Chapter 8: Risk of Fraud & Illegal Acts Flashcards
What are the three ways fraudulent financial reporting can be accomplished?
- Manipulating, falsifying, or altering accounting records or supporting documents from which the financial statements are prepared.
- Misrepresenting, or intentionally omitting from, the financial statements events, transactions, or other significant information.
- Intentionally misapplying accounting principles relating to amounts, classification, manner of presentation, or disclosure.
What four elements characterize an act of occupational fraud?
Four elements seem to characterize the incidence of occupational fraud. Such an act:
■ Is clandestine (that is, secretive and suspicious).
■ Violates the perpetrator’s fiduciary duties to the victim organization.
■ Is committed for the purpose of direct or indirect financial benefit to the perpetrator.
■ Costs the employing organization assets, revenues, or reserves
What are the three elements that may be called the “root causes of fraud”?
- perceived opportunity
- perceived pressure or incentive
- rationalization
What are the five key principles for managing fraud risk?
The five key principles are:
■ Establish a fraud risk management policy.
■ Perform a comprehensive fraud risk assessment.
■ Select, develop, and deploy preventive and detective fraud control activities.
■ Establish a fraud reporting process and a coordinated approach to investigation and corrective
action.
■ Manage the fraud risk management process, report results, and improve the process.
What are the three key steps in a fraud risk assessment?
The three key steps in a fraud risk assessment are:
- Brainstorming and fraud risk identification.
- Assessment of fraud risk likelihood and impact.
- Based on risk prioritization, developing a fraud risk response.
Predication is a technical term that refers to:
a. The ability of internal auditors to predict fraud successfully.
b. The ability of a fraud examiner to commence an investigation if a form of evidence exists that fraud has occurred.
c. The activities of fraud perpetrators in concealing their tracks so that fraud is covered up and may not be discovered.
d. Management’s analysis of fraud risks so they can put in place effective anti-fraud programs and controls.
B is the best answer. Predication, sometimes called “credication,” refers to the existence of reason to
believe that the allegation of fraud has a strong enough basis to require the formal launching of an
investigation. Fraud examiners would not typically consent to commencing an investigation without
predication (per the ACFE).
What fraud schemes were reported to be most common in the ACFE’s 2016 Report to the Nations?
a. Corruption.
b. Fraudulent billing.
c. Misappropriation of assets by employees.
d. Inappropriately reporting revenues in published financial results.
C is the best answer. The 2016 Report to the Nations identified asset misappropriations, which
occurred in 83 percent of all cases and resulted in a median loss of $125,000, as the most common
fraud scheme
Which of the following is not a typical “rationalization” of a fraud perpetrator?
a. It’s in the organization’s best interest.
b. The company owes me because I’m underpaid.
c. I want to get back at my boss (revenge).
d. I’m smarter than the rest of them.
D is the best answer. While fraud perpetrators may feel they are smarter than most others, this is not a
rationalization for committing fraud. Each of the others is considered a rationalization for fraud.
Which of the following is not something all levels of employees should do?
a. Understand their role within the internal control framework.
b. Have a basic understanding of fraud and be aware of the red flags.
c. Report suspicions of incidences of fraud.
d. Investigate suspicious activities that they believe may be fraudulent.
D is the best answer. The Fraud Guide cites the first three as responsibilities of all employees. Investigating suspicious activities should be conducted by those who are properly trained to do so.
An organization that manufactures and sells computers is trying to boost sales between now and the end of the year. It decides to offer its sales representatives a bonus based on the number of units they deliver to customers before the end of the year. The price of all computers is determined by the vice president of sales and cannot be changed by sales representatives. Which of the following presents the greatest reason a sales representative may commit fraud with this incentive program?
a. Sales representative may sell units that have a lower margin than other units.
b. Customers have the right to return a laptop for up to 90 days after purchase.
c. The units delivered may be defective.
d. The customers may not pay for the computers timely.
B is the best answer. In this situation, a sales representative may deliver more units than the customer wants, and tell them they can return the units up to 90 days later. This may allow the sales representative to inflate his or her bonus. The other three answers also may be concerns for the company, but they are business risks and not necessarily fraud risks.
How should an organization handle an anonymous accusation from an employee that a supervisor in the organization has manipulated time reports?
a. Assign a staff internal auditor to review all time reports for the past six months in the supervisor’s area.
b. Make a record of the accusation but do nothing, as anonymous accusations are typically not true.
c. Assess the facts provided by the anonymous party against pre-established criteria to determine whether a formal investigation is warranted.
d. Turn the issue over to the HR department because this type of anonymous accusation is usually just a human resource issue.
C is the best answer. Before conducting an investigation, it is best to understand all of the available facts against relevant criteria to determine whether an investigation, or some other form of follow-up, is warranted. Even if an investigation is warranted, a staff internal auditor probably does not have the experience to provide the support necessary to take action. Doing nothing is not acceptable as the accusations may be true, and lack of responsiveness sends a negative message to the organization about the tone at the top. The human resources department may need to be involved at some point, but it does not have the experience to assess whether this accusation justifies an investigation
Which of the following is an example of misappropriation of assets?
a. A small amount of petty cash is stolen.
b. A journal entry is modified to improve reported financial results.
c. A foreign official is bribed by the chief operating officer (COO) to facilitate approval of a new product.
d. A duplicate bill is sent to a customer in hopes that they will pay it twice.
A is the best answer. Regardless of the amount, any asset of the organization that is directed for a use
other than what was intended is a misappropriation of assets. The other answers may represent fraud,
but they do not represent a misappropriation of assets.
Which of the following is not an example of a fraud prevention program element?
a. Background investigations of new employees.
b. Exit interviews of departing employees.
c. Establishing authority limits related to purchasing commitments.
d. Analyzing cash disbursements to determine whether any duplicate payments have been made.
B is the best answer. The other answers represent elements that can play an important role in prevent-ing fraud, while answer B would be considered a detective control.
Which of the following types of companies would most likely need the strongest anti-fraud controls?
a. A manufacturer of popular athletic shoes.
b. A grocery store.
c. A bank.
d. An internet-based electronics retailer.
C is the best answer. While all of these organizations are vulnerable to fraud, banks deal in cash, which is valuable to almost all individuals and subject to potentially the largest losses from fraud. Instructors may want to take the opportunity to discuss other outcomes of fraud, such as inadequate protection of customers’ privacy. While C is still the best answer, it will provide students with greater insights into how one must consider the assets involved, the value of the assets, and the potential amounts that can be misappropriated.
A payroll clerk increased the hourly pay rate of a friend and shared the resulting overpayment with the friend. Which of the following controls would have best served to prevent this fraud?
a. Requiring that all changes to pay records be recorded on a standard form.
b. Limiting the ability to make changes in payroll system personnel information to authorized HR department supervisors.
c. Periodically reconciling pay rates per personnel records with those of the payroll system.
d. Monitoring payroll costs by department supervisors monthly.
B is the best answer. Such a control would serve to prevent an unauthorized change to critical payroll data, such as the pay rate. Some students may question why C is not an acceptable answer. This control may help detect unauthorized changes, but it will not prevent such changes. A and D are valid payroll controls, but they would not prevent unauthorized changes.