Singapore Tightens Oversight of Bank Anti-Fraud Plans After Scam
(Bloomberg) -- The Monetary Authority of Singapore said it would be “intensifying its scrutiny of major financial institutions’ fraud surveillance mechanisms,” as the Asian financial hub grapples with a spate of scams spoofing banks, courts and government health officials.
The move comes after more than 450 customers of Singapore’s second-largest bank, Oversea-Chinese Banking Corp., lost at least S$8.5 million ($6.3 million) to scams impersonating the bank. OCBC said everyone who lost money in the scam will get full goodwill payouts, while apologizing for lapses in how it responded to customers hit by the scams.
“The growing threat of online phishing scams calls for immediate steps to strengthen controls, while longer-term preventive measures are being evaluated for implementation in the coming months,” MAS and the Association of Banks in Singapore said in a joint statement late Wednesday.
Read More: MAS Considers Actions as OCBC Refunds Clients Caught in Scam
Singapore has seen a rise in scams, from automated callers impersonating the Ministry of Health staff to text messages warning about banking troubles and asking recipients to click a link. Signs at subway stations warn people against sending money to scammers posing as would-be lovers online. The Supreme Court on Wednesday cautioned against a new scam that involved fake emails purporting to be court documents.
Though government leaders have repeatedly warned scams are on the rise, and stepped up law enforcement, the OCBC fraud has struck a chord in the city-state with local media reports of victims having their life savings wiped away suddenly. It’s sparked commentaries raising questions about safeguards amid Singapore’s push to position itself as a tech and digital banking hub.
Under new rules announced Wednesday, banks in Singapore will implement more stringent measures within the next two weeks, including:
- Removal of clickable links in emails or SMSes sent to retail customers
- Threshold for funds transfer transaction notifications to customers to be set by default at $100 or lower
- Delay of at least 12 hours before activation of a new soft token on a mobile device
- Notification to existing mobile number or email registered with the bank whenever there is a request to change a customer’s mobile number or email address
- Additional safeguards, such as a cooling-off period before implementation for requests to key account changes such as in a customer’s key contact details
- Dedicated and well-resourced customer assistance teams to deal with feedback on potential fraud cases on a priority basis
- More frequent scam education alerts
In response to the latest measures, DBS Group Holdings Ltd. said late Wednesday it will stop sending non-essential SMS messages from Friday until further notice. Jeremy Soo, its Singapore head of consumer banking group, said the bank has a dedicated anti-scam team to carry out intervention work, monitor and review fraud alerts, including “stationing a full-time employee at the Singapore Police Force’s anti-scam centre to ensure timely freezing of any accounts.”
©2022 Bloomberg L.P.