The agreed statement of facts offers a template for risk teams seeking to avoid a similar fate.
The complexity of Westpac's IT systems, especially when an upgrade was needed, sits at the heart of its core failures to report millions of "international fund transfer instructions" (IFTIs). These mainly related to just two of its "corresponding banks" offshore banks that Westpac receives money from and sends money to.
The relationships are critical to allow funds to move across borders. But they contain pitfalls, especially ascertaining the identity of the source of funds and customers to which money is being sent.
AUSTRAC CEO Nicole Rose at a press conference on Thursday to discuss the Westpac settlement.Alex Ellinghausen
Westpac's "Australasian Cash Management" (ACM) arrangements allowed its corresponding banks to use Westpac's direct access to the Australian clearing system to process payments. The offshore banks liked this: it reduced costs for them, by allowing them to send "structured", or aggregated, files, which was more efficient than sending payment messages, via a system known as SWIFT, for each and every payment.
When these corresponding banks send money into Australia, they must provide Westpac with an IFTI, which Westpac has to send on to AUSTRAC. In 2010, Westpac was upgrading its systems to ensure it could provide AUSTRAC with the reports in the right format. This became the source of the drama that would unfold a decade later.
The bank failed to match the tech upgrades with different ACM arrangements it had set up for different corresponding banks. Its new systems were not properly configured.
One of these was its financial crime IT system, known as Detica, built by BAE Systems. It was the primary tool for screening customers, conducting risk assessments and reporting suspicious transactions to AUSTRAC.
But to get to AUSTRAC, files received from corresponding banks went through another system, known as WIBS. They were then converted into an IFTI format, passing through Detica via another piece of software known as an integrator, and then being processed again into an IFTI that could be uploaded to AUSTRAC.
Westpac realised it had issues with the process as far back as 2010. AUSTRAC queried its IFTI reporting process in late 2011. Westpac was in regular contact with AUSTRAC in late 2010 and early 2011, as it tried to work out a reporting solution for its "structured files".
The statement of facts suggests the bank for which Westpac failed to report the vast majority of IFTIs fell outside the scope of a technical release relating to the Detica system and this was not picked up.
Then, between August 2011 and August 2012, 15 members of Westpac's IT team left to join ANZ, taking with them the bank's corporate knowledge about the complexity of the reporting system. This prevented it setting up a proper audit process that should have ensured incoming IFTIs for two banks were actually going through to AUSTRAC. The regulator described this as "an absence of appropriate end-to-end reconciliation, assurance and oversight processes for IFTI reporting".
"Westpac did not identify that over 72 per cent of all incoming IFTIs received by Westpac for the period 5 November 2013 to 3 September 2018 had not been reported," the statement says.
"As a result of the failure to file the IFTIs on time, AUSTRAC, the ATO and other law enforcement agencies have been deprived of timely information relating to over $11 billion in international payments."
Frustratingly, there were several chances for these reporting errors to have been caught by Westpac.
For example, in July 2013, AUSTRAC recommended it perform a review of its payment instructions to see if they were not being reported to the regulator. The bank prepared a "group assurance report" but it did not catch the non-reporting.
Then, in 2016, a remediation project also failed to identify the reports were not being sent in to AUSTRAC. When the non-reporting from one of the correspondent banks was identified in 2017 by a team leader, it was not escalated to senior management for action.
It was not until 2018 that the proper level of senior management was made aware of the issues. The bank swung into action but by then, the millions of legal breaches had accumulated in dramatic fashion.
The agreed statement of facts also details the holes in Westpac's due diligence that it was obliged to conduct on its corresponding banks. While it asked them questions via a questionnaire, AUSTRAC said these weren't regular enough for higher-risk banks, while the process failed to respond to new risks emerging from the sale of new products to the corresponding banks until November 2019.
There were also issues with the reporting of outgoing IFTIs, when money was being sent from Westpac abroad. One of the products that tripped up the bank was LitePay, which was set up in August 2016 to send up to $3000 to various countries overseas. Again, a systems upgrade was the root cause of the problem.
In May 2017, a technical issue affected database replication, meaning instructions for some IFTIs were not passed between Westpac systems. Then, in November 2018, another technical issue forced internal IT support teams to manually intervene to set the payment status of each transaction, but this then prevented the automated process for completing the reports which means AUSTRAC did not receive them.
Again, the statement of facts says the bank "did not have appropriate end-to-end reconciliation, assurance and oversight processes in place to identify the IFTI reporting failures relating to the LitePay outgoing IFTIs". The issue was not identified until July last year.
And then there is the failure to heed AUSTRAC's warnings, over a six-year period, about conducting proper due diligence on specific customers showing tendencies of criminal activity.
AUSTRAC published information on child exploitation risks associated with sending frequent, low-value amounts into the Philippines and some other jurisdictions in 2013. The Attorney-General's Department did the same in 2016. Westpac was briefed by AUSTRAC in December 2016 and January 2017, about adopting the new methodology to screen for suspicious payments.
But when it launched LitePay, its detection scenarios for child exploitation risk "did not adequately reflect the guidance, and did not apply to other payment channels". It was not properly implemented until October 2019.
The bank has paid a very heavy price for its failures to action AUSTRAC's requests and its governance failures to audit and proactively identify the issues. AUSTRAC said on Thursday while its contraventions were not the result of any deliberate intention to breach the legislation, "there were opportunities to prevent and detect the non-reporting and, when it was identified, failures to escalate it".
Here is the original post:
The tech failures that cost Westpac $1.3b - The Australian Financial Review
- WHO launches new initiative to tackle the main cause of vision impairment - December 19th, 2024
- Blindness Advocates on Why There Should Be Audio Description Oscars - Variety - December 19th, 2024
- Diabetic retinopathy is treatable and preventable but only if you catch it in time - USA TODAY - December 19th, 2024
- AI: Could it help prevent blindness in diabetics? - BBC.com - December 19th, 2024
- Health Officials Investigate Rare Form of Blindness Tied to Ozempic - Gizmodo - December 19th, 2024
- Ozempic Could Be Blinding People Trying to Lose Weight - VICE - December 19th, 2024
- What is retinitis pigmentosathe vision disorder in the movie Blink? - National Geographic - December 19th, 2024
- VR shows promise in aiding navigation of people with blindness or low vision - Health Tech World - December 19th, 2024
- Ozempic could be linked to a common cause of sudden blindness, study finds - Quartz - December 19th, 2024
- New virtual realitytested system shows promise in aiding navigation of people with blindness or low vision - Tech Xplore - December 19th, 2024
- Ex-meth user who gouged her own eyeballs out while high says she is happier years after nightmarish episode - New York Post - December 19th, 2024
- Officials investigating link between Ozempic and eye-rotting disease that makes people blind - Daily Mail - December 19th, 2024
- Youngster to 'have eye removed' after minor fall - but NHS waitlist 'over 3 years' - NationalWorld - December 19th, 2024
- Restoring Vision: The Promise of Stem Cells in Healing Blindness - This is Local London - December 19th, 2024
- COAVS and Fred Hollows Foundation strengthen efforts to combat blindness in Pakistan - 24newshd - December 19th, 2024
- Study finds link between Ozempic and increased risk of vision loss - The Express Tribune - December 19th, 2024
- Going blind at 33 is devastating I wont see my childrens faces as they grow up - The Telegraph - December 19th, 2024
- Europol terror report reveals stark blindness about where the danger lies - Gript - December 19th, 2024
- Elton John lost his vision; signs and symptoms of eye infections that can cause blindness - The Times of India - December 6th, 2024
- Elton John's battle with blindness: How 77-year-old star's husband David Furnish guided him around premiere as - Daily Mail - December 6th, 2024
- Experimental study shows connection between COVID infection and age-related blindness - Medical Xpress - December 6th, 2024
- Elton John confirms shocking blindness after severe infection fight: I havent been able to see.. - Hindustan Times - December 6th, 2024
- Yes, an Eye Infection *Can* Lead To Vision Loss Heres How - Katie Couric Media - December 6th, 2024
- Elton John Battling Partial Blindness After Serious Eye Infection - Digital Music News - December 6th, 2024
- CU Anschutz researchers working to cure blindness through total eye transplantation - 9News.com KUSA - December 6th, 2024
- Elton John lost his vision from an eye infection. Here's why that might happenand how to prevent it - Fortune - December 6th, 2024
- Elton John announces blindness due to infection - CBS19.tv KYTX - December 6th, 2024
- David Frost: I suffer from face blindness. As a politician, being unable to identify people is agony - The Telegraph - December 6th, 2024
- Hes still standing how Elton John has survived far worse than blindness - The Telegraph - December 6th, 2024
- Foundation Fighting Blindness Partners with University of Colorado Anschutz Medical Campus and Other Leading Institutions to Secure Up to $46 Million... - December 6th, 2024
- Walmart helping low vison and blind customers shop with new app - KSLA - December 6th, 2024
- Elton John Says He Is Blind In The Right Eye Due to An Infection; What Is It All About? - Times Now - December 6th, 2024
- Trumps Win: The Blindness of Republicans and Democrats - The Times of Israel - December 6th, 2024
- Heres every song on The Agency soundtrack - NME - December 6th, 2024
- Elton John's worrying health battles in full as he confirms blindness - The Mirror - December 6th, 2024
- Symptoms of serious eye infections after Elton John says he is now blind - LADbible - December 6th, 2024
- Shocking! Elton John Reveals Blindness After Severe Eye Infection: Havent Been Able To... - Republic World - December 6th, 2024
- Face blindness will be examined as part of new project - BBC - December 6th, 2024
- Make your Word documents accessible to people with disabilities - November 27th, 2024
- Make your Word documents accessible to everyone with Accessibility ... - November 27th, 2024
- Use color and contrast for accessibility in Microsoft 365 - Microsoft ... - November 27th, 2024
- Accessibility tools for Word - Microsoft Support - November 27th, 2024
- Rules for the Accessibility Checker - Microsoft Support - November 27th, 2024
- Everything you need to know to write effective alt text - November 27th, 2024
- Create or edit a hyperlink - Microsoft Support - November 27th, 2024
- Video: Check the accessibility of your document - Microsoft Support - November 27th, 2024
- Woman lives with unique condition that means she can still see where things are despite being blind - LADbible - November 27th, 2024
- Arrogance and inherent blindness: Civil probe slams Netanyahu for Oct. 7 failures - The Times of Israel - November 27th, 2024
- Are pistachios the secret to preventing blindness as you age? - The Times of India - November 27th, 2024
- AI is helping people with blindness navigate the world around them - Spectrum News 1 - November 27th, 2024
- Unraveling the Mysteries of Cerebral/Cortical Visual Impairment | Newswise - Newswise - November 27th, 2024
- The silent struggles of color blind students in the UK - News-Medical.Net - November 27th, 2024
- An ideal way to treat Indias corneal blindness problem - The Hindu - November 27th, 2024
- Elle Fanning Has Blush Blindness (and She's Not Afraid to Say It!)This $13 Product Is Key - Who What Wear - November 27th, 2024
- This simple nut is the key to fighting age-related blindness - The Economic Times - November 27th, 2024
- Morning Open Thread: To Lose in Ignorant Blindness What We Might Hold Fast - Daily Kos - November 27th, 2024
- The Murder Capital confirm details of third album Blindness - DIY Magazine - November 27th, 2024
- World report on vision - World Health Organization (WHO) - November 16th, 2024
- Eye care, vision impairment and blindness programme - November 16th, 2024
- $45,000 Raised to benefit SGML Eye Hospital near Ujjain, India for rural and underserved population to prevent blindness - The Indian Panorama - November 16th, 2024
- Foundation Fighting Blindness Funds 35 New Research Grants in FY2024, Renames Key Program to Honor Former Board Chair - PR Newswire - November 16th, 2024
- Fighting blindness with Love Tags - WFLA - November 16th, 2024
- Woman With Rare Disease Waiting For Blindness To 'Cure' Hallucinations - News18 - November 16th, 2024
- Color Blindness Market Is Anticipated To Grow In A Promising - openPR - November 16th, 2024
- Towards a truer vision of broader inclusivity - The New Indian Express - November 16th, 2024
- WHO launches first World report on vision - October 22nd, 2024
- Eye health, vision impairment and blindness - World Health Organization ... - October 22nd, 2024
- Onchocerciasis - World Health Organization (WHO) - October 22nd, 2024
- Eye care, vision impairment and blindness: Refractive errors - October 22nd, 2024
- Blindness Prevention and Control - World Health Organization (WHO) - October 22nd, 2024
- Onchocerciasis (river blindness) - World Health Organization (WHO) - October 22nd, 2024
- Trachoma - World Health Organization (WHO) - October 22nd, 2024
- Blindness is not a curse to be broken - America: The Jesuit Review - October 22nd, 2024
- Alfred University gives away two pairs of EnChroma glasses for color blindness - www.alfred.edu - October 22nd, 2024
- All the Plants We Cannot See - The Revelator - October 22nd, 2024
- ASI Power Summit 2024: How Blindness Helped Michael Hingson Survive the 9/11 Attacks - ASI - October 22nd, 2024
- People with blindness and their allies rally outside Uber and Lyft over ride denials - The Mercury News - October 22nd, 2024
- New Study Links Ozempic to BlindnessBut They Can Actually Protect Your Eyes - First For Women - October 22nd, 2024
- Conservatives Use Trump Assassination Attempt to Target Women in Anti-Diversity War - The American Prospect - October 22nd, 2024
- Google AI to help detect preventable blindness in India and Thailand - Techloy - October 22nd, 2024