Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Kroll Global Fraud Report Reveals Significant Surge In Corporate Fraud
Overall, 70 percent of companies were affected by fraud in the past 12 months
October 22, 2013
6 Min Read
NEW YORK--(BUSINESS WIRE)--The number of companies falling victim to fraud has increased in the past year, according to the 2013 Kroll Global Fraud Report. Overall, 70 percent of companies were affected by fraud in the past 12 months, up from 61 percent the previous year, with an increase in every category of fraud covered by the study.
The report reveals that the globalization of business is increasing exposure to fraud, as businesses seek expansion into riskier overseas markets and use greater levels of outsourcing. The sharpest increase was in vendor, supplier or procurement fraud, suffered by one in five businesses (19 percent), up from 12 percent last year. Indeed, of those companies that fell victim to fraud in the past 12 months, one third (30 percent) experienced fraud perpetrated by vendors or suppliers while 11 percent suffered at the hands of joint venture partners.
In a year where several companies have been rocked by high-profile corruption scandals, the proportion of companies affected by corruption and bribery increased from 11 percent to 14 percent. Corruption is by far the most important element dissuading companies from doing business in certain markets, such as Africa, Latin America and India. Almost half (46 percent) of companies have refrained from expanding into a foreign market, citing corruption as the main reason. In fact, entry to new, riskier markets has increased the vulnerability of almost one in three companies (30 percent) to fraud.
Businesses now face a more diverse range of threats; those affected in the past year on average suffered from 2.3 different kinds of fraud each, up from 1.9 last year. The vast majority of respondents (81 percent) believe that their firm’s exposure to fraud has increased overall in the past 12 months, up from 63 percent in the previous survey.
Growing insider threat
The report reveals that overall, 72 percent of companies have been hit by fraud led by at least one insider, up from 67 percent last year. Of those victims of fraud, 32 percent had suffered at least one crime where the main perpetrator was in senior or middle management, 42 percent where he or she was a junior employee and 23 percent where an agent or intermediary was the main culprit.
However, the study also reveals that most fraud is discovered internally. In cases where the fraud was uncovered, over half (52 percent) were discovered by management and an internal audit played a role in 51 percent of cases, compared to just one in 10 incidents (10 percent) where an external audit contributed to its discovery.
Senior employee alertness is key to combating fraud. However, when senior employees are themselves the perpetrators, whistleblowers become a more important way of exposing wrongdoing. A whistleblower was involved in one in three incidents (32 percent) of all cases where fraud was uncovered and in 41 percent of cases that involved senior or middle management. Despite this, just 52 percent of companies reported that they have invested in staff training around fraud and the creation of whistleblower hotlines.
Tom Hartley, CEO of Kroll, commented: “It should come as no surprise to anyone whose job it is to combat fraud that the global incidence of fraud is rising. But the measure of a good company is not whether or not you’ve suffered a fraud, it’s how you prepare for it, how you deal with it and how you move on afterwards. Many of the clients we’ve helped deal with fraud over the last 12 months have, on discovering fraud, resolved the issue and moved forward with a better risk mitigation strategy including vendor screening, whistleblower programs and employee training. Most would say that they are now in a better position because of the fraud and the way they dealt with it. So it’s not just about avoiding fraud, which is almost inevitable, it’s also about how you respond.”
Cyber-threats: firms vulnerable to information theft
The study reveals that more companies are highly vulnerable to information theft (21 percent) than any other category of fraud and three quarters of businesses (75 percent) are at least moderately vulnerable to it. Information theft remains the second most common type of fraud, affecting more than one in five businesses over the past year (22 percent) and executives say that the complexity of their IT infrastructure is the biggest factor increasing their company’s exposure to fraud (cited by 37 percent of respondents).
This increasing exposure to fraud due to IT complexity is being exploited more by outsiders. As a share of all incidents of information theft, attacks by external hackers have almost doubled from 18 percent to 35 percent, and 17 percent of information theft victims suffered as a result of a hacker attack on a vendor or supplier, up from 5 percent last year.
However, like most frauds, information theft is typically an inside job. Of those who have suffered in the past year where the perpetrator is known, 39 percent say an employee was to blame.
Tom Hartley explained: “Cybercrime is a growing threat for businesses but many businesses are under-prepared for it. A third of them say they don’t currently invest in IT security and while companies that are planning to increase investment are focusing on technology, they are neglecting elements such as staff screening and due diligence on partners, clients and vendors. These processes are key to mitigating the insider threat, which often can’t be detected by anti-fraud technology or physical security.”
The seventh Kroll Annual Global Fraud Report includes a full, detailed industry analysis across a range of fraud categories and regions. To obtain a copy please visit fraud.kroll.com
Notes to editors
Kroll commissioned the Economist Intelligence Unit to conduct a worldwide survey on fraud and its effects on business during 2012/13. A total of 901 senior executives took part in the survey from a wide range of industries, including Financial Services; Professional Services; Retail and Wholesale; Technology, Media and Telecommunications; Healthcare and Pharmaceuticals; Travel, Leisure and Transportation; Consumer Goods; Construction, Engineering and Infrastructure; Natural Resources; and Manufacturing.
Respondents were senior, with 53% at C-suite level. Almost half (49%) of participants represent companies with annual revenues of over $500m.
Respondents this year included 25% from Europe, 24% from North America, 23% from the Asia-Pacific region, 14% from Latin America and 14% from the Middle East/Africa.
Please visit http://www.kroll.com/resources/reports/global-fraud-report/2013-2014/press-only/ for key findings and graphics, including a detailed look at the industries, regions and types of fraud covered in the report.
Kroll, the global leader in risk mitigation and response, delivers a wide range of solutions that span investigations, due diligence, compliance, cyber security and physical security. Clients partner with Kroll for the highest-value intelligence and insight to drive the most confident decisions about protecting their companies, assets and people.
Kroll is recognized for its expertise, with 40 years of experience meeting the demands of dynamic businesses and their environments around the world. Kroll is headquartered in New York with offices in 45 cities across 28 countries. The firm has a multidisciplinary team of nearly 4,000 employees globally. www.kroll.com
You May Also Like
Your Everywhere Security guide: Four steps to stop cyberattacksFeb 27, 2024
Your Everywhere Security Guide: 4 Steps to Stop CyberattacksFeb 27, 2024
API Security: Protecting Your Application's Attack SurfaceFeb 29, 2024
API Security: Protecting Your Application's Attack SurfaceFeb 29, 2024
Securing the Software Development Life Cycle from Start to FinishMar 06, 2024
Laptop with ransomware, and bitcoin in the palm of a man's hand to illustrate ransomwareCyberattacks & Data Breaches