Stupidity...
Fascinated that businesses should leave themselves open to such fraud. I'll wager many of them have anti fraud processes but fail to follow them or update them. It really is a simple case of implementing a risk policy, keeping everyone in an organisation aware of it, constantly updating it and above all, ensuring everyone follows it.
Biting the hand that feeds IT
