Imposter Fraud: Trends, Tactics, and Effective Mitigation
Impersonation (or imposter) scams are some of the most common and effective tactics used by scammers.
In these schemes, fraudsters deceive their victims by pretending to be trustworthy individuals—whether bank representatives, government officials, police officers, or even family members.
The global impact of imposter scams, which often cause serious financial, reputational, and psychological harm, is a growing concern. At the Czech & Slovak ThreatMark Fraud Summit, bank representatives, police officers, and anti-fraud professionals from various sectors shared their insights on this troubling trend.
Findings from the ThreatMark Fraud Summit
In Czechia, the incidence of fraud involving fake bankers and investment advisors has risen significantly, according to Czech police representative Ondřej Kapr. In these cases, fraudsters are highly cunning and adaptable, constantly altering their sophisticated manipulations over time.
This trend was also confirmed by Marek Macháček, a representative of Komerční banka, one of the largest banks in Czechia. He noted that the number of crypto-investment scams impersonating investment bankers has sharply increased. In 2023, this type of fraud accounted for half of all fraud attempts, but by 2024, it had grown to 80%.
This pattern is not limited to Czechia; it can be observed in other countries as well. At the Fraud Summit, Mark Winters shared statistics from the UK, highlighting similar trends. In 2022, imposter fraud involving the police, banks, or other organizations made up the largest portion of total authorized push payment (APP) fraud losses, totaling £177.6 million. In 2023, British consumers lost nearly £148 million to various forms of impersonation fraud (CEO, police, bank staff, and others), according to UK Finance.
Imposter fraud in the US
Imposter fraud is also a leading category in the US. In 2023, there were over 856,000 reported cases. Losses from business and government impersonation scams, in particular, rose significantly, reaching $1.1 billion—more than three times the amount reported by consumers in 2020.
Damages from imposter fraud are not only widespread but also substantial. In 2023, the median loss from government impersonators in the US was $1,400. Scammers posing as US Customs and Border Protection inflicted the highest average loss, at $4,200. Meanwhile, in the UK, the average loss per victim was £7,448.
Five key tactics used by imposters
Impersonation fraud is a classic example of social engineering, exploiting inherent traits of human psychology. Below are some of the main tactics used in these scams.
- Leveraging trusted institutions: It’s no coincidence that fraudsters often pose as bank agents, security personnel, investment advisors, police officers, or government officials. These roles are associated with a high level of credibility and authority, making people more inclined to follow their instructions. This is also why some impersonators pose as top executives (CEO/CFO scams), specifically targeting their “employees.”
- Fake documents to support false claims: At the ThreatMark Fraud Summit, Ondřej Kapr highlighted that fraudsters often present victims with documents that appear to verify their credibility—such as certificates, references, and other fabricated evidence.
- Pretexting: Criminals often research their victims online—through social media and other platforms—to build credibility using accurate details like names, addresses, and other sensitive information. This process is easier than it seems; according to a report by Omdia, it takes only about 100 minutes of internet searching to gather the necessary information. A spoofed phone number or compromised business email is often the final blow to the victim’s caution.
- Creating a sense of urgency: Once the scammer has established authority and trust with the victim, their success is nearly assured. A demand—such as sending money or sharing sensitive information—is typically accompanied by a sense of urgency, leaving the victim little time to question the request.
- Growing sophistication: Imposter fraud is becoming more sophisticated. According to the FTC, some scammers impersonate multiple organizations within a single scam; for example, a fake Amazon employee might transfer you to a fake bank representative or even a fake FBI or FTC agent offering “help.” The increasing use of generative artificial intelligence, particularly deepfakes, is also escalating the threat. While some deepfakes are designed to enhance credibility—such as mimicking high-profile individuals and celebrities endorsing investment or cryptocurrency scams—others are more targeted, like impersonating a CFO, as seen recently in the Arup case.
Who are the impersonators?
Who are the real individuals behind imposter scams? Police experience shows that they are rarely acting alone. At the Czech & Slovak ThreatMark Fraud Summit, it was noted that impersonation fraud often requires a high level of organization, with many scams following specific templates. This sophistication is confirmed not only by the Czech Police but also by INTERPOL, indicating that these criminals are almost always part of well-organized groups.
Imposter scams: A growing challenge for banks
In addition to financial loss, imposter scams inflict considerable reputational harm. They erode consumer trust in digital security and in the institutions that fraudsters imitate.
The situation is particularly challenging for banks. Impersonating bank representatives is a common tactic for fraudsters, posing a serious reputational threat. Additionally, according to 2023 FTC data, bank transfers accounted for about 40% of reported losses linked to US government and business impersonators.
The changing landscape of imposter scam liability
Finally, banks are confronting yet another significant challenge. Due to the rise and severe impact of these scams, this type of fraud has attracted the attention of regulators, who are increasingly demanding that banks compensate victims.
In some countries, such as the UK, the compensation rate for victims of police or bank staff impersonation scams is already notably high, at 78%—the highest among all scam categories.
This practice is expected to shift to Europe, increasing pressure on banks that have not yet reimbursed victims of imposter scams. In the proposed PSD3, which is anticipated to be adopted in early 2025, the EU is taking a similar stance, requiring mandatory compensation for victims of bank impersonation scams that involve spoofing.
Compensating victims is likely the most effective way to protect reputations, particularly in cases involving fake bankers. However, it poses a challenge for banks. To avoid high compensation costs, they must strengthen their prevention and detection mechanisms. Yet, a large portion of imposter scams fall under authorized push payment (APP) fraud, where customers make seemingly legitimate payments under false pretenses—complicating detection efforts.
Read more about the liability landscape
How to mitigate imposter fraud
As impersonation scams use a wide range of fraudulent methods, they require a comprehensive approach to detection and prevention. One of the most efficient in this regard is behavioral intelligence. Its advantages lie mainly in its ability to detect both authorized and unauthorized fraud in real time across all digital channels, based on a variety of signals.
Leveraging behavioral intelligence to disrupt imposter scams
ThreatMark’s Behavioral Intelligence Platform integrates behavioral data with various other inputs, enabling it to assess whether:
- the user is legitimate,
- the user’s behavior matches their usual patterns,
- the transaction involves certain risk factors (e.g., a new payee, an unusual amount, an instant payment request),
- the device is infected with financial malware,
- remote access tools are being used on the device,
- the screen sharing is active,
- or if the user is on a phone call during the banking session.
Individually, these factors might not be conclusive, but when evaluated together and in context, they can detect an imposter scam with remarkable accuracy.
One of the standout advantages of the Behavioral Intelligence Platform is its all-encompassing approach. It not only stops fraudulent transactions but also uncovers attempts to imitate legitimate banking platforms and pinpoints the attackers’ infrastructure, devices, tools, locations, payment methods, and vendors. This makes it possible to dismantle entire fraud networks, offering broad protection to bank customers.
Learn more about the Behavioral Intelligence Platform
Act now to combat imposter fraud
Impersonation scams are a growing threat to the stability of the digital world, a danger that will only intensify with the advancement of AI-generated deepfakes. To keep pace with increasingly sophisticated fraudsters, avoid severe financial and reputational damage, and meet stricter regulatory demands, banks should urgently adopt advanced technologies—such as behavioral intelligence. Investing in these cutting-edge tools is crucial to securing the digital environment and maintaining consumer trust.
Related Articles
-
November 19, 2024
Floods in Poland: How Scammers Exploit Crises to Target Vulnerable Victims
Central Europe was recently struck by severe flooding, which, unfortunately, triggered a surge of scam attempts.
In Poland, fraudsters...
-
October 23, 2024
Scam-Proofing the Future with Behavioral Intelligence: A Whitepaper
As scammers continue to innovate, the need for effective scam-proofing has never been more critical.
From impersonation and romance...
-
October 1, 2024
Purchase Scams: When The Love Of A Good Bargain Comes With A Higher Price Tag
Becky Holmes is an acclaimed author known for her witty and insightful take on the world of online...