Digital Fraud: A 2025 Wake-Up Call

The global battle against digital fraud has become more fraught, with cybercriminals pivoting from high-volume, opportunistic attacks to sophisticated, AI-driven operations; they’re not just harder to detect, but can cause substantially more damage as well.

An analysis of data from more than 4 million fraud attempts, and surveys of some 300 fraud and risk professions and another 1,200 end users by Sumsub, found what the identity verification firm described as a noticeable “sophistication shift” over the past year. 

A Sophistication Shift for Fraud & Phishing

Fraud involving the use of advanced deception techniques, social engineering, AI-generated identities, and telemetry tampering surged 180% year-over-year, even as the share of these incidents within the overall fraud volume increased from 10% in 2024 to 28% in 2025. Ominously, Sumsub found scammers increasingly deploying autonomous systems capable of executing multistep fraud with minimal human intervention. AI-generated documents accounted for just 2% of all fake IDs and records used in digital fraud last year. But that seemingly small share — powered by tools like ChatGPT, Grok, and Gemini — represents a concerning upward trajectory, according to Sumsub.

“Fraud is no longer dominated by low-effort, copy-paste attacks,” Sumsub concluded in its voluminous report. “Instead, a growing portion of cases are now engineered with precision, requiring more resources to execute, but also causing far greater damage when they succeed. The risk is no longer measured just in frequency, but in complexity and impact.”

Related:Advanced Security Isn’t Stopping Ancient Phishing Tactics

Pavel Goldman-Kalaydin, Sumsub’s head of AI, tells Dark Reading that one somewhat unexpected datapoint in the survey was the continued prevalence of phishing as the primary driver of consumer fraud, at 45%. 

“What stands out is that service-level data breaches now account for 36% of incidents,” he says. In many instances, victims are compromised through no action of their own, Goldman-Kalaydin notes: “For enterprises, it reinforces that security depends as much on the resilience of the vendor ecosystem as on internal controls.”

The US itself, meanwhile, experienced a 15% year-over-year decline in overall fraud rates in 2025. But in keeping with the global landscape, the nature of attacks fundamentally shifted toward more AI-powered operations. Twenty-one percent of attempted fraud cases in the US that Sumsub analyzed involved the use of synthetic identities or AI-generated personas. Chargeback abuse (16%) and account takeover (19%) were two other prominent fraud types in the US.

Related:DPRK’s FlexibleFerret Tightens macOS Grip

“Even though 74% of US fraud victims face direct financial loss, trust in financial services remains high at 81%,” Goldman-Kalaydin says. At least part of it could be due to the fact that only 67% of businesses report fraud cases to regulators, he says. “This gap suggests substantial underreporting and that many incidents are being managed internally without broader visibility.”

An AI-Powered Transformation for Identity Verification 

One overriding theme in Sumsub’s report is how AI tools industrialized digital fraud in 2025. The vendor found scammers harnessing generative AI models to create near-perfect identity fraud documents such as passports, driver’s licenses, and utility bills, complete with accurate holograms, realistic fonts, and textures. In many instances, scammers used text-to-video systems to create highly convincing deepfakes to try and bypass liveness checks. Sumbsub also found that many fraud-as-a-service shops have begun emerging that package these capabilities into ready-to-use kits that even script-kiddies can use to generate thousands of fake documents every day.

Troublingly, AI agents, capable of executing an entire fraud chain autonomously, began making an appearance on the digital fraud front in 2025 as well. “They aren’t traditional bots. Rather, they combine generative AI, automation frameworks, and reinforcement learning to create synthetic identities, interact with verification systems in real time, and adjust behavior based on the outcome,” Goldman-Kalaydin says. “They remain early-stage today, but current trajectories indicate they could become mainstream within the next 18 months, especially within organized fraud networks.”

Related:With Friends Like These: China Spies on Russian IT Orgs

Overall in 2025, digital fraud at the global level got smarter, he says. “That’s evolution. We’ve moved from high-volume, low-skill scams that defenses can filter out to precision-engineered attacks designed specifically to bypass advanced verification systems.”

Sumsub’s report highlighted several measures that organizations are going to need to take to protect against the surge in AI-enabled fraud. The list includes the need for layered identity verification mechanisms, AI-enabled fraud-detection tools, behavioral analytics, and threat-intelligence sharing.