This is fraudscape 2025

The flagship intelligence report from Cifas, the UK’s Fraud Prevention Community

Introduction

Welcome to this year’s Fraudscape. It provides a detailed overview and analysis of the fraud risk data filed by Cifas members to the National Fraud Database (NFD) and Insider Threat Database (ITD) in the twelve months to December 2024, and presents these with intelligence provided by Cifas members, partners and law enforcement. Together the insight from these different sources provides a compelling account of the challenges and threats facing the fraud prevention community, as well as the emerging threat vectors which will require focus and dedication to address. 

The headlines make for grim reading. A record number of cases were filed to the National Fraud Database in 2024, over 421,000 in total with cases of identity fraud the most reported (over 249,000 cases). This is particularly noteworthy as total figures for 2023 were 9% down on the year before. 2024 also saw an unprecedented 76% rise in cases of facility (account) takeover, specifically in the telecoms and online retail sectors.

A key driver for these rises appears to be rapid technological change and the easy availability of AI services and ‘fraud toolkits. Geopolitical uncertainty and continued pressures at the cost of living have provided opportunity for criminals to exploit. These issues have a direct impact on the data filed by organisations to the NFD. These same circumstances may also provide incentive for those who may be struggling financially to commit fraud to bolster incomes. Indeed, cases of false application and misuse of facility rose by 10% and 1% respectively in 2024.

The data filed to the NFD reflects the national picture. Fraud is as prevalent as ever. It accounts for almost 40% of all crime reported in England and Wales and is estimated to cost the UK economy £219 billion each year, money that is stolen and used to fund other forms of crime.1  Losses to the public sector are estimated to be as much as £81 billion.2  This is money that could otherwise be used to fund our public services. Consumers, many of them vulnerable, lost £11.4 billion to scams in 2024 alone.3  In 2024, it was those aged 61+ who were most likely to be victims of identity fraud and account takeovers.

The Fraudscape data demonstrates the extent to which fraud is not just industrialised but digitised. The services that enable us to stay connected also expose us to criminals. Fully 80% of all scams are now digitally enabled with fraudsters moving with ease between platforms, services, and technologies. In 2024, 80% of false applications and 86% of identity frauds occurred through online channels.
The threat from fraud is also global and organised, with criminal gangs now mimicking the size and structures of large corporations. Scam factories in south-east Asia and West Africa house hundreds of enslaved workers in appalling conditions, criminalising the vulnerable and economically insecure and forcing them to build and operate a sophisticated infrastructure of call centres and websites intended for the sole purpose of stealing people’s money.

AI is also transforming the capability of fraudsters to operate at scale, harvesting data quickly on targets, producing near-perfect fake documents in seconds, enabling attacks on networks at an entirely new scale and, through the use of deep fakes and AI generated images and voices, impersonating people, both consumers and authority figures, to steal their data and their savings. It has made the threat from fraud not only more compelling and difficult to detect, but more urgent.

It is only through working together, specifically through the sharing of data and intelligence that we will beat the criminals. Cifas’ exists for this very purpose. Through the use of our products and services, our members drawn from across key sectors, including banking, telecoms and technology saved over £2.1 billion in fraud losses.

This year’s Fraudscape report makes clear that while progress is being made, there is still much more to do.
We hope that you find this report and its data insightful. But more importantly, it is used as a call to action to strengthen fraud defences and take the fight to the criminals.

Mike Haley
Cifas, CEO

Our Key Findings for 2025

Download Full Report

Highest number of cases ever recorded!

Over 421,000 cases were filed to the National Fraud Database in 2024, a rise of 13% (over 46,000 cases) and a record number of cases. It is also the largest annual increase in fraud type filings ever recorded by Cifas

Learn more

Identity fraud continues to dominate

249,417 identity fraud cases were filed to the NFD in 2024 up by 11,735 on 2023, representing a 5% increase

Identity fraud is still the most commonly reported fraud risk type, representing 59% of cases filed to the NFD (previously 64%). The vast majority of cases concerned fraud committed through online channels (86%). This is consistent with previous years and highlights the scale by which victims are impersonated using online platforms, and reflecting the ongoing shift towards digital applications for products/services

Learn more

Misuse of facility holds steady

74,247 misuse of facility cases were recorded in 2024, an increase of 1% on 2023

Misuse of facility accounts for 18% of cases filed to the NFD. This is the third highest case type filed to the NFD in 2024 by Cifas members (previously second)

Learn more

Money muling is challenging organisations

In 2024, 34,476 cases were recorded to the NFD in which there was evidence of behaviour indicative of money muling.1  This is a reduction of 8% compared to 2023
1 Based on Cifas filing reasons
Learn more

Account takeovers have surged

Over 74,000 cases of facility (account) takeover were filed to the NFD in 2024, an unprecedented 76% increase compared with 2023

Almost half of all account takeovers relate to a mobile phone accounts (48%) with filings on account takeover in the telecoms sector rising by 105%. Most filings (41%) relate to ‘unauthorised addition of facility’ ie upgrading a mobile handset to a contract, which increased by 96%. There has also been a surge in ‘unauthorised SIM Swaps’, up 1055% (nearly 3,000 cases from 289 in 2023), impacting multiple telecoms organisations

Learn more

False applications continue to rise

Over 21,700 false applications were recorded to the NFD in 2024, an increase of 10% on 2023

This increase highlights the ongoing challenge of individuals using false information or purposefully omitting adverse information to gain personal benefits or access to products/services. False application filings saw the largest increase in the number of online applications instead of other means (80% vs 73% in 2023) suggesting that more than ever criminals are using online channels in order to submit falsified applications

Learn more

The Insider Threat remains

Over 250 cases were recorded to the Insider Threat Database in 2024, down 20% compared to 2023
Learn more

Fact Sheet

1: Over 421,000 cases were filed to the National Fraud Database in 2024, a rise of 13% (over 46,000 cases)
2: Cifas members recorded a case to the NFD every two minutes
3: In 2024 Cifas members prevented an estimated £2.1 billion in fraud losses
4: 249,417 identity fraud cases were filed to the NFD in 2024, up by 11,735 on 2023, a 5% increase
5: Over 74,000 cases of facility (account) takeover were filed to the NFD in 2024, an unprecedented 76% increase on 2023
6: 72,247 misuse of facility cases were recorded in 2024, an increase of 1% compared to 2023
7: Over 21,700 false applications were recorded to the NFD in 2024, an increase of 10%
8: Levels of identity fraud and account takeover have been amplified by the growing availability of AI/generative technologies, giving criminals (and increasingly novice actors) a platform to commit fraud in higher volumes and with likely greater success
9: Phishing is the most common method of taking control of existing accounts, with member organisations reporting high-quality spoofed websites, brand impersonations and even spoofed LinkedIn accounts used to enable intensive and prolonged social engineering activity
10: A high prevalence of account takeovers are now facilitated by remote access technology, and there is widespread concern around how AI will be used to create persuasive, and reactive social engineering scripts, which can be shared or paid for as a service. An emerging concern is audio fakes with organisations already reporting voiceovers being used to answer security questions
11: Cifas fraud behaviours research, suggests nearly half (48%) of adults believe it is ‘reasonable’ to commit some form of first party fraud, with organisations citing a growing social acceptance of this activity
12: Over 250 cases were recorded to the Insider Threat Database in 2024, down 20% compared to 2023
13: 57% of Insider Threat Database cases filed by organisations were discovered by internal controls, with the majority of employees filed being in employment between 1 to 3 years (41%)
14: Despite the decrease, insider threat remains a significant risk to organisations especially in light of remote working and the ongoing cost-of-living pressures tempting some employees into dishonest activity, or offering their services as ‘insiders’ for financial gain

Extra content

We are Cifas  - We protect organisations from fraud and financial crime

We are a not-for-profit membership organisation that brings different sectors together for the common goal of eliminating fraud and financial crime. Over 750 organisations work with us, all benefiting from each other's data, intelligence and learning - using the cutting edge financial crime prevention systems and tools we develop and deliver. For over 30 years we have been trusted by our partners to provide them with the systems and tools they need to detect and prevent fraud and financial crime, saving them billions of pounds in prevented losses.

Want to know when new content is added? Register to be notified

Press

For any press enquiries please contact press@cifas.org.uk