Cryptliance
Regulatory & Compliance Areas

Regulatory Area

Cyber-Enabled Fraud

FATF now describes cyber-enabled fraud as one of the most widespread and damaging profit-motivated forms of crime.

In this briefing

  • What it is
  • Key things to know

Modern fraud increasingly cuts across identity, payments, digital assets, social media and communications. Criminals may impersonate customers or executives, compromise accounts, manipulate victims into authorising payments, create synthetic identities or direct funds into fraudulent investment platforms. Fraud proceeds can then move rapidly through bank accounts, payment providers, crypto exchanges, self-hosted wallets and cross-border laundering networks.

Fraud has also become increasingly industrialised. Organised criminal groups operate professional scam centres with specialised teams, scripts, customer-management systems, payment infrastructure and money-laundering networks. Although many major compounds originated in Southeast Asia, including Cambodia and Myanmar, INTERPOL and UNODC report that this model has expanded globally and often involves trafficking people into forced criminality.

Key things to know

Fraud is becoming an organised service industry

Many fraud schemes are no longer carried out by isolated individuals. Criminal networks can buy access to stolen data, phishing infrastructure, fake websites, mule accounts, malware, laundering services and trained scam operators through a broader criminal-services ecosystem. This allows campaigns to be launched faster, scaled across jurisdictions and adapted when controls change.

Scam centres create two groups of victims

Professional scam compounds often operate through a dual-victim model. One group is defrauded through investment, romance, impersonation or payment scams, while another may have been recruited through false job advertisements, trafficked and forced to carry out the fraud. By late 2025, INTERPOL had identified trafficked victims from nearly 80 nationalities, showing that the issue is no longer confined to one region.

"Pig butchering" combines trust-building with investment fraud

So-called pig-butchering schemes—also described as relationship-based cryptocurrency investment fraud—typically begin with sustained social engineering. The criminal builds trust over time before directing the victim to a fraudulent platform, showing fabricated returns and encouraging increasingly large payments, often using crypto-assets.

Deepfakes weaken traditional identity and approval controls

AI-generated voices, video and documents can be used to impersonate executives, customers, relatives or counterparties. Controls based solely on recognising a face, voice or communication style are therefore increasingly unreliable. Firms need independent verification routes, transaction-level controls and escalation procedures for unusual or urgent requests. FATF has warned that deepfakes can now be produced at scale to enable cyber-enabled fraud.

Fraud prevention must cover authorised activity

Not all fraudulent payments involve stolen credentials or account takeover. In many scams, the genuine customer passes authentication and authorises the transaction after being manipulated. Effective controls must therefore assess the wider context, including new beneficiaries, rapid changes in behaviour, unusual device activity, transaction purpose, payment velocity and signs of coercion or social engineering.

Fraud and AML controls should operate together

Fraud prevention focuses on stopping victim losses, while AML controls focus on identifying and disrupting illicit proceeds. In practice, the same activity can involve victim accounts, mule networks, shell companies, crypto wallets and laundering infrastructure. Fraud alerts, customer risk data, transaction monitoring, sanctions screening and case-management systems should therefore share information rather than operate independently.

For general information only. Not legal, regulatory or compliance advice.

Working With This Regulation?

Cryptliance helps firms understand what applies, what it means for the business and what to do next — across strategy, controls, product and market execution.