Auditing standards: PSA 240 & Fraud

Questions and Answers

According to PSA 240, what is the auditor's responsibility in relation to the financial statements?

• To ensure the absolute accuracy of the financial statements.
• To obtain reasonable assurance that the financial statements are free from material misstatement, whether caused by fraud or error. (correct)
• To guarantee that the financial statements are free from any misstatements.
• To prepare the financial statements on behalf of the management.

What is the primary distinguishing factor between fraud and error in financial statements?

• The size of the misstatement; fraud involves larger amounts.
• The intent of the action; fraud is intentional, while errors are unintentional. (correct)
• The level of employee involved; fraud is committed by management, while errors are made by lower-level employees.
• The impact on the financial statements; fraud always has a material impact.

According to PSA 240.6, which of the following statements is most accurate regarding the risk of detecting material misstatements?

• The risk of not detecting a material misstatement resulting from error is higher than from fraud, because errors are more common.
• Material misstatements are easily detected regardless of cause but immaterial errors are often undetected.
• The risk is the same for both fraud and error.
• The risk of not detecting a material misstatement resulting from fraud is higher than from error, due to factors like collusion and manipulation. (correct)

What are the auditor's objectives related to fraud when performing an audit under PSA 240?

To identify and assess the risks of material misstatement due to fraud, obtain sufficient audit evidence, and respond appropriately to identified or suspected fraud. (A)

According to PSA 240, who has the primary responsibility for the prevention and detection of fraud?

Management and those charged with governance. (D)

Which element must be present for fraud to occur?

An individual intentionally making an untrue representation about an important fact. (A)

Which of the following is considered a type of profiling fraud?

Employee Fraud (A)

Which action is associated with misappropriation of assets?

Stealing something of value, converting to a usable form, and concealing the crime. (D)

What does fraudulent financial reporting often involve?

Management override of controls. (B)

Which of the following is an example of fraudulent financial reporting?

Recording fictitious journal entries at the end of an accounting period to manipulate results. (D)

What fraudulent scheme involves employees causing their employer to issue payment to a false supplier by submitting invoices for fictitious goods or services?

Billing Schemes (D)

Which of the following best describes check tampering?

Altering a check that the organization has written to a legitimate payee. (C)

Which activity is an example of computer fraud?

Altering computer-readable records to misappropriate assets. (D)

Which situation regarding payments to vendors is an example of fraud?

Kickbacks are paid by vendors to the entity's purchasing agents in return for inflating prices. (B)

What is corruption defined as?

The misuse of entrusted power for private gain. (A)

Which of the following is an example of corruption?

Accepting a bribe in exchange for influencing a business decision. (C)

According to the information, which of these characteristics is more commonly associated with fraudsters?

Being male and intelligent, but bored with the everyday job routine. (D)

Which trait would most likely be associated with a fraudster?

A disdain for rules and regulations. (D)

Which factor is a component of the fraud diamond, contributing to the existence of fraud?

Opportunity (A)

According to the fraud triangle, what is 'pressure' defined as?

The financial or emotional force pushing toward fraud. (B)

Which action should an auditor take regarding the risk of material misstatement due to fraud?

Maintain a high degree of professional skepticism. (B)

Why are management inquiries on their own considered insufficient for identifying the risk of material misstatement?

Those inquiries are unlikely to provide useful information regarding the risks of material misstatement resulting from management fraud. (D)

Which action is an example of an overall response to the assessed risks of material misstatement due to fraud?

Incorporating an element of unpredictability in the audit procedures. (B)

When an auditor discovers a minor employee defalcation, to whom should this be reported?

To the appropriate level of management, even if the amount is inconsequential. (C)

Which is a valid statement concerning communication to those charged with governance?

Communication may be oral or written, depending on the circumstances. (D)

When might an auditor consider obtaining legal advice regarding potential fraud?

When the auditor has doubts about the integrity of management or those charged with governance. (D)

Under what circumstance may an auditor's duty of confidentiality regarding a client be overridden?

When required by regulatory requirements, statute, the law, or courts of law. (D)

Why is a lack of auditor independence a problem?

It can compromise the auditor's objectivity and skepticism. (D)

Which of the following is a key element in deterring fraud?

Corporate Governance and Responsibility (B)

Which of the following represents an error in applying accounting policies?

Using an inappropriate method for inventory valuation. (A)

What is the purpose of emphasizing fraud deterrence?

To persuade individuals not to commit fraud. (B)

What is the likely implication of frequent and extensive manipulation coupled with a high degree of collusion on an audit?

It decreases the auditor's ability to detect fraud. (C)

How does management fraud typically manifest regarding financial reporting?

By creating an illusion that the entity is healthier and more prosperous than it actually is. (C)

What action exemplifies an employee committing payroll fraud?

An employee setting up a fictitious employee in the payroll system and collecting the wages. (C)

What inherent limitation related to the preparer of financial statements can lead to errors?

Inherent limitations such as judgment, fatigue, and mathematical errors. (A)

Which factor related to the size, complexity, and ownership characteristics significantly influences the consideration of relevant fraud risk factors?

This factor has a significant practical influence on the fraud risk assessment. (C)

What is one of the key steps an auditor should perform in responding to the assessed risks of material misstatement due to fraud?

Changing the Nature, Timing, and Extent of Substantive Tests. (B)

In the context of deterring fraud, what does 'Issuer and Management Disclosure' refer to?

Disclosing Financial Information to Stakeholders and Maintaining Transparency. (B)

Flashcards

Fraud vs. Error

Misstatements can arise from fraud or error; fraud is intentional, error is unintentional.

Error (in financial statements)

Unintentional misstatement in financial statements, including omissions.

Fraud (in financial statements)

Intentional act using deception for unjust or illegal advantage.

Fraud Detection Risk

The risk of not detecting material misstatement from fraud is greater than from error.

Auditor's Fraud Objectives (PSA 240)

Identify/assess fraud risks, obtain audit evidence, respond appropriately.

Who is responsible?

Prevention and detection of fraud

Fraud Prevention

Reduces opportunities for fraud.

Fraud Deterrence

Persuade individuals not to commit fraud.

Elements of Fraud

Untrue representation, victim belief, victim reliance, victim loss.

Misappropriation of Assets - How?

Stealing something, converting to cash, concealing the crime.

Management Fraud

Using financial statements to create a false impression.

Fraudulent Financial Reporting

Misstating financials to appear better.

Asset Misappropriation

Theft of an entity's assets.

Billing Schemes

Submitting invoices for fictitious goods/services.

Check Tampering

Forging or altering a check.

Corruption (Fraud)

Misuse of entrusted power for private gain.

Typical Fraudster – Gender

Male (Value), Females (Frequency/Volume)

Typical Fraudster – Personality

Intelligent, egotistical, inquisitive, risk taker, rule breaker, hard worker.

The Fraud Diamond

Opportunity, Motivation, Rationalization, Capability.

The Fraud Triangle

Pressure, Opportunity, Rationalization.

Entity's Influence

The size, complexity contribute to the consideration of relevant fraud risk factors.

Management Inquiries

Management is responsible for internal controls and financials.

Auditor Overall Responses

Assigning personnel, evaluating policies, unpredictability, changing tests.

Communication of Fraud

Communicate to proper management ASAP.

Confidentiality Exception

Duty may be overridden by law.

The fraud deterrent

Auditor and director independence, oversight, ethics, internal control

Study Notes

Related Standards

• PSA 240 (Redrafted) relates to the auditor's responsibilities relating to fraud in an audit.
• PSA 315 (Redrafted) involves identification of risks of material misstatements.
• PSA 330 covers the auditor's procedures in response to assessed risks.
• PSQC 1 relates to Philippine Standards on Quality Control.
• The Code of Ethics for CPAs in the Philippines is a related standard.

Basic Premise

• An auditor is responsible for obtaining reasonable assurance that financial statements are free from material misstatement, whether from fraud or error, per PSA 240.5.
• Financial statements are still the responsibility of management.
• Auditors are concerned with errors and frauds affecting the financial statements.

Error vs. Fraud

• Misstatements arise from either fraud or error, according to PSA 240.2.
• Fraud is intentional misstatement, while error is unintentional.

Error Defined

• Error is an involuntary or unintentional misstatement in financial statements.
• Errors include omission of an amount or disclosure, incorrect accounting estimates, mistakes in applying accounting policies, and preparer limitations.

Fraud Defined

• PSA 240.11 defines fraud as an intentional act involving deception to obtain unjust or illegal advantage.
• The act is by one or more individuals among management, those charged with governance, employees, or third parties.

Important Considerations (PSA 240.6)

• The risk of not detecting material misstatement from fraud is higher than from error.
• Collusion may cause auditors to believe false audit evidence. -Auitor's ability to detect fraud depends on the skillfulness of the perpetrator, the degree of collusion, and the seniority of involved individuals.

Auditor Responsibilities for Fraud

• PSA 240 outlines the auditor's objectives in identifying fraud
• The objectives are to identify and assess risks of material misstatement.
• The objectives also include to obtain sufficient audit evidence about assessed risks and appropriately respond to suspected fraud.

Management's Role in Fraud Prevention

• Management and those charged with governance are primarily responsible for fraud prevention and detection.
• Management should emphasize fraud prevention to reduce opportunities.
• Management has to emphasize fraud deterrence to persuade individuals not to commit fraud.

Existence of Fraud

• Fraud occurs when someone intentionally makes an untrue representation.
• Fraud occurs when the untrue representation is believed by a victim.
• Fraud occurs when the victim relies upon the untrue representation.
• Fraud occurs when the victim suffers a loss by relying on the untrue representation.

Fraud Types

• Fraud includes misappropriation of assets and fraudulent reporting.
• Employee and Management Fraud are types of fraud

Misappropriation of Assets (How?)

• Stealing something of value (an asset)
• Converting the asset to usable form (cash)
• Concealing the crime to avoid detection

Management Fraud

• Management fraud is perpetrated by those at higher levels than where internal controls typically relate.
• It involves using financial statements to create an illusion of a healthier, prosperous entity.
• Asset misappropriation is often hidden in complex transactions involving related third parties.

Fraud Schemes

• Fraudulent financial reporting and asset misappropriation are types of fraud scheme.
• Corruption is another type of fraud scheme.

Fraudulent Financial Reporting

• Fraudulent financial reporting misstate the financial statements to make copy "better".
• It often involves management overriding controls.
• Inappropriately adjusting assumptions and judgements can result in fraudulent financial reporting.
• Omitting, advancing, or delaying recognition in the financial statements can result in in fraudulent financial reporting
• Concealing facts that could affect recorded amounts can also result in in fraudulent financial reporting

More elements of of Fraudulent Financial Reporting

• Engaging in complex transactions misrepresents financial position/performance.
• Altering records related to significant transactions is fraudulent.
• This usually occurs as management fraud.
• Fraud may be tied to short-term financial measures, or bonus packages.

Methods of Fraudulent Financial Reporting

-Manipulating, falsifying, or altering accounting records or documentation.

• Misrepresenting or intentionally omitting information from financial statements.
• Intentionally misapplying accounting principles.

Asset Misappropriation Details

• Asset misappropriation involves theft of an entity's assets, often perpetrated by employees in small amounts.
• Common schemes involve directly or indirectly diverting assets to perpetrators.

Examples of Asset Misappropriation

• Skimming, cash larceny, and lapping are examples of asset misappropriation.
• Embezzling receipts is also an example of asset missapropriation

Billing Schemes (Vendor Fraud)

• Employees cause their employer to issue payment to a false supplier.
• They submit invoices for fictitious goods/services, inflated invoices, or invoices for personal purchases.
• Shell company fraud, pass-through fraud, and pay-and-return are examples.

Check Tampering

• Involves forging or changing a check the organization has written to a legitimate payee.
• An employee steals an outgoing check to a vendor, forges the payee's signature, and cashes it.
• Stealing blank checks and making them out to oneself or an accomplice is also check tampering.

Other Examples of Asset Misappropriation

• Payroll fraud and expense reimbursements are examples of asset misappropriation.
• Theft of cash and non-cash fraud are other examples of asset misappropriation

Computer Fraud

• Altering computer-readable records/files involves theft/misuse of assets.
• Altering the logic of computer software involves theft/misuse of assets.
• Illegal use of computer-related information is computer fraud.
• Theft, corruption, or intentional destruction of computer software is a type of computer fraud.
• Theft, misuse, or misappropriation of computer hardware is computer fraud.

Summary per PSA

• Embezzling receipts and stealing physical assets are types of fraud.
• Causing an entity to pay for goods/services not received is a type of fraud.
• Using an entity's assets for personal use is fraud.

Corruption

• Defined as the misuse of entrusted power for private gain.
• It involves an executive, manager, or employee colluding with an outsider.
• Bribery, illegal gratuity, conflicts of interest, and economic extortion are examples.

Characteristics of Fraudsters

• Fraudsters are generally male, or female.
• Fraudsters are intelligent, egotistical, and inquisitive.
• Fraudsters are risk takers and rule breakers.
• Fraudsters are also hard workers, often under stress, greedy, or have financial needs.

Potential Fraudsters

• Disgruntled workers who are big spenders may try to "get even".

The Fraud Diamond

• The Fraud Diamond consists of four factors contributing to fraud.
• Opportunity, motivation, rationalization, and capability are components of the fraud diamond.

Components of the Fraud Diamond

-Opportunity includes environmental factors and victim characteristics.

• Motivation comprises financial pressure, monetary gain, achievement, and manipulation. -Rationalization is belief that violating rules is acceptable, or a disdain for others.
• Capability includes knowledge of governance/economic institutions, ability to manipulate, and technical knowledge to exploit weaknesses.

The Fraud Triangle

• The Fraud Triangle is a framework for spotting high-risk fraud situations.
• Pressure, opportunity, and rationalization are components.

Fraud Triangle Components

• Pressure includes financial or emotional forces.
• Opportunity is the ability to execute a plan without getting caught.
• Rationalization is the personal justification of dishonest actions.

Fraud Risk Factors

• Fraud risk factors cannot be easily ranked in order of importance.
• Determining whether a fraud risk factor is present requires professional judgment.
• The size, complexity, and ownership affect consideration of fraud risk factors.

Risk Assessment Procedures

• Inquiries of management are risk assessment procedures.
• Management is responsible for internal control, so inquiries are appropriate.
• The auditor also makes inquiries about management's fraud risk assessment.
• The auditor makes inquiries to management about its process for identifying and responding to risk of fraud.

Inquiries of Management and Others

• Management fraud makes management inquiries unlikely to provide useful information.
• Inquiries of others may allow them to convey information not otherwise communicated.
• In-house legal counsel, chief ethics officers, and operating personnel can all be inquired with.

Responses to Assessed Risks of Material Misstatement Due to Fraud

• The auditor should determine overall responses by considering how the audit can reflect increased professional skepticism.
• Assigning/supervising personnel and evaluating accounting policies are overall responses.
• Incorporating unpredictability and changing the NTE of tests are also responses.

Communication to Management

• When an auditor finds evidence of fraud, it should be promptly communicated to the appropriate management level.
• Level determination is a matter of judgment, based on factors such as collusion and magnitude.
• The appropriate level is at least one level above those who appear to be involved.

Communication to Governance

• Communication with those charged with governance may be oral or written.
• PSA 260 lists factors for determining how to communicate.
• Material misstatement of fraud involving senior management should be reported in a timely manner.
• Communication is assisted if the auditor and the governance agree on the extent of communication early on.
• Auditors may seek legal advice if they doubt the integrity of management.

Communication to Authorities

• Auditors must maintain client confidentiality, but this may be overridden by regulatory requirements.
• Auditors of financial institutions have a statutory duty to report fraud to the BSP.
• Auditors have a duty to report material audit findings to the SEC if management fails to do so on a timely basis.
• The auditor may seek legal advice to determine steps to take regarding public interest aspects of identified fraud.

Reasons for Fraud

• Lack of auditor independence and director independence contribute to fraud.
• Questionable executive compensations schemes and inappropriate accounting practices contribute to fraud.
• Poor/weak/absent effective systems of internal control also contribute to fraud

Fraud Deterrents

• Is there a Framework to Deter Fraud
• Deterrents include accounting oversight board with auditor independence.
• Corporate governance and issuer/management disclosure are also deterrents.
• Fraud and criminal penalties are also a deterrent
• The Sarbanes-Oxley Act (SOx) aims to foster American Competitiveness with Corporate Accountability (2002).