Fraud Advisory for Auditors on Govt Schemes & Dormant A/cs

In today’s evolving financial ecosystem, fraud risks are becoming increasingly sophisticated, particularly in areas involving government-sponsored schemes and dormant bank accounts. A recent advisory issued by the Fraud Risk Management Cell, supported by observations from the National Bank for Agriculture and Rural Development (NABARD), highlights critical gaps in audit mechanisms and outlines essential steps for strengthening controls. This blog breaks down the advisory and provides practical insights for auditors, banking professionals, and risk managers.

The advisory stems from the detection of serious irregularities, including loans sanctioned on the basis of forged quotations and invoices, diversion/misutilization of funds under government schemes, unauthorized transactions in dormant accounts, and misuse of biometric authentication and system access.

Alarmingly, The National Bank for Agriculture and Rural Development (NABARD) observed that such frauds went undetected during previous concurrent and internal audits, raising serious concerns about the effectiveness of current audit frameworks

Auditors must Conduct surprise physical verifications of financed units. Use data analytics to detect transaction anomalies. Cross-check invoices with third-party confirmations. Strengthen review of dormant account reactivations, monitor staff behavior patterns and system usage logs and ensure strict adherence to maker-checker controls

Key Risk Areas Identified for Auditors on Govt. Schemes & Dormant A/cs Fraud activity controlling area

1. Government Sponsored Scheme Loans : Fraudulent practices in loan disbursement were a major concern. Audit focus areas:

• Verification of genuineness of quotations/invoices
• Physical verification of financed assets
• Ensuring end-use of funds matches sanctioned purpose
• Reviewing sanction, disbursement, and post-disbursement monitoring

Documentation alone is no longer sufficient—ground-level verification is critical.

2. Dormant / Inoperative Accounts: Dormant accounts have emerged as a major vulnerability. Audit checks include:

• Scrutiny of account activation process
• Review of unusual transactions post-activation
• Verification of customer consent and KYC compliance

Dormant accounts are often exploited due to lower scrutiny and weakened monitoring.

3. User Login & System Access Controls: The advisory highlights risks linked to internal system misuse. Critical areas:

• Examination of staff login activity
• Detection of unauthorized system access
• Monitoring login attempts and suspicious activity
• Ensuring proper user enable/disable controls in CBS

Fraud is not always external—internal system vulnerabilities and user misuse are equally significant.

4. Internal Control & Supervisory Mechanism: Weak internal controls enable fraud to go unnoticed. Key audit checks:

• Transactions processed using IDs of absent or transferred employees
• Compliance with maker-checker system
• Adequate supervisory review mechanisms

Control failures often indicate systemic weaknesses rather than isolated incidents.

5. Early Warning Signals : Detection must shift from reactive to proactive. Indicators to monitor:

• Exceptional or override transactions
• Repetitive transactions handled by the same staff member
• Lack of job role rotation
• Inter-branch transactions that appear abnormal
• Patterns suggesting fund diversion or high-value unexplained withdrawals

Early detection relies heavily on pattern recognition and behavioral analysis.

The advisory clearly shifts expectations from auditors. Move beyond checklist-based audits to risk-based, investigative audits. Ensure real-time reporting of suspicious activities instead of post-facto reporting. Strengthen documentation verification with physical validation. Focus on technology-driven fraud indicators, and importantly, auditors are instructed to report suspicious activities immediately, without waiting for audit completion.

Conclusion

This advisory serves as a wake-up call for the auditing and banking fraternity. The evolving nature of fraud demands a shift from traditional compliance-based audits to proactive, intelligence-driven risk assessment. Fraud prevention is no longer just about controls. it’s about vigilance, verification, and timely action. By implementing these measures, banks and auditors can significantly improve their ability to detect, prevent, and mitigate fraud risks, thereby safeguarding financial integrity and public trust.