A KPMG International report reveals that fraudsters are often employees colluding with others inside and outside their organisation. Most commonly, they are employed by the victim organisation (61%) posing as something of a Trojan Horse.

In 70% of frauds, the perpetrator found it tough to go solo and colluded with others. Of these, 42% took their time before committing a fraudulent act – having been employed for more than six years by the victim organisation. All of this is according to the latest study by KPMG International entitled Global Profiles of a Fraudster.

“Fraud specialists have long debated whether it is possible to develop a profile of a fraudster that is accurate enough to enable organisations to catch people in the act of fraud or even beforehand,” says Déan Friedman, leader of KPMG’s Investigations Network in the Europe, Middle East and Africa region for the Global Forensic practice.

“The prediction of a crime before it occurs is, at least for now, the subject of science fiction. But an analysis of the constantly changing nature of fraud and the fraudster can help organisations stiffen their defences against these criminal activities. Forewarned is forearmed.”

Characteristics of the typical fraudster:

* 36 to 45 years of age (with 70% of fraudsters between the ages of 36 and 55);
* Employed in an executive, finance, operations or sales/marketing function;
* Holds a managerial or executive position (25 and 29% respectively);
* Employed in the organisation in excess of six years;
* An opportunistic fraudster – first-time offender, trusted employee, in a position of responsibility, perpetrator’s alleged behaviour comes as a surprise to others. Predators, someone who seeks out an organisation to start a scheme almost immediately upon being hired and deliberately defrauds the organisation with little remorse, are less common.

The report also reveals that the three drivers of fraud – motivation, opportunity and rationale – continue to be timeless themes. Capability, however, continually changes, causing the profile of the fraudster to alter too. Organisations need to understand the ever-changing behaviour of the fraudster if they are to mitigate the risk of fraud and then to respond quickly to such crimes if they occur.

“The intriguing thing about fraud is that it is always morphing, like a strain of flu – you can cure today’s strain, but next year it evolves into something as bad if not worse,” says Phil Ostwalt, Global Coordinator for Investigations for the Global Forensic practice at KPMG and Investigations leader in the United States.

One major change is the growing use of technology by fraudsters, and not just in the technologically advanced countries, such as the US. A concern for all business is that we are about to see a new generation of people, able to use more technology and with access to much more information than past generations. All of which points to a new era for fraud and illegal activities.

“Companies can’t stand still and allow yesterday’s controls to address today’s or tomorrow’s fraudster,” continues Ostwalt. “Technology not only enables the fraudster, but also enables the organisation to defend itself. Newer approaches like data analytics and data mining give the company a much better chance of catching the fraudster.”

The study found that over half (54%) of the fraudulent acts were facilitated by weak internal controls. This suggests that if many organisations tightened controls and the supervision of employees, the opportunity for fraud would be severely curtailed. Too often, organisations do not focus on fraud prevention by setting up the right controls and hence learn their lesson too late.

However, strong internal controls will not prevent all fraud. For 20% of the fraudsters, the fraud was committed recklessly, regardless of the controls. Moreover, for 11%, fraudsters colluded to circumvent the controls. In these cases, the fraudster may be somebody who understands the controls and knows how to manipulate them or who finds a flaw in the controls by accident and exploits them.

Other key survey findings:

* It’s all about the money for most – the overwhelming reason for committing fraud is financial. Out of a total of 1 082 motivations listed, 614 were motives of greed, financial gain and financial difficulty, and a further 114 were related to business targets. The only non-financial motive that comes close is sheer eagerness (or “because I can”) with 106.

* No need to play by the rules – a third of the fraudsters (36%) exhibited a sense of superiority as rationale for their fraud. This may be linked to the fact that 29% of the fraudulent acts were committed by executive directors, the largest single job title.

* Common crimes – the most prevalent fraud is misappropriation of assets (56%), of which embezzlement comprises 40% and procurement fraud makes up 27%. The second most prevalent fraud is revenue of assets gained by fraudulent or illegal acts (24%).

* Not a solo act – when acting in collaboration, 74% of frauds were perpetrated over one to five years. With regard to value, 18% of frauds had a total value of US$50,000 – 200,000. In 43% of the cases, the financial impact of victims exceeded US$500,000, exceeding US$5,000,000 in 16% of these cases, more than fraudsters acting solo.

To a large extent, culture influences our actions and determines what we consider ethical and compliant behaviour. Therefore, it is interesting to note key regional differences in the survey findings.

* At the global level, there were elements of bribery and corruption in one third of the frauds (33%). This compares with the US (24%), China (48%), CIS (64%) and West Africa (67%).

* Fraudsters in Canada, more than in other countries, try to avoid the risks of having an accomplice.

* 50% of the investigated cases in the US occurred in a highly regulated environment, compared with 50% in China, 33% in CIS and none in West Africa.

* There were more people committing fraud after working for the victim organisation for only one to four years in the UK, Canada, Czech Republic and India, than in South Africa and Germany.

“Ultimately, the fraudster of tomorrow will depend on the opportunities of the day,” says Ostwalt.

“Two decades ago, illicitly taking money from a bank was usually accomplished by a closely knit gang, sometimes using violent methods or forged signatures to achieve their ends. The opportunities to rob a bank have been transformed by the internet, smart devices and the ability to analyse vast amounts of data.

“While the fraud landscape has not changed significantly in recent years, companies need to watch the horizon over the next 18 months to see if a changing economy or environment affects its fraud risk.”