I have a new scenario and not sure whose name will be listed in Part II of the Suspect Information and what to report as the type of suspicious activity.
One of our customers who uses our cash management product had their computer hacked. The hacker was able to gain access to our customers login information for their online services and processed some wire transactions from their account.
I originally thought this would be reported as computer intrusion but after reading some of the SAR Activity Reviews I realize that refers to the banks computers being accessed so I assume we file it for wire fraud?
My main question is who will be listed as the suspect? Normally it would be our customer but since they are the victim instead of the suspect, how would we complete that section?
By the way, we were able to retrieve most of the funds and have tracked the IP address and are attempting to get further information. Anyone have suggestions on how to find the owner of an IP address?
Any help is appreciated.