AU10TIX Year-End Report on Global Identity Fraud Names 2024 'The Year of Fraud-as-a-Service (FaaS)'

Rhea-AI Summary

AU10TIX has released its 2024 Global Identity Fraud Report, highlighting the rise of Fraud-as-a-Service (FaaS) as a major threat. The report reveals how user-friendly fraud kits enabled amateurs to execute large-scale attacks involving up to 8,000+ incidents.

Key findings include a significant mega-attack detected across four regions and three industries, involving 4,580 unique ID template permutations, with APAC accounting for 88% of mega attacks. Social media platforms saw a dramatic increase in fraud, rising from 3% of attacks in Q1 to 30% in Q4 2024. Meanwhile, fraud in the payments sector decreased from 54% to 43%, while crypto attacks stabilized at 24% following MiCA regulations.

The report recommends three key actions: implementing enhanced fraud detection tools for social media platforms, engaging in consortium validation, and adopting proactive AI-driven validation measures to combat emerging threats like deepfakes and synthetic identities.

Positive

• Detection of a major fraud attack spanning multiple regions and industries, demonstrating strong security capabilities
• Successful identification of 4,580 unique fraud permutations in a single attack
• Company's ability to track and analyze fraud trends across different sectors

Negative

• Significant increase in social media platform attacks (from 3% to 30% in Q4)
• Rising sophistication of fraud techniques through FaaS platforms
• Emergence of AI-driven threats like deepfakes requiring additional security investments

Plug-and-Play Fraud Kits Enabled Novices to Launch Mega-Attacks Across Payments, Crypto and Social Media Platforms

TEL AVIV, Israel, Feb. 13, 2025 /PRNewswire/ -- AU10TIX, a global technology leader in identity verification and management, today released its 2024 Report on Global Identity Fraud. Drawing insights from millions of transactions processed around the globe from January to December 2024, the report uncovers significant trends in large-scale organized identity fraud. "2024: The Year of Fraud-as-a-Service (FaaS)" outlines how 'the industry's dark engine' offers user-friendly fraud kits that enable amateurs to execute complex attacks against thousands of accounts in minutes.

"FaaS has elevated cybercrime, enabling a whole cohort of the population to join in on global fraud by launching large-scale attacks involving up to 8,000+ incidents," said Dan Yerushalmi, CEO of AU10TIX. "Using AI-driven tactics such as deepfake selfies and synthetic identities, organized fraudsters are testing traditional security measures like never before. Only by adopting more advanced fraud prevention techniques and multi-layered defenses can businesses stay ahead of emerging threats and strengthen trust with their users."

FaaS platforms provide all the tools, templates and automation that fraudsters need to commit widescale identity fraud, deepfakes, and cyberattacks, including:

• Deepfake generators to create synthetic selfies and videos
• Botnets to automate mass-scale account creation and takeover
• Phishing kits for email and web-based scams
• Dark web marketplaces: a hub for buying stolen data

AU10TIX Identifies 2024 Mega Attack of 4580 Unique Permutations

In one instance, AU10TIX detected a single mega attack spanning four geographies (APAC, EMEA, LATAM, NA) and three industries (payments, crypto, social media). It involved 4,580 unique permutations of the same ID template and had all the markings of an FaaS-enabled attack.
APAC led the pack as the epicenter of 2024's mega attacks, taking 88% of the overall share.

Other 2024 Trends

Social media became a critical battleground for fraud and misinformation in 2024, with a surge of activity related to elections, international conflicts, and other hot-button topics. Users also increasingly leveraged these platforms for e-commerce, which opened the door for fraudsters to conduct illicit activities that were once confined to payments, banking, crypto, and other fintech platforms. As a result, a full 30% of identity fraud attacks targeted social media in Q4, compared to a mere 3% in Q1.

As fraud increased on social media platforms, it declined in the payments sector, historically the most targeted industry. Payments saw 54% of attacks in Q1, but due to tougher law enforcement, the number had declined to 43% by Q4. Attacks against the crypto sector also decreased to 24% and stabilized following the implementation of MiCA regulations in 2023.

Key Takeaways

AU10TIX's 2024 Report on Global Identity Fraud offers three actionable insights to help organizations protect against identity fraud:

• Social Media Platforms Must Invest in Smarter Fraud Detection - Enhanced selfie and fraud detection tools are necessary to protect social media engagement, ensure account authenticity, and prevent the risks posed by fake accounts.
• Engage in Transparent Collaboration - Consortium validation and visual fraud simulations are powerful tools against FaaS-driven mega attacks. Organizations can leverage consortium insights to add a robust second layer of protection and risk mitigation.
• Be Proactive - Don't just react to what's happening now; prepare for what's coming next. Future-proofing means adopting AI-driven validation and multi-layer defenses to combat deepfakes, synthetic identities, and emerging threats.

About AU10TIX 
AU10TIX plays a pivotal role in establishing trust between individuals/companies and digital systems. Founded in 2002, it is the global leader in identity verification and management, protecting the world's largest brands against advanced fraud. The company's future-proof product portfolio helps businesses provide frictionless customer onboarding and verification in 4-8 seconds while staying ahead of emerging threats and evolving regulatory requirements. AU10TIX offers the world's only 100% automated global identity management system, as well as the industry's only solution that can detect organized mass attacks by analyzing traffic patterns and cross-checking data in a consortium of more than 60 major companies. With its deep roots in airport security, AU10TIX has authenticated billions of identities and prevented over $18 billion in identity fraud. AU10TIX is a subsidiary of ICTS International N.V. (OTCQB: ICTSF). Connect with AU10TIX on LinkedIn and on X at @AU10TIXLimited. For more information, visit AU10TIX.com. 

View original content to download multimedia:https://www.prnewswire.com/news-releases/au10tix-year-end-report-on-global-identity-fraud-names-2024-the-year-of-fraud-as-a-service-faas-302374974.html

SOURCE AU10TIX

FAQ

What were the key findings of AU10TIX's 2024 Global Identity Fraud Report?

The report identified FaaS as a major threat, detected a mega-attack with 4,580 unique permutations, and revealed a shift in fraud from payment sectors to social media platforms, with social media attacks increasing from 3% to 30% in Q4 2024.

How did social media fraud attacks change throughout 2024?

Social media fraud attacks increased dramatically from 3% in Q1 to 30% in Q4 2024, making it a critical battleground for fraud and misinformation.

What percentage of mega attacks occurred in the APAC region in 2024?

APAC accounted for 88% of all mega attacks in 2024, making it the epicenter of large-scale fraud attempts.

How did payment sector fraud attacks change in 2024?

Payment sector fraud attacks decreased from 54% in Q1 to 43% in Q4 2024, due to tougher law enforcement measures.

What are the three key recommendations from AU10TIX's 2024 fraud report?

The recommendations include implementing enhanced fraud detection tools for social media, engaging in consortium validation, and adopting proactive AI-driven validation measures.