Light Dark
April 19, 2018 By Douglas Bonderud 2 min read

According to newly released fraud statistics, the total amount of “fraudulent conduct” reported in 2017 dropped by 6 percent. However, identity fraud is up, according to Cifas’ “The Fraudscape” report. It rose 1 percent last year to 174,523 total cases.

This marks a 125 percent increase over the last decade and is consistent with previous fraud profiles. The report also found that attackers typically leverage the identity of innocent victims, and they use the victim’s actual address to commit fraud in almost 80 percent of cases.

Fraud Statistics Show Rise in Online Scams

The Cifas data indicated that online retail fraud rose 49 percent last year. According to the report, identity fraud “remains a predominantly internet-based offense, with 84 percent of identity fraud occurring through online application channels.”

Account takeover (ATO) fraud is also on the rise, experiencing a 7 percent increase over 2016. A recent Javelin report found that ATO fraud tripled last year, causing more than $5 billion in losses. In addition, the average resolution time for ATO was 16 hours. New account fraud (NAF), meanwhile, rose 70 percent as cybercriminals leveraged personally identifiable information (PII) to create fake credit card and bank accounts.

The Cifas report also noted that actors are increasingly targeting older age groups for ATO fraud using social engineering techniques. These often take the form of phishing emails or over-the-phone “security checks” that ask victims to provide personal information for “verification.” Once attackers have PII in hand, they’re able to either compromise existing accounts or create new ones that may lead to claims of credit fraud or identity theft.

Anonymous Advantage

The report’s authors asserted that the evolution of fraud over the past 20 years has led to a situation where “offenders have the ability to commit their crime of choice without being seen or heard.” One law enforcement officer who was interviewed about the challenges of tackling online, organized crime group (OCG) fraud quipped that the police “are chasing Formula 1 cars with tricycles.”

With offenders now able to commit identity theft, ATO and NAF at a distance, the Cifas report pointed to a need for law enforcement to “consolidate, share and act upon information and data.” This is reflected in one of the report’s positive fraud statistics: Through noncompetitive data sharing, organizations were able to prevent roughly $1.85 billion in fraud losses last year.

 |  |  |  |  |  | 
Douglas Bonderud
Freelance Writer

More from

December 23, 2024

FYSA – Adobe Cold Fusion Path Traversal Vulnerability

2 min read - Summary Adobe has released a security bulletin (APSB24-107) addressing an arbitrary file system read vulnerability in ColdFusion, a web application server. The vulnerability, identified as CVE-2024-53961, can be exploited to read arbitrary files on the system, potentially leading to unauthorized access and data exposure. Threat Topography Threat Type: Arbitrary File System Read Industries Impacted: Technology, Software, and Web Development Geolocation: Global Environment Impact: Web servers running ColdFusion 2021 and 2023 are vulnerable Overview X-Force Incident Command is monitoring the disclosure…

November 22, 2024

What does resilience in the cyber world look like in 2025 and beyond?

6 min read -  Back in 2021, we ran a series called “A Journey in Organizational Resilience.” These issues of this series remain applicable today and, in many cases, are more important than ever, given the rapid changes of the last few years. But the term "resilience" can be difficult to define, and when we define it, we may limit its scope, missing the big picture.In the age of generative artificial intelligence (gen AI), the prevalence of breach data from infostealers and the near-constant…

November 21, 2024

Airplane cybersecurity: Past, present, future

4 min read - With most aviation processes now digitized, airlines and the aviation industry as a whole must prioritize cybersecurity. If a cyber criminal launches an attack that affects a system involved in aviation — either an airline’s system or a third-party vendor — the entire process, from safety to passenger comfort, may be impacted.To improve security in the aviation industry, the FAA recently proposed new rules to tighten cybersecurity on airplanes. These rules would “protect the equipment, systems and networks of transport…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2025 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature