Broadcast Retirement Community’s Jeffrey Snyder discusses defending America’s retirement savers from scams and fraud with The SPARK Institute’s Tim Rouse and the Nationwide Cybersecurity Alliance’s Lisa Plaggemier.
Jeffrey Snyder, Broadcast Retirement Community
Becoming a member of me now, Tim Rouse of the Spark Institute and Lisa Plaggemier of the Nationwide Cyber Safety Alliance. Tim, nice to see you.
Lisa, nice to satisfy you.
Tim Rouse, The SPARK Institute
Jeff, thanks for having us. As all the time, it is a pleasure.
Jeffrey Snyder, Broadcast Retirement Community
Pleasure to be right here. Yeah, it is nice to speak to you, Lisa. I can not wait to speak about an important subject, fraud prevention month.
Many Individuals might not be conscious of this, but it surely’s an important subject. Tim, final month we had you and Snezan on to speak about monetary literacy. And I ponder if piggybacking off of economic literacy and the work Spark and persons are doing will assist forestall a few of the frauds and scams that actually might affect retirement plan individuals and retirement plan sponsors.
Tim Rouse, The SPARK Institute
Effectively, Jeff, Spark acknowledges that sturdy monetary literacy covers many matters and protection in opposition to fraud is all the time foundational, proper? And specifically, it is vital to begin younger and with younger employees to start to construct, which can be starting to construct their retirement financial savings and to get them literate by way of what’s on the market, what sort of purple flags they may expertise, unsolicited or pressing requests for account entry, after which phishing emails and issues of that kind. After which for older employees, older savers who’ve saved huge quantities of cash are prime targets for monetary scams.
So schooling builds consciousness. Employers and plan and suppliers ought to do their greatest to combine fraud prevention seamlessly into current teaching programs. Many are doing this right now with focused modules, onboarding, annual enrollment communications, and cell app notifications.
Suppliers are leveraging instruments like quick movies, interactive quizzes, alerts, describing frequent imposter scams. So SPARC encourages plan sponsors to collaborate with their report keepers on all of those efforts.
Jeffrey Snyder, Broadcast Retirement Community
Yeah, and Lisa, actually vital. This is a vital month, however actually daily of yearly must be cyber fraud prevention day, month. What are a few of the fraud dangers and scams that retirement plan individuals are literally dealing with right now?
Lisa Plaggemier, Nationwide Cybersecurity Alliance
Effectively, I imply, you mentioned it, it is rip-off scams and extra scams. I imply, I hear the phrase scamdemic from time to time. Crypto or pig butchering scams, romance, any form of relationship rip-off, scams resulting in account takeovers like Tim talked about.
You may’ve observed the revised loss numbers from the FTC lately. They estimate that whereas 2.4 billion was really what was reported losses by older adults in 2025, that the precise unreported losses could possibly be as excessive as 81 and a half billion {dollars}. I imply, simply to wrap your head round these sorts of numbers.
I imply, that is affecting generational wealth. That is the wholesale switch of wealth out of our nation to adversarial international locations usually. I feel the factor for individuals to recollect is that this is not people who find themselves naive or gullible or simply not savvy.
Our minds and our feelings are being weaponized in opposition to us. These are very refined actors. Like I mentioned, transnational organized crime, ties to hostile nations.
So the largest threat of being victimized is that we’re human. They weaponize easy methods to get your consideration. Human connection is being weaponized, proper?
Loneliness is being weaponized. They create extremely convincing backstories which can be very, very plausible. And I’d posit that they are really more practical in motivating shoppers to take the actions they need them to take than reliable monetary establishments are than the remainder of us are at making an attempt to get shoppers to take motion.
Making an attempt to get a shopper to not use the identical password on each account or to make use of MFA. Hopefully you’ve got mandated it, but it surely’s laborious to get shoppers to do these issues. So when you concentrate on what the criminals are in a position to do to get someone to withdraw money and put it in a crypto ATM, they’re masters at influencing individuals, masters of deception.
So I’d say, do not assume this could’t occur to you, cannot occur to a liked one. Educate your self and assist your loved ones and your family members.
Jeffrey Snyder, Broadcast Retirement Community
Tim, $2.4 billion. Now that did not essentially come from the retirement {industry}, but when I am a plan sponsor- And that was simply from seniors. That was simply seniors.
However Tim, if I am sitting round that committee desk, which so lots of your members’ purchasers do, making selections, how do you prioritize this with the fiduciary protections and your duties?
Tim Rouse, The SPARK Institute
Effectively, our Fraud Prevention Committee, Jeff, has developed {industry} greatest practices round fraud controls that actually are supposed to teach the fiduciary and to offer a baseline for what fiduciary ought to prioritize, not simply 12 months spherical, not only for Fraud Consciousness Month, however ideally speaking these items frequently. So key priorities to incorporate are implementing sturdy multi-factor authentication, like Lisa simply talked about, real-time alerts, participant schooling on verification steps and collaboration by way of data sharing platforms. We work with LIMRA on their fraud, our members work with LIMRA on their fraud share program as a result of simply sharing that data forwards and backwards could be very useful in defeating or serving to to defeat fraud.
After which fiduciary must also conduct common threat assessments and prepare their employees. So past, like I mentioned, past Fraud Consciousness Month, ongoing vigilance via up to date insurance policies, know-how adoption, and industry-wide sharing of risk intelligence is de facto important. And we right here at Spark perceive that.
Jeffrey Snyder, Broadcast Retirement Community
Tim, we rely a lot on know-how in our {industry}, within the retirement {industry} and in monetary companies {industry} on the whole. How do you steadiness the necessity for data, knowledge with digital, with the specter of cyber fraud and cyber assaults?
Tim Rouse, The SPARK Institute
Effectively, you are completely proper, Jeff. Expertise is a double-edged sword, proper? It definitely empowers savers with handy entry, real-time monitoring, and personalised instruments that improve retirement safety, but it surely additionally expands the assault floor for fraud.
Improvements like AI-driven anomaly detections assist our members take a look at behavioral analytics to flag issues which can be unusual, and different safety measures play essential roles within the protection that may typically cease a fraud earlier than it escalates into one thing larger. However as you realize, we’re passionate advocates for advancing retirement safety and serving to America save extra successfully. Nonetheless, fraud makes an attempt have surged, pushed more and more by refined cyber threats, id theft, and exploitation of non-public data like Lisa had talked about earlier.
Jeffrey Snyder, Broadcast Retirement Community
Effectively, Lisa, you talked about, otherwise you have been speaking about a few of these scams, and I ponder for those who might go into a few of the prime behavioral purple flags. One you talked about, I had by no means heard of, I feel you mentioned pig butchering, was {that a} appropriate time period?
Lisa Plaggemier, Nationwide Cybersecurity Alliance
Pig butchering, yeah.
Jeffrey Snyder, Broadcast Retirement Community
However what are a few of, in all seriousness, what are a few of the purple flags that we must be eager about as plan sponsors, as professionals within the retirement {industry}, as advisors, report keepers, et cetera?
Lisa Plaggemier, Nationwide Cybersecurity Alliance
So I can put this into the context of one thing we speak about because the core 4, that actually applies throughout the board, whether or not it is cyber or scams or fraud. Having a protracted distinctive password for each account, you most likely want the assistance of a password supervisor so that you can try this. Utilizing multi-factor authentication on each account that gives it.
And I am gonna say that for those who’re doing enterprise with a monetary establishment that does not supply it or does not, actually everyone must be mandating this at this level. We inform shoppers to get a distinct financial institution. Like for those who’re working with a monetary establishment that does not even supply it, and I’ll run into that in instances after we’re giving talks to the general public, it is actually that vital.
So if it isn’t in your radar, that is not in your plan to get that on the market, it’s worthwhile to catch up could be my recommendation. Hold all of your gadgets and your working programs and every thing updated. After which actually the fourth one which has probably the most to do with scams is watching out for every kind of indicators of social engineering.
In order that sense of urgency that Tim talked about, presents which can be too good to be true funding alternatives that sound too good to be true. Anyone asking you for cash, knowledge, or entry to a tool like a tech help rip-off, Dell is just not gonna name my mother and say, hey mother, we noticed an issue along with your pc, allow us to distant in and so they’ll give us your bank card and we are able to repair it for you. Do not reply the cellphone if you do not know who it’s.
We inform individuals to verify they’ve all their contacts on their cellphone, their physician’s places of work, all these people. It’s okay to not reply the cellphone. We have been all raised, once I was a child and there was a landline and the cellphone rang, someone get the cellphone, proper?
Just like the older era is used to answering the cellphone. And now we have now to form of retrain ourselves to not decide up if we do not know who it’s. Do not reply to texts, if we do not know precisely who that’s, if that individual is not on our contacts.
So we have now all the following pointers and extra on staysafeonline.org after which at thenandnow.data, which is our new marketing campaign for the ageing demographic.
Jeffrey Snyder, Broadcast Retirement Community
And I would be remiss, Tim introduced up synthetic intelligence. It’s totally massive within the retirement {industry} as we search for methods to streamline and enhance the workflow, but it surely’s being weaponized in opposition to individuals as properly. So it isn’t solely changing photographs and doing enjoyable memes, it is getting used to form of strip individuals of their essence.
Lisa Plaggemier, Nationwide Cybersecurity Alliance
Yeah, AI sadly has made the unhealthy guys infinitely extra environment friendly and efficient. To allow them to create a lookalike web site, for instance, of a monetary establishment in simply minutes, they’ll create a really convincing phishing e mail in seconds, they’ll create hordes of them at scale. So there’s the outdated recommendation of checking sender addresses and checking internet URLs to verify they give the impression of being reliable, however these are, even these, even what they’re dreaming up there may be getting an increasing number of refined and it is getting more durable and more durable to inform.
So we inform individuals to verify they’re navigating to their supplier’s web site on their very own, not clicking on hyperlinks to get there. However what issues me probably the most about AI are the deepfake instruments. You form of talked about creating your individual photographs.
So these real-time deepfake instruments, they’re low cost, they’re simply obtainable, and so they enable a prison to have a dialog, let’s simply say with my mother, with grandma, she may assume she’s speaking to my daughter and it is a real-time face and voice swap. So with any, just some seconds of audio or video of my daughter, they’ll persuade my mother that they are on a FaceTime or a cellphone name with my daughter and it is a real-time dialog. So we did a marketing campaign on this final 12 months round April Fools, AI Fools, and the decision to motion was having a secure phrase, having a secure phrase with, it could possibly be a coworker to defend in opposition to issues like MFA assaults, or it could possibly be grandma, it could possibly be my mother.
So we have informed her if she does not hear the phrase avocado, then she does not must be speeding to the scene of an accident or wiring cash to anyone or giving anyone her MFA code. So it is actually about having a verbal password, one thing that solely you realize, do not ship it in a textual content or an e mail. And that is the recommendation that we’re giving to keep away from these deepfake assaults.
Jeffrey Snyder, Broadcast Retirement Community
You could wanna change the avocado password.
Lisa Plaggemier, Nationwide Cybersecurity Alliance
Yeah, I exploit that for example, yeah.
Jeffrey Snyder, Broadcast Retirement Community
Tim, I wanna shut out our dialog, Spark is the main advocate for the retirement {industry}. You are up on Capitol Hill, in reality, you are in Washington, DC proper now. I can see the Washington Monument behind you.
However what do we have to do legislatively, regulatorily to make a distinction? And how are you going to foster that with the partnership with the Nationwide Cybersecurity Alliance?
Tim Rouse, The SPARK Institute
So Jeff, you realize that Spark has been a passionate advocate for enhancing retirement safety and serving to Individuals for a very long time. Nonetheless, fraud makes an attempt have surged, as I discussed earlier, and are pushed more and more by refined cyber threats and every thing that Lisa simply talked about. So Spark members have naturally expanded their focus to incorporate sturdy prevention.
To actually shield retirement, nevertheless, it is about stopping fraudsters from having access to personally identifiable data within the first place. After which they use that to do every thing that Lisa simply mentioned. This problem extends means past simply retirement throughout our complete society right now.
And so we actually have to begin to give attention to the broad sources of this data, like social media platforms, knowledge brokers, unsecured databases, and lax on-line practices that make the fraud makes an attempt simpler. In order that’s actually the place our members are actually beginning to, for the primary time, to give attention to how can we, working with others, get to a few of the root sources of those assaults. So.
Jeffrey Snyder, Broadcast Retirement Community
Yeah, I imply, as Lisa mentioned, there are such a lot of threats on the market. There are adversarial threats. We must be protected.
We have to shield ourselves. We have to assist different individuals shield themselves. Spark does that on behalf of so lots of its members, now with this partnership with the Nationwide Cyber Alliance.
You understand, the sky is the restrict. And you realize what? It is not only one month out of the 12 months.
It is 12 months out of the 12 months. Lisa, Tim, we’re gonna have to go away it there. Nice to see you as all the time.
And look, we sit up for having you again on this system once more very quickly.
Tim Rouse, The SPARK Institute
Thanks, Jeff.
Lisa Plaggemier, Nationwide Cybersecurity Alliance
Thanks for having me.
