All day long we hear from customers and prospects alike that their vendor master data is ‘a mess’, ‘out of date’ and ‘full of duplicates’.  We have published in the past about the hidden ways your vendor master is costing your organization with both fraud risk and compliance issues, but we understand that many organizations find it to be a challenge to quantify those risks in dollar terms when working towards making an investment in automation and clean up. 

We get it, it can be overwhelming to nail down the myriad ways a messy vendor is costing your organization.  We’ve spoken with countless customers and prospects and gathered for you these three factors you can, and should, consider when creating your cost/benefit analysis.

In the course of building our network and our platform, we did what product people do: we talked to the market.  When it comes to the risk associated with vendor onboarding, everyone we spoke to was united.  However, when it came to how to solve it, consensus was elusive. Vendor management, AP and Procurement personnel know they should not trust banking information that arrives via email.  That is a given. To solve this most seem to focus verifying vendor banking information.  But what, exactly, does that mean?

How banking information gets 'verified', generally falls into these three buckets:

1. Collecting a voided check or account info on bank letterhead
2. Calling the vendor to confirm the change
3. Multi levels of internal approvals for changes

All of these seem, on the surface, to be solid, but are not infallible in defending the vendor master from infiltration by fraudsters.  The devil, as they say, is in the details. If your organization is relying on any of these three ways to ensure the validity of your vendor master file's banking info, you are likely leaving holes wide enough for a fraudster to walk right in.

Our CTO and co-founder Alan Greenblatt answers all the questions from Threat.Technology about who we are at PaymentWorks, and where we are going.

We talk a lot (I mean A LOT) around these parts about the constant threat posed to organizations when it comes to business payments fraud.  And you can see why:

• 74% of companies reported they were the target of an actual or attempted payments fraud scam in 2020- AFP Payments Fraud and Controls Survey, 2021
  
  
• Email compromise scams accounted for $2B in losses in 2020 - FBI Internet Crime Report, 2021
  
  
• 62% of financial losses due to social engineering frauds were the result of either an absence of controls, human error, or a process not being followed- Willis Towers Watson database statistic, 2020

The problem is, numbers this huge can tend to make a problem seem unknowable and unsolvable.  Especially since we very rarely get to learn exactly what happened. When an organization suffers financial losses due to a fraudster, they are usually unwilling or unable to share the details publicly, so the financial community as a whole doesn’t get to learn anything that could help them to avoid the same fate. 

Until now.

"I feel as if I am holding a hand grenade with the pin pulled."

This is an actual quote from one of our customers, before she was a customer.  We hear versions of this all of the time when we speak to prospects. People are scared. 

Cyber criminals stole more than $28 billion through email fraud from 2016-2020, according to the FBI.  Let that sink in.

We were thrilled to contribute to Informa’s Fraud Intelligence publication with an article to explore how locking down your vendor master can significantly help eliminate the risk of an increasingly costly threat – business payments fraud.

Increasingly savvy fraudsters have noticed and exploited all that is involved with vendor onboarding and maintenance fueling a significant increase in fraud attempts over this past year.

Read the article here.

Spoiler alert: the scourge of business payments fraud is not going away. The challenges facing organizations with maintaining and securing their vendor master data were already daunting in a pre-Covid world, never mind now that the way people work has been radically reimagined. 

Against this backdrop, we were thrilled to host a panel discussion, "Payments Fraud and Your Vendor Master: Uncovering Hidden Risks," where we brought together Clay Deutsch, a former bank CEO, Rob Unger from Nacha and Thayer Stewart, our CEO, to provide their divergent perspectives on the problem of business payments fraud, and what organizations should be doing to combat it.