Equifax exposes AI fraud threat hitting modern business

A scammer can imitate your voice, forge your invoices, and create new identities in seconds, leaving the old fraud playbook mostly useless for modern businesses.Equifax warns that artificial intelligence is rewriting the rules of financial crime, and criminals have crossed a threshold many business owners believed was years away. What makes this moment different is not the scale of the attacks but the way modern tools blur the line between real customers and machine impostors.If you run a business, take digital payments, or carry a credit card, the warning has direct implications for your money and accounts. The threat cuts across industries and reaches anyone who accepts a payment, verifies an identity, or trusts a familiar voice on the phone.Inside the Equifax warning on AI-powered fraudFraud analysts began using AI and machine learning nearly two decades ago, long before today's criminals caught up with the same technology, Equifax notes. Modern fraudsters now work on masking identities, automating attacks, and creating synthetic people who slip past most standard fraud checks.The scale of the problem keeps growing each year, and the data lines up with what security teams have been seeing firsthand across the country. American consumers lost a record $15.9 billion to fraud in 2025, a substantial increase from $12.5 billion just one year earlier, the FTC reports.Related: Wells Fargo sounds the alarm on AI-powered scams"As technology continues to evolve, so do cybercriminals' tactics. Attackers are leveraging AI to craft highly convincing voice or video messages and emails to enable fraud schemes against individuals and businesses alike. These sophisticated tactics can result in devastating financial losses, reputational damage, and compromise of sensitive data." said Robert Tripp, Special Agent in Charge, FBI San Francisco. Reported fraud losses have climbed 430% since 2020, driven partly by a rise in consumers reporting individual losses of $100,000 or more. Roughly 79% of U.S. organizations were targeted by attempted or actual payment fraud in 2024, down slightly from 80% the previous year, the Association for Financial Professionals (AFP) found in its annual payments fraud survey.Chief Executive Mark Begor told investors in October that fraud has become one of the most rapidly evolving threats facing financial institutions today, in a PaymentWeek report.How AI changed the fraud business in less than a decadeForty years ago, criminals relied on telephone scams and fake mail orders to steal money and private information from unsuspecting American consumers and companies. Email and text messaging then opened richer doors for scammers in the early 2000s, making mass-targeted phishing easier for criminals to pull off at scale.Modern tools have since transformed every step of that older playbook, giving ordinary fraudsters capabilities that once required large criminal networks. In 2019, the Federal Reserve publicly warned about the rapidly growing threat of synthetic identity fraud, which blends real and fabricated personal details, Equifax highlights.Synthetic identity fraud now accounts for between 50% and 70% of all credit fraud losses across lenders in the United States. Complete synthetic identity kits sell online for roughly $5 each, while large-language-model subscriptions for dark use run between $30 and $200 monthly, Vectra AI disclosed.More AI:Micron sits at the center of a red-hot chip rallyIBM CEO sends blunt message on AI and quantum computingAnthropic CEO makes shocking admission about AIDeepfake technology has added a dangerous new layer to the identity and payment fraud schemes already targeting consumers and businesses. By the end of 2025, an estimated eight million deepfakes existed online, up from roughly 500,000 in 2023, representing 900% annual growth.Fraud losses in the United States tied to generative artificial intelligence could reach $40 billion by 2027. AI-powered business email compromise resulted in approximately $2.77 billion in losses across more than 21,000 reported incidents in 2024 alone, according to the FBI Internet Crime Complaint Center (IC3) 2024 Annual Report.AI-generated phishing emails now achieve click-through rates more than four times higher than those of their human-crafted counterparts, on average. Those numbers explain why defenders cannot realistically keep pace without deploying modern artificial intelligence on their own side of the fight, Equifax argues. AI has rapidly reshaped fraud, evolving scams from basic phishing to deepfakes and synthetic identities, driving billions in global losses.Cravetiger/Getty Images AI fraud tactics Equifax says are hitting businesses nowThe credit bureau highlights six distinct tactics driving the current wave of losses, each targeting a different weak point in defenses against business fraud. Several of the examples should sound familiar to finance teams running standard fraud checks at companies of every size across the United States today.Voice cloning scams: Fraudsters clone executive voices from short audio clips and use bots to deliver believable phone calls authorizing wire transfers to criminal-controlled accounts.Fake receipts and shipping confirmations: Generative AI produces realistic images of invoices, receipts, and delivery confirmations that help criminals claim false refunds from retailers they repeatedly target.Deepfake video in phishing attacks: Attackers stage video conferences with AI-generated participants to trick finance employees into approving large outbound payments to external accounts controlled by scammers.Unsecured chatbot harvesting: Criminals feed unsecured customer service chatbots with carefully crafted prompts designed to expose account numbers, passwords, or confidential internal company policies.Mass promotional code abuse: AI tools generate hundreds of masked emails in seconds, letting a single fraudster claim single-use discount codes and new-user credits over and over.Synthetic identity creation: AI combines stolen Social Security numbers with fabricated faces, addresses, and employment histories to open accounts that look fully legitimate to most lenders.Equifax’s six tactics now drive most of the AI-powered fraud hitting small merchants, retailers, and financial services operations across the country, the bureau observes.How Equifax and its peers are fighting backThe company calls its approach the “dual power of experience and intuition" built into modern fraud detection systems using layered machine learning models. Supervised machine learning delivers the experience side, learning from past fraud attempts to flag similar patterns when they reappear in new transactions.Unsupervised machine learning provides the intuition layer by scanning for emerging patterns and anomalies that no fraud analyst has ever seen before. Behavioral analytics monitors how real users typically behave, and credentialed logins that deviate from that behavior trigger real-time intervention by the system, Equifax explains.What you can do to protect your money and accountsNot every reader is running a Fortune 500 finance operation, but these same AI-driven threats affect freelancers, everyday consumers, and small business owners alike. Reporting incidents promptly matters nearly as much as prevention. The earlier cases are flagged, the more effectively regulators and banks can disrupt active scams targeting others, as the Federal Trade Commission emphasizes.Related: The $41 billion telecom fraud secret