TenInsight

Our quarterly bulletin TenInsight reports on a variety of diverse topics drawn from our profession. We examine the major trends that organisations confront and provide analysis and advice to our readers.

June 2019: Issue Six

A recent financial research paper suggested 58% of UK small and Medium sized Enterprises (SMEs) have invested in some form of resilience during the past 12 months. It is clear from these figures that business owners and managers are taking the necessary steps to protect themselves against new challenges – including Brexit, cashflow problems and financial uncertainty. In times of financial difficulty, recession or uncertainty, business owners should look to cut costs to help their company become resilient. One key area to look at is within the organisation itself.

Expense fraud is the most common type of fraud and is a significant threat to a business. Fabricated expenses can often be an easy way for an employee to get reimbursed for personal purchases, by inflating their mileage, client entertainment costs, or submitting multiple reimbursements for the same thing. The amounts are usually little and often, enabling the employee to subtly fly under the radar. The preventative answer is to design and implement an expenses policy with clearly defined guidelines – one that requires a dual signature process, questions expenditure and requests original receipts. Using your time wisely during uncertainty is a good opportunity to stabilise your financial position and review your audits, processes and expenditure. Keep a keen eye out for details or anomalies – in our experience, suspicions of fraud are normally well founded.

It has been a year since GDPR officially went into effect – how was your GDPR journey?

Our journey continues daily, and we consistently test our data security compliance. A year has passed since the legislation for GDPR and the Data Protection Act 2018 was officially implemented in the UK. After an extensive annual audit by the British Assessment Bureau, I am pleased to confirm our ISO 27001 Information Security accreditation has been renewed. If your organisation needs increased resilience, whether it be fraud, cyber or data related, then please let us help you.

ISO 27001 certification gained by TenIntelligence for another year

Neil Miller, Chief Executive Officer, commended the team’s effort in maintaining our high standards of excellence and said: ‘‘Confidentiality, integrity and the protection of data continues to be of paramount importance to our clients, and our successful re-certification demonstrates TenIntelligence’s commitment to data security.

How do geopolitical cyber-attacks affect the average UK SME?

It is not unusual these days to hear about a corporate or public entity being subject to a cyberattack or losing large quantities of data. The attacks garnering most attention are, characteristically, not perpetrated by a bored teenager (a so-called ‘’script kiddie’’) but are instead state-sponsored and geopolitical in nature.

Is your company taking due diligence seriously?

When 75% of our background checks identify flags, a simple Google search isn’t enough. Having the right background information allows organisations to work with confidence, compliance and assurance. Our Due Diligence Team completed over 600 background checks during 2018. As part of our analysis into these checks, we implemented a simple traffic light system, giving each background check a status of Red, Amber or Green. Red showed a significant red flag had been found; Amber confirmed that discrepancies were identified; whilst Green meant there were no issues identified on their CV or application form. From our research, a total of 75% cases were identified as an Amber (69%) or Red flag (6%).

Anti-fraud learning – a personal perspective

Attending the Association of Certified Fraud Examiners (ACFE) anti-fraud masterclass organised by the Open Thinking Academy in Dubai was beneficial for Dubai Analyst, Reem Ramadan, to learn more about becoming a fraud examiner, and an opportunity for her to be introduced to other professionals in the field, as well as presenting TenIntelligence to a wider audience.

Counterfeit goods seized in Sharjah

TenIntelligence, in partnership with Underwriters Laboratories (UL) and Sharjah Criminal Investigation Department (CID), has successfully carried out raids on counterfeit electronic products. Our Dubai team worked with UL, a global independent safety science company, to assist officers from Sharjah CID in identifying almost AED 4 million worth of counterfeit products and items that featured unauthorised trademarks.

Download your free copy of TenInsight Issue 6 here

February 2019: Issue Five

In this edition, we highlight our due diligence, investigation and protection service provisions; we examine the latest ‘sextortion’ cyber scam hitting our email inboxes and provide tactical advice around protecting your organisation from internal security breaches.

Phishing Scams

In recent years, we have been contacted by numerous clients regarding ‘sextortion’ scams. Sextortion scams are a type of phishing attack whereby people are coerced to pay a Bitcoin ransom because they have been threatened with sharing the video of themselves visiting adult websites. These scams are made to appear even more credible because they provide seemingly plausible technical details about how this was achieved. The phish can sometimes also include the individual’s password.

Security Awareness

We have recently assisted several clients to ensure their technical security measures deployed are commensurate with identified risks such as GDPR, data and cyber security – listening to our clients revealed a forgotten yet crucial tool – staff. Giving your staff the right information and setting parameters of operating through a clear set of processes and procedures is extremely important – it allows everyone to have the confidence to act when necessary.

Our Due Diligence, Investigation and Protection Services

Working closely with our clients, we will continue to:
• provide our clients with the core tools to prevent, detect and investigate fraud & infringement
• protect our clients’ reputations from risk through effective due diligence and investigation
• keep our clients’ digital and physical resilience through appropriate ‘security by design’
• protect our clients, people and their livelihoods from harm
• and deliver the highest levels of professional support, often in difficult circumstances, by building and maintaining trusted relationships

October 2018: Issue Four

Integrity should be at the core of every organisation’s risk, compliance and anti-fraud programme.

Good Corporate Governance Code

In this edition, we focus on the Financial Reporting Council’s recent Good Corporate Governance Code highlighting how governance should be implemented, reported and measured by listed companies both in the UK and abroad. The key message from the Code is to be transparent. Demonstrating good governance not only reinforces an organisation’s reputation but provides it with opportunities over others. Even if you are not part of a listed company, the Code highlights useful areas for SMEs to consider on improving their journey to integrity.

ACFE – Global Fraud Study

With the Code in mind, we also share some key red flags, highlighted by the Association of Certified Fraud Examiners (ACFE), of officers, directors and employees who commit fraud against an organisation from within – the very people who were entrusted to protect its assets and resources. Can you spot any red flags in your organisation?

GDPR: What we have learned so far

GDPR continues to be a hot topic, even though the legislation was introduced back in May. Richard Bell, our Privacy & Security Director, reviews several common themes clients have highlighted since the introduction of the new rules.

Updates from our Dubai Office

Cate Wells, our Managing Director in Dubai, shares some recent anti-counterfeiting investigations, successes and brand protection news from our Dubai Office.

What’s your Vision?

On the subject of transparency, we recently asked ourselves what integrity means to TenIntelligence and what our vision is.  We defined our vision “to be the playmaker in our field; an investigation and protection consultancy, recognised for our diligence, excellence and integrity. Our intelligence – your assurance”. What’s your vision?

 

Download your free copy of TenInsight Issue 4 here

May 2018: Issue Three

In this edition, we share our GDPR Journey to date and our experiences with our preparations; our Intelligence Analyst Sanya Panova provides her experience in dealing with and preventing Ransomware; and Cate Wells, our Managing Director in Dubai, shares some recent anti-counterfeiting investigations, successes and brand protection news from our Dubai Office.

Our GDPR Journey so far

Not everyone will be ready or compliant by 25th May, but the Information Commissioner’s Office (ICO) will require you to demonstrate you have made a concerted effort to start. We learnt a lot during our own internal GDPR preparations and I would like to share some of our experiences with you.

Ransomware First Aid & GDPR

Ransomware is a type of malicious software that locks users out of their IT system until they pay ransom to the attackers, Sanya Panova (Intelligence Analyst at TenIntelligence) writes.

Updates from our Dubai Office

Cate Wells, our Managing Director in Dubai, shares some recent anti-counterfeiting investigations, successes and brand protection news from our Dubai Office.

Download your free copy of TenInsight Issue 3 here.

January 2018: Issue Two

In this edition, we explore the benefits of Industry Insight in due diligence investigations; getting ready for the new GDPR legislation; insights from the London Fraud Forum; and Cate Wells, our Managing Director in Dubai, shares some recent anti-counterfeiting investigations, successes and brand protection news from our Dubai Office.

Industry Insight: Providing a new level of Due Diligence

TenIntelligence has seen a substantial increase in requests for Industry Insight research to complement our background checks and due diligence investigations. Industry Insight provides clients with real knowledge into an individual’s professional character and background.

GDPR – Get Data Privacy Ready

With the introduction of the most comprehensive Europe-wide data privacy legislation to date in the form of the General Data Protection Regulations that come into effect on 25th May 2018. Are you ready?

Insights from the London Fraud Forum

The Conference in 2017 provided valuable insights into the current fraud trends and prevention initiatives and activities by government, law enforcement and the private sector.

Updates from our Dubai Office

Cate Wells, our Managing Director in Dubai, shares some recent anti-counterfeiting investigations, successes and brand protection news from our Dubai Office.

Download your free copy of TenInsight Issue 2 here.

October 2017: Issue One

In this edition, we explore the new Money Laundering Regulations (MLR2017); the Criminal Finances Act 2017; the role of Social Media in due diligence investigations; and the future of Bitcoin regulation.

The new Money Laundering Regulations (MLR 2017) are here

Businesses need to be aware of the Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2017 (“MLR 2017”), which came into force on 26 June 2017.

Changes to the UK Financial Crime Regime

The Criminal Finances Act 2017 (CFA) came into force on 30 September 2017. It introduces further changes to the UK financial crime regime that may necessitate a review of businesses’ existing compliance programmes and financial crime controls. Proper and comprehensive risk assessments will be key.

Social Media and Pre-Employment Screening

Social media searches often highlight potential issues and suitability risks not evident from a candidate’s CV.

Bitcoin and the Regulation of Digital Currency

Despite strong debate over the regulation of digital currency, Bitcoin users and governments agree consumer protection is important. In the UK, the FCA is yet to produce a full regulatory framework for Bitcoin, but profits and losses are taxable.

Download your free copy of TenInsight Issue 1 here.