From Ransomware to Pig Butchering, Visa Report Shows Top Scams Impacting Consumers and Businesses Globally

07/22/2024

Visa highlights a more savvy scammer in its Spring 2024 Threats Report

Visa, a world leader in digital payments, has released the Spring 2024 Edition of its Biannual Threats Report, which outlines the top payment threats impacting consumers and businesses around the world. The report points to increasingly organized, sophisticated threat actors targeting the most vulnerable point in the payments’ ecosystem: humans.

“With the use of Generative AI and other emerging technologies, scams are more convincing than ever, leading to unprecedented losses for consumers,” said Paul Fabara, Chief Risk and Client Services Officer, Visa. “Visa is uniquely positioned to address these threats, with investments in tech and innovation reaching over $10 billion over the past five years. These investments, in addition to our ongoing education and top talent, allow us to stay ahead of scams and protect consumers.”

The Association of Banks in Cambodia (ABC), which held its inaugural Cybersecurity Day in May 2024, addressed the evolving trends in cybersecurity and advocated for online safety. ABC Council Member and Chairwoman of the ABC Payment Committee, Mrs. Mar Amara, said: "While technology brings considerable benefits and convenience, it also opens avenues for cybercriminals. Therefore, businesses must adopt robust prevention tactics, adhere to regulatory compliance, enhance cybersecurity awareness, and employ strategies such as real-time monitoring, machine learning, and behavior analytics. These measures are crucial for proactive fraud detection and prevention, safeguarding both businesses and their customers."

In 2022, Visa updated its Security Roadmap in Cambodia, which laid out the six pillars of Visa’s commitment and investment in the upgrading of the payment security system. At its recent Risk Forum, Visa highlighted the importance of data security and risk solutions in ensuring ecosystem resilience. The adoption of Visa Token Service (VTS) boosted Asia Pacific's digital economy by over USD2 billion in 2023.

“Visa has always placed security at the forefront of its priorities in Cambodia as the country’s payment ecosystem becomes increasingly more digital. We seek to play a leading role in forging strong public-private partnerships to bolster the success of risk mitigation and management,” said Ms. Ivana Tranchini, Visa Country Manager for Cambodia. “To strengthen this security ecosystem and help reach the goal of the National Bank of Cambodia’s (NBC) National Financial Inclusion Strategy to empower consumer financial literacy and protection, Visa has held multiple client forums dedicated to the topic of risk and security, in order to help financial institutions in Cambodia become better equipped to support the highly digital society that Cambodia has become.”
 

Individuals as a Primary Target

Consumers are increasingly targeted by scammers, who rely on heightened emotions to create fraud opportunities. While the number of individual scam reports from June to December decreased globally, the total money lost increased, indicating scammers are targeting victims with more effective – and costly – scams. According to another recent Visa survey, more than one-third of adults surveyed worldwide decided not to report scams committed against them¹, suggesting the losses are higher than reported.

Top consumer scams highlighted in the Spring Threats report include:

• “Pig butchering” scams: Capitalizing on holidays like Valentine’s Day and New Year’s Eve through social media and dating sites, scammers lure victims into online relationships and convince them to invest in fake cryptocurrency trading platforms. Leveraging AI to create more convincing campaigns, pig butchering scams have led to billions of dollars of losses for consumers². Per Visa’s study, 10 percent of surveyed adults have been targeted in a pig butchering scam¹.
  
  
• Inheritance scams: Victims are notified about an inheritance left by a long-lost relative, often coming from a seemingly legitimate law firm or other professional entity. Red flags include secrecy, urgency, requests for personal information, and the need for an initial payment to secure future gains. 15 percent of U.S. adults surveyed by Visa have been targeted in inheritance scams¹.
  
  
• Humanitarian relief scams: Capitalizing on tragic current events, these scams exploit calls for donations across social media to defraud unsuspecting donors.
  
  
• Triangulation fraud: Threat actors create illegitimate online storefronts offering in-demand products at a low cost to collect payment information. Legitimate merchants fulfill the online order, but payment information is already compromised. Triangulation scams cost merchants up to $1 billion in a single month.³
  

“Visa has a dedicated team that works around the clock globally to monitor and disrupt the tactics bad actors use to commit fraud,” said Fabara. “With our average time between identifying and shutting down an attack measured in minutes versus hours or days, we are doing all we can to help keep consumers safe. We hope building awareness of these emerging scams will help consumers fight fraud as another line of defense in the battle against fraudsters.”

Increasingly Organized Fraud Operations

In addition to cardholders, threat actors are continually probing organizations and networks for complex weaknesses, leveraging new technologies to exploit vulnerabilities with far-reaching impacts.

Organizational fraud trends impacting the ecosystem include:

• Supply chains and third-party services are increasingly targeted with campaigns designed to maximize the impact of a single breach.
  
  
• Artificial Intelligence (AI) has been increasingly adopted by fraudsters, allowing them to identify vulnerabilities within fraud controls implemented by banks.
  
  
• Purchase Return Authorization (PRA) fraud attacks increased 83 percent over the previous five-month period, with each successful attack leading to approximately $115,000 in potential fraud losses to banks.
  
  
• Ransomware cases increased 300 percent from June to December 2023 when compared to the same period in 2022. Visa forecasts that ransomware threat actors will continue to target critical infrastructure, including financial organizations.
  
  

Through the close integration of people and technologies, Visa has developed processes to mitigate and prevent payments ecosystem attacks. Visa engages with all payment ecosystem participants to ensure any at-risk data is identified and impacted stakeholders are notified.

To read more of the report, visit visa.com/security. To find out more about the tools Visa uses to help organizations of all sizes fight fraud, visit the Intelligent Security page.

 

_____________________________________

¹ Consumer Scam Report, Visa and Morning Consult, March 2024​
² US Financial Crimes Enforcement Network, September 2023
³ FS-ISAC, Holiday Shopping Threats, 2023

 

About Visa

Visa (NYSE: V) is a world leader in digital payments, facilitating transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories. Our mission is to connect the world through the most innovative, convenient, reliable and secure payments network, enabling individuals, businesses and economies to thrive. We believe that economies that include everyone everywhere, uplift everyone everywhere and see access as foundational to the future of money movement. Learn more at Visa.com.