Translate this page:
Please select your language to translate the article


You can just close the window to don't translate
Library
Your profile

Back to contents

Security Issues
Reference:

The factor of complex interaction in responding to telephone fraud

Pleshakova Ekaterina Sergeevna

ORCID: 0000-0002-8806-1478

PhD in Technical Science

Associate Professor, Department of Information Security, Financial University under the Government of the Russian Federation

125167, Russia, Moscow, 4th Veshnyakovsky Ave., 12k2, building 2

espleshakova@fa.ru
Other publications by this author
 

 
Gataullin Sergei Timurovich

PhD in Economics

Dean of "Digital Economy and Mass Communications" Department of the Moscow Technical University of Communications and Informatics; Leading Researcher of the Department of Information Security of the Financial University under the Government of the Russian Federation

8A Aviamotornaya str., Moscow, 111024, Russia

stgataullin@fa.ru
Other publications by this author
 

 
Osipov Aleksei Viktorovich

PhD in Physics and Mathematics

Associate Professor, Department of Data Analysis and Machine Learning, Financial University under the Government of the Russian Federation

125167, Russia, Moscow, 4th veshnyakovsky str., 4, building 2

avosipov@fa.ru
Other publications by this author
 

 
Bylevskii Pavel Gennadievich

PhD in Philosophy

Associate Professor, Department of Information Security, Financial University under the Government of the Russian Federation; Moscow State Linguistic University

49/2 Leningradskiy Prospect str., Moscow, 125167, Russia

pr-911@yandex.ru
Other publications by this author
 

 

DOI:

10.25136/2409-7543.2023.1.39274

EDN:

LWCDNH

Received:

23-11-2022


Published:

30-11-2022


Abstract: The subject of the study is to identify effective methods of legislative work to counteract the use by telephone fraudsters of such technical means as illegal substitution of SIM cards and Internet services for substitution of incoming call numbers. The general scientific methodology of dialectical (meaningful) logic and comparative analysis of practical problems and legislative activity of federal authorities are used. Fraud causes huge damage to society and incurs huge costs to the state. The global spread of the Internet has allowed scammers to export their activities to a fast-growing market and attract previously untapped consumers. The evolution of technologies and the spread of fraudulent approaches on the Internet have exacerbated the problems faced by victims. The results serve as evidence that when detecting and timely stopping attempts at telephone fraud (suspending suspicious transactions), legislative support and the formation of a subordinate regulatory framework are necessary for the interaction of financial organizations, telecommunications operators and law enforcement agencies. The development of smartphones and cellular networks increases the need for mobile advertising and targeted marketing. However, it also causes invisible security threats. We have found that phone fraud with fake phone numbers with a very short service life is becoming more and more popular and is being used to deceive users. The article is devoted to the consideration of the problem of legal regulation to ensure information security. As phone fraud becomes more common, it is extremely important to understand how to increase the effectiveness of prevention. Conclusions are drawn about the need to strengthen the centralization of countering intruders in order to increase the effectiveness of preventing telephone fraud, following the example of creating an interbank digital platform "Know your Customer".


Keywords:

Information security, telephone fraud, social engineering, remote financial services, identification, counteraction, prevention, legal framework, legislation, phishing

Статья подготовлена в рамках государственного задания правительства Российской Федерации Финансовому университету на 2022 год по теме «Модели и методы защиты текстов в рамках противодействия телефонному мошенничеству» (ВТК-ГЗ-ПИ-30-2022)

Introduction

Countering telephone fraud is an important direction in ensuring the security of financial services for organizations and citizens. The subjects of protection against telephone fraud are government agencies and commercial organizations, primarily financial ones, and banks among them. A feature of their activities to protect citizens from telephone fraud is the need for legal instruments for organizational measures and the use of technical means. Successful legislative innovations in recent years have resulted from the complex interaction of financial industry entities, proving the need for further effective application of this organizational principle in the development of legal tools to respond to telephone fraud attempts.

Countering the substitution of SIM-cards and numbers of incoming calls

It seems optimal semantic division of the legislative support to combat telephone fraud and a number of other related types of crimes in the financial sector into two areas, tactical and strategic. Tactical includes the prompt response of legislators, as well as agencies issuing by-laws, to already identified, mature criminal threats. It implies the elimination of regulatory barriers to the centralization of databases not only of defendants in criminal cases in which court decisions have been made, but also of citizens and organizations involved in such types of offenses, as well as suspicious parameters of financial transactions, devices, locations and a number of other characteristics [6].

Increasing the efficiency of this activity is largely determined by the coordination and interaction of the efforts of industry entities, information security specialists in the financial sector. On the one hand, these are practitioners, employees of specialized divisions of financial organizations and law enforcement agencies, on the other hand, they are the creators of the regulatory framework, legislative and by-laws.

The urgency of strengthening the fight against telephone fraud is due to the increase in recent years in the amount of damage from such offenses, their number and variety of fraudulent schemes. Measures and tools to prevent telephone fraud are an important area of counteraction along with detection, blocking and elimination of consequences. Normative, primarily legislative support is an important aspect of preventing such offenses along with organizational measures and technical means [1].

The most highly specialized legal tools to prevent telephone fraud, both by voice calls and via mobile Internet, are new legislation that tightens procedures for verifying information about SIM card holders and preventing phone number spoofing [8]. The technical tool of a widespread fraud scheme was the illegal replacement of a SIM card, which the attackers carry out without notifying the legal owner of the phone number.

Thanks to such an operation, fraudsters could gain access to financial transactions with a client’s account through a mobile banking application, intercept SMS messages with one-time passwords, and illegally transfer funds to the accounts of their accomplices or dummies. Until a legal client realizes and contacts the bank, he does not receive bank notifications about debits from his account either in SMS or push messages. To counteract the use of this technical tool by fraudsters, a legal framework has been developed to create a unified information system (UIS) to verify the authenticity of subscriber information.

Such a system should be available to credit and other financial institutions for timely verification of the legality of the use of SIM-cards by citizens, organizations and individual entrepreneurs. For this purpose, the State Duma of the Russian Federation adopted a draft law “On Amendments to the Federal Law “On Combating the Legalization (Laundering) of Proceeds from Crime and the Financing of Terrorism” and other legislative acts of the Russian Federation (on the creation of an information system for verifying information about a subscriber)”.

This bill creates a legal framework to counter attackers who seek to commit theft or gain access to financial services by passing identification, illegally using someone else's SIM card. Mobile operators are obliged to ensure prompt provision of information to credit institutions about the replacement of customer SIM cards. Having received such information, the bank or other financial organization has the opportunity to check whether the client or the attacker has replaced it. It took a lot of time to agree on the amendments to discuss the comments and objections, including those received from the Government of the Russian Federation and the Bank of Russia, regarding the mandatory participation in the use of the UIS, as well as the rates for the service on checking the legality of replacing a SIM card by a subscriber.

Another common tool used by phone scammers is phone number spoofing; this is not yet banned low-cost service, widely advertised on web resources. To imitate the phone number of an incoming call, attackers use services that use the SIP protocol for Internet telephony [3]. Thus, an outgoing call can be made both from a mobile phone and using an Internet browser. The subscriber receiving the call can have both a random incoming number and a substitution service user-defined number.

Thanks to the use of such a service, the phone number identifiers of potential victims show not the number from which the attackers call, but a fake one [2]. Depending on the fraud scheme, on which organization the scammers represent, a fake incoming phone number is determined. The phone number of a relative or acquaintance, customer service or bank security, a television show or lottery, a medical or legal service center, or even law enforcement agencies can be imitated to the addressee of the call.

The legal basis for the use of technical means and the application of organizational measures to counter the abuse of this service by telephone scammers was created by the Federal Law "On Amendments to Certain Legislative Acts of the Russian Federation" No. 429 the federal law of December 8, 2020. Organizations of various profiles are involved in the implementation of the new norms, primarily mobile operators and telecommunications companies subordinate to the Ministry of Digital Development of the Russian Federation. Preliminary work at the stage of the bill was carried out with the active participation of the Bank of Russia, and coordination was carried out with a number of relevant federal executive authorities.

Ensuring the suspension of transactions as a rapid response measure

Operational or tactical prevention - prevention of telephone fraud is to protect individuals and legal entities, clients of financial organizations from ongoing attacks of telephone fraudsters [7]. Telephone frauds are predicted, their signs are highlighted in the monitoring of information security events and incidents, identified, blocked or localized. These measures help to prevent the completion of the attack, the withdrawal and cashing out of stolen funds.

The peculiarity of the warning is to prevent the development and final success of telephone fraud attempts by identifying, suppressing and then entering data about the incident into databases and possibly transferring it to law enforcement agencies for initiating criminal cases. The prevention of telephone fraud attempts can be carried out at the early stages of the offense, from the "far frontiers" - for example, by identifying and identifying the phone number from which the call is made as a fake one. The “last frontier” of fraud prevention, the late, penultimate stage of an already committed crime, is blocking the ability to dispose of stolen funds, already stolen, but not yet cashed, with the possibility of returning them to the rightful owner.

Information security divisions of banks have repeatedly raised the issue of insufficient powers in the field of suspension of suspicious transactions before legislators. The legislation limited the period of temporary suspension of such transactions to five days, the application of this procedure was allowed only if the affected client, from whom the funds were stolen, disputed the transaction before these funds were credited to the recipient's bank account.

Representatives of the banking community have developed and proposed amendments to the legislation that increase the period for blocking transfers between bank cards of different customers up to 25 days in case of contesting the transaction. Such an extension allowed for a more thorough investigation into the legality of the contested monetary transaction. A customer disputing a transaction was given the opportunity to submit a relevant application to their bank no later than the day following the incident. In turn, the recipient of the disputed transfer or payment was asked to provide documentary confirmation of the legality of receiving the blocked amount of money within five days. If this condition is not met, the disputed transaction will be returned to the account from which it was sent.

When a suspicious recipient provided supporting documentation, it was assumed that the bank could freeze the received funds for a period during which the payer could challenge the transaction in court. At the same time, the transfer of personal data of the recipient of the disputed transaction to its sender was provided. To remove these personal data from the law on bank secrecy, the authors of the amendment proposed amending the law on the national payment system, adding an exception for cases where the sender disputes the transaction. As an example, a similar right granted by law to an arbitration manager in bankruptcy was indicated.

The development and clarification of the norms of federal law-152 of July 27, 2006 “On Personal Data” and 395-1 the federal law “On Banks” serve to create legal instruments for the return to legitimate owners of blocked funds stolen from them, but not cashed. and banking activities. Further events developed in such a way that they showed significant flaws in the accepted requirements. The peculiarities of the wording either made it difficult or even prevented the exchange between different banks and with law enforcement agencies of information about the accomplices of telephone scammers who were withdrawn cash of stolen funds. In the course of the development of legislation, a legal basis was created for the formation of a database that includes cases of telephone fraud - illegal transfers as a result of deceiving customers, both unsuccessful attempts and completed crimes.

The provisions of paragraph 4 of Art. 27 of the Federal Law of June 27, 2011 No. 161the federal law “On the National Payment System”, the possibility of suspending and exchanging data with other banks and law enforcement agencies about transactions made by a client under the influence of telephone fraudsters. The creation of new legal instruments resulted in the formation and maintenance by the Bank of Russia of the database “On cases and attempts to transfer funds without the consent of the client”, which combines up-to-date information received from financial institutions of various types.

Changes in legislation were required to formulate criteria not only for the legitimacy of transactions, but also for signs by which illegal payments can be identified [4]. Without such criteria, it was impossible to suspend suspicious transactions upon receipt of the results of the proceedings, and, based on the results of long-term statistics, determine suspicious details of bank accounts and their owners. This measure is important in relation to both telephone fraud and other acquisitive crimes in remote banking.

To eliminate this vulnerability in the legislation, which does not allow building organizational and technical mechanisms to counter the use of bank accounts to withdraw stolen funds. Amendments to the federal laws the federal law 161 of June 27, 2011 "On the National Payment System", the federal law 395-1 of December 2, 1990 "On Banks and Banking", the federal law 86 of July 10, 2002 were developed, discussed and adopted. of the year "On the Central Bank of the Russian Federation". Similar changes were made to the Arbitration Procedure Code of the Russian Federation. All proposed corrections were approved by the Bank of Russia and were also successfully agreed upon with the Government of the Russian Federation.

Centralization of databases of signs of telephone fraud

The share of fraudulent debits and thefts from citizens' accounts using bank cards, mobile and Internet banking, and telephone communications in 2015 increased from 66% to 74% of all thefts in remote financial services. The new norms legislatively formalized both the rights and, in certain situations, the obligations of banks to temporarily block transactions with funds when there are signs of its commission without the consent or as a result of misleading the legal owner. The formulation of the list of signs of suspiciousness of transactions was delegated to the main state regulator of the financial sector, the Bank of Russia. Opportunities were created to delegate to banks the independent identification of additional signs of fraudulent activities and theft.

Countering telephone fraud requires the creation and operation of a specialized unified centralized updated database of suspicious details, with the participation of various parties - state regulatory control and supervision, law enforcement agencies, financial organizations, with partial access by citizens. Such a structure can combine the already emerging specialized databases of information about suspicious clients and other citizens, bank accounts, details, etc., formed on the basis of operational-search activities, based on the results of court cases, internal investigations, etc.

An example of such a specialized database can be lists of organizations and citizens in respect of which there is information about involvement in extremist activities or terrorism. Such lists on the basis of paragraph 2 of Art. 6 of the Federal Law "On counteracting the legalization (laundering) of proceeds from crime and the financing of terrorism" dated August 7, 2001 No. 115 the federal law is compiled by Rosfinmonitoring and transferred to operators of funds or other property.

To form an important element of such a database to combat telephone and other fraud, which has received the conditional name of the “know your customer” platform, the necessary legislative framework is being created [5]. Federal Law No. 423 the federal law dated December 21, 2021 “On Amendments to Certain Legislative Acts of the Russian Federation” granted the Bank of Russia the authority to rank corporate banking customers into “risk groups” from July 1, 2022 in accordance with the likelihood of them conducting suspicious transactions. A number of criteria have been defined by which the degree of risk is determined: low, medium and high; this is information about the founders, beneficiaries, managers, employees, the state of their bank accounts and the nature of the operations and transactions carried out.

The Bank of Russia was able to use its own regulatory documents to determine the parameters and list of such information, as well as the procedure for accessing them - on its website, through the personal accounts of credit institutions, etc. Testing of the banking platform "know your customer" was carried out by the Bank of Russia from the end of 2021 to the spring of 2022. At this preliminary stage, 40 connected credit institutions participated in the operation of the platform, with prospects for further expansion of the number of participants and availability for all credit and other financial institutions.

Banks and their internal control units are also allowed to rank clients according to various risk groups, taking into account the information and estimates contained in the centralized database of the Bank of Russia. Depending on the assignment of the client to one or another “risk group”, he may or may not be refused to conduct certain financial transactions. The “Green Corridor”, the impossibility of refusing to transfer funds to a Russian legal entity or individual entrepreneur, is provided for clients classified as a low risk group.

In this case, bank employees will be able to refuse only by transferring the client to a higher risk group. Clients ranked in the group of both high and medium risk, in case of suspicion of involvement in laundering of illegal income or financing of terrorism, may be denied opening a bank account, a deposit, as well as a deposit. A banking service agreement with clients from high-risk groups can be terminated on the basis of at least two decisions per year to refuse to conduct financial transactions.

Conclusions

The analysis of the problems of combating telephone fraud in Russia, as well as works reflecting foreign and international experience in this area, allows us to formulate proposals that can optimize and increase the efficiency of the development of legal instruments at the legislative level. The identified features of the preparation, development, adoption of federal laws in the field of security of remote and electronic financial instruments, counteraction to crimes in this area using computer and telecommunication technologies lead to the conclusion that it is possible to enhance the predictability and strategic nature of this legal and regulatory activity.

An analysis of the development of regulatory tools for information security in the financial sector demonstrates the successful improvement of federal legislation that creates the legal basis for the creation of a centralized interbank platform "Know Your Client" under the auspices of the Bank of Russia, as well as countering the substitution of SIM cards and incoming phone numbers. Further implementation and development of the principle of complex interaction between industry entities can increase the effectiveness of legal support for combating telephone fraud.

References
1. Barabanov V.S. On the issue of telephone fraud // Scientific and practical electronic journal Alley of Science.-2018.-V.2. No. 6 (22).-S. 785-790.
2. Vasilchenko D. A., Desyatov M. S. Operational-investigative characteristics of the methods of committing “telephone fraud” // Actual issues of organization and legal regulation of the activities of operational units of the Ministry of Internal Affairs of Russia (dedicated to the memory of Professor D.V. Rivman). Materials of the regional scientific-practical conference. St. Petersburg University of the Ministry of Internal Affairs of the Russian Federation (St. Petersburg): 2016. P. 135-138.
3. Veselov Yu. V. Trust and deceit in the digital world // International forum Kazan Digital Week-2021. Collection of materials. Kazan, State Budgetary Institution "NTSBZhD": 2021.-P. 269-274.
4. Ledneva O. V. Development of digital economic transformation in the aspect of cybersecurity and confidentiality of Russian users // Questions of innovation economy.-2022.-T. 12. No. 1.-S. 81-94.
5. Semenova N. A. The prohibition of anonymity on the Internet as a measure of fraud prevention // Modern Science: Actual Problems of Theory and Practice. Series: economics and law.-2022. No. 3.-S. 177-182.
6. Gent A. SIM boxing – why mobile regulators need to act now // Computer Fraud & Security. Vol. 2021.-2021. No. 5. P. 9-12.
7. Yelland M. Fraud in mobile networks // Computer Fraud & Security.-2013.-2013. No. 3. – P. 5 – 9.
8. Zhang A., Bradford B., Morgan R. M., Nakhaeizadeh C. Investigating the uses of mobile phone evidence in China criminal proceedings // Science & Justice. 2022.-Vol. 62. No. 3.-P. 385-398

Peer Review

Peer reviewers' evaluations remain confidential and are not disclosed to the public. Only external reviews, authorized for publication by the article's author(s), are made public. Typically, these final reviews are conducted after the manuscript's revision. Adhering to our double-blind review policy, the reviewer's identity is kept confidential.
The list of publisher reviewers can be found here.

The subject of the study. The article "The factor of complex interaction in responding to telephone fraud" is devoted to problematic issues of countering the substitution of SIM cards and incoming call numbers, ensuring the suspension of operations as a quick response measure and the centralization of databases of signs of telephone fraud. Research methodology. In the course of the work, modern research methods, both general scientific and private, were used. The methodological apparatus consists of the following dialectical methods of scientific cognition: abstraction, induction, deduction, hypothesis, analogy, synthesis, historical, theoretical-prognostic, formal-legal, systemic-structural legal modeling, as well as the application of typology, classification, systematization and generalization. The use of modern methods made it possible to study the existing approaches, views on the subject of the article, develop the author's position and argue it. The work used a combination of theoretical and empirical information. The relevance of research. The urgency of strengthening the fight against telephone fraud is due to the increase in recent years in the amount of damage from such offenses, their number and variety of fraudulent schemes. Countering telephone fraud is an important area in ensuring the security of financial services for organizations and citizens. The subjects of protection against telephone fraud are government agencies and commercial organizations, primarily financial ones, including banks. The peculiarity of their activities to protect citizens from telephone fraud is the need for legal instruments for organizational measures and the use of technical means. Successful legislative innovations in recent years have resulted from the complex interaction of financial industry entities, which proves the need for further effective application of this organizational principle in the development of legal instruments to respond to telephone fraud attempts. Scientific novelty. The novelty of this research topic is explained by the novelty of public relations themselves and, accordingly, the lack of proper legal and technical (technological) tools to counter the substitution of SIM cards and incoming call numbers, to ensure the suspension of operations as a rapid response measure and the centralization of databases of signs of telephone fraud. Justifying the scientific novelty of this topic, it is necessary to update the statistical data to date provided by the author to illustrate the relevance of the problem he raised (in the article as of 2015: "The share of fraudulent write-offs and thefts from citizens' accounts using bank cards, mobile and Internet banking, as well as telephone communication in 2015 increased from 66% to 74% of all thefts in the field of remote financial services"). It would be good to show the dynamics of these crimes. It may be possible to show the influence of anti-covert measures on the growth of these socially dangerous acts. Style, structure, content. In general, the article is written in a scientific style. However, there are stylistic errors in the construction of sentences, repetitions of words and phrases in sentences. For example, in the conclusion of the article, both conclusions begin with the word "analysis", etc. The double repetition of the phrase "Federal Law" in sentences relating to the names of a regulatory legal act is incorrect: Federal Law No. 423 the federal law dated December 21, 2021 “On Amendments to Certain Legislative Acts of the Russian Federation...”, "..of paragraph 2 of Art. 6 of the Federal Law "On countering the legalization (laundering) of proceedings from crime and the financing of terrorism" dated August 7, 2001 No. 115 the federal law...". "Federal Law "On Amendments to Certain Legislative Acts of the Russian Federation" No. 429 the federal law of December 8, 2020..." etc. It is necessary to carefully proofread the text of the article in order to eliminate stylistic and other grammatical errors. Check the correct use of articles (a technical note). Although the article is structured, and the content corresponds to the stated topic. And in general, the material is presented consistently, competently and clearly. Bibliography. We believe that the author has studied insufficient sources on the topic of the study. The share of a scientific article usually required by the number of bibliographic sources is at least 15. Appeal to opponents. In the article, to substantiate his own conclusions, the author refers to the opinions of other scientists, the appeal is correct, in the form of a citation. Conclusions, the interest of the readership. The article "The factor of complex interaction in responding to telephone fraud" is written on an urgent topic, differs in elements of scientific novelty, has practical significance and, subject to its completion, can be recommended for publication. This work may be of interest to both Russian scientists and practitioners, as well as foreign specialists dealing with the problems of comparative studies.