Quiz form on the next page for more A. Wirecard hasn’t confessed to the disappearance of more
than $2 billion from its assets.
information on how to earn your 10 CPE.
B. The ICIJ’s reporting involved analyzing more than 3,500 sus-
picious activity reports.
C. Stolen PII has also been the catalyst for frauds that originate
1. According to the article, “Developing the entire fraud through contact tracing text message scams.
picture”: D. The U.S. Department of Justice arrested three Airbus C-suite
A. All fraud produces a loss. executives in January 2020.
B. Fraud can absolutely occur without a loss of money.
C. The level of risk for fraud is based on three factors: partial 6. According to the article, “5 most scandalous fraud cases of
exposure, fraud amount and known loss. 2020,” Luckin Coffee Inc. ceased operations after an internal
D. If someone entered a fraudulent transaction into the system audit revealed allegations of fabricated sales figures.
for $500 and then fraudulently reversed that entry, fraud did A. True
not occur.
B. False.
2. According to the article, “Developing the entire fraud

picture”: 7. According to the article, “Keys to the kingdom: oilfield
fraud,” Jerry:
A. Fraud can’t occur without a readily identifiable amount.
A. Bribed subcontractors.
B. “Known loss” is the known amount of fraud based on evi-
dence gathered during the course of the investigation. B. Submitted fraudulent billings.
C. “Fraud amount” is the total amount lost minus expenses, C. Committed tax fraud.
depreciation and fees. D. Stole from company coffers.
D. “Total restitution” only includes the costs of the investigation
and litigation.
8. According to the court trial in the article, “Keys to the
kingdom: oilfield fraud,” the judge ordered Jerry to serve 10
3. According to the article, “Remote but engaged,” Leah Lane, years and to pay back around $2 million in restitution.
CFE, said: A. True
A. “Data collection should run in a near-normal state since B. False
enterprise collections, such as email, are typically done
remotely.”
B. “Moreover, interviewers in private face-to-face settings have
the luxury of time to let relationships organically develop.”
C. “Server eDiscovery software solutions further enable for the
digital production,review, and tagging of documents.”
D. “An in-country evidence custodian can help when evidence
is collected abroad while you are working remotely in an-
other part of the world.”
4. According to the article, “Remote but engaged,” Anthony

Campanelli said, “Cross-border investigations already pose
several distinct considerations, including language barriers,
cultural differences and resource limitations.”
A. True
B. False.
DO NOT SUBMIT THIS FORM. Log in to your My Transactions page after purchasing the Fraud Magazine Quiz
! set to submit your answers or record your answers on the answer sheet and submit online when you are ready.

CPE QUIZ
9. According to the article, “A pillar of

anti-fraud education says farewell,” Dick
Carozza said:
The Fraud Magazine CPE Quiz has moved to an online self-
A. “Fraud examiners need practical info but
also encouragement.” study format, making it easier for CFEs to earn 10 ACFE
B. “I’ve learned so much from ACFE mem- (non-NASBA) CPE. CFEs can earn 10 CPE by taking quizzes
bers.” online after reading featured articles in Fraud Magazine.
C. “A magazine can hold only a small
percentage of the anti-fraud body of
knowledge.”
D. “The most gratifying part of my job is Visit ACFE.com/FMQuiz and follow the steps below:
interviewing whistleblowers through the
years.”
1. Select the Online Fraud Magazine CPE Quizzes by year
10. According to the article, “A pillar of from the dropdown*.
anti-fraud education says farewell,” Dick
Carozza said, “The ACFE has been able to
give CFEs not just a platform, but the bona 2. Click the “Add to Cart” button and complete the
fides, the professional support and reputa- checkout process.
tion that they didn’t have before.”
A. True 3. Read featured articles in Fraud Magazine that corre-
B. False spond to the year of the quiz set you purchased.
4. Access your quiz set by logging into your ACFE.com

account, clicking on the “My Transactions” tab and
CONTINUED FROM PAGE 63 clicking on the quiz set you purchased.
I don’t know what the rest of my jour- 5. Pass 5 of 6 quizzes with a score of 70% or higher and
ney will include, but I’m approaching it with receive your CPE certificate instantly via email.
personal and community-focused fulfillment
in mind.
Remembering back to the first conversa-
tion I had with a fraud investigator at the bank
For more information, please review the “CPE Info”
in Hawaii, I find I enjoy this reflection on my and “FAQs” tabs or contact a representative:
path. We never know what impact we have
MemberServices@ACFE.com
on those around us, so I encourage you to talk
to others about what we do and why we do it. (800) 245-3321 / +1 (512) 478-9000
Find your ikigai and share it widely. n FM Secure online chat service
Tracy G. Swaim, CFE, is enterprise fraud

manager at Heartland Financial USA Inc. Con-
tact her at tracygswaim@gmail.com. *Quizzes will be added to the current year’s set as issues of Fraud Magazine are published.
CPE can only be obtained from the current year’s quizzes after the fifth quiz is made available
in September.
Please Note: The Fraud Magazine CPE Service CPE credits apply only to the CFE status and
not to any other professional designations. Fraud Magazine CPE is not registered with the
National Association of State Board of Accountancy (NASBA).
The ACFE collects and stores your personal data in the U.S. to provide member services and
fulfill transactions requested by you. For a full explanation of your rights regarding how we
store and use your data, visit ACFE.com/privacy-policy.aspx.
Calendar of Virtual Events
ADVANCE YOUR CAREER WITH

VIRTUAL TRAINING FROM THE GLOBAL
LEADER IN ANTI-FRAUD EDUCATION.
ACFE.COM/TRAINING
Calendar subject to change.
DECEMBER 2020 FEBRUARY 2021 MAR VIRTUAL CFE EXAM REVIEW

FEB DETECTING FRAUD WITH 22 COURSE
DEC CONVERSATION WITH A Virtual Seminar
17 FRAUDSTER: JAMES BRANDOLINO 8 DATA ANALYTICS WORKSHOP
Virtual Workshop March 22-25, 2021
Online Webinar
February 8-11, 2021 | CPE: 12
December 17, 2020 | CPE: 2
MAR MONEY LAUNDERING
2021 SCHEMES WORKSHOP
FEB DEVELOPING AN INTEGRATED
23 ANTI-FRAUD, COMPLIANCE Virtual Workshop
AND ETHICS PROGRAM March 2021
Virtual Seminar
February 23-24, 2021 | CPE: 16
MARCH 2021
JANUARY 2021 MAR 2021 ACFE WOMEN’S SUMMIT
JAN BRIBERY AND CORRUPTION 4 Virtual Conference
6 Virtual Seminar March 4, 2021 | CPE: 7
January 6-7, 2021 | CPE: 16
JAN CONDUCTING INTERNAL

19 INVESTIGATIONS
Virtual Seminar
January 19-21, 2021 | CPE: 16
JAN VIRTUAL CFE EXAM REVIEW

25 COURSE MAR 2021 ACFE FRAUD CONFERENCE
Virtual Seminar 10 EUROPE
January 25-28, 2021 Virtual Conference
March 10-12, 2021 | CPE: Up to 20
For information or to register, visit ACFE.com/training

Which Online Event is
the Best Fit For You?
It is our top priority to keep you up-to-date on the latest in fraud by providing cutting-edge, relevant training.
We also understand that the in-person benefit of networking with other attendees is an important element
to staying up-to-date on the latest in anti-fraud trends and best practices. We are adding new online events
every day keeping these goals in mind.
We now offer a wide selection of different types of online events. Below you’ll find a guide for choosing
which type of online event best suits your training needs.
Online Webinar Virtual Seminar

Online webinars are typically 100 minutes and offer up to We are offering several different types of virtual seminars
2 CPE. We offer a wide range of topics ranging from lead- ranging in length and number of CPE credits. Virtual
ership skills to data analytics. This is the perfect option if seminars vary in length from 4-16 hours. In addition, many
you are looking for a shorter, more specialized training. of the in-person seminars we typically offer have been
converted into a virtual format. We are adding new virtual
seminars every day, so keep an eye on the calendar for
updates. This is the perfect choice if you are looking for
in-depth training on a specific topic and needing to earn
more CPE.
Virtual Seminar Workshop Virtual Conference

The virtual seminar workshops are longer and offer Virtual conferences are a great way to get the many
more CPE. Most importantly, these workshops are very benefits of attending a live conference from the com-
interactive. You will interact with other attendees and forts of your own home. You should attend the virtual
the instructor in these workshops. This is the perfect conferences for many sessions which offer a large
choice if you are looking to receive the benefits of net- range of topics, often specific to the region in which the
working with other attendees and the instructor while conference is held. Many conferences offer ways to get
learning in a hands-on environment. the added benefit of virtual networking, more CPE and
on-demand session recordings after the conference.
Free Members-Only Webinar Virtual CFE Exam Review Course

Free webinars are only available for ACFE members. Virtual CFE Exam Review Courses are a great opportu-
This is a benefit for ACFE members to receive CPE, free nity to get the many benefits of attending the CFE Exam
of charge. These are 50-minute webinars that cover a Review Course virtually. This live course allows you to ask
specialized topic. This is a great option for an on-the-go the instructors questions, and interact directly with other
ACFE member who wants to attend a webinar and learn attendees. This is a great choice for you if you’re looking
the latest, without having to cut into your work schedule to earn your CFE credential and need hands-on training to
too much. help you pass the exam on your first try.
172.31.255.188
474-99-3743 673-99-6204
2440 Bristow Ave

John S.
(524) 361-8438
jsmith22@yahoo.com
pei_zhang@burnstech.com
(324) 641-9142
625 Jamestown St 192.168.255.255

(645) 633-2945 1749 128th Ave
Ron J.
2894 Victoria Dr
10.255.255.255
ron.johnson@bmail2.com

Fraud Magazine Jan2021

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Fraud Magazine Jan2021

Uploaded by

Copyright:

Available Formats

DISAPPEARING DEVELOPING ENTIRE FRAUD 5 MOST SCANDALOUS OILfield FRAUD p.

VOL. 36 | NO. 1 | JANUARY/FEBRUARY 2021

Includes a two-year subscription to the

1,300+ STUDY QUESTIONS PRACTICE EXAMS FRAUD EXAMINERS MANUAL

Visit ACFE.com/CFEPrep to learn more.

WE’RE REMOTE, BUT WE MUST CONNECT Read more Fraud

020 is officially behind us, but its repercus-

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 3

How do fraud examiners conduct fraud

24 DEVELOPING THE ENTIRE FRAUD PICTURE 36 5 MOST SCANDALOUS FRAUDS 50 FAREWELL

Developing Keys to the kingdom:

5 Most scandalous A pillar of anti-fraud

4 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

We’re remote, but 2021 outlook for fighting Designers

bill scams 2020-2021 Board of Regents

8 DISAPPEARING INK Subscriptions

By Vincent M. Walden, CFE, CPA 16

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 5

ALLEGED FRAUDSTERS STEAL $6 MILLION IN FORECLOSURE SCHEME

6 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

1-day and multi-day course topics include Bribery and Corruption,

CONVENIENT DYNAMIC NASBA COMPLIANT

CFE Exam Review virtual formats

Bring the ACFE’s premier anti-fraud training to your organization.

The case of the disappearing

S cores of people get taken to the

8 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 9

10 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

Group Membership. Discounted Anti-Fraud Training. Executive Roundtables.

Cyberattacks in higher education

T he University of Utah cyber

12 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 13

STOP ONLINE FRAUD

Shape AI Fraud Engine (SAFE) blocks fraud missed

For more information, please visit shapesecurity.com

OUR PRESENCE { INTERNATIONAL OFFICES: INDIA | UAE | SRI LANKA | SINGAPORE

www.netrika.com info@netrika.com Toll Free: 1800 121 300000

Are data-sharing consortiums

I n 2019, the ACFE and SAS Institute

16 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 17

18 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

DETECT AND PREVENT SYTHETIC IDENTITY FRAUD

AI SOLUTIONS FOR CYBER FRAUD

Download the Latest Security Bulletin at Fiverity.com

2021 outlook for fighting

T he ACFE Fraud in the Wake of

20 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 21

Overall budget for

Level of anti-fraud staffing 5% 9% 53% 24% 9%

Investment in anti-fraud technology 6% 9% 37% 33% 15%

Use of fraud-related consultants

Budget for anti-fraud training and

Significant decrease Slight decrease No change Slight increase Significant increase

Figure 2: Change in the difficulty level of anti-fraud activities

22 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 23

total exposure fraud amount known loss

FRAUD-MAGAZINE.COM JANUARY/FEBRUARY 2021 FRAUD MAGAZINE 25

26 FRAUD MAGAZINE JANUARY/FEBRUARY 2021 FRAUD-MAGAZINE.COM

if applicable, they would not have Total restitution includes at a