Fraude Digital: Preparación Estratégica en la Era del Delito Tecnológico

Show Notes

En este episodio analizamos cómo el fraude digital está transformando la seguridad financiera en América Latina. La pregunta ya no es si habrá fraude, sino si estaremos preparados para anticiparlo y contenerlo.

Chapters

• 0:02: Bienvenida Y Contexto Del Podcast
• 1:01: Datos Duros Del Auge Del Fraude
• 2:59: Modalidades Clave: P2P, Toma De Dispositivo
• 6:18: Industrialización Del Fraude Y Automatización
• 11:06: Preparación: Tecnología, Procesos Y Personas
• 15:43: Identidad Sintética Y Riesgo Sistémico
• 18:43: Estrategia: Monitoreo Conductual E Integración
• 22:31: Herramientas, Gobierno De Modelos Y Comunidad
• 27:47: Cierre: De Reaccionar A Anticipar

Transcript

SPEAKER_01: 0:02

Mundo Financiero Seguro. Tu espacio para estar a la vanguardia en ciberseguridad. Prevención de fraude. AML. Fintech y gestión de riesgo. Descubre las últimas amenazas. Innovaciones y herramientas clave para construir un futuro financiero más seguro. Únete a la conversación y transforma los desafíos in opportunidades. Vivimos in una era avanza más rápido que nuestra capacidad de comprenderla. Una era in which the dinero se mueve in millisecondos anders. Ando, hoy los delincuentes no necesitan entrar físicamente in una institución. Solo necesitan entrar in la mente and the comportamiento de una persona. Bienvenidos a Mundo Financiero Seguro, el podcast de Prustin. Soy Juan José Ríos and es un gusto acompañarte in un espacio where analizamos, discutimos andemos las dinámicas del fraude digital and the prevention of criminal financiero in nuestra region. The pregunta ya no es si habrá fraude. The pregunta is estaremos preparados para cuando llegue. In America Latina, the numbers hablan por sí solos. El mercado de billeteras digitales alcanzará, escuchen,$95 mil millones de dollars in 2025. De igual forma, 75% del fraude in pagos digitales proviene de dispositivos móviles. And the fraude digital, escuchen, in the región creció 70% in 2023, impulsado por transferencias and manipulación del usuario. El fraude ya está aquí. Y el desafío real no es evitarlo, es anticiparlo, detectarlo y contenerlo a tiempo. In este episodio me acompañan dos voces clave, Douglas Puga, experto bancario en gestión operativa del fraude, y Marta Leuro, consultora estratégica internacional en prevención del fraude digital.

SPEAKER_02: 2:12

Muchas gusto, buenos días. Douglas Puga les saluda. Agradecido por esta invitación y aquí estamos a las órdenes.

SPEAKER_00: 2:19

Hola, muy buenos días, Juan José Douglas. Encantado de compartir contigo este podcast and the people who escuch these experiences.

SPEAKER_01: 2:31

Douglas, quiero empezar con you because we are in the region is a cambio profound. Yes no habl of fraude with target, it is disparando in billetas, in transferences immediately, in the bank mobile, including in onboarding.

SPEAKER_02: 2:57

Effectively, Juan Joseph, there are various, but we will concentrate on three puntuals. Basically, the fraud and transference immediately and the P2P, where the delinquent manipulates the client to authorizing operations. In this case, finally we have the tomatoes where the criminal controls the application mobile and execute transactions in seconds. In the front, the most debilitation of the cadena is the usual. Some is the who activates another application, another option, and does all the passes for the fraud. In this case, let's make an example: in the tomato, no bust with a click for that alguien hackers a disposition mobile, and with a click, there are various options. There are many other forms to perpetuate these attacks. Nobody is in common is that the velocity is a equation sencilly and simple. Because more in detect and contain the fraude, more pairs will have.

SPEAKER_01: 5:17

Interessante, Douglas.

SPEAKER_00: 6:05

And this clearly the controls traditional control and the rapidity with which they are the increment quantitative and qualitative of the fraud digital in absolutely all the segments. For example, the 75% of the fraud digital origin in the dispositions. And the data more revelation is that the attack based on deep face have been in a 237% in the ultimate three years.

SPEAKER_02: 7:51

Well, I was going to segue the hill, really, very Marta. This is a conclusion that definitively the attackers don't have to be artisanal. And one of the intervention of MAT is the industrialization of the fraud. Effectively, the fraud is not artisanal, not manual, it is industrialized and automatic. As empresas optimizing processes, employing robots, I think of the process, the attack. So we're going to have various things. But the problem is the client, it is the usually who lamentablemente accede to support governmental or not governmentalists of a bank, functionalists of this institution, and email to proportionate information. Inclusive, activating certain components in their cellular, which permits that the attack takes control. And that is where it is very difficult that a bank determination or detect these types of attacks. But we're from this vulnerability that basically attack the people and their comports.

SPEAKER_01: 11:06

Martha, with this context, surge a question that many institutions are trying to respond. What do you prepared?

SPEAKER_00: 11:16

Because ya no basta con la opinion of Douglas, I think that start prepared to have an equilibrium between the technology, the processes, and the person. And when I look of person, I refer to the people who are dental of the institutions, prevention of the fraude, but also in our clients. Really? Simply blocking a transaction. Appends that I can repeat these errors, but I appreciate every one of those intent, ajusting automatically the model. Verify what you're doing, you ajusta la regla, and this is demasiado demorado. It's to do in millésimas de seconds. And at least we can construct confiance. So in resume, an organization prepared don't reaction, simply anticipates, integrites, apprends, avances and proteins your enterprise.

SPEAKER_01: 13:52

And there's something that is preoccupied to the institutions. Marta, why are these modalities redefiniendo the panorama deliver?

SPEAKER_00: 14:39

We have today that much identity synthetic automatic massive of the fraud, clearly not permitting as we were, because clearly is compromised the continuity of the negotiation, the reputation, the confiance of the client. In conclusion, the panorama can be because it comes to the natural fraud, because they accelerated the rate of the risk, because it exiged an evolution structural, and finally are done to the confiance, not only of an entity, but of an ecosystem.

SPEAKER_02: 17:12

Antes of responding to the point, I would enlarg or concatenate this front that I did of the culture that I mentioned Marta. So this is the convention of conviction that we have to protect in one way to the clients. I'll go with these two parts: culture and confiance. With confiance, our clients don't deposit, don't have transactions with us, they don't take the target or the payment that we do more segue. If a transaction falls to a client, I as sure that we are a pay, they're guarding the physical or digital for more than six months after recovering the confiance. The operativity is part of an idea. Basically, three concrete. The monitor conductor in time of the client, basically revisiting their perfect, comportment transactional, their velocity. For another later, the integration between the fraude, the cyber and the experience of the client, because definitively we don't be so, because it would generate an experience terrible for the client, and in that case, we will have factors. But we have to maintain this equilibrium between this integration, fraud, cyber, and experience of the client. And an automatic immediate that basically the empresas or the entities are realizing. Finally, Que compongan esta recomendación que no podemos eliminar el riesgo, eliminar el fraude, sino minimizar andar in the time possible. Detectarlo and contention, obviamente. In resumen, you know that we can detect a fraude, a attack, contain it, and generate the reactions of prevention, which basically in order is a circular virtuoso. Es decir, no, secondo normal, but that's the strategy of prevention of fraud, they can detect, contain, and it's not detection and fraud to evitar layers not for the financial but for the client. And clients are able and content, and we have confiancy in the entities where they have their deposit, their inversions, and transaction with the payments, with transferences, and different types of transactions. This is my recommendation.

SPEAKER_01: 21:16

And for certain, Marta, if we're delivering, evolution the prevention of the fraude for maintenance vigilant, but effective.

SPEAKER_00: 22:16

The controls are fragmented to an architecture. We encourage this Douglas. Okay, this is the moment in which we have in conjunction the fraud and the cyberscurity, and I summary the complement. Really, this is not really a risk operative, it's a systemic, it's a risk of permanence, the continuity of our organizations in which we have to work in protecting them, but obviously garantizing this experience digital. The statically to a intelligence, a model of intelligence adaptable to all these types of attacks, of automatic that we have. In conclusion, we have to have a prevention mature, and a prevention mature prevention for converting in a protection, but this protection will be precisely, intelligent, and the experience of the client.

SPEAKER_02: 24:43

Basically, the alineation of the strategy. It's super important. Then exists that disponibility in the power of the great market, in the whole man, generate scores, generate time. And basically, I can consider that not necessarily the herramient per se detecta and contiene el fraude. No, someone who maneuver these herramias who media the prevention of the fraud, es decir, anticipators of the fraude, haciendo estudios, haciendo backtesting, you know, segmentation of clients por comportamientos, por perfiles, which permiten generar esas reglas inteligentes that are the herramientas para poder detectar ese fraude ander in control, inmediatamente. Andar aquí is that siempre hay que socializar, siempre hay que pedir ayuda, siempre está haciendo el vecino, what can the collective, what are you doing the empresas who dedicate to proportionate this type of herramias? Because those normally have implementations in other places, they have cases of exit in other places, and not copy this, inventor of a tibia if other empresas have realized this type of activities with good results. These are basically my conclusions, and definitively the fraud and the attacks avancing in progression geometric, not arithmetic, no geometric, and we have to start prepared with her that we can contrarrest this type of attacks that are more and more repetitive and with more volume. In this moment, it would be that we are attacking us, and we are here in this podcast that anticipating Juan José Marta. It has been a very good compared with you these experiences, and as ordinary.

SPEAKER_00: 30:35

Additional depends much of those. And when I talk about those people, I'm talking about functioners, of the functioners of the ecosystem financier, of the clients of the ecosystem financier, of the users that would be a vinculated, no take a buffer, but reciprocity of any way, or tocan de alguna forma the ecosystem, that we have conscience that this is a problem of those, and that the segue is absolutely of those. This is one manner frase trillada, the segue of those, but the segue is of those. No importer in what the market is, if we transform the prevention, we can see the negotiation for one part, and being abilitators of the negotiation is working in an usability to accuse the different systems, at least the billet has an inclusion important, but also massificated the attacks. So it's limited to the controls adequate, and I in my organization have the controls properly and we are anticipating if the ecosystem notes. So we have to email, and this podcast. Empezation anticipating, empezation to have those canals, as mentioned Douglass, we have to take a journey. This is really for me the context of preparation. Exactly anticipators, exige integrators, not only from our organization, but intersector entities of the ecosystem financiers that we ayude, for sure, to certain ziles and protection complete of the ecosystem financier, because of one or other manner tenemos una cuenta oremos un vínculo con el ecosistema.

SPEAKER_01: 32:47

Hoy entendemos que el fraude digital no es un incidente tecnológico, es una batalla strategica por la confianza. No gana quien más evita ataques. Gana quien está preparado para enfrentarnos. The pregunta no es si habrá fraude. The pregunta real is reaccionando or anticipando. Because al final la batalla no es solo contra el fraude. The verdadera batalla is por la preparation. Soy Juan José Río. Gracias, Douglas. Gracias a ti Marta por compartir esta experiencia anda. André por escucharnos, por dedicar este time to profundizar in un tema tan crítico para nuestra región. Su interés y participación has possible este space. We'll escuchamos in the episode of Mundo Financiero Seguro, the podcast of Trusty. Hasta pronto.