Enterprise Fraud Reporting
Enhanced fraud detection, prevention, and reporting requirements for GSE enterprises
Advisory Assessment
Impact. FHFA expects GSEs to build comprehensive fraud risk management frameworks with enhanced detection systems and direct regulatory reporting channels for fraud incidents. This advisory establishes new operational requirements for fraud risk assessments, investigation documentation, and staff training programs across multiple business units.
Risk. Examination teams will scrutinize fraud management capabilities as a core safety and soundness matter, with particular focus on reporting completeness and framework implementation. The coordination demands across compliance, operations, risk management, and internal audit create execution risk, especially given the board-level reporting expectations and legal review requirements.
Recommended Action. Compliance should immediately convene a cross-functional working group including risk management, operations, and internal audit to inventory existing fraud capabilities against FHFA's framework requirements. Document current-state gaps in detection systems, reporting procedures, and training programs to establish an implementation roadmap for the 120-day timeline.
Watch. Monitor FHFA examination guidance and peer institution enforcement actions for clarity on framework expectations and reporting thresholds. Track any follow-up supervisory communications that specify implementation timelines or provide additional technical guidance on fraud incident reporting protocols.
Classification
- Regulatory Program
- Enterprise safety and soundness supervision
- Doc Type
- Advisory
- Effective Date
- 2026-11-13 (est.)
- Days to Action
- 120
- Comment Deadline
- —
- Published
- —
Urgency Basis
Advisory bulletin with no specified effective date - guidance implementation typically expected within 90-180 days
Operational Context
Impact by Category
Key Requirements
Scoring Rationale
Moderate impact driven primarily by new reporting requirements to FHFA and operational changes needed for fraud management framework implementation. Most significant impact on reporting/disclosure (score 4) due to regulatory reporting obligations. Compliance and operational scores of 3 reflect multi-business unit coordination needed and examination focus areas.