Tameside MBC - NAFN Data and Intelligence Services

Tameside MBC – NAFN Data and Intelligence Services

NAFN COVID-19 Business Grant Fraud Alert


Briefly describe the initiative/ project/service; please include your aims and objectives

In March 2020, a global pandemic resulted in a government imposed lockdown. During this time, organisations including local authorities were forced to work differently causing significant disruption. At the same time, businesses closed and the country faced economic crisis. In order to drive cash back in to the economy, the Government charged local authorities with administration of the COVID-19 Business Grant for small business, retail, hospitality and leisure at £10k or £25k dependent on the rateable value of business premises and other qualifying criteria. Within weeks of the announcement, LAs began to receive phishing emails, fraudulent applications, false retrospective registrations and doctored documents from fraudsters. Some appearing to be opportunistic and others clearly the activity of organised crime groups. Amongst these, were thousands of legitimate claims from local businesses in desperate need of financial assistance; some of which having their payments delayed as fraudsters had already made successful false claims in their name.

A number of services had been developed both within NAFN and central government to support verification and validation of payment details, but nothing offered a quick reference accessible by all relevant departments at no cost. Local authorities needed a way to swiftly administer grants and carry out appropriate due diligence; simultaneously tackling fraudsters, supporting local business and saving the livelihood of local residents. The NAFN Covid-19 Business Grant Fraud Alert initiative was the answer and we developed the simple, free of charge check to support them to prevent losses, initiate further investigations and/or recovery action.

The aim of our initiative was to quickly, lawfully and effectively share intelligence reported by members via intelligence alerts and distribute in real time. The alerts would provide an up to date list of all fraudulent applications, organisations, subjects, email addresses, bank account details and modus operandi as and when they emerged. Further to analysis, connections were detailed and linked incidents identified to assist investigations. Only known fraudulent data could be included further to assessment and grading. By consolidating all the information in to a single alert, highlighting in each issue the new and updated intelligence for ease of reference; local authorities were able to share appropriately, run account details through their payment systems and cross check them against new applications therefore raising awareness within their organisations and preventing further losses – a simple but extremely effective initiative not only succeeded in its objective but has further enhanced fraud awareness in local authority departments previously not involved in their organisation’s counter-fraud function.

All intelligence received by NAFN is assessed, graded and given appropriate handling instructions. This ensures the intelligence is shared effectively and lawfully. It also allows each person in receipt of the alert to understand how to manage the content and make their own assessment to ensure the privacy of all parties is not breached by only distributing to organisations and stakeholders which lawfully require it. This particular alert was graded as lawful sharing permitted with conditions. Local authority recipients contacted NAFN frequently, prior to sharing with any bodies outside of their organisation. Our objective to prevent significant losses of public funds was of course shared by the Department for Business, Energy and Industrial Strategy (BEIS) and the Cabinet Office, Counter Fraud COVID-19 Response Team. They soon became aware of our initiative and sought to be included alongside local authorities. Further to agreeing the terms and handling instructions, the alert has provided the basis for government reporting to ministers and the Secretary of State. Our objective to support prevention was also bolstered by our desire to show the effectiveness of local authorities. In liaising closely with central government, we were able to show how quickly local authorities recognised the threat, shared details via the appropriate channels and supported the ongoing development of the initiative to benefit all organisations nationwide. In the midst of unprecedented challenges local authorities still recognised the benefit of effective information sharing and acted upon the intelligence immediately therefore mitigating the losses, which could have been relatively substantial.

What are the key achievements?

In sharing a single alert (which grew from one page to 20) LAs were prompted to share further intelligence with NAFN which allowed us to identify cross border, multiple authority attacks on LAs by fraudsters seeking to illegally obtain public funds. This in turn supported the prevention of further losses. We have currently issued over 30 alerts and recorded over 2k fraud incidents with a total prevention value of almost £20m; an amount which is likely to increase as more reports come in and the government support continues. The intelligence alerts successfully raised fraud awareness, not only amongst LA counter-fraud specialists but in all departments drafted in to support administration of the COVID-19 grants. Without the input of LAs feeding into this initiative, sharing intelligence regarding monies lost, recovered and prevented, many more LAs may have fallen victim and potentially millions in public funds lost to organised and opportunistic crime.

The initiative immediately yielded benefits for local authorities (LAs), particularly those with little or no investigation function. LAs benefitted from the simple digestible formatting; our ability to share and raise awareness swiftly throughout their organisations and to check applications/bank details in bulk or on a case by case basis against their in-house systems and new claims. This saved significant internal resources at a time when much was diverted to other COVID challenges. LAs have shared how valuable the initiative is to them and attribute a great deal of the prevention to our initiative (some examples are below).

“This brings the total of attempt frauds against DCC linked to companies in the NAFN alerts to £620,000. Putting this against our paid Greggs Fraud of £150,000 it shows how valuable the alerts are.” Durham County Council

“The information that you sent out this week alerted us to an attempted, and almost successful, fraudulent application for £25,000 by “Barden Global LTD”. Although the NNDR account details were updated, the grant was not paid out.” Waverly Borough Council

The Department for Business, Energy and Industrial Strategy made contact to praise the initiative and its impact on prevention. We now have a fortnightly meeting and provide weekly reports for the Secretary of State showing the great preventative work being undertaken.

“We are preparing advice to senior officials and would like to make them aware of the invaluable work you are doing, starting with this alert. Prevented (fraud) keeps going up while losses are stable. The alerts you are putting out seem to be working” BEIS Counter Fraud and Investigations (Finance and Portfolio)

Further benefits of the initiative include:
– Stronger central government/finance relationships; expedited development of agreements whereby information can be shared with banks, the Insolvency Service and Cabinet Office. This brought key benefits for local authorities, as banks acted upon intelligence shared to freeze accounts and were able to identify where Bounce Back Loans had also been paid. We’ve also been able to link banks with LAs enabling them to issue indemnity documents to recover the frozen funds.
– The Insolvency Service opened investigations in to the fraudulent businesses/directors; 13 to date considered cases of interest.
– A national investigation in to the cross border multiple authority fraud was commissioned by BEIS to be led by the National Investigation Service, with which we are working collaboratively.

“My colleague and I were enquiring about how to receive NAFN alerts which we find helpful for fraud compliance.” HSBC Bank

“I have seen a couple of versions of the attached Business Grant Scams alert and I am in the process of preparing a communication to go out to our Lloyds Banking Group Local Authority customers to reinforce the need for extra vigilance. As the team who ensure that our Commercial and Institutional clients receive the essential information they need about fraud awareness, I thought it would make sense for us to also receive the latest intelligence and guidance from yourselves over the current Business Grant Scam.” Lloyds Bank

As a not for profit organisation funded solely by members, NAFN services are often limited to organisations that are members. In this case we believed the prevention of substantial losses during a time of crisis required removal of such restrictions in the public interest. Indeed, the intelligence from non-member organisations supported our members and the overall initiative in kind. In addition, as the alert was free to all organisations that needed the intelligence to prevent crime, we supported them to make significant savings, not only in the prevention of losses but in unnecessary search/enquiry fees for known fraudsters.

What are the key learning points?

Through this initiative we have been able to show local authorities the value of effective information sharing, not just in terms of building relationships and enriching intelligence, but the actual monetary value in terms of prevented losses. Their proactive engagement allowed us to build the alert and a central intelligence spreadsheet holding all the fraud incidents relating to COVID-19 Business grant fraud. This intelligence is invaluable and will serve to support public sector organisations in future fraud prevention and investigations. In gathering and analysing the intelligence we were also able to identify the modus operandi. By sharing the key ways in which the fraud was being committed, this supported dissemination of information to officers outside of the counter-fraud function to understand on a basic level what to look out for in addition to checking bank accounts, emails addresses and company names. This has been built upon and incorporated into future alerts. Whilst the handling instructions for the alert were extensively adhered to, we identified that additional training for officers outside the counter-fraud function regarding basic fraud awareness and intelligence sharing would be beneficial.

Whilst we did not record any breaches, it is our aim to support all public sector organisations to share and handle intelligence effectively and with the confidence they are acting lawfully. Our work with central government (BEIS, Cabinet Office and Insolvency Service) has further enhanced the scope of support for LAs. Our shared focus was to support local authorities; however we did not liaise on this matter prior to the grants being administered and so it took some time at the height of the pandemic to develop a joined up approach whereby intelligence was gathered and analysed by NAFN, fed in to the investigation supported by Cabinet Office and NATIS and monitored and reported to ministers by BEIS. Effective information sharing could have been improved had time allowed for a more coordinated approach. Whilst we cannot address the urgency at which processes were implemented, with these stronger relationships we can respond more effectively in future and can be more proactive in engaging central government to ensure our existing reach to LAs nationally and position as a central repository for their intel can be maximised. Some local authorities still choose to receive and utilise Intel but do not share their own incidents in spite of alerts being anonymised. In many cases this is due to a desire to protect their organisations and/or avoid criticism. Tackling this remains a challenge and we continue to urge organisations to share their experiences in order to learn, receive and share new and improved practices.
Our standard Intel Alert service consolidates reports and is issued on a weekly basis.

To respond to COVID-19, our initiative required that the alert be sent to over 10,000 users on a daily basis. We identified quickly that our existing system was not as effective when dealing with this volume and frequency of communications, which therefore increased the time required to send them out. Our technology, systems and software are in need of upgrade in order to deliver the very best service and ensure the limited time of our officers can be used more efficiently.

Additional Comments

As the intel alert has provided for such a large amount of intelligence we are now developing data sharing agreements with the National Fraud Initiative (NFI), BEIS, Police Scotland and Companies House. There are significantly broader benefits to be derived as a result of our initiative, which we continue to explore and maximise. This initiative could not have been achieved without the willingness of local authorities to share both their success and failures.

COVID-19 Response Recognition Award

We are a small organisation and much like local authorities nationwide, we were required to re-allocate much needed resource to respond quickly and effectively to the pandemic. Our initiative would not have been effective if there were significant delays in the assessment and distribution of intelligence submitted by affected organisations. The impact of the initiative was therefore enhanced by our ability to respond in real time and share Intel as and when received therefore enabling local authorities to prevent losses. One of our aims is to support organisations to protect the public purse. Billions of pounds have been used to boost the economy and support businesses to remain solvent during and beyond the pandemic. The millions of pounds saved and recovered as a result of our initiative will be placed back in to the economy to further benefit the public and businesses alike. The hardship caused by the national crisis cannot be disputed; however we have developed new relationships, data sharing agreements and a culture of expediting governance without compromising on due diligence. This has been identified by partners and stakeholders alike; there is a shared goal to continue and prioritise these practices beyond the pandemic.