[distances]

An acquaintance of mine (in Europe) had a default bank transfer message "al-qaeda terrorist fund" for years and years. That did finally raise some flags, but a visit to a bank office was enough to get the account unblocked.

Being a bit stubborn, he still kept the message and just applied rot13 to it.

[wiz21c]

I once wanted to make a small network of bots hosted at frriend's homes. These bots would talk each other by sending some Shakespeare's play excerpts where you would replace the names of the characters by names of various criminals. Just to see how long before I get caught :-)

Until I read that the law in my country explictely forbids "deceiving" the police...

[em-bee]

how is that deceiving the police? it is a performance of fiction.

[wiz21c]

You got my point. That's why I was thinking about being backed by a lawyer 'cos at some point the discussion between "deceiving" and "acting" could be raised :-)

[klik99]

What's funny about this is that multiple people at this bank think that a terrorist group would just freely advertise itself this way. Like some local cell leader names his accounts "Groceries", "Home Repair", "Bombing Supplies"

[alphager]

No, they don't. The banks know perfectly well that this doesn't catch terrorists. But by law they are liable if a terrorist uses their services if they don't have a program to detect terrorists. A key-word match on Iran, bomb, ISIS, etc. is enough in the eyes of the regulator.

[ndriscoll]

No it isn't (at least in the US). Banks have to adhere to Know Your Customer laws, and have to refuse services related to any person or group that's been sanctioned. OFAC has a search tool for such persons[0], but notably says that even using their tool isn't enough to avoid liability. Just saying "we looked for 'bomb supplies' in the memo" isn't going to cut it.

You might see dumb things because banks will do anything they can think of to ensure they comply, and enough in the eyes of the regulator is that they don't allow banned transactions.

[0] https://sanctionssearch.ofac.treas.gov/

[joncrocks]

Person, group or Country. e.g. Iran.

Yes, you're meant to do KYC checks, but also be on the look out for things that your non-sanctioned customers might be doing (post KYC checks) that involves interacting with Sanctioned entities.

Hence lots of pattern matching on names of sanctioned countries/organisations/people.

[A4ET8a8uTh0]

I chuckled. And I know you have a point. I just immediately translated the story to US and this person would have a hard time keeping that account ( or any if he continued ).

Still, actual terror group would do it the same way intelligence agencies call their division 'room 10' as a code for something else. As a species, we certainly are a little weird.

[darkwater]

> but a visit to a bank office was enough to get the account unblocked.

What would have happened if your acquaintance was from Middle-East or Middle-East looking? Probably the story would not have ended so happily or at least not so fast.