With the recently released Apple Pay, the media hype surrounding mobile payments and mobile wallets has reached “banked” countries. It may sound like a great new idea for some, but for the 200 million people already using similar services for some years (most of them in “unbanked” countries), it looks obvious.

@telecoms

November 27, 2014

5 Min Read
Mobile money: no pain, no gain?
Mobile money is complicated

Telecoms.com periodically invites expert third-party contributors to submit analysis on a key topic affecting the telco industry. In this article Luis Moura Brás, Professional Services Manager, Fraud at WeDo Technologies discusses the importance of securing mobile financial services offerings with appropriate systems. 

With the recently released Apple Pay, the media hype surrounding mobile payments and mobile wallets has reached “banked” countries. It may sound like a great new idea for some, but for the 200 million people  already using similar services for some years (most of them in “unbanked” countries), it looks obvious.

About 10 years ago some mobile operators discovered a new business opportunity providing basic financial services to unbanked people that were unable to access traditional financial institutions, namely banks. With mobile penetration growing in every market, unbanked people were attracted by the possibility of using their mobile phone to easily access savings accounts, bill payments and money remittances. Over the years the diversity of available services increased, as did the actors involved in them.

Nowadays there are more than 250 operators in almost 100 countries around the world providing these types of services, and more than 100 operators are planning their deployment in the near future.

Financial services, due to their lucrative nature, are susceptible to several types of risks. Most traditional financial institutions manage these risks well, monitoring operations involving their customers in accordance with national and international banking agency regulations. Nevertheless, some cases of failure to monitor and report transactions to authorities cause banks huge costs.

We occasionally hear news about banks that are fined  for violating money laundering laws. Usually those fines vary between a couple of million and sometimes billions of dollars. However, small fines do not make the news, and banks are very aware of that.

However, mobile operators neither think nor operate like banks. When deploying their commercial offering, many operators around the world were not completely thorough in assessing fraud and security risks, assessing solution architectural designs for technical controls, evaluating the effectiveness of planned controls and initiatives from technical, people and process perspectives, determining the required controls for securing and assuring the service, and considering regulatory and anti-money laundering requirements.

The reality is however that it’s the customers’ money that matters, and if operators encourage customers to utilise this type of service, trust must be at the forefront of their thoughts.

Some stakeholders have a different and more relevant role in the business than previously existed in traditional communication services. The agents act like bank branches for the money cash-ins and cash-outs, benefiting from transaction commissions. Some operators’ internal staff have access to customer account data, and the temptation and opportunity to commit illicit actions for personal benefit is higher than ever.

Mobile financial services generate additional gains on the operator’s balance sheet, but they also bring new challenges that can harshly damage profitability, as well as the public image and reputability of the operator.

Currently, most operators are not in a position to assure the following examples of business controls:

•             Transaction accuracy/integrity between the switches and mobile money platform

•             Transaction legality

•             Customer profiling and behaviour

•             Agent profiling

•             Anti-money laundering

•             Counter terrorist financing

Fraudsters therefore began using mobile money services to launder money, some of them managing very creative schemes using money remittances and mobile equipment acquisitions that are later traded in different markets. Phone credits or airtime are used by the criminals as tender for payment.

Moreover, terrorists and sanctioned entities or individuals find these services useful for financing. This occurs because many countries still lack effectual rules and regulations for mobile money and because these transfers of value occur outside of the traditional financial system, off the radar of the operators.

The agents that are involved in many of the transactions made across the chain quickly found that they could accelerate their revenues (sometimes with the collusion of the customers) by splitting a cash-in operation into several transactions, generating false round-trip transactions and false activations through wrongful use of identities, among others.

An operators’ internal staff with access to customer account data may be able to perform very low-value transactions to other accounts – whether they are inactive or suspended accounts that are forgotten, ignored or unmonitored. Those accounts can be later drained, the persons involved taking benefit from the money.

Revenue assurance and fraud management departments, with the collaboration of a dedicated system, can play a significant role in avoiding undesired losses and protecting the trust users must have in the services. Namely they can:

•             Guarantee customer transactions are correctly accounted

•             Prevent transactions made to/from watch-listed individuals

•             Detect collusion between customers and agents for commissions augmentation

•             Analyse customer behaviour deviations due to account takeovers

•             Resolve fraud and non-compliance cases

•             Learn from the investigations and results achieved for the continuous control improvements

Mobile financial services have changed many lives, allowing millions of people to use banking services for the very first time, and to better manage and secure their money. Hundreds of operators have been able to add value to their offering, acting as communications-as-a-service providers, and improving customer brand recognition, contributing to customer loyalty. Are you willing to put this important part of your business at risk?

 

Luís BrásLuís Moura Brás is a Professional Services Senior Manager in the Fraud Management area at WeDo Technologies. Having joined the company at day one, he has held several roles in the Product Development and Systems Integration teams. Prior to that, he worked at the mobile operator Optimus, gaining 16 years’ experience in the telecommunication industry. Luís holds a degree in Applied Mathematics from Universidade Portucalense and an Executive MBA from Porto Business School.

Read more about:

Discussion

About the Author(s)

You May Also Like