Who We Are

Solutions

Merchant Onboarding

Merchant Onboarding

The faster, easier, flexible way to get new merchants up and running.
Dispute Lab

Dispute Lab

We automated the dispute process to save you time and money.
Reseller payouts

Reseller Payouts

Direct end-to-end residuals, commissions, and bonus payouts through APIs.
Risk Management

Risk Management

Powerful fraud identification and detection to protect businesses.
Client Portal

Client Portal

Unprecedented transparency into activities performed for merchants.
Training & Support

Training & Support

Bespoke chargeback coaching and assistance for efficient case management.
Comprehensive Review

Comprehensive Review

Identifying opportunities to mitigate risk and optimise performance.

Contact

Blog

Request a Demo
Synthetic Identity Fraud
June 20, 2025
robot-8744097_1920

The Rise of Synthetic Identity Fraud in Financial Services

Synthetic identity fraud represents the fastest-growing financial crime in the United States, yet many financial institutions still struggle to detect it. Unlike traditional identity theft where criminals steal existing identities, synthetic identity fraud involves creating new identities by combining real and fabricated information. This Frankenstein approach to fraud cost US lenders an estimated $20 billion in 2020, according to the Federal Reserve.

The scale continues expanding as fraudsters refine their methods. These synthetic identities often use valid Social Security numbers belonging to children or individuals without credit histories, combined with fictitious names and addresses. Criminals then spend years building legitimate-looking credit profiles before executing their theft; a patient approach that makes detection extraordinarily difficult.

Traditional identity theft will immediately raise red flags when victims notice unauthorized activity. Synthetic identities have no real victim to complain, allowing fraudsters to operate undetected for years. By the time financial institutions discover the fraud, recovery becomes nearly impossible.

Why Traditional Fraud Detection Fails

Credit bureaus face fundamental limitations in identifying synthetic identities. When fraudsters apply for credit using previously unused SSNs, bureaus create new files rather than flagging mismatches. This vulnerability particularly affects “credit invisibles,” or the 45 million Americans without credit histories who provide perfect cover for synthetic identities.

The extended cultivation period defeats many fraud controls. Fraudsters no longer rush to monetize stolen information. Instead, they nurture synthetic identities for years, making small purchases, paying bills on time, and gradually increasing credit limits. This patient approach bypasses velocity checks designed to catch rapid-fire applications.

Know Your Customer and Customer Identification Program requirements often miss synthetic identities entirely. These regulations focus on verifying that provided information matches databases, not whether the identity represents a real person. A synthetic identity with consistent (though fabricated) information across applications satisfies most KYC checks.

Behavioral analysis struggles because synthetic identities deliberately mimic legitimate customers during cultivation. They maintain normal spending patterns, make regular payments, and avoid activities that trigger alerts. Only during the final “bust out” phase do behaviors change dramatically, and by then it’s too late.

Financial Impact & Risk Exposure

Synthetic identity fraud losses average $15,000 per account according to recent industry studies; significantly higher than traditional fraud. The extended cultivation period allows fraudsters to build substantial credit lines across multiple institutions before disappearing.

Credit cards face the highest exposure, followed by auto loans and personal loans. These products offer quick access to cash or sellable goods. Mortgages see less synthetic identity fraud due to stricter verification requirements and the difficulty of monetizing real estate quickly.

Geographic patterns show concentration in major metropolitan areas where anonymity is easier to maintain. However, digital banking expansion spreads risk nationwide as physical presence becomes less important for account opening.

Economic downturns correlate with increased synthetic identity “bust outs” as fraudsters accelerate cash extraction when legitimate credit tightens. Conversely, economic expansion sees more identity cultivation as credit becomes easier to obtain.

Financial institutions often misclassify synthetic identity losses as credit losses rather than fraud, distorting risk metrics. This classification challenge prevents accurate measurement of the problem’s scope and delays appropriate responses.

Detection Strategies & Red Flags

Effective detection requires verifying individual identity elements against multiple sources. Cross-referencing SSNs with names and addresses across databases can reveal mismatches indicating synthetic identities. However, privacy regulations and data silos complicate comprehensive verification.

Velocity and linkage analysis identifies suspicious patterns. Multiple applications using variations of similar information, shared contact details across unrelated accounts, or rapid credit seeking after dormant periods suggest synthetic activity.

Machine learning models excel at finding subtle patterns humans miss. These systems analyze thousands of variables to identify accounts displaying synthetic identity characteristics. However, they require substantial training data and ongoing refinement to maintain effectiveness.

Document verification technology helps, but it isn’t foolproof. Fraudsters obtain genuine documents for synthetic identities through various means. Physical document checks must combine with database verification and behavioral analysis.

Third-party data enrichment adds context that traditional credit reports lack. Phone number history, address verification, and email age help distinguish established identities from recently created ones. Social media and public records provide additional validation points.

Regulatory & Compliance Considerations

Industry regulations must adapt to address  new synthetic identity threats.

Customer Identification Program rules need updating to address synthetic identity challenges. Current requirements focus on document verification without mandating checks for identity authenticity. Regulators increasingly expect institutions to go beyond minimum requirements.

Suspicious Activity Report filing requirements apply to suspected synthetic identity fraud. Institutions must develop clear criteria for identifying and reporting these activities. Failure to file SARs for known synthetic identities brings regulatory penalties.

Fair lending laws complicate prevention efforts. Enhanced verification requirements that disproportionately affect certain populations risk discrimination claims. Institutions must balance fraud prevention with equitable treatment obligations.

Regulatory examinations increasingly focus on synthetic identity controls. Examiners expect documented strategies, measurable results, and continuous improvement efforts. Institutions without formal synthetic identity programs face criticism and potential enforcement actions.

Prevention & Mitigation Strategies

Enhanced identity verification at account opening provides the best defense. Multi-source verification, biometric authentication, and knowledge-based authentication questions help confirm legitimacy. However, friction must balance with customer experience.

Continuous monitoring catches synthetic identities during cultivation. Changes in behavior, velocity of credit seeking, or linkages to other suspicious accounts trigger reviews. Early detection limits losses even if prevention fails.

Cross-institutional data sharing offers powerful prevention capabilities. Fraudsters typically target multiple institutions simultaneously. Consortium databases allow members to identify synthetic identities others have already flagged.

Risk-based authentication adjusts verification requirements based on threat indicators. Low-risk applications proceed smoothly while suspicious patterns trigger enhanced review. This approach minimizes customer friction while maintaining security.

Industry Collaboration & Solutions

FinCEN’s identity project brings government resources to combat synthetic fraud. Public-private partnerships share intelligence about emerging threats and successful prevention strategies. These collaborations accelerate industry-wide improvements.

Industry consortiums like the Synthetic Identity Fraud Task Force coordinate responses across institutions. Members share data, best practices, and technology solutions. Collective action proves more effective than isolated efforts.

Technology vendors offer increasingly sophisticated solutions. However, institutions must carefully evaluate offerings to ensure they address specific synthetic identity risks rather than general fraud. Integration with existing systems and processes determines implementation success.

The fight against synthetic identity fraud requires continuous evolution. As fraudsters develop new techniques, financial institutions must adapt their defenses. Success depends on combining technology, process improvements, and industry collaboration to stay ahead of this growing threat. Institutions that treat synthetic identity fraud as a distinct risk requiring specialized controls will better protect themselves and their customers from losses.

June 20, 2025
10
Articles

Contact us today to see why Fi911 is rapidly becoming the go-to technology partner for acquirers, payment processors, card issuers, ISOs, payment facilitators and more. 

Introducing Fi911: Powerful, intuitive onboarding and risk management solutions specifically designed to handle all the complexities of the Payments Industry.