9 August The Dark Web, Illicit Sales, and Law Enforcement Efforts to Combat Illegal Markets August 9, 2017By Jon Coss - Blog Manager General illicit sales, law enforcement efforts, American Kingpin , dark web, illegal markets, Silk Road 0 While I don’t often review books on this blog, I feel compelled to share my thoughts on American Kingpin by Nick Bilton, which chronicles the history of the Silk Road. For those who don’t know, the Silk Road was a market on the dark web that sold drugs, weapons, poisons, and even human body parts. By the time it was shut down in 2013, the site was selling over $1 billion per year.The book offers fascinating insights into the dark web, the libertarian creator of the site, the investigators who worked to shut it down, and the political schisms that often make it possible to run sites like the Silk Road. And of course, the book has great relevance to the fraud detection business because fraudsters often acquire identities on the dark web to create fictitious businesses, file for tax refunds, and make fake unemployment insurance claims.While American Kingpin ended with the shutdown of the Silk Road and the prosecutions of the major actors behind the market, it is important to note that similar sites continue to operate on the dark web. In fact, just days after I finished reading the book, Attorney General Jeff Sessions announced that the FBI had shut down a similar site 10 times the size of the Silk Road. At the time this site was shut down last month, it contained 369,000 listings for drugs, weapons, malware, chemicals, counterfeit items, and more.This is a sobering reminder of the challenges facing law enforcement when dealing with anonymous browsers like TOR, the Bitcoin cryptocurrency, and international crime rings. The dark web is not going away. Neither is the demand for illicit items. It will be interesting to see how this “cat and mouse” games plays out over the coming years. Related Posts Tax Fraud on the Dark Web It’s April, which every year brings more news about tax fraud scandals. The news this year, however, is even more disturbing than expected. IBM’s X-Force threat intelligence group released a report last week that showed a 6,000% increase in spam emails designed to steal information from W-2s and other tax documents. Last year, these criminals “earned” over $3 billion through similar scams. And if you were one of the victims, then you are already familiar with the hassles of having your return stolen or a completely false one filed using your identity.The continuing use of the Dark Web is a major factor behind the acceleration in this form of cybercrime. Stolen identities that include tax information are currently fetching around $40 on illicit marketplaces. While this may not seem like much, it is extremely lucrative when a fishing scam succeeds at stealing thousands of identities. So lucrative, in fact, that would-be scammers can even visit the Dark Web to buy online tutorials on how to perpetrate tax fraud.Popular scams this year include sending emails that appear to be sent from TurboTax and other tax preparation companies. The hope is that you respond because you use that tax service. So-called spearfishing scams are also targeting corporate human resource departments. They will often send an email to an HR manager, seemingly from a member of the company’s executive staff, requesting W-2 and other tax information on the company’s employees.Cybercriminals will continue to hone their skills resulting in more convincing emails and websites. They will continue to take advantage of technologies that allow them to increase the number of outbound messages. And they will continue to learn and share new techniques on the Dark Web. This means that all of us, as businesses and as private citizens, need to step up our efforts to protect data. These days, it’s no longer just “a fool and his money” who are soon parted. Zapping Taxes (Illegally of Course) In their never-ending quest to circumvent the law, unscrupulous business owners are now adopting the use of so-called “zapper” software to avoid paying sales taxes. Zapper software automatically deletes a portion of cash sale transactions and then automatically reconciles the business’s back end finances to make it appear that the businesses paid the appropriate amount of taxes. This scheme reduces tax collections for governments and passes the burden to the vast majority of businesses who choose to act within the law.Thanks to a crackdown by federal and local officials, recent arrests include $1 million in unreported sales at Cesar’s Restaurant in Lakeview, IL (home of the “killer margarita”) and $800,0000 at the Lao Sze Chaun restaurant in Milford, CT. However, a simple Google search will reveal that almost no city is immune to the zappers.Zapper software is so popular that some businesses are now starting to offer it to their clients. In December, for example, a Canadian man pled guilty to selling zapper software to eight restaurants in the Seattle area leading to $3.5 million of taxes avoided. It is alleged that his company, which sells Point of Sale (POS) software, also sold the illegal zapper software through a subsidiary in China. After the sale of the software, they even offered to support their customers with their ongoing efforts to defraud the government.Zapper software, while somewhat novel, is just another attempt to apply technology to skirt the law. And while law enforcement training and targeted audits will surely help detect some of these modern-age fraudsters, analytics that use peer comparisons, spike indicators, and other statistically rigorous detection methods can also help detect the problem early. Like the old saying goes, it takes fire to fight fire. Analytics are more than Numbers and Stats – It’s About People by Tammy Marple, VP - Special Investigations Unit During my time as a fraud analyst, I realized that my work was so much more than just numbers and statistics. I worked in State Government for many years and a few years ago, my manager asked me to conduct a study on Opioids. I lived that assignment for 18 months.After the Opioid study was completed, I traveled the state and shared what I had learned with our regulatory and law enforcement partners. That assignment really stuck with me. The overall impact of the Opioid epidemic on healthcare costs, society, and the family unit is devastating. It is a sad truth when we can say “everyone knows someone addicted to these types of drugs,” regardless of how they got there. An even worse reality is the impact on the family as a whole: newborn babies born addicted to drugs, children being raised by their grandparents or in foster care because the parents are either dead or in jail as a result of their addiction and drug diversion activities, and families living with the daily possibility of overdose.One of the most eye-opening documentaries regarding this epidemic was created by Vanguard and is titled “The OxyContin Express.” Although the video is many years old, the story it tells is still very real today and it is no longer just a Florida issue. I often suggest that our interns and new employees in Pondera’s Special Investigations Unit watch the video. It explains drug diversion schemes from drug seeking patients to the cash operations of those that prescribe the drugs, as well as the overall human element. It’s been years since I conducted the study on Opioids, and yet Opioid abuse is still on the rise and growing fast with the introduction of illicitly manufactured fentanyl.An in-depth analysis conducted in 2016 by the Centers for Disease Control and Prevention (CDC), stated that drug overdose deaths were spreading not only geographically but also across demographic groups. Listed below are some of the stats from the CDC analysis:• Drug overdoses killed 63,632 Americans in 2016.• Nearly two-thirds of these deaths (66%) involved a prescription or illicit opioid.• Overdose deaths increased in all categories of drugs examined for men and women, people ages 15 and older, all races and ethnicities, and across all levels of urbanization.• CDC’s new analysis confirms that recent increases in drug overdose deaths are driven by continued sharp increases in deaths involving synthetic opioids other than methadone, such as illicitly manufactured fentanyl (IMF).Pondera’s technology can identify these areas of risk in a variety of programs. This is the reason behind what we do to make a difference and potentially effect change for the better. Certainly, our goal is to detect fraud, waste, and abuse in government programs, but it really does come down to people. Sure, technology is always a cool thought when it comes to smart phones, cars that drive themselves, video games, and other advancements, but technology can also be used to detect certain behaviors within large data sets and identify highly suspect activities, patterns, or hot spots of concern. Pondera leverages technology to identify suspect activity and protect vulnerable populations within a program to make a significant difference, not only from a government budget point of view but also in the lives of our fellow citizens.Cited SourcesVan Zeller, Mariana. “The OxyContin Express.” YouTube, Current TV - Vanguard, 19 October 2009, https://www.youtube.com/watch?v=wGZEvXNqzkMResearchers for the Centers for Disease Control and Prevention (CDC). “U.S. Drug Overdose Deaths Continue to Rise; Increase Fueled by Synthetic Opioids.” www.cdc.gov, 29 March 2018, https://www.cdc.gov/media/releases/2018/p0329-drug-overdose-deaths.html Learning from Antivirus Software Almost everyone is familiar with antivirus software. Not everyone is familiar with how it works though. Even fewer have examined how we can apply the way antivirus software works to combat fraud. I believe that there are important lessons here which can improve our approach to fraud detection and prevention.At a high level, antivirus software performs two important functions prior to opening a file on your computer: 1) It compares the file to known viruses and other forms of malware, and 2) It checks the file for suspicious code which may indicate a new, previously unknown virus.The first function depends on a network of users willing to share known viruses and a system that is able to collect the virus data, design a fix, and disseminate the fix to other users prior to them being infected. The second function depends on heuristic programmers that can design systems to learn and even anticipate potential problems. Working together, this is one of the most effective ways to address the constantly changing nature of Internet malware.Government fraud prevention, when done properly, works in a very similar manner. By examining known bad actors, bad transactions, and bad behaviors, systems can quickly compare ongoing program data to identify suspect transactions. Modern fraud detection systems also include predictive algorithms that can detect anomalies, trends, patterns, and clusters that may indicate fraud.Unfortunately, many governments are unable, or unwilling, to share data. This limits the “network” effect that antivirus software uses so effectively. If more states and programs shared fraud schemes and findings, the library of known bad actors and methods could detect fraud and prevent it from moving from state to state and program to program.The good news is a number of states are moving toward state-wide fraud prevention efforts and a number of government subsidy programs are moving toward cross-state fraud prevention efforts. I am confident that the future success of these efforts will promote additional sharing, leading to a larger network, and more efficient governments. Buried Pentagon Report Leads to Questions for Other Government Agencies Earlier this year, four government agencies – Commerce, Health and Human Services, Energy, and the Environmental Protection Agency—received letters from congress directing them to provide documents and comments detailing their efforts to “identify waste and… to achieve budget savings in the next five years.” The letter referenced a report from the Pentagon that identified a “clear path” to saving over $125 billion over five years, which was subsequently suppressed because of the dramatic findings.The Washington Post, which was mentioned in the letter from Congress, exposed the Pentagon’s internal study in December 2016. The Post explained the reason the Pentagon buried the study was that they feared Congress would cut their budget if they knew of the waste. Incredibly, the “clear path” to savings did not even require layoffs. Rather it would use attrition, early retirements, reductions in expensive contractors, and modern technology to streamline operations.To put the size of the problem in perspective, the study showed that the defense department paid over 1 million back-office staff to support 1.3 million active duty troops (the smallest number of troops since 1940). Thanks to these large numbers, the savings from streamlining could have led to reallocating up to $125 billion for troops and weapons and rebuilding the nation’s aging nuclear arsenal. But apparently, some Pentagon officials decided that protecting against budget cuts was more important.The four agencies who received the letter from Congress have until March 10th to respond. Their response must provide a copy of their internal reports similar to the Pentagon report, lessons learned for their department if they do not have a similar report, and any efforts the department has made to combat waste. Given that these four agency budgets total over $1 trillion, twice that of the Department of Defense, there should be ample opportunities for savings. Implementing a permanent economic stimulus package In 2009, congress enacted the American Recovery and Reinvestment Act (ARRA), also known as the Stimulus, to bolster the economy and help America recover from the Great Recession. The idea was that various tax credits, business incentives, and public works projects would stimulate the economy while also improving the nation’s infrastructure. While arguments continue over the effectiveness of the program, it is estimated to cost nearly $100 million annually for 10 years.Today, seven years after ARRA was enacted, I think about the economic impact we could achieve through the eradication of overpayments in government programs. The government estimates that over $125 billion in FY 2015 were paid improperly. This number, even after subtracting the underpayments that are also counted in improper payments, is larger than the highly controversial ARRA spending totals. In effect, by eliminating FWA from government programs, we could implement a permanent economic stimulus!I know that it is unrealistic to think that we could completely eliminate improper payments. But I also know that we can make drastic improvements by increasing our support for program integrity efforts and by continuing to develop and implement innovative detection solutions. It would also help if legislative bodies approved processes to support agency collection and enforcement efforts. I realize this sounds like a lot of work. But it seems to me that a permanent economic stimulus is worth every bit of effort. Comment (0) Comments are closed.