Global Identity Fraud Report revealing eight-month ‘mega-attack’

March 2024 Editor's Choice, Security Services & Risk Management

AU10TIX recently released its Q4 Global Identity Fraud Report. Drawing insights from millions of transactions processed across 249 countries from October to December 2023, the report uncovers significant trends in large-scale organised identity fraud. This special edition of AU10TIX’s recurring report goes beyond Q4 to reveal an eight-month-long coordinated identity fraud mega-attack for the first time. Between May and December 2023, organised criminals executed 22 080 fraudulent onboarding attempts using AI-generated variations of a single passport.

AU10TIX researchers have subsequently identified two never-before-seen distinct patterns of ‘mega’ identity fraud attacks, which they have categorised as ‘sudden burst’ and ‘slow burn.’ The sudden burst is represented by the mega-attack involving 22 080 attacks, half of which took place over a short duration of 2-3 weeks. The slow burn refers to the average mega-attack, which involves around 2000 AI-generated IDs being used five to six times per day over a long duration, usually 12 months. The company detected more than ten slow-burn attacks in 2023.

Payments and cryptocurrency were the most targeted sectors in these mega-attacks, but in a surprising development, attacks targeting the social media sector increased by more than 21%. Data suggests that this trend might be tied to organised crime groups attempting to establish social credibility for fake accounts, which will later be used for money laundering and terrorism financing activities.

“We detected these mega-attacks by cross-referencing anonymised ID data against AU10TIX’s consortium of 60+ top-tier organisations, demonstrating the power of collective expertise in identifying complex fraud patterns that may evade individual entities,” said Dan Yerushalmi, CEO of AU10TIX. “Sophisticated AI and deep-fake technology are helping organised crime groups escalate their attack numbers exponentially, but we will continue working to make the world a safer and more secure place.”

Key Q4 trends

Bitcoin value surge led to increased cryptocurrency sector attacks

In Q3, AU10TIX reported a shift in attacks from the cryptocurrency sector to the payments industry, likely in response to the EU’s Markets in Crypto Assets (MiCA) regulations, which require stringent Know-Your-Customer (KYC), Know-Your-Business (KYB) and Anti-Money Laundering (AML) screening for trading platforms. Although this trend continued in Q4, it was impacted by the rising value of Bitcoin throughout the quarter, which attracted both legitimate traders and scammers. As a result, the percentage of global attacks targeting the cryptocurrency sector rose from 23% to 32%. Still, it remained far below the 47% spike of Q2.

Payments tops list as most heavily targeted industry

The payments sector remained responsible for nearly half of all global Q4 fraud attempts. This industry does not have a widespread and globally accepted regulatory framework, so it is crucial that payment organisations strengthen their security protocols to protect consumers from fraudulent transactions.

AU10TIX offers four actionable insights to help organisations protect against identity fraud:

1. Selfie-based biometrics are proven to be effective prevention against fake account onboarding.

2. Robust KYB, KYC, and AML screening are must-haves to protect the reputation of a business.

3. Consortium validation increases privacy and magnifies fraud detection.

4. Be aware that fraudsters are using social media platforms to establish fake ID credibility.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Balancing secure access control and fire safety
Editor's Choice Access Control & Identity Management Fire & Safety
In modern building management, few topics create as much tension as the intersection between security access control and fire evacuation safety. Nichola Allen of G2 Fire sheds light on this delicate balance.

Read more...
Fire safety in South Africa
Technoswitch Fire Detection & Suppression Technews Publishing SMART Security Solutions Editor's Choice Fire & Safety Security Services & Risk Management
Fire safety is sometimes ignored, sometimes relegated to whatever is cheapest, and sometimes treated with the seriousness it deserves, given that it focuses on protecting life and assets.

Read more...
A risk-based approach to fire safety
Fire & Safety Security Services & Risk Management Industrial (Industry) Agriculture (Industry)
A report by fire engineering consultancy ASP Fire is challenging blanket assumptions around combustible-core sandwich panels, arguing instead for a rational, risk-based approach that balances fire safety requirements with commercial realities in sectors such as agriculture, manufacturing and industrial processing.

Read more...
Preventing and suppressing lithium fires
SMART Security Solutions Technews Publishing Editor's Choice Fire & Safety Security Services & Risk Management Smart Home Automation
SMART Security Solutions asked Clyde Becker, director of Pyro Brand, for some insight into the mechanics of lithium-ion battery fire risks, especially thermal runaway, and to define a comprehensive, layered approach to fire detection and suppression.

Read more...
Echoes of 2018? Follow-up on Woolworths explosions
Technews Publishing News & Events Security Services & Risk Management Retail (Industry) Facilities & Building Management
SMART Security Solutions follows up with Jimmy Roodt to find out more about an old connection to the Woolworths bombings from 2018. The investigation remains ongoing.

Read more...
Next-generation cash-in-transit vehicle
News & Events Security Services & Risk Management
Fidelity Services Group has unveiled a new, purpose-engineered Cash-in-Transit (CIT) vehicle designed to redefine crew protection, deter threats, and enhance operational resilience in an increasingly complex criminal environment.

Read more...
AURA partners with Discovery to launch Discovery 911
News & Events Security Services & Risk Management
AURA has announced a partnership with Discovery Insure to power the security-response component of its new Discovery 911 virtual panic-button offering, which is available through the Discovery Insure app.

Read more...
Global security in 2026
Editor's Choice News & Events Security Services & Risk Management Industrial (Industry) Mining (Industry)
The World Security Report 2026 states: “In a world of increasing volatility, physical security has evolved. It is no longer just a defensive measure; it is a critical driver of corporate value.”

Read more...
Who is to blame for autonomous mistakes?
Editor's Choice Security Services & Risk Management Industrial (Industry) Mining (Industry)
Most supply agreements for AI-integrated equipment still closely resemble plant hire contracts from ten years ago: bilateral, human-focused, and silent on who bears the risk when a machine makes a decision on its own.

Read more...
Beyond the checkpoint
Veracitech Editor's Choice
For decades, mining corporations have treated employee screening as a necessary friction point, an operational cost to be managed rather than a strategic capability to be optimised. A new generation of full-body X-ray technology, purpose-built for the realities of high-throughput precious-metals environments, is beginning to change that calculus.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.