InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
FDIC issues final rule on special assessment, moves to collect $16.3 billion
On November 16, the FDIC approved a final rule to implement a special assessment to recover Deposit Insurance Fund (DIF) losses from protecting uninsured depositors, following the failure of two banks earlier this year. According to the fact sheet, banks that benefited most from assistance provided under systemic risk determination will pay to recover the losses. The FDIC aims to collect $16.3 billion from 114 financial institutions at a quarterly rate of 3.36 basis points over eight quarterly assessment periods, and an annual rate of 13.4 basis points “an increase from the 12.5 basis point annual rate in the [May] proposal.”
The FDIC stated that if enough funds were collected to cover actual or estimated losses, it could cease collection efforts early. Alternatively, if losses surpass the collected amount within the initial eight-quarter collection period, the collection period can be extended for additional quarters. The FDIC also added that if actual losses exceed the collected amounts after the receiverships for both banks end, it can impose a one-time final shortfall assessment.
The special assessment does not apply to any financial institution with less than $5 billion in total assets. The final rule will be effective April 1, 2024, and the first collection for the special assessment is due June 28, 2024.
FinCEN, IRS issue alert on Covid-19 employee retention credit fraud schemes
On November 22, FinCEN and the IRS issued an alert to financial institutions regarding Covid-19 Employee Retention Credit (ERC)-related fraud schemes. Authorized by the CARES Act, the ERC is a tax credit aimed at incentivizing businesses to retain employees on payroll during the Covid-19 pandemic, through which fraud and scams have been carried out, FinCEN explained. The alert offers insights into typologies linked to ERC fraud and scams, emphasizes specific warning signs to aid financial institutions in detecting and reporting suspicious activities, and reinforces these institutions' obligations to report under the Bank Secrecy Act (BSA).
According to the alert, “[d]uring the 2023 tax season, the IRS noted various scammers appeared throughout the [U.S.] using the false pretense of being tax credit experts to convince businesses to file for the ERC.” Third-party ERC promoters misled taxpayers about eligibility, aiming to profit from filing ERC claims without verifying qualifications, FinCEN added. As a result, the alert mentioned that victims risk claim denial or repayment, while scammers profit regardless of the claim's outcome, involving both willing and unaware businesses in these schemes. FinCEN added that businesses must meet specific ERC requirements, and those who received PPP loans cannot use the same wages counted in the PPP loan for the ERC application. Despite this, some may file amended tax returns misrepresenting their eligibility for the ERC by falsifying staff wages or claiming their operations were partially or fully suspended during the pandemic. FinCEN listed “red flags” indicative of ERC fraud that financial institutions should be cognizant of, including, among others, (i) a business account that receives multiple ERC check deposits over several days; (ii) small business accounts that receive ERC check deposits disproportionate to their size, employee count, and transaction volume; and (iii) a new account for an established business that only receives ERC deposits, suggesting possible identity theft using the business as a front for fraudulent claims. The alert also reminds financial institutions of their obligation to file suspicious activity reports and to keep a copy of the reports for five years from the date of the filing.
VA asks all mortgage servicers to pause all VA foreclosures, extends the Covid-19 Refund Modification program
On November 17, the U.S. Department of Veterans Affairs (VA) asked all mortgage servicers to pause any foreclosure proceedings of VA-guaranteed loans, as well as extended its Covid-19 Refund Modification program through May 2024. The VA acknowledges that the veteran community is struggling to make mortgage payments, despite VA-backed mortgages having some of the lowest foreclosure rates in the U.S. The VA’s extension of its Covid-19 Refund Modification program allows more veterans to get a zero-interest, deferred-payment loan to maintain affordable monthly payments. The VA wishes to delay any foreclosure proceedings so that it may continue to assist veterans before it launches its VA Servicing Purchase program, which will allow the VA to purchase defaulted VA loans, modify them, and create a direct loan so that veterans will have a chance at keeping their homes.
DOJ seizes $9 million in crypto from criminal scammers
On November 21, the DOJ seized nearly $9 million in stablecoins from cryptocurrency scammers after the criminals exploited over 70 victims. The DOJ seized stablecoins, a certain crypto asset pegged to a central bank’s currency, tied to the U.S. dollar. The scammers employed a long-con technique called “pig butchering” which is a tactic to build and exploit a victim’s trust over time by creating fake romantic enticements meant to swindle victims into handing over money. The criminals targeted and convinced victims to “make cryptocurrency deposits by fraudulently representing that the victims were making investments with trusted firms and cryptocurrency exchanges.”
The DOJ was able to trace the stolen funds based on the funds’ cryptocurrency addresses as part of a money laundering technique known as “chain hopping… used to ‘layer’ the proceeds of criminal activity into new cryptocurrency ecosystems, all to obfuscate the… ownership of those proceeds.” The DOJ worked with the U.S. Secret Service to trace the victim’s deposits, and it was originally alerted from victim reports made on the FBI’s Internet Crime Complaint Center and the FTC’s Consumer Sentinel Network.
FTC approves measures for compulsory process use for AI-related products and services
On November 21, the FTC approved an omnibus resolution in a 3-0 vote, allowing the use of compulsory processes in nonpublic inquiries involving products and services produced or claimed to be produced by artificial intelligence (AI). This resolution aims to streamline the FTC staff's issuance of civil investigative demands (CIDs), in AI-related investigations while maintaining the Commission's authority to decide when CIDs are necessary. This resolution remains valid for 10 years.
FHFA reports no internal control weaknesses FY 2023 performance report
On November 15, FHFA released its annual performance report, titled “FHFA FY 2023 Performance and Accountability Report” to detail how it regulated the FHLBank system, as well as Fannie Mae and Freddie Mac, during the past fiscal year. The report refers to its FY 2022-2026 Strategic Plan with the goals of securing the safety of regulated entities, fostering equitable housing finance markets, and stewarding FHFA’s infrastructure. For FY 2023, FHFA identified 35 performance targets to help guide it toward achieving its strategic goals. Of the 35 targets, the FHFA met 31 of them––an 89 percent success rate. Table 2 from page 15 of the report displays the goals and ones that have not been met, including (i) “Improve Time-to-Hire” within 80 days; and (ii) “Develop FHFA Information Technology Strategic Plan” by the time the report had been published.
Looking forward, FHFA wishes to implement an “Enterprise Fair Lending Rating System to annually assess each Enterprise’s compliance with fair lending and fair housing standards.” For fintech initiatives, FHFA will publish a summary on Velocity TechSprint, a problem-solving event with “mortgage industry leaders and fintech entrepreneurs to address mortgage market issues.”
NY Fed highlights an increase in unsecured loans from fintech firms in report, primarily among subprime lenders
On November 21, the Federal Reserve Bank of New York released a report on the rise and then contraction of unsecured personal loans from 2019 to 2023 for nonbank or fintech companies, and the role of alternative data and underwriting in that growth.
The report looked at how the economic conditions from 2019 to 2022 “created an ideal environment for FinTech firms to increase their loan originations.” It specifically noted that the U.S. government-issued stimulus payments and student loan repayment moratorium enabled fintech companies to expand their services to low- and moderate-income borrowers, including those with subprime credit. The report also looked at fintech’s role in that growth, what consumer segments are utilizing unsecured personal loans, the overall growth of the products, and the subsequent tightening of credit. Finally, the NY Fed discussed various fintech models and analyzed which models service the needs of low- and moderate-income households.
FTC orders prison contractor to fix security exposures after data breach
On November 16, the FTC issued a proposed order against an integrated technology services company finding a violation of Section 5(a) of the Federal Trade Commission Act. According to the order, the company offered various products and services to jails, prisons, and detention facilities. These products and services included means of communication between incarcerated and non-incarcerated individuals, and, among other things, allowed non-incarcerated individuals to deposit funds into the accounts of incarcerated individuals. According to the complaint, and due to the nature of its operations, the company collected individuals’ sensitive personally identifiable information, including names, addresses, passport numbers, driver’s license numbers, Social Security numbers, and financial account information, some of which was exposed as a result of a data breach in August 2020 due to a misconfiguration in the company’s cloud storage environment.
In its decision, the FTC ordered the company to, among other things, (i) implement a comprehensive data security program, including “change management” measures and multifactor authentication; (ii) notify users affected by the data breach, who had not yet received notice, and offer credit monitoring and identity protection products; (iii) inform consumers and facilities within 30 days of future data breaches; and (iv) notify the FTC within 10 days of reporting any security incident to local, state, or federal authorities.
CFPB report on FDCPA highlights medical debt collection issues
On November 16, the CFPB released its annual Fair Debt Collection Practices Act report, which highlighted challenges specific to medical debt collection. For example, 8,500 complaints were submitted in 2022 related to medical debt collection and described problems such as collectors billing for services never received, collecting the wrong amounts, miscommunication with insurance companies or financial assistance programs, or placing bills on credit reports without prior consumer contact. The report emphasized collectors may violate federal law when they pursue inaccurate medical bills and stressed the need for medical debt collectors to comply with the Fair Debt Collection Practices Act, the No Surprises Act, and the Fair Credit Reporting Act.
The report also includes developments in state law regarding medical debt collection, including recent legislation in Colorado, New York, Maine, and Nevada. Additionally, the report contains sections related to supervision of debt collection activities, enforcement actions, education and outreach initiatives, rulemaking, and research and policy initiatives.
CFPB’s Chopra testifies at Senate Banking Committee hearing
On November 30, the Director of the CFPB, Rohit Chopra, testified during the Senate Banking Committee’s hearing on the Bureau’s Semi-Annual Report to Congress. The Senate Banking Committee questioned Chopra on the Bureau’s oversight of financial institutions providing benefits under the Servicemembers Civil Relief Act (SCRA), medical debt collection, so-called “junk fees,” and the increasing popularity of buy now, pay later (BNPL) products.
In response to questions regarding SCRA, Director Chopra stated that the CFPB estimates that fewer than 10% of servicemembers receive the 6% pre-service rate cap on loans as required by the SCRA. In response to a question on BNPL popularity, Chopra noted there was a high amount of BNPL usage on Black Friday, and the CFPB plans on creating basic consumer protection standards.
Director Chopra stated that the CFPB is developing rules or researching potential activity in several areas, including: (i) reporting certain medical debts to the credit bureaus; (ii) BNPL standards; and (iii) protecting consumer data, particularly in the context of credit reporting.