(Last Updated On: January 30, 2024)

New York State Goes After Citibank for Failing to Protect & Refund to Scam Victims

New York State Attorney General Files Lawsuit Against Citibank for Scam Victim

Author:
•  SCARS Editorial Team – Society of Citizens Against Relationship Scams Inc.

About This Article

The New York Attorney General, Letitia James, filed a lawsuit against Citibank for negligence in protecting customers from fraud, alleging that the bank failed to implement strong security measures and improperly denied reimbursement to victims.

Citi’s lax security protocols led to millions of dollars being stolen from customers, with some losing their life savings. Victims reported delayed responses to fraud claims, with Citi often leaving them on lengthy holds, allowing scammers to continue their activities. The lawsuit highlights the importance of robust security measures and swift responses to fraud reports by financial institutions.

Attorney General James seeks restitution for victims and penalties against Citi for its deceptive practices. The case underscores the significance of legal protections for scam victims and the necessity of reporting fraudulent activities to regulatory authorities for accountability and consumer protection.

Attorney General James Sues Citibank for Failing to Protect and Reimburse Scam Victims of Electronic Fraud

Citi Maintains Poor Security and Anti-Fraud Protocols, Leading to Millions of Dollars in Losses for New York Account Holders

New York Attorney General Letitia James today sued Citibank, N.A. (Citi) for failing to protect and refusing to reimburse victims of fraud.

SCARS Analysis

  1. Insufficient Security Measures: The New York Attorney General’s lawsuit highlights how Citi’s lax security protocols and ineffective monitoring systems have led to millions of dollars being stolen from its customers. This underscores the importance for scam victims to choose banks with robust security measures to protect their accounts but also the importance of never giving up hope. It also indicates that this is likely not to be the last such lawsuit, and all scam victims who lost money through their bank should file a complaint to their state’s Attorney General’s Office – especially if they live in New York state.
  2. Delayed Response to Fraud: Citi’s failure to respond promptly to red flags and notifications of fraud, as well as leaving customers on lengthy telephone holds, allowed scammers to continue their fraudulent activities unchecked. This emphasizes the need for victims to act swiftly and persistently report fraudulent transactions to their banks and to their local police. However, it also points out the need for more professional conduct by Citibank and others to intervene when customer behavior indicates fraud.
  3. Legal Protections for Victims: The lawsuit alleges that Citi illegally denied reimbursement to victims of fraud, exploiting exceptions in laws such as the Electronic Fund Transfer Act (EFTA). Understanding the legal protections available to victims can empower them to demand reimbursement and hold financial institutions accountable for their losses. However, in practicality, scam victims have little understanding of these laws and even less ability to enforce their rights. This lawsuit is a major step in defending scam victims through the proper use of the courts.
  4. Importance of Reporting: Attorney General James encourages all consumers who have lost money to scammers to report their experiences to the Office of the Attorney General’s Consumer Frauds Bureau. Reporting scams not only help victims seek restitution but also aids in holding banks accountable for their negligence. Scam victims in every state should be doing the same!
  5. Advocacy for Consumer Rights: This lawsuit exemplifies the Attorney General’s apparent commitment to protecting consumer rights and holding big banks accountable for their actions. Scam victims can find support and advocacy through government agencies like the Office of the Attorney General when facing challenges with financial institutions.

The New York Attorney General’s Press Release

The lawsuit alleges that Citi does not implement strong online protections to stop unauthorized account takeovers, misleads account holders about their rights after their accounts are hacked and funds are stolen, and illegally denies reimbursement to victims of fraud. The Office of the Attorney General (OAG) has found that the bank fails to respond to fraudulent activity appropriately and quickly. As a result of Citi’s lax security, New York customers have lost millions of dollars, and in some instances, their entire lifesavings, to scammers and hackers. Attorney General James is seeking to hold Citi accountable for failing to protect its customers and require the company to pay back defrauded New Yorkers with interest, pay penalties, and adopt enhanced anti-fraud defenses to prevent scammers from stealing consumers’ funds.

“Banks are supposed to be the safest place to keep money, yet Citi’s negligence has allowed scammers to steal millions of dollars from hardworking people,” said Attorney General James. “Many New Yorkers rely on online banking to pay bills or save for big milestones, and if a bank cannot secure its customers’ accounts, they are failing in their most basic duty. There is no excuse for Citi’s failure to protect and prevent millions of dollars from being stolen from customers’ accounts and my office will not write off illegal behavior from big banks.”

Harm to New York Customers

Citi is one of the largest banks in the United States and maintains checking and savings accounts for millions of consumers nationwide, including through online and mobile banking. The lawsuit alleges that scammers are able to steal tens of thousands of dollars from Citi customers because the bank does not implement strong data security and anti-breach practices. As a result of Citi’s lax security protocols and procedures, ineffective monitoring systems, and failure to respond in real-time and properly investigate fraud claims, New Yorkers have lost millions to scammers. Customers have lost their life savings, their children’s college funds, or even money needed to support their day-to-day lives as a result of Citi’s illegal and deceptive acts and practices.

One New Yorker had $40,000 stolen from her retirement savings account. In October 2021, the customer received a text message that appeared to be from Citi instructing her to log onto a website or call her local branch. The customer clicked the link in the message but did not provide additional information as requested in the text message. Afterwards, the customer called her local branch to report the suspicious activity but was told not to worry about it. Three days later, the customer discovered that a scammer changed her banking password, enrolled in online wire transfers, transferred $70,000 from her savings to her checking account, and then electronically executed a $40,000 wire transfer, none of which was consistent with her past account activity. For weeks, the customer continued to contact the bank and submit affidavits, but in the end, she was told that her claim for fraud was denied.

Another New Yorker had $35,000 stolen from her account. She was reviewing her online account and found a message that her account had been suspended and was instructed to call a phone number. She called the number provided and a scammer told her that he would send her Citi codes to verify recent suspicious activity. The scammer then transferred all of the money in the customer’s three savings accounts into her checking account, changed her online passwords, and attempted a $35,000 wire transfer. Citi attempted to verify the wire transfer by calling the customer, but she was working and did not see the call at the time. Less than an hour later, the scammer attempted another $35,000 wire transfer, which Citi approved without ever having made direct contact with the customer. She lost nearly everything she had saved, and Citi refused to reimburse her.

Insufficient Online Banking Security

The OAG found that Citi’s systems do not respond effectively to red flags, such as scammers who are using unrecognized devices, are accessing accounts from new locations, or are changing banking passwords or usernames. Additionally, Citi systems do not flag and stop efforts to transfer funds from multiple accounts into a single account and then send tens of thousands of dollars out the door in minutes. Citi also does not automatically initiate investigations or report fraudulent activity to police or law enforcement authorities when consumers first report it to Citi.

In addition, Citi fails to appropriately respond to notifications of fraud by its customers. When victims contact the bank to report fraud, Citi leaves them on lengthy telephone holds, allowing scammers to continue their fraud. Additionally, Citi does not implement sufficient measures to protect consumers from future unauthorized transactions until they visit a local branch. Citi representatives falsely told consumers that their accounts were secure and often promised that their money would be returned, although the bank did not take immediate steps to recover stolen funds. Citi also falsely tells consumers that they need to visit local branches and execute special affidavits detailing the scams that led to their losses — information Citi then used to blame consumers and deny their claims.

Attorney General James alleges that because Citi makes wire transfers available to consumers online and through mobile banking apps, Citi must reimburse victims of fraud under the Electronic Fund Transfer Act (EFTA), similar to when banks reimburse victims of electronic credit or debit card fraud. Under EFTA, banks such as Citi are required to reimburse their customers for money in their accounts that is lost or stolen through unauthorized electronic payments. However, Citi illegally exploited a narrow exception in these laws to deny consumer claims for reimbursement, resulting in millions of dollars in losses for New York consumers. Through this lawsuit, Attorney General James is seeking to stop Citi’s deceptive practices and to collect restitution for victims who were denied reimbursement in the last six years, penalties, and disgorgement.

Attorney General James encourages all consumers who have lost money to scammers who hacked into their online or mobile banking, whether the bank accounts were with Citi or any other bank, to report their experiences to OAG’s Consumer Frauds Bureau.

Today’s lawsuit is the latest action by Attorney General James to hold big banks accountable. Last month, Attorney General James led a coalition of 20 attorneys general in submitting letters to the federal Office of the Comptroller of the Currency and Consumer Financial Protection Bureau urging both agencies to ensure that national banks cooperate with investigations being conducted by state attorneys general. In April 2022, Attorney General James led a multistate coalition of attorneys general in calling on the CEOs of JPMorgan Chase, Bank of America, U.S. Bank, and Wells Fargo to eliminate all overdraft fees on consumer bank accounts.

This matter is being handled by Assistant Attorney General Chris Filburn with the Consumer Frauds and Protection Bureau. The Consumer Frauds and Protection Bureau is led by Bureau Chief Jane Azia and Deputy Bureau Chief Laura Levine, and is a part of the Division of Economic Justice, which is overseen by Chief Deputy Attorney General Chris D’Angelo and First Deputy Attorney General Jennifer Levy.

NY Attorney General Complaint Full Text

New York State OAG Citibank Complaint

SCARS Resources:

PLEASE NOTE: Psychology Clarification

The following specific modalities within the practice of psychology are restricted to psychologists appropriately trained in the use of such modalities:

  • Diagnosis: The diagnosis of mental, emotional, or brain disorders and related behaviors.
  • Psychoanalysis: Psychoanalysis is a type of therapy that focuses on helping individuals to understand and resolve unconscious conflicts.
  • Hypnosis: Hypnosis is a state of trance in which individuals are more susceptible to suggestion. It can be used to treat a variety of conditions, including anxiety, depression, and pain.
  • Biofeedback: Biofeedback is a type of therapy that teaches individuals to control their bodily functions, such as heart rate and blood pressure. It can be used to treat a variety of conditions, including stress, anxiety, and pain.
  • Behavioral analysis: Behavioral analysis is a type of therapy that focuses on changing individuals’ behaviors. It is often used to treat conditions such as autism and ADHD.
    Neuropsychology: Neuropsychology is a type of psychology that focuses on the relationship between the brain and behavior. It is often used to assess and treat cognitive impairments caused by brain injuries or diseases.

SCARS and the members of the SCARS Team do not engage in any of the above modalities in relationship to scam victims. SCARS is not a mental healthcare provider and recognizes the importance of professionalism and separation between its work and that of the licensed practice of psychology.

SCARS is an educational provider of generalized self-help information that individuals can use for their own benefit to achieve their own goals related to emotional trauma. SCARS recommends that all scam victims see professional counselors or therapists to help them determine the suitability of any specific information or practices that may help them.

SCARS cannot diagnose or treat any individuals, nor can it state the effectiveness of any educational information that it may provide, regardless of its experience in interacting with traumatized scam victims over time. All information that SCARS provides is purely for general educational purposes to help scam victims become aware of and better understand the topics and to be able to dialog with their counselors or therapists.

It is important that all readers understand these distinctions and that they apply the information that SCARS may publish at their own risk, and should do so only after consulting a licensed psychologist or mental healthcare provider.

Opinions

The opinions of the author are not necessarily those of the Society of Citizens Against Rleationship Scams Inc. The author is solely responsible for the content of their work. SCARS is protected under the Communications Decency Act (CDA) section 230 from liability.

Disclaimer:

SCARS IS A DIGITAL PUBLISHER AND DOES NOT OFFER HEALTH OR MEDICAL ADVICE, LEGAL ADVICE, FINANCIAL ADVICE, OR SERVICES THAT SCARS IS NOT LICENSED OR REGISTERED TO PERFORM.

IF YOU’RE FACING A MEDICAL EMERGENCY, CALL YOUR LOCAL EMERGENCY SERVICES IMMEDIATELY, OR VISIT THE NEAREST EMERGENCY ROOM OR URGENT CARE CENTER. YOU SHOULD CONSULT YOUR HEALTHCARE PROVIDER BEFORE FOLLOWING ANY MEDICALLY RELATED INFORMATION PRESENTED ON OUR PAGES.

ALWAYS CONSULT A LICENSED ATTORNEY FOR ANY ADVICE REGARDING LEGAL MATTERS.

A LICENSED FINANCIAL OR TAX PROFESSIONAL SHOULD BE CONSULTED BEFORE ACTING ON ANY INFORMATION RELATING TO YOUR PERSONAL FINANCES OR TAX RELATED ISSUES AND INFORMATION.

SCARS IS NOT A PRIVATE INVESTIGATOR – WE DO NOT PROVIDE INVESTIGATIVE SERVICES FOR INDIVIDUALS OR BUSINESSES. ANY INVESTIGATIONS THAT SCARS MAY PERFORM IS NOT A SERVICE PROVIDED TO THIRD-PARTIES. INFORMATION REPORTED TO SCARS MAY BE FORWARDED TO LAW ENFORCEMENT AS SCARS SEE FIT AND APPROPRIATE.

This content and other material contained on the website, apps, newsletter, and products (“Content”), is general in nature and for informational purposes only and does not constitute medical, legal, or financial advice; the Content is not intended to be a substitute for licensed or regulated professional advice. Always consult your doctor or other qualified healthcare provider, lawyer, financial, or tax professional with any questions you may have regarding the educational information contained herein. SCARS makes no guarantees about the efficacy of information described on or in SCARS’ Content. The information contained is subject to change and is not intended to cover all possible situations or effects. SCARS does not recommend or endorse any specific professional or care provider, product, service, or other information that may be mentioned in SCARS’ websites, apps, and Content unless explicitly identified as such.

The disclaimers herein are provided on this page for ease of reference. These disclaimers supplement and are a part of SCARS’ website’s Terms of Use

Legal Notices: 

All original content is Copyright © 1991 – 2023 Society of Citizens Against Relationship Scams Inc. (Registered D.B.A SCARS) All Rights Reserved Worldwide & Webwide. Third-party copyrights acknowledge.

U.S. State of Florida Registration Nonprofit (Not for Profit) #N20000011978 [SCARS DBA Registered #G20000137918] – Learn more at www.AgainstScams.org

SCARS, SCARS|INTERNATIONAL, SCARS, SCARS|SUPPORT, SCARS, RSN, Romance Scams Now, SCARS|INTERNATION, SCARS|WORLDWIDE, SCARS|GLOBAL, SCARS, Society of Citizens Against Relationship Scams, Society of Citizens Against Romance Scams, SCARS|ANYSCAM, Project Anyscam, Anyscam, SCARS|GOFCH, GOFCH, SCARS|CHINA, SCARS|CDN, SCARS|UK, SCARS|LATINOAMERICA, SCARS|MEMBER, SCARS|VOLUNTEER, SCARS Cybercriminal Data Network, Cobalt Alert, Scam Victims Support Group, SCARS ANGELS, SCARS RANGERS, SCARS MARSHALLS, SCARS PARTNERS, are all trademarks of Society of Citizens Against Relationship Scams Inc., All Rights Reserved Worldwide

Contact the legal department for the Society of Citizens Against Relationship Scams Incorporated by email at legal@AgainstScams.org