News

Why Financial Crime Needs a Shared, Data-Driven Response

by CBIA Team

Updated April 10, 2026

A new analysis of global financial crime trends has revealed a dramatic surge in fraud originating from encrypted messaging platforms, with reported cases on Telegram increasing by 233% year-on-year. The data, drawn from transaction records and customer reporting, highlights a measurable shift in criminal behaviour away from traditional social networks and towards environments that are structurally difficult to monitor. This evolution has profound implications for consumers, financial institutions, and regulators attempting to police a rapidly expanding digital frontier.

Background and Context

Historically, financial fraud relied on familiar approaches such as phishing emails, cloned websites, and cold calls. However, the latest Consumer Security and Financial Crime Report, produced in partnership with Juniper Research, indicates that criminal activity is increasingly migrating to encrypted digital ecosystems. While Meta applications still account for 44% of reported scams globally, Telegram’s rapid rise—now accounting for one in five reported scams—signals a significant evolution in tactics.

The platform’s end-to-end encryption and large private group channels create an operating environment that obscures malicious activity from traditional oversight mechanisms. The research data demonstrates clear consequences: Telegram now facilitates more than half of all job scams, a category that has tripled in volume over the past year. Meanwhile, other platforms are seeing emerging threats; TikTok’s share of fraud cases has increased sixfold year-on-year, though it remains smaller in absolute terms.

In the UK, the dominant threat remains more traditional; purchase scams account for 54.9% of all reported cases, a figure that has held relatively constant and speaks to vulnerabilities in routine consumer transactions. Underpinning these trends is a commercial dynamic that sees social media platforms generating an estimated £3.8 billion in revenue from fraudulent advertisements targeting European users in 2025. This financial windfall coincided with a 17% rise in Authorized Push Payment (APP) fraud volumes recorded by UK Finance in the first half of the same year, suggesting a growing imbalance in where fraud originates versus who bears the cost.

Key Figures and Entities

The response to this evolving threat landscape is being shaped by major financial infrastructure players and fraud detection specialists who are attempting to close the intelligence gap. Mastercard has moved to bridge the historical divide between cybersecurity and fraud prevention with the launch of Mastercard Threat Intelligence in late 2025. Following the acquisition of cyber threat intelligence firm Recorded Future, the product integrates network visibility with curated threat data. This aims to address the reality that 60% of global fraud leaders only learn about breaches after losses have begun to accumulate. During market testing, the platform’s intelligence data reportedly helped partners identify and remove malicious domains linked to an estimated $120 million in fraud.

Stripe is leveraging the sheer scale of its payments infrastructure to combat fraud through its Radar tool. Unlike standalone detection layers, Radar is built directly into Stripe’s payments infrastructure and trained on the full volume of transactions flowing through the network. Processing over $1.4 trillion in payments annually across 197 countries, the system achieves a 92% probability of having seen a given card previously. Stripe reports that this approach reduces fraud by an average of 38%, while adaptive rules introduced in 2025 allow risk thresholds to incorporate issuer intelligence dynamically, recovering revenue that stricter blanket rules would otherwise forfeit.

Sumsub approaches the issue from the identity layer outward. Their 2025-2026 Identity Fraud Report documents a 180% year-on-year increase in sophisticated, multi-step fraud, pointing to a consolidation from accessible fraud-as-a-service toolkits into organised operations using synthetic identities and deepfakes. Sumsub’s data indicates that 76% of fraud attempts now occur post-onboarding, during routine user activity. Consequently, the firm has expanded into device intelligence and continuous behavioural monitoring, combining KYC, transaction monitoring, and fraud network detection within a single integration to address risks across the full customer lifecycle.

Legal and Financial Mechanisms

The fight against fraud is complicated by a misalignment of financial incentives. Following the introduction of a mandatory reimbursement regime in the UK designed to sharpen incentives across the payments ecosystem, financial institutions are absorbing greater liability. However, the platforms on which much of this fraud originates remain largely insulated from its costs. The report’s findings suggest that despite the new regulations, the commercial model of social media companies continues to benefit indirectly from the traffic generated by fraudulent schemes.

To address this, industry analysts are advocating for mandatory participation in cross-sector data-sharing schemes, backed by enforcement action for non-compliance. The argument posits that breaking down the silos between banking, fintech, and social media sectors is essential to tracking the flow of illicit funds and identifying perpetrators in real-time. Without such integration, the mechanisms used to detect and prevent fraud remain reactive rather than proactive.

International Implications and Policy Response

The case for regulatory intervention is gaining urgency as policy makers prepare to update fraud strategies. The UK Government’s forthcoming Fraud Strategy is seen as a critical test of whether lawmakers will mandate data sharing between banks and tech platforms. The report leaves open the prospect of further regulatory intervention if the largest platforms fail to achieve meaningful reductions in fraud originating on their services.

Beyond national borders, the shift towards encrypted, cross-platform fraud underscores weaknesses in international efforts to enforce transparency rules. As criminals adapt to the specific features of platforms like Telegram and TikTok, the global financial system faces a systemic risk that cannot be mitigated by individual institutions acting alone. A coordinated, data-driven policy response is increasingly viewed as the only viable path to restoring accountability in the digital age.