Insights
INSIGHTS
All Topics
How charities can detect fraud
14 Jul 2022by Christine Chiu
We outline how charities can improve how they detect fraud, exploring the tips and tools they need in a hybrid-working environment
Across many organisations, employees now enjoy more freedoms, including the ability to work from home and collaborate online. For the majority of charities, hybrid working has become the present as well as the future.
People can tap into the organisation from anywhere and you may not even see them in person. While we’d like to trust everyone we come across, there is a lot of potential for fraud.
To protect your organisation and information, we take a look at what fraud is, and pitfalls to avoid. We also go over how digital tools can help avoid and detect those with malicious intents.
What charity scams are out there?
Like many sectors dealing with money, charities have a fiduciary responsibility. The UK Government takes this to mean that directors have a duty to make sure that money coming in is free of fraud.
To get to the bottom of how to prevent fraud, there’s a need to understand what online fraud looks like.
Charities are typically targeted by bad actors using phishing or spear phishing scams. Both types of fraud use emails to gain unauthorised access or payments. Under the more generic type of phishing, many emails are sent out reporting a situation.
Recipients are asked to click a link or make a payment to resolve the problem. That’s when a virus penetrates your software, or when staff are requested to enter user names and passwords.
Spear phishing is more targeted, often urgently asking charity directors to make payments.
Watch out when fundraising
While digital fundraising events have raised the bar for many charities looking for new sources of funds, it has also been a boon to those looking to do fraud. Unfortunately, these ploys play on public good will and tarnish the reputation of charities.
UK Fundraising points out that digital fundraising has risks. Bad actors can obtain email and website domains which bear striking resemblances to authentic charities. They use fake online donation pages to solicit support by pretending to be digital fundraisers for the cause.
Fraudsters can also use payment pages to test out stolen card details.
The Third Sector Protect says fraud can also happen during emergencies. The perpetrators use email, donation boxes, and other means employed by charities to misdirect funds. They can sometimes even fundraise in the name of your charity.
Remember, fraud doesn’t just come from online sources. Fraudsters can easily re-direct donated charity collection items and generate for-profit sales. Civil Society reports that more than half of fraud cases are perpetrated by someone known to the charity. For hybrid workers, it’s important to be aware of both online scams and those done in person.
Related Articles
Anti-fraud tools for the hybrid working environment
Anti-fraud tools and processes need to work both in-person and online. To get your organisation up to speed, keep track of those involved in all areas of operations.
There’s no need to spend a fortune on hybrid working security. Digital procedures prevent crime. CAF recommends simple ways to protect charity data and donations. The basics are to ensure that logins, passwords, and software are updated often.
Using two-factor email authentication makes it difficult for bad actors to pose as charity employees. When it comes to finances, CAF says that payments should be monitored closely for unusual activity and amounts.
Risk management systems help mitigate some of the financial risks and more. Regardless of size, charities using digital systems to manage donations, payments, invoices, and reporting information can not only stay on top of fraud but increase trust.
Cyber-security protection for online and in-office workers deters unauthorised activities. As part of your cyber security risk management regime, digital tools Skurio and Avast take care of data breaches. Skurio scours the internet and dark web for illegitimately gained charity data.
If found, the automated monitoring system lets subscribers know of the leak. Avast offers a traditional anti-virus software for devices. The software analyses incoming content and bars suspicious materials.
Both are available on the Charity Digital Exchange.
Digital resources to keep you in the know
In addition to policies, procedures, and digital tools there are online resources to know. The foremost authority is Action Fraud. The national reporting centre has the most recent news on fraud, including articles featuring uncovered scams. Good news for small charities: Action Fraud also offers free cyber-crime protection measures.
Charities Against Fraud works to educate the non-profit sector on fraud. The site has a comprehensive list of organisations for fraud prevention and reporting. Don’t reinvent the wheel when it comes to drafting policies. Anti-fraud and corruption templates are available for trustees rolling out new frameworks.
For a broader picture, Cifas is the cross-sector organisation preventing fraud. The portal offers fraud management courses for charities. The tutorials are priced per course, so charities can cherry pick topics to specialise in.
Important for those on the finance team, Cifas offers a ‘masterclass’ in procurement, which aims to help attendees identify unusual patterns.
Get the Avast discount
Click above to discover how Avast can prevent fraud in your charity and access the Charity Digital discount
Christine Chiu
Christine Chiu
More on this topic
Recommended Products
Featured Products
Our Events
Charity Digital Academy
Our courses aim, in just three hours, to enhance soft skills and hard skills, boost your knowledge of finance and artificial intelligence, and supercharge your digital capabilities. Check out some of the incredible options by clicking here.
© 2022 Charity Digital Trust. All rights reserved
