Fraud remains a major problem as over £1bn is stolen by criminals in 2023
UK Finance today releases its 2024 annual fraud report, detailing the amount its members reported as stolen through payment fraud and scams in 2023.
• Criminals stole £1.17bn through unauthorised and authorised fraud in 2023, a 4% decrease compared to 2022.
• Banks prevented a further £1.25bn of unauthorised fraud through advanced security systems.
• 76% of APP fraud started online and 16% started through telecommunications networks.
• The financial services sector is at the forefront of efforts to protect customers from fraud, including partnering with other sectors, government and law enforcement to prevent and disrupt this criminal activity and bring perpetrators to justice.
Ben Donaldson, managing director of Economic Crime at UK Finance, said: “Nearly £1.2bn was stolen from customers in 2023 and the criminals who commit these crimes destroy lives and damage our society.
“The money stolen funds serious organised crime and victims often suffer emotional damage as fraud is a pernicious and manipulative crime.
“The financial services industry remains at the forefront of efforts to protect customers, prevent fraud and support those who fall victim. With reimbursement rules set to change we risk even more money getting into criminal hands, unless the technology and telecommunication sectors take prop action to stop the fraud that proliferates on their platforms and networks.”
Unauthorised fraud losses
Losses due to unauthorised transactions across payment cards, remote banking and cheques were £708.7m this year, down 3% compared to 2022. The total number of recorded cases was 2.7 million, down 2%.
One of the main contributors to the overall fall in payment card fraud losses was a 9% fall in remote purchase losses, the fifth consecutive year of declines in this fraud space. The roll-out of Strong Customer Authentication (SCA) over the past two years has helped to reduce this type of fraud by verifying customer’s identity.
Card ID theft increased again this year, with losses up 53% to £79.1m. Where criminals are unable to socially engineer their victims into making authorised push payments, they use the personal information gathered as well as stolen card details to either take over existing accounts or apply for new credit cards.
There was a 7% increase in the amount of unauthorised fraud prevented, to £1.25bn.
Victims of unauthorised fraud cases such as these are legally protected against losses. And UK Finance research indicates that customers are fully refunded in more than 98% of unauthorised fraud cases.
Authorised Push Payment fraud losses
Authorised push payment (APP) fraud losses were £459.7m, down 5% compared to last year. This comprised £376.4m of personal losses and £83.3m of business losses.
The total number of APP cases was up 12% to 232,429. The main driver behind this is purchase scams, where people are tricked into paying for goods that never materialise. The total number of these cases rose 34% to over 156,000, while the amount lost rose 28% to £85.9m making it the highest loss and case total ever recorded. Purchase scams account for 67% of the total number of APP cases.
The number of romance scams, where victims are tricked into believing they are in a relationship, also reached its highest highs in terms of losses and cases, which were up by 17% (to £36.5m) and 14% respectively.
The number of fraud cases where criminals impersonate a bank or the police and convince someone to transfer money to a “safe account” fell by 37% and the amount lost to this type of fraud fell by 28%. There has been significant investment made in warning consumers that a bank will never ask someone to transfer money in this way.
In total £287.3m of APP losses was returned to victims in 2023 or 62% of the total loss. This has increased from 59% in 2022.
Authorised Push Payment enablers
Authorised Push Payment (APP) fraud losses continued to be driven by the abuse of online platforms and telecommunications. Not only do criminals take advantage of these platforms to encourage the transfer of money through investment, romance or purchase scams but criminals also use scam phone calls, text messages and emails to trick people into handing over personal details and passwords.
Typically, criminals first focus their attempts on socially engineering personal information from their victims with a view to committing APP fraud in which the victim makes the payment themselves. If this is not successful, the criminal often has enough personal information to enable them instead to impersonate their victims, with a view to either taking control of their existing accounts or applying for credit cards in their name.
UK Finance data on the sources of APP fraud shows:
• 76% of APP fraud cases originated from online sources. These cases tend to be lower-value scams, such as purchase scams, and so account for 30% of total losses.
• 16% of cases originated in telecommunications and these tend to include higher value cases, such as impersonation fraud, and so account for 43% of total losses.
Source Volume of cases Value of losses
Online 76% 30%
Telecommunications 16% 43%
Email 1% 11%
Other 7% 16%
Pedro Barata, chief product officer at Feedzai, who have sponsored the report, said: “Scam mitigation has never been more important and although it’s promising that there’s been a slight decrease in the amount stolen through fraud compared to last year – there’s clearly more that can be done to protect consumers.
“While behavioral biometrics, device analysis and transactional data and profiling can stop fraud early and with minimum impact on the user – as proven by the fact that banks were able to prevent a further £1.2bn being stolen – we must collaborate and work together as an industry to ensure maximum protection for the end customer is in place. This is even more pertinent with laws around reimbursement changing and stopping criminal activity in its tracks, shutting down fraudsters and beating them by fighting AI with AI is paramount.”