A ₹4.58 crore scam... not by a hacker, but by a relationship manager in a corporate suit. Sakshi Gupt, an ICICI Bank relationship manager in Kota, quietly siphoned ₹4.58 crore from 110 customer accounts, using a fixed deposit (FD) link trick, masking alerts by changing registered mobile numbers, and channelling the stolen money into stock market bets. The gamble? She lost it all. This wasn’t a cybercrime. This was human betrayal dressed in professional etiquette. ▶️ The twist? She didn’t need to hack the system. She was the system. A trusted banker. A familiar voice. Someone who shook hands, smiled politely, and discussed "financial goals." It’s a chilling reminder: in today’s world, your financial safety isn't just under threat from cybercriminals. It's vulnerable to people you trust the most — those wearing a badge of service, backed by brand reputation. ▶️ Let’s zoom out. According to the Reserve Bank of India (RBI) 2024 fraud monitoring report, India saw a 35% rise in bank-related frauds compared to 2022. Even worse — a large percentage of these were “insider threats.” A PwC Global Economic and Financial Crimes Commission & Fraud Survey revealed that over 52% of Indian firms experienced fraud in the past 2 years — above the global average of 47%. And most are rooted in internal manipulation, not external attacks. ▶️ But the bigger problem? We, the public, don’t question “authority.” We assume that a designation guarantees integrity. We rarely monitor our accounts, thinking “FD toh safe hai.” But… are they really? Financial literacy isn’t about knowing stocks. It’s about knowing your statements. ▶️ Here’s a hard truth: Cricketers can bounce back after a bad season. Actors can survive a flop movie. But an average Indian family can never emotionally or financially recover from a bank fraud involving their life savings. So here's the twist no one talks about — The biggest scam is the one that looks like service. Start asking questions. Start tracking every transaction. Don't outsource your peace of mind. Because in today's world, even a "relationship manager" might just be managing your downfall. ✅ What measures do you take to keep your money safe? ✅ Should banks be more accountable for insider frauds? ✅ Let’s discuss and spread awareness before another Sakshi Gupta story happens again.
Payment Fraud Prevention
Explore top LinkedIn content from expert professionals.
-
-
🛑 𝗗𝗼𝗻’𝘁 𝗙𝗹𝘆 𝗕𝗹𝗶𝗻𝗱: 𝗨𝘀𝗲 𝗔𝗜 𝘁𝗼 𝗞𝗻𝗼𝘄 𝗬𝗼𝘂𝗿 𝗖𝘂𝘀𝘁𝗼𝗺𝗲𝗿𝘀 Having trouble keeping pace with your customers' desires and needs? If you're not leveraging real-time data on customer behavior and preferences, you're essentially flying blind. 💥 This lack of insight can cripple your marketing and sales efforts, leading to ineffective customer engagements and stunted sales growth. Here’s where Voice AI steps in as a powerful ally: ❇️ Real-Time Data Collection: Implement Voice AI to engage with customers directly. This technology collects essential data on preferences, concerns, and feedback as the conversation happens. ❇️ Instant Feedback Loop: Set up your Voice AI to provide real-time feedback to your marketing and sales teams. This means they can pivot and adjust strategies instantly, enhancing the effectiveness of your campaigns on the fly. ❇️ Real-Time Alert System: Integrate a real-time alert system within your Voice AI setup. This can notify team members immediately when it detects key customer triggers, like expressions of dissatisfaction or excitement, prompting swift and appropriate action. By integrating these strategies, you'll not only meet but exceed customer expectations, enhancing engagement and driving sales. How are you leveraging technology to stay on top of customer preferences? Share your strategies below! #innovation #digitalmarketing #technology #bigdata #entrepreneurship #voiceai
-
🚨 AI + Font Forensics = ₹68 Lakh Tax Fraud Busted in Hyderabad 🚨 The Income Tax Department in Hyderabad recently used AI-powered font forensics to uncover a Long-Term Capital Gains (LTCG) fraud worth ₹68.7 lakh. A taxpayer claimed improvement costs from a bill dated 2002, but AI tools flagged the use of the Calibri font—which was only released in 2006–07. This inconsistency exposed the document as forged, prompting a revised ITR and additional taxes paid . 🔍 Why This Matters for Auditors & Risk Professionals 1. Innovative Forensics AI isn't just for big data and predictive insights—it’s now a frontline tool in document authenticity verification. Font analysis is a low-cost, high-impact method. 2. Red-flag Awareness It’s not enough to verify the content—verify the context. Details like font age, metadata timestamps, or even document origin can reveal fraud. 3. Regulatory Relevance Tax authorities are stepping up forensic capabilities. Expect similar methods to be applied in other regulatory areas—GST, money laundering, financial filings. 4.Upgrade Your Toolkit Incorporate similar forensic checks—font, metadata, version histories—into due diligence, vendor audits, expense claim reviews, and whistleblower investigations. ✅ Action Steps ✅ Add font & metadata analysis to your internal audit and investigation playbooks. ✅ Train teams to look beyond signatures—validate document authenticity at a granular level. ✅ Evaluate simple AI tools that can detect anomalies in fonts or document history. ✅ Share this knowledge in audit committees, risk forums, and compliance training. This case is another reminder: fraudsters adapt, but so must we. In a world where even fonts can betray deception, staying ahead requires curiosity, precision, and technology-backed scrutiny. What forensic techniques are you using to catch today’s more subtle frauds? #Forensics #Audit #RiskManagement #AI #InternalAudit #Compliance
-
You’ve seen the headlines. ₹590 crore discrepancy in Haryana Government accounts at IDFC FIRST Bank’s Chandigarh branch. Here’s what happened. A government department came to close its account. Routine request. But the bank’s records and the department’s records didn’t match. By ₹590 crore. The bank has now returned ₹583 crore full principal plus interest within 48 hours. Investigation revealed forged signatures, forged payment instructions, and bank employees allegedly colluding with outsiders. Four suspended. Arrests made. The more interesting conversation is about institutional behaviour under pressure. Reputation in banking isn't built during the good quarters. It's built or destroyed in exactly these moments. The optics could have easily gone the other way. But the choice to close it fast, absorb the cost and not weaponise the legal process says something. Whether you're evaluating a bank as a customer, an investor, or just watching the sector, this is the kind of data point worth filing away.
-
💡 With the 3rd quarter Board meetings over, the trend I found in the Board discussions this year, is the question gradually shifting to 'is your business truly ready' from 'have the audit observations been closed'. 💡 This readiness is from a larger view of parameters such as operating efficiency, margins, risk management, people availability and more; but also includes technology robustness and security governance. And underlying on all the above, is regulatory compliance. 🔅 Let's discuss on technology regulatory compliance. - The new directives issued by the three lead regulators in India, viz, RBI, SEBI and IRDAI between 2023-24, with added guidelines in 2025, are more than regulations, they're the blueprints for survival in this digital age (if taken seriously). - The guidelines make clear that the technology backbone, digital practices and cybersecurity aren't just IT checkboxes anymore; they're about credibility, operationalizing trust into preparedness and bring board-level accountability. 🔑 For Tech and Cyber leaders and Chief Risk Officers, the mandate isn’t merely compliance — it’s a chance to lead transformation. 🔑 Building an operational, real-time, tested, trained #cybercrisismanagement framework, which goes beyond just a document in the shared drive, strengthens trust with policyholders, partners, and regulators alike. 🪝 However, most organizations fail or fall short in moving beyond documentation and checkbox exercises, and to demonstrate real readiness, resulting in regulatory penalties, inordinate delays in recovering from incidents, lack of visibility and control over critical vendors / service providers and so on. 💡 Let's take some examples : 1. In the 'Incident Response' Playbook : - Classify incidents (data breach, insider abuse, cloud infra unavailability etc) with severity levels, not only on the impact of the potential loss of business, but also with expenses (ex, consultants, forensic experts, additional server space, penalty etc) that may be incurred to recover and restore. - As part of the Tabletop exercises, conduct crisis simulations across primary, DC and DR - simultaneous and asynchronous; measure responses against the documented timelines and procedures for communication, containment, recovery; capture learning from the mistakes / gaps, improve the plan and training of relevant team members. 2. In the 'Crisis Communication' playbook : - Map each incident (as above) to escalation protocols. From SOC analysts to crisis coordinators to the CEO, every person should know their action - first 30 minutes, first 2 days, first week, if this goes beyond 1 week. - Design Crisis Communication scripts, in hard copy (systems may not be available during a cyberattack) for media, regulators, and customers Are you ready to translate compliance into strategic capability and competitive edge? Want to learn more? Let's talk! #CyberSecurity #RegTech #IncidentResponse #CyberResilience #RiskManagement #DigitalTrust
-
5 Asset Line Items Where Fraud Hides and What I Look for in Each Most financial statement fraud parks itself in assets. The ACFE's 2024 RTTN puts financial statement fraud at just 5% of cases. But the median loss of $766,000 is the highest across all fraud categories. The damage is disproportionate precisely because it hides where people look least carefully. Based on my experience conducting forensic investigations in various countries for more than one and half decades, I consistently focus on five specific asset line items when searching for signs of fraud. Here’s what I pay attention to in each of them and why these areas often reveal hidden issues. 𝟭. 𝗧𝗿𝗮𝗱𝗲 𝗥𝗲𝗰𝗲𝗶𝘃𝗮𝗯𝗹𝗲𝘀 Not the balance. The ageing. Receivables that keep growing without being collected point to one of two things: revenue that was never real, or customers who were never meant to pay. 𝟮. 𝗜𝗻𝘃𝗲𝗻𝘁𝗼𝗿𝘆 I compare inventory growth against revenue growth and gross margin movement together. When inventory rises, and revenue rises, but margins quietly compress, something is being built into stock that does not belong there. 𝟯. 𝗖𝗮𝗽𝗶𝘁𝗮𝗹 𝗪𝗼𝗿𝗸 𝗶𝗻 𝗣𝗿𝗼𝗴𝗿𝗲𝘀𝘀 CWIP is one of the most consistently misused line items I encounter. Expenses get parked here to avoid hitting the P&L. Projects stay "in progress" for years. Nobody questions an asset that hasn't been commissioned yet. 𝟰. 𝗟𝗼𝗮𝗻𝘀 𝗮𝗻𝗱 𝗔𝗱𝘃𝗮𝗻𝗰𝗲𝘀 Particularly inter-company and related party advances. In several investigations, the actual fraud mechanism lived entirely in this line, i.e., funds moved out as advances, never returned, never written off, quietly evergreened each year. 𝟱. 𝗜𝗻𝘁𝗮𝗻𝗴𝗶𝗯𝗹𝗲𝘀 𝗮𝗻𝗱 𝗚𝗼𝗼𝗱𝘄𝗶𝗹𝗹 Inflated on acquisition. Never tested meaningfully for impairment. When goodwill stops making business sense, but impairment never appears, that’s a question for governance and not simply accounting. 𝗪𝗵𝗶𝗰𝗵 𝗼𝗳 𝘁𝗵𝗲𝘀𝗲 𝗵𝗮𝘃𝗲 𝘆𝗼𝘂 𝗲𝗻𝗰𝗼𝘂𝗻𝘁𝗲𝗿𝗲𝗱 𝗶𝗻 𝗽𝗿𝗮𝗰𝘁𝗶𝗰𝗲? 𝗔𝗻𝗱 𝘄𝗵𝗶𝗰𝗵 𝗼𝗻𝗲 𝘀𝘂𝗿𝗽𝗿𝗶𝘀𝗲𝗱 𝘆𝗼𝘂 𝗺𝗼𝘀𝘁? #Fraud #ACFE #Accounting #ForensicForesight
-
₹4.5 crore vanished. It took 3 years to notice. A relationship manager at ICICI Bank’s Kota branch allegedly diverted ₹4.5 crore from 41 customers over three years. The methods were simple. But, the impact? Devastating. According to reports, Sakshi Gupta: > Changed registered mobile numbers so OTPs went to her > Misused debit cards and PINs > Broke fixed deposits worth ₹1.34 crore > Activated overdrafts without consent > Used an elderly customer’s account to pool diverted funds Most of that money? Gone - reportedly lost in stock market trades. She’s now suspended. The police are investigating. But here’s the larger concern: If ₹4.5 crore can slip through the cracks, how many smaller lapses are still hiding in plain sight? As someone who’s worked on internal audit and risk assignments, I’ve seen how even small blind spots can create large vulnerabilities. And sometimes, customers catch what systems don’t. I’ve personally found strange charges in my own bank account. Raised a complaint. Got it reversed. But if I hadn’t checked? It would’ve stayed. So I track my bank statements every month. Not every line, but anything above a certain threshold. It doesn’t take long. But it helps. Here are a few habits I’d recommend: ✅ Check SMS/email alerts regularly ✅ Review account and FD statements monthly ✅ Never ignore mobile/email change notifications ✅ Set alerts for overdrafts, withdrawals, logins ✅ If anything looks off, ask, even if it seems small Because the only thing worse than fraud... is realising it late. Your turn: Ever caught a charge that didn’t feel right and followed your gut? Or built a small habit that helped you catch something early? Drop your story in the comments. We all notice different things, and that’s what makes shared learning powerful. #FinanceKeFunde #BankFraud #CustomerAwareness #ICICIBank #InternalControls #SecureBanking #FraudDetection #PersonalFinanceIndia
-
𝗔 𝗴𝗼𝗼𝗱 𝗹𝗲𝗴𝗮𝗹 𝗿𝗲𝘀𝗽𝗼𝗻𝘀𝗲 𝗶𝗻 𝗮 𝗰𝘆𝗯𝗲𝗿 𝗶𝗻𝗰𝗶𝗱𝗲𝗻𝘁 𝗼𝗿 𝗱𝗮𝘁𝗮 𝗯𝗿𝗲𝗮𝗰𝗵 𝗶𝘀𝗻’𝘁 𝗷𝘂𝘀𝘁 𝗮𝗯𝗼𝘂𝘁 𝗰𝗼𝗺𝗽𝗹𝗶𝗮𝗻𝗰𝗲. Obviously, compliance is a baseline—you have to meet your legal obligations. But how you comply and the approach you take can define your business’s future. The right legal strategy can mean the difference between emerging stronger, with reinforced stakeholder trust, or coming out battered and bruised. 𝗛𝗼𝘄 𝘆𝗼𝘂 𝗿𝗲𝘀𝗽𝗼𝗻𝗱 𝗶𝘀 𝗼𝗳𝘁𝗲𝗻 𝗺𝗼𝗿𝗲 𝗶𝗺𝗽𝗼𝗿𝘁𝗮𝗻𝘁 𝘁𝗵𝗮𝗻 𝘁𝗵𝗲 𝗶𝗻𝗰𝗶𝗱𝗲𝗻𝘁 𝗶𝘁𝘀𝗲𝗹𝗳. Cyber incidents happen—even to the best-prepared businesses. Regulators, customers, and stakeholders judge you on your response. If you act efficiently, effectively, and strategically, you can not only protect your brand but actually reduce regulatory scrutiny. Being overly defensive and combative might help you avoid court, but if it destroys trust, the long-term damage could far outweigh any short-term legal cost (not to say there are not times when this approach is warranted!). 𝗔𝗰𝘁𝗶𝗻𝗴 𝘄𝗶𝘁𝗵 𝗲𝗺𝗽𝗮𝘁𝗵𝘆, 𝗼𝗽𝗲𝗻𝗻𝗲𝘀𝘀, 𝗮𝗻𝗱 𝘀𝘁𝗿𝗮𝘁𝗲𝗴𝗶𝗰 𝘁𝗿𝗮𝗻𝘀𝗽𝗮𝗿𝗲𝗻𝗰𝘆 often leads to better outcomes. So, what makes a 𝗴𝗼𝗼𝗱 𝗹𝗲𝗴𝗮𝗹 𝗿𝗲𝘀𝗽𝗼𝗻𝘀𝗲 in an incident scenario? 🔹 𝗧𝗵𝗶𝗻𝗸 𝗯𝗲𝘆𝗼𝗻𝗱 𝗹𝗲𝗴𝗮𝗹 𝗿𝗶𝘀𝗸—𝗰𝗼𝗻𝘀𝗶𝗱𝗲𝗿 𝗯𝘂𝘀𝗶𝗻𝗲𝘀𝘀 𝗮𝗻𝗱 𝗿𝗲𝗽𝘂𝘁𝗮𝘁𝗶𝗼𝗻𝗮𝗹 𝗿𝗶𝘀𝗸 𝘁𝗼𝗼. Regulators and stakeholders don’t just judge you on compliance. They judge you on how you handle the situation. A legal strategy that aligns with your business’s values and long-term interests is key. 🔹 𝗕𝗮𝗹𝗮𝗻𝗰𝗲 𝘀𝗵𝗼𝗿𝘁-𝘁𝗲𝗿𝗺 𝗰𝗿𝗶𝘀𝗶𝘀 𝗺𝗮𝗻𝗮𝗴𝗲𝗺𝗲𝗻𝘁 𝘄𝗶𝘁𝗵 𝗹𝗼𝗻𝗴-𝘁𝗲𝗿𝗺 𝗿𝗲𝘀𝗶𝗹𝗶𝗲𝗻𝗰𝗲. In the heat of an incident, it’s easy to focus on immediate containment. But a strong legal response also protects your business’s future—customer trust and regulatory relationships depend on it. This includes ensuring that you act in a way that allows you to retain the evidence required to appropriately investigate the incident. 🔹 𝗗𝗼𝗻’𝘁 𝗹𝗲𝘁 𝗽𝗮𝗻𝗶𝗰 𝗱𝗿𝗶𝘃𝗲 𝗱𝗲𝗰𝗶𝘀𝗶𝗼𝗻𝘀—𝗴𝗲𝘁 𝘁𝗵𝗲 𝗿𝗶𝗴𝗵𝘁 𝗹𝗲𝗴𝗮𝗹 𝗮𝗻𝗱 𝘀𝘁𝗿𝗮𝘁𝗲𝗴𝗶𝗰 𝗮𝗱𝘃𝗶𝗰𝗲. A great incident response lawyer doesn’t just help you react—they help you navigate the chaos with clarity. They cut through the noise, help manage competing interests, and ensure today’s response doesn’t create bigger problems tomorrow. At the end of the day, your response defines your reputation—not just the incident itself. #CyberSecurity #IncidentResponse #LegalStrategy #DataBreach #PrivacyLaw #RiskManagement #CrisisManagement #privacy
-
"An alert without action is just noise." That's what our customer's CTO told me during our first call. Their team was getting hundreds of alerts daily, but 90% required manual investigation and fixes. We helped them build a self-improving loop: 1️⃣ Detect anomalies → Use Eyer to scale proactive monitoring while consolidating alerts by 90% 2️⃣ Add context → Claude analyzes the Eyer alerts + their documentation 3️⃣ Recommend fixes → Specific escalation, remediation steps, not just "something's wrong" 4️⃣ Learn and improve → Each incident teaches the system more Real example: Database connection spike used to wake up their DBA at 2am. Now the system: - Detects the anomaly - Recognizes it as "connection pool exhaustion" - Suggests the remediation & escalates to the right team - Documents the fix for next time - Three months later? Their mean time to resolution dropped 75%, and their on-call team actually sleeps through the night. This is how monitoring evolves from reactive firefighting to self-improving automation. The best part: each incident makes the system smarter. 👉 Want to see the detailed framework? Comment "YES" for our implementation guide. #automation #devops #ai #monitoring
-
The bank collapse that gave us KYC In the late ’80s, the Bank of Credit and Commerce International (BCCI) was the “fastest-growing bank you’ve never heard of.” 78 countries. $20B in assets. Clients ranging from governments to billionaires. On paper, it was a global banking success story. In reality? - Fake account names (some belonging to terrorist organisations) - Billions moved across borders with zero reporting - No customer identity verification in most branches By 1991, regulators shut it down. Losses crossed $10B - one of the largest banking frauds in history. BCCI is the reason “Know Your Customer” (KYC) went from an optional control to a legal requirement in most countries. Today, whether you’re a bank, NBFC, or fintech, you can’t onboard a client without verifying who they are and keeping a documented audit trail. Many of the finance systems we follow today exist because someone didn’t have them and it blew up spectacularly. If your onboarding process for clients, vendors, employees hasn’t been reviewed in the last 12 months, you may have a compliance blind spot. Picture - TIME Magazine