Vectr-Cast: Top Fraud and Scams Targeting the U.S.
Assessment Window: January 24 – March 10, 2026 Publication Date: March 10, 2026
EXECUTIVE SUMMARY
The U.S. consumer fraud ecosystem has entered a period of unprecedented acceleration. Federal Trade Commission (FTC) data for 2024 records $12.5 billion in reported losses across 2.6 million consumer complaints—a 25% increase over 2023 and a staggering 558% increase over five years, up from $1.9 billion in 2019. The FBI’s Internet Crime Complaint Center (IC3) independently reports $16.6 billion in losses from 859,532 complaints, a 33% year-over-year surge. The divergence between these figures reflects methodological differences in reporting, but both datasets confirm the same trajectory: exponential growth in both volume and sophistication of consumer-targeting fraud.
The FTC estimates that true consumer fraud losses may reach approximately $196 billion annually when accounting for underreporting rates estimated at 2–6.7% of actual victimizations being formally reported. This gap between reported and actual losses represents one of the most significant intelligence gaps in consumer protection policy.
Three macro-level trends define the current threat environment. First, investment fraud—principally cryptocurrency-based “pig butchering” schemes—has consolidated its position as the highest-loss category, with $5.7 billion (FTC) to $6.57 billion (FBI) in reported losses. Second, artificial intelligence has become the primary force multiplier for scam operators: AI-enabled scams surged 1,210% in 2025, AI-generated phishing achieves 54% click-through rates (compared to 12% for traditional phishing), and 82.6% of phishing emails now contain AI-generated content. Third, older adults bear disproportionate losses, with the 60+ demographic accounting for $4.8 billion in FBI-reported losses (a 43% increase) and averaging $83,000 per incident for those who reported losses.
The period under review (January 24 – March 10, 2026) has seen significant developments including the IRS release of its 2026 “Dirty Dozen” tax scam list featuring AI-enabled IRS impersonation as the top threat, the Social Security Administration’s 7th annual Slam the Scam Day highlighting SSA as the most-impersonated government agency, and the Department of Justice’s establishment of a new nationwide Fraud Division in January 2026. The Chainalysis 2026 Crypto Crime Report estimates $17 billion in crypto-linked scam revenue for 2025, with AI-enabled operations proving 4.5 times more profitable than traditional methods.
This assessment is rated HIGH CONFIDENCE based on the convergence of multiple independent authoritative sources, including primary federal agency datasets (FTC, FBI IC3, IRS, SSA OIG, DOJ), regulatory body reports (FINRA, CFTC, FCC), and validated industry research (Chainalysis, Hiya, Vectra AI, AARP, BBB). All sources have been cross-referenced for consistency where overlapping data exists.
SECTION 2
THREAT DASHBOARD: TOP 10 CONSUMER SCAM CATEGORIES
The following dashboard synthesizes data from the FTC Consumer Sentinel Network and FBI IC3 Annual Report to present a unified threat ranking of the top consumer scam categories by financial impact, growth velocity, and population vulnerability. Threat levels are assigned based on a composite analysis of loss magnitude, year-over-year growth rate, victim count, demographic targeting intensity, and recovery difficulty.
Methodology note: Loss figures represent the higher of FTC or FBI estimates where both agencies report. Cryptocurrency losses ($9.3B) represent cross-cutting exposure across multiple scam types, particularly investment fraud and romance scams. Complaint counts are not directly comparable between agencies due to different intake criteria. The 558% five-year growth in total losses ($1.9B to $12.5B) is the single most significant macro-trend in this assessment.
SECTION 3
DEEP DIVE: INVESTMENT FRAUD & PIG BUTCHERING
A. Threat Overview
Investment fraud maintains its position as the single most destructive consumer scam category in the United States. The FTC reports $5.7 billion in losses for 2024, a 24% increase over 2023, while the FBI records $6.57 billion, a 47% year-over-year surge driven overwhelmingly by cryptocurrency-based “pig butchering” (relationship investment) schemes. The Commodity Futures Trading Commission (CFTC) estimates that relationship investment scams cost Americans approximately $10 billion per year when accounting for unreported losses.
Pig butchering—a term derived from the Chinese phrase “sha zhu pan” (杀猪盘), meaning to fatten a pig before slaughter—describes a social engineering methodology in which scammers cultivate prolonged personal or romantic relationships with victims before steering them toward fraudulent cryptocurrency investment platforms. The average scam payment has risen 253% year-over-year to $2,764 per transaction, reflecting increased per-victim extraction rates. FINRA reports that 50% of surveyed investors would invest in a fraudulent-sounding “guaranteed return” offer, indicating deep structural vulnerability in the retail investor population.
B. Operational Mechanics
The pig butchering lifecycle follows a structured multi-phase operational model:
• Phase 1 — Contact Initiation: Scammers initiate contact via dating apps (Tinder, Bumble, Hinge), social media platforms (Instagram, Facebook, LinkedIn), encrypted messaging apps (WhatsApp, Telegram), or seemingly “wrong number” text messages. The FBI’s February 2026 #DatingOrDefrauding campaign specifically targets this initial vector.
• Phase 2 — Relationship Building (”Fattening”): Over weeks or months, operators build emotional rapport. AI tools now generate personalized messages at scale, maintaining simultaneous conversations with hundreds of victims. Deepfake video calls provide visual “proof” of identity.
• Phase 3 — Investment Introduction: The victim is gradually introduced to cryptocurrency trading, typically through a fabricated platform that displays fake gains. Initial small withdrawals succeed (funded by other victims’ deposits) to build trust.
• Phase 4 — Escalation: Victims are encouraged to invest larger amounts. Techniques include manufactured urgency (”limited time opportunity”), social proof (fake testimonials), and emotional leverage (”invest together for our future”).
• Phase 5 — Extraction & Ghosting: When the victim attempts a large withdrawal, the platform demands “taxes,” “fees,” or “unlock deposits.” Communication eventually ceases. Funds have already been laundered through Chinese-language money laundering networks (CMLNs) that processed 20%+ of pig butchering proceeds.
C. Criminal Infrastructure
The October 2025 DOJ indictment of the Prince Group (controlled by Chinese national Chen Zhi) exposed the industrial scale of pig butchering operations. The indictment alleges forced-labor scam compounds in Cambodia employing trafficked workers from across Southeast Asia. The $15 billion Bitcoin forfeiture represents the largest in DOJ history. The Treasury Department subsequently designated the Prince Group as a transnational criminal organization, with the UK issuing parallel sanctions.
The Chainalysis 2026 report identifies vertically integrated fraud factories that combine forced labor, cryptocurrency infrastructure, and sophisticated money laundering. Chinese-language money laundering networks (CMLNs) serve as the primary financial conduit, processing funds through layered cryptocurrency transactions before conversion to fiat currency. AI-enabled operations within these factories are 4.5 times more profitable than traditional methods, driving rapid adoption of generative AI tools for victim communication.
D. Victim Demographics & Impact
Investment fraud cuts across all demographics but disproportionately impacts two groups. Adults aged 60+ reported $4.8 billion in total FBI-reported losses across all fraud types, with 7,500 individuals losing more than $100,000 each. The average loss per victim in the 60+ cohort was $83,000—substantially higher than younger demographics. The FTC reports that older adults’ total fraud losses reached $2.4 billion in 2024, a four-fold increase from $600 million in 2020, with high-value losses ($100K+) surging eight-fold from $55 million to $445 million.
However, younger adults are increasingly targeted through social media and messaging platforms. The National Consumers League reports that millennials filed 39.8% of fraud complaints, with the 26–35 age group experiencing a 68.1% year-over-year increase in complaints. The convergence of investment fraud with social media targeting creates cross-generational vulnerability.
E. Financial Impact Summary
F. Indicators of Compromise
• Unsolicited contact from unknown individuals on dating/social platforms followed by investment discussion
• Platforms displaying consistent, unrealistic returns with no verifiable SEC/FINRA registration
• Requests to download unverified trading applications or access custom investment websites
• Successful small withdrawals followed by requests for progressively larger deposits
• Demands for “tax payments” or “unlock fees” before large withdrawals are processed
• Communication exclusively through encrypted messaging apps (WhatsApp, Telegram, Signal)
• Emotional pressure combining romantic/friendship context with financial urgency
G. Assessment & Outlook
Confidence Level: HIGH. Investment fraud will remain the dominant consumer threat through 2027. The convergence of AI-enabled communication tools, cryptocurrency infrastructure, and transnational criminal organization involvement creates structural conditions for continued growth. FINRA’s proposed Rule 2166 (5-business-day “speed bump” for suspected fraud) represents a promising regulatory response, but implementation timelines extend beyond this assessment window. The DOJ’s new Fraud Division and the Prince Group prosecution signal increased enforcement attention, though the operational tempo of new scam compound establishment likely exceeds current takedown capacity.
H. Intelligence Gaps
• True loss magnitude remains uncertain; FTC/FBI/CFTC figures vary by 2-5x
• Forced labor compound locations beyond Cambodia (Laos, Myanmar, Philippines) are poorly mapped
• CMLN laundering infrastructure evolution is tracked only at the aggregate level
• Victim reporting rates for investment fraud specifically are unknown (general fraud reporting is 2-6.7%)
SECTION 4
DEEP DIVE: IMPOSTER SCAMS (GOVERNMENT & BUSINESS)
A. Threat Overview
Imposter scams—in which criminals impersonate government agencies, businesses, or trusted individuals—generated $2.95 billion in FTC-reported losses in 2024. Government impersonation complaints rose 25% to over 330,000 in 2025, with the Social Security Administration (SSA) remaining the most frequently impersonated agency. The IRS identified over 600 social media impersonators in fiscal year 2025. The 2026 IRS Dirty Dozen list positions AI-enabled IRS impersonation—by both phone and email/text—as the number one and number two tax-season threats, respectively.
Government imposter scams specifically cost consumers $789 million in 2024, up $171 million from the prior year. The SSA OIG’s 7th annual Slam the Scam Day on March 5, 2026, highlighted the full spectrum of impersonation vectors: phone calls, texts, emails, fake websites, and social media direct messages. Scammers now spoof legitimate government phone numbers and send fake documents with official SSA letterhead to enhance credibility.
B. Operational Mechanics
Imposter scams exploit authority bias and manufactured urgency. The operational playbook has evolved significantly with AI integration:
• Government Impersonation (Phone): AI-generated robocalls mimic agency representatives. The FCC has ruled AI-generated voice calls to be illegal robocalls, but enforcement is challenged by VoIP infrastructure and international call origination. Caller ID spoofing shows legitimate government numbers. Demands typically involve gift cards, prepaid debit, wire transfers, crypto, or cash.
• Government Impersonation (Digital): Phishing emails and smishing texts impersonate IRS, SSA, Medicare, and state agencies. The IRS 2026 Dirty Dozen specifically warns of QR codes directing victims to fake IRS websites. The FTC shut down 13 fake FTC impersonation websites and filed 5 cases under its new Impersonation Rule since April 2024.
• Business Impersonation: Scammers pose as tech companies (Microsoft, Apple, Amazon), financial institutions, and utilities. Tech support scams generated $1.46 billion in FBI-reported losses, a 58% increase, with adults 60+ losing $982 million alone.
• Zoning/Permit Impersonation (NEW): The FBI issued a nationwide PSA on March 9, 2026, warning of city/county zoning permit impersonation phishing—a novel vector targeting property owners and businesses.
C. Payment Demand Patterns
Gift cards remain the most common payment demand in imposter scams, with 41,000+ reports and $212 million in losses in 2024. Target gift cards carried the highest average loss at $2,500 per incident. Overall, 26.6% of fraud victims paid via gift cards, making it the single most common fraud payment method. Bitcoin ATM-directed payments are rapidly growing: losses reached $333 million in 2025, up from $110 million in 2023 and $65 million in just the first half of 2024.
D. Contact Methods
Channel
Description
Primary Target
Most common initial contact method
All demographics
Phone Calls
Second most common; AI deepfake voice integration
Older adults primary target
Text Messages
Third most common; $470M in losses
Growing across all ages
Social Media DMs
600+ IRS impersonators FY2025
Younger demographics
Fake Websites
QR codes to spoofed agency sites
Tax-season specific
E. Assessment & Outlook
Confidence Level: HIGH. Imposter scams will intensify through 2026 tax season and beyond. AI voice cloning (requiring only 30 seconds of audio sample) and real-time deepfake video capabilities will make voice and video impersonation indistinguishable from genuine communications for most consumers. The SSA remains the primary impersonation target due to the universal nature of Social Security benefits. The FTC Impersonation Rule provides new enforcement authority, but the international origination of most imposter campaigns limits domestic regulatory reach.
SECTION 5
DEEP DIVE: TECHNOLOGY-ENABLED FRAUD (BEC, TECH SUPPORT, AI)
A. Business Email Compromise (BEC)
Business Email Compromise remains one of the most financially devastating fraud categories, with 21,442 complaints and $2.77 billion in losses reported to the FBI in 2024. Over the three-year period 2022–2024, BEC has generated approximately $8.5 billion in cumulative losses. Vectra AI research indicates that 40% of BEC emails are now primarily AI-generated, enabling near-perfect impersonation of executive communication styles. AI generates a convincing phishing email in approximately 5 minutes compared to 16 hours for manual crafting—a 192x speed improvement that enables mass-customization of attacks.
The Arup incident—in which a single deepfake video call resulted in a $25.6 million loss—demonstrates the ceiling of BEC when augmented with real-time deepfake technology. Wire transfer remains the primary BEC payment method, with the FBI’s Recovery Asset Team achieving a 66% success rate on frozen funds ($561.6 million of $848.4 million attempted) when victims report within 24 hours.
B. Tech Support Fraud
Tech support scams generated 36,002 FBI complaints and $1.46 billion in losses in 2024—a 58% year-over-year increase that represents the fastest growth rate among established scam categories. Adults aged 60+ accounted for $982 million of these losses (67% of total), experiencing a 66% increase in their own losses. Call center scams—a closely related category that includes tech support—recorded 53,369 complaints and $1.9 billion in total losses.
The tech support scam model has evolved from cold-call approaches to sophisticated multi-channel operations. Pop-up browser warnings, SEO-manipulated search results, and email phishing now drive victims to call fraudulent “support” numbers. Operators use remote access tools to demonstrate fabricated “problems” before demanding payment. Fisher Phillips reports that 3 in 10 retail fraud attempts are now AI-generated, with major chains receiving 1,000+ AI bot calls per day.
C. AI-Augmented Fraud Capabilities
AI has fundamentally transformed fraud operations across all categories. Key metrics from the assessment period:
D. Deepfake Technology Assessment
The Hiya State of the Call 2026 report reveals that 1 in 4 Americans received a deepfake voice call in the past year, with 24% reporting they were unsure whether they could distinguish a deepfake from a real voice. Americans now receive an average of 9.9 unwanted calls per week (500+ annually), growing at a 16% compound annual growth rate since 2023. Seniors aged 55+ average $3,298 in losses from phone scams—three times the amount lost by younger adults.
The FCC’s ruling that AI-generated voice calls constitute illegal robocalls provides a legal framework for enforcement, but the technological barriers to detection remain significant. The 2026 International AI Safety Report notes that AI tools for voice cloning and text generation are free, require no expertise, and can be used anonymously—creating minimal barriers to entry for fraud operators.
E. Assessment & Outlook
Confidence Level: HIGH. Technology-enabled fraud represents the most rapidly evolving threat vector. The convergence of AI-generated text (BEC), AI voice cloning (vishing), and real-time deepfake video (impersonation) creates a multi-modal attack surface that overwhelms traditional fraud detection mechanisms. The 1,210% surge in AI scams during 2025 indicates we are in the early stages of an exponential adoption curve. Organizations and individuals who rely solely on voice or visual verification for identity confirmation face elevated risk through 2027 and beyond.
SECTION 6
CONDENSED PROFILES: SCAM CATEGORIES #4–10
#4. Online Purchase Scams
Online purchase scams represent 28% of all BBB Scam Tracker reports, making them the most commonly reported fraud category by volume. These scams involve fake e-commerce storefronts, non-delivery of goods, and counterfeit product listings on legitimate marketplaces. The Texas BBB reported its highest-ever losses of $22 million in 2025, with total reports up 118% year-over-year. AI is accelerating this category through automated generation of convincing fake storefronts and product listings, with Fisher Phillips noting that top AI scams include fake storefronts and AI-enhanced return fraud. Loss recovery is extremely difficult as transactions typically use payment methods with limited chargeback rights.
#5. Job & Task Scams
Job scams have tripled since 2020, reaching $501 million in direct losses, while the broader “business/job opportunity” category generated $750.6 million (up approximately $250 million from 2023). The FTC reports that task scam complaints surged from fewer than 500 in 2021 to 20,000 in the first half of 2024 alone. The BBB recorded a 485% increase in task scam reports in 2025 (4,757 reports) with an average loss of $9,456 and total losses of $6.8 million.
Task scams operate through unsolicited text messages offering “online work” such as rating products or completing simple digital tasks. Victims are required to make cryptocurrency deposits to “unlock” their supposed earnings, generating $41 million in crypto losses in the first half of 2024 alone (up from $21 million for all of 2023). The operational model exploits gig-economy familiarity and the desire for flexible remote work.
#6. Romance & Confidence Fraud
Romance and confidence scams generated 17,910 FBI complaints and $672 million in losses in 2024. While the dollar figure shows a modest decline, the category is increasingly converging with investment fraud as “pig butchering” schemes blend romantic relationship building with cryptocurrency investment solicitation. The FBI’s February 2026 #DatingOrDefrauding campaign addresses this convergence directly. The emotional and psychological impact of romance fraud extends far beyond financial loss, with victims experiencing depression, isolation, and in some cases suicidal ideation. AI-generated profile images and deepfake video calls are making romantic deception increasingly difficult to detect.
#7. Cryptocurrency Scams (General)
Cryptocurrency-related fraud losses reached $9.3 billion in FBI-reported data for 2024, a 66% increase that reflects crypto’s role as both a target and a payment mechanism across multiple scam types. The Chainalysis 2026 report estimates $17 billion in total crypto scam/fraud revenue for 2025, with at least $14 billion received on-chain. Bitcoin ATM scams specifically grew from $110 million in 2023 to $333 million in 2025. Pig butchering and high-yield investment programs (HYIP) remain the dominant sub-categories by volume. Impersonation tactics within crypto scams surged 1,400% year-over-year. Recovery rates for cryptocurrency losses remain negligible absent law enforcement intervention at the exchange-level.
#8. Phone & Smishing Scams
Text message scam losses reached $470 million in 2024, while the FBI IC3 received 59,000+ toll smishing complaints—a novel vector impersonating state toll agencies (E-ZPass, TollsPA, The Toll Roads CA) across 19+ states. These messages typically cite small unpaid amounts ($12.51 is a common figure) and link to phishing sites designed to harvest payment card and identity information. Americans receive an average of 9.9 unwanted calls per week, growing at 16% CAGR, with 48% believing phone spam is worsening. The convergence of AI voice cloning with traditional phone scams has created a compound threat where automated calls are nearly indistinguishable from human operators.
#9. Identity Theft
The FTC received 1.1 million identity theft reports in 2024, contributing to a total of 6.5 million Sentinel database reports. Identity theft serves as both a standalone fraud category and an enabler for other scam types. The IRS 2026 Dirty Dozen includes identity theft involving IRS Online Account access as the fifth most significant tax-season threat. FINRA reports increasing account takeovers (ATO) and new account fraud (NAF), with GenAI being used to create convincing fake IDs, driver’s licenses, and bank statements. The interconnection between data breaches, identity theft, and downstream fraud creates a persistent vulnerability ecosystem that feeds all other scam categories.
#10. Sextortion
The FBI reports a 20% increase in financially motivated sextortion targeting minors, with over 13,000 reports between October 2021 and March 2023 affecting 12,600+ victims, primarily boys. At least 20 deaths by suicide have been linked to sextortion victimization. Primary offender locations include Nigeria, Ivory Coast, and the Philippines. FBI extortion complaints overall surged 79% from 2023.
The 764 nihilistic extremist network represents a particularly disturbing evolution, with arrests surging 500% and reports to the National Center for Missing & Exploited Children (NCMEC) increasing 130% to over 3,000. This network combines sextortion with radicalization, creating a hybrid threat that crosses traditional criminal/extremist boundaries. The FBI is currently investigating 400+ individuals connected to the 764 network.
SECTION 7
ADVERSARY LANDSCAPE & THREAT ACTOR TAXONOMY
The consumer fraud threat actor ecosystem comprises five distinct tiers, each with characteristic operational capabilities, geographic concentrations, and target preferences. Understanding this taxonomy is essential for developing calibrated defensive and enforcement strategies.
Key Adversary Developments (Assessment Period)
Prince Group / Chen Zhi (Tier 1): The October 2025 DOJ indictment and $15 billion Bitcoin forfeiture represent the most significant action against Tier 1 actors to date. Treasury designation as a transnational criminal organization enables enhanced sanctions enforcement. However, the Prince Group model has been replicated across Southeast Asia, with new compounds reportedly opening faster than existing ones are shut down.
Operation Silver Shores (Tier 2): The October 2025 takedown of a Latin America-based transnational fraud organization (20+ arrests, $30 million stolen) targeted telemarketing timeshare scams directed at elderly victims. This operation demonstrates the geographic diversification of organized call center networks beyond traditional South Asian bases.
AI Democratization (Tiers 3-4): The 2026 International AI Safety Report confirms that AI fraud tools are free, require no expertise, and can be used anonymously. This effectively lowers the barrier to entry from Tier 3 (professional) to Tier 4 (opportunistic), expanding the total threat actor population. The 1,210% surge in AI-enabled scams reflects this democratization effect.
764 Network (Tier 5): The 500% surge in arrests and 130% increase in NCMEC reports for this nihilistic sextortion network reflects both growing threat activity and increased law enforcement attention. The FBI is investigating 400+ individuals, representing the largest coordinated response to a hybrid criminal-extremist fraud network.
SECTION 8
FINANCIAL FLOW ANALYSIS
Understanding the payment mechanisms exploited by scam operators is critical for both victim protection and asset recovery. The consumer fraud financial ecosystem has shifted dramatically toward cryptocurrency and away from traditional banking channels, fundamentally altering recovery prospects.
Cryptocurrency Laundering Infrastructure
Cryptocurrency has become the dominant payment mechanism for high-value fraud, accounting for $9.3 billion in FBI-reported losses—66% more than the prior year and representing 56% of all reported losses by value. The Chainalysis 2026 report details the role of Chinese-language money laundering networks (CMLNs) in processing over 20% of pig butchering proceeds through layered cryptocurrency transactions.
The laundering process typically involves: (1) victim deposits to fraudulent exchange-like platforms, (2) immediate transfer to intermediary wallets across multiple chains, (3) mixing/tumbling services to obscure transaction trails, (4) conversion through CMLN-controlled OTC desks, and (5) fiat currency extraction through complicit financial institutions. The Prince Group indictment exposed vertically integrated laundering where the criminal organization controlled every step from victim deposit to fiat extraction.
Gift Card Economy
Despite being lower in dollar terms than cryptocurrency, gift cards remain the most common payment method by report count, used in 26.6% of all fraud payments. Target gift cards carried the highest average loss at $2,500 per incident. Gift card scams disproportionately target older adults through government impersonation and tech support schemes. Retailers have implemented point-of-sale warnings, but scammers coach victims to evade these safeguards by purchasing in small amounts across multiple locations.
Bitcoin ATM Escalation
Bitcoin ATM-directed scam losses represent the fastest-growing payment vector, reaching $333 million in FBI data for 2025, more than tripling from $110 million in 2023. Bitcoin Depot reached a $2 million settlement with Maine for ATM scam restitution and is implementing additional fraud warnings. The physical nature of Bitcoin ATMs creates a unique intervention opportunity that does not exist for online cryptocurrency transactions—targeted signage, operator compliance requirements, and real-time transaction monitoring could meaningfully reduce losses through this channel.
Recovery Analysis
The FBI Recovery Asset Team (RAT) achieved a 66% success rate in freezing wire transfer funds, successfully recovering $561.6 million of $848.4 million in attempted freezes when victims reported within 24 hours. This represents the most effective recovery mechanism in the current landscape. However, RAT capabilities are limited to domestic wire transfers processed through the banking system. For cryptocurrency, gift card, and peer-to-peer payments—which collectively represent the majority of fraud losses—recovery rates remain negligible absent proactive law enforcement intervention at the exchange or platform level.
SECTION 9
AI & EMERGING TECHNOLOGY THREAT ASSESSMENT
AI Threat Evolution Timeline
2024 (Established): AI-generated phishing text becomes dominant vector. LLMs eliminate spelling, grammar, and cultural errors that previously served as detection signals. BEC attacks incorporate AI-written emails mimicking specific executive communication styles.
2025 (Current): Voice cloning and deepfake voice calls reach consumer-facing scale (1 in 4 Americans affected). AI phishing achieves 54% click-through rates. Crypto impersonation tactics grow 1,400%. AI becomes the standard tool for pig butchering communication, enabling operators to maintain hundreds of simultaneous victim conversations.
2026 (Projected): Real-time deepfake video becomes widely accessible, undermining video-call-based verification. Multi-modal AI agents capable of conducting entire scam operations—from initial contact through extraction—begin deployment. The IRS Dirty Dozen 2026 explicitly names AI-enabled impersonation by phone as the top tax-season threat.
2027+ (Projected): Vectra AI projects AI fraud losses reaching $40 billion. Autonomous AI scam agents operating 24/7 across multiple languages and modalities become feasible. Defensive AI capabilities lag offensive deployment by an estimated 12–18 months, creating a persistent attacker advantage window.
Regulatory Response to AI Threats
The FCC’s ruling declaring AI-generated voice calls to be illegal robocalls provides a legal framework, but enforcement against international operators remains limited. The 2026 International AI Safety Report acknowledges the regulatory gap: AI tools enabling fraud are freely available, require no expertise, and can be used anonymously—characteristics that fundamentally challenge traditional regulatory approaches based on licensing, registration, or physical presence. Eva Valesquez, CEO of the Identity Theft Resource Center, has stated that “AI ubiquity will worsen fraud in 2026”—a consensus assessment across the industry.
SECTION 10
GEOGRAPHIC ANALYSIS
State-Level Impact (IC3 2024 Data)
FBI IC3 state-level data reveals significant geographic concentration of both complaint volume and financial losses. The following tables present the top states by each metric.
Top States by Complaint Volume
Per-Capita Analysis
The FTC identifies Florida, Georgia, Delaware, Nevada, and Maryland as having the highest per-capita fraud rates. This diverges from the absolute-volume ranking (led by California, Texas, and Florida) and suggests that state-level factors beyond population size—including retiree concentration, regulatory environment, and financial infrastructure—influence victimization rates. Florida’s appearance on both absolute and per-capita lists marks it as a particularly high-risk jurisdiction, likely driven by its large retiree population (a primary target demographic for investment, tech support, and imposter scams) and its role as a financial services hub.
International Threat Origination
Consumer fraud targeting U.S. residents originates from a geographically diverse set of international hubs:
• Southeast Asia (Cambodia, Myanmar, Laos, Philippines): Primary hub for Tier 1 pig butchering operations. Forced-labor scam compounds employ trafficked workers. The Prince Group indictment exposed Cambodian operations.
• West Africa (Nigeria, Ivory Coast): Traditional base for romance scams, advance-fee fraud, and sextortion (including 764 network operations). Growing sophistication with AI tool adoption.
• South Asia (India): Major call center fraud hub for tech support and government impersonation scams. Operation Silver Shores demonstrated Latin America as a secondary call center base.
• Eastern Europe (Russia, Ukraine, Romania): BEC expertise, cyber-criminal infrastructure, phishing kit development, and malware distribution. Dark web marketplace operations.
• China (CMLNs): Chinese-language money laundering networks process 20%+ of pig butchering laundering proceeds. Serve as the financial infrastructure layer for Tier 1 operations.
SECTION 11
SEASONAL & TEMPORAL CONTEXT
This assessment is published during one of the highest-risk periods in the annual fraud calendar. The convergence of tax season, post-holiday financial vulnerability, and current-events exploitation creates compounding risk.
Current Period Assessment (January–March 2026)
The current assessment window coincides with peak tax-season fraud activity. The IRS 2026 Dirty Dozen—released March 5, 2026—places AI-enabled IRS impersonation at positions #1 and #2, reflecting the convergence of seasonal targeting with technological capability enhancement. Key timing factors:
• March 5, 2026: Simultaneous release of IRS Dirty Dozen and SSA OIG Slam the Scam Day — concentrated public awareness push
• March 9, 2026: FBI PSA on city/county zoning permit impersonation phishing — novel vector emergence mid-tax-season
• February 2026: FBI #DatingOrDefrauding campaign — addressing romance/investment fraud convergence
• January 8, 2026: DOJ announces new White House-supervised Fraud Division — structural enforcement enhancement
• Ongoing: AARP flags financial-relief scams, tariff relief schemes, and recovery scams as 2026’s emerging themes
• Ongoing: BBB reports 800+ complaints about fake relief payment calls since Fall 2025
SECTION 12
STRUCTURED ANALYTIC RESULTS
Key Judgments (Confidence-Weighted)
• HIGH CONFIDENCE: Total U.S. consumer fraud losses will exceed $15 billion in reported figures for 2025, based on the 25–33% annual growth trajectory established in 2022–2024 data from both FTC and FBI sources.
• HIGH CONFIDENCE: AI-enabled fraud will constitute the majority of consumer-facing scam attempts by Q4 2026, driven by the 1,210% growth rate in 2025 and the zero-barrier-to-entry nature of AI fraud tools.
• HIGH CONFIDENCE: Investment fraud (pig butchering) will remain the highest-loss category through at least 2027, as cryptocurrency infrastructure and Southeast Asian scam compound operations continue expanding faster than enforcement actions.
• MODERATE CONFIDENCE: True consumer fraud losses exceed $150 billion annually when accounting for the 2–6.7% reporting rate estimated by the FTC. The wide range in the reporting rate estimate reduces confidence in the precise figure.
• MODERATE CONFIDENCE: Regulatory interventions (FINRA Rule 2166, FTC Impersonation Rule, FCC AI voice ruling, DOJ Fraud Division) will produce measurable enforcement actions in 2026 but will not materially alter the macro-level loss trajectory.
• LOW CONFIDENCE: Defensive AI tools will close the gap with offensive AI fraud capabilities within 18 months. Current evidence suggests offensive applications advance faster due to lower deployment barriers and economic incentives.
Alternative Analysis: Competing Hypotheses
Hypothesis A (Baseline — Most Likely): Fraud losses continue exponential growth at 25–35% annually through 2027, driven by AI enablement and cryptocurrency infrastructure expansion. True losses remain 15–50x reported figures. Enforcement actions achieve tactical successes (individual prosecutions) without systemic impact.
Hypothesis B (Optimistic — Less Likely): The combination of FINRA Rule 2166, the DOJ Fraud Division, expanded FBI RAT capabilities, and defensive AI deployment decelerates growth to 10–15% annually by 2027. Major prosecution deterrence effects emerge. Reporting rates increase due to reduced stigma and improved awareness.
Hypothesis C (Pessimistic — Plausible): AI-autonomous scam agents achieve deployment at scale, enabling fraud operations that run 24/7 without human operators. Loss growth accelerates to 50%+ annually. Cryptocurrency laundering infrastructure becomes sufficiently decentralized to resist enforcement at the network level. Vectra AI’s $40 billion projection by 2027 proves conservative.
Assessment: Hypothesis A is assessed as most likely (60–70% probability), Hypothesis B at 10–20%, and Hypothesis C at 15–25%. The probability distribution is asymmetric—downside scenarios are more plausible than upside scenarios due to the structural advantages held by offensive fraud operators.
Indicators to Watch
• FINRA Rule 2166 implementation timeline and early enforcement data
• FBI IC3 2025 annual report (expected Q1 2027) for trend confirmation
• Chainalysis mid-year crypto crime update for laundering infrastructure evolution
• FCC enforcement actions under AI voice call ruling
• DOJ Fraud Division first-year prosecution statistics
• Southeast Asian government actions against scam compound operations
• Consumer reporting rate changes following awareness campaigns
• Development and deployment of defensive AI authentication tools
SECTION 13
LAW ENFORCEMENT EFFECTIVENESS ASSESSMENT
Law enforcement response to consumer fraud operates across federal, state, and international dimensions. The assessment period has seen significant structural enhancements alongside persistent capacity constraints.
Structural Challenges
• Jurisdictional Complexity: Consumer fraud is inherently transnational, but enforcement authority is primarily domestic. The DOJ’s new Fraud Division addresses internal coordination but does not solve the international enforcement gap.
• Scale Mismatch: With 859,532 FBI complaints and 6.5 million FTC Sentinel reports, the volume of fraud incidents vastly exceeds investigative capacity. Prioritization necessarily leaves the vast majority of cases unaddressed.
• Cryptocurrency Tracing: While blockchain analysis tools (Chainalysis) enable transaction tracing, the laundering infrastructure—particularly CMLNs—is designed to frustrate attribution. Recovery of cryptocurrency losses requires exchange-level cooperation that varies by jurisdiction.
• AI Arms Race: Fraud operators adopt AI tools faster than defenders can develop countermeasures. The estimated 12–18 month gap between offensive and defensive AI deployment creates a persistent structural advantage for attackers.
• Victim Reporting Gap: With only 2–6.7% of fraud incidents formally reported, law enforcement operates with severely incomplete intelligence. This undermines both case development and strategic resource allocation.
Assessment
Law enforcement effectiveness is improving in targeted, high-profile cases (Prince Group, Operation Silver Shores, healthcare fraud takedown) but is not keeping pace with the overall growth in fraud volume and losses. The DOJ Fraud Division and FINRA Rule 2166 represent the most structurally significant developments, but both are in early stages. The FBI Recovery Asset Team remains the single most effective mechanism for victim fund recovery, but its scope is limited to domestic wire transfers reported within 24 hours—a narrow window that excludes the majority of fraud loss modalities. Overall assessment: PARTIALLY EFFECTIVE — tactical gains within a losing strategic trajectory.
SECTION 14
PROTECTION RECOMMENDATIONS (6-TIER FRAMEWORK)
The following recommendations are organized into six tiers based on the intended audience and implementation authority. Each tier addresses a distinct layer of the consumer protection ecosystem.
Tier 1: Individual Consumer Protection
• Adopt a “Verify Before Acting” protocol: Never respond to unsolicited contact requesting financial action. Independently verify any claimed government or business communication by calling the entity’s published number directly.
• Implement multi-factor authentication (MFA) on all financial accounts, email, and social media. Use authenticator apps rather than SMS-based codes where possible.
• Establish a family/trusted-person code word for verifying identity during unexpected calls requesting money or sensitive information. AI voice cloning makes voice-only verification unreliable.
• Freeze credit reports at all three bureaus (Equifax, Experian, TransUnion) as a default posture. Unfreeze only when actively applying for credit.
• Treat all unsolicited investment opportunities as fraudulent until independently verified through SEC EDGAR, FINRA BrokerCheck, or a licensed financial advisor.
• Report fraud attempts to the FTC (ReportFraud.ftc.gov), FBI IC3 (ic3.gov), and relevant state AG offices regardless of whether money was lost. Reporting improves intelligence and enforcement.
Tier 2: Family & Community Protection
• Establish fraud awareness conversations with older family members. Frame discussions around protecting assets rather than vulnerability—reducing stigma increases receptivity and reporting.
• Monitor for behavioral indicators of ongoing scam victimization: secretive phone calls, unusual financial transactions, mentions of new online relationships, sudden interest in cryptocurrency, and emotional distress.
• Leverage the AARP Fraud Watch Network helpline (877-908-3360) for guidance when scam victimization is suspected.
• Promote minors’ digital safety awareness regarding sextortion risks. FBI guidance emphasizes that victims are not at fault and should report to a trusted adult immediately.
• Participate in community awareness programs such as the SSA Slam the Scam Day and FBI dating safety campaigns.
Tier 3: Organizational / Employer Protection
• Implement AI-aware BEC defenses: Require multi-channel verification for all wire transfers, ACH payments, and vendor payment changes. AI-generated BEC emails are grammatically perfect and tonally accurate—traditional detection rules based on language errors are obsolete.
• Deploy advanced email security with AI-powered detection that analyzes behavioral patterns rather than content alone.
• Establish payment verification protocols requiring at least two authorized individuals for transactions above a defined threshold, with independent verification through a separate communication channel.
• Conduct regular employee training on deepfake voice and video threats. Include simulated phishing exercises that incorporate AI-generated content.
• Register with the FBI IC3 and establish a rapid reporting protocol. The Recovery Asset Team’s 66% success rate depends on reporting within 24 hours of wire transfer execution.
Tier 4: Financial Institution Protection
• Support and prepare for FINRA Rule 2166 (5-day speed bump for suspected fraud). Implement internal hold capabilities proactively even before regulatory mandate.
• Deploy real-time transaction monitoring using AI-powered anomaly detection for cryptocurrency conversions, wire transfers to new beneficiaries, and gift card bulk purchases.
• Implement enhanced due diligence for accounts exhibiting pig butchering behavioral patterns: rapid account funding, cryptocurrency exchange deposits, and escalating transaction sizes.
• Coordinate with Bitcoin ATM operators on fraud warning requirements and transaction monitoring thresholds, building on the Bitcoin Depot/Maine precedent.
Tier 5: Technology Platform Protection
• Invest in AI-powered scam detection for messaging, dating, and social media platforms. Detect and flag behavioral patterns associated with pig butchering initiation and sextortion.
• Implement content authenticity verification (C2PA standards) for media shared across platforms to combat deepfake-enabled impersonation.
• Proactively remove impersonation accounts. The IRS identified 600+ social media impersonators in FY2025—platform detection should not rely solely on government reporting.
• Deploy caller ID authentication (STIR/SHAKEN) aggressively and develop complementary AI voice authentication tools.
Tier 6: Policy & Regulatory Recommendations
• Accelerate FINRA Rule 2166 implementation and expand the speed-bump concept to cryptocurrency exchanges and P2P payment platforms.
• Fund the DOJ Fraud Division at a scale commensurate with the $12.5B+ annual reported loss figure, with dedicated cryptocurrency tracing and international cooperation capabilities.
• Mandate AI-generated content disclosure in all consumer-facing communications through legislative action, complementing the FCC’s regulatory ruling on AI voice calls.
• Establish international enforcement cooperation agreements specifically targeting Southeast Asian scam compound operations, leveraging the Prince Group prosecution as a template.
• Increase victim reporting incentives and reduce barriers to close the 93–98% underreporting gap. Consider mandatory breach notification for platforms where scam initiation is detected.
• Fund research into defensive AI tools for consumer fraud detection, with the goal of closing the estimated 12–18 month gap between offensive and defensive AI capabilities.
SECTION 15
INTELLIGENCE GAPS & DISCLOSURE
Identified Intelligence Gaps
This assessment identifies the following significant gaps in available intelligence that affect analytical confidence:
• True Loss Magnitude: FTC and FBI figures diverge significantly ($12.5B vs $16.6B) and both represent only reported losses. The FTC’s estimate of $196 billion in true losses (based on 2–6.7% reporting rates) spans a wide range. No authoritative methodology exists to narrow this estimate with high confidence.
• Investment Fraud Disaggregation: The overlap between “pig butchering,” “investment fraud,” “romance fraud,” and “cryptocurrency scams” categories makes precise categorization difficult. A single victimization may be counted across multiple categories in different agency databases.
• Forced Labor Compound Mapping: Beyond the Prince Group/Cambodia prosecution, the total number, location, and capacity of scam compound operations across Southeast Asia (Myanmar, Laos, Philippines) is poorly documented in publicly available intelligence.
• AI Fraud Attribution: While the 1,210% surge in AI-enabled scams is widely cited, the methodology for determining whether a given scam attempt was “AI-enabled” varies across sources. Chainalysis, Vectra AI, and Hiya use different detection and classification approaches.
• P2P Payment Fraud: Losses through Zelle, Venmo, Cash App, and similar platforms are not comprehensively tracked by any single federal agency. This represents a growing blind spot as P2P payments become a preferred extraction method.
• Sextortion Casualty Data: The “at least 20 deaths by suicide” figure linked to sextortion is widely cited but likely underestimates the true toll. No systematic tracking of sextortion-related fatalities exists.
• International Enforcement Outcomes: Data on foreign law enforcement actions against scam compounds and call centers is fragmentary. This limits assessment of whether the problem is growing or declining internationally.
• Defensive AI Deployment: While offensive AI fraud capabilities are well-documented, the current state of defensive AI deployment (by financial institutions, platforms, and carriers) is poorly reported in open sources.
Methodology & Disclosure
This assessment was compiled from open-source intelligence gathered between January 24 and March 10, 2026. All data points are attributed to their primary sources. No classified, proprietary, or non-public information was used.
Analytical Framework: This assessment employs structured analytic techniques including Analysis of Competing Hypotheses (ACH), confidence-weighted key judgments, and indicator tracking. Threat levels (CRITICAL, HIGH, ELEVATED) are assigned based on a composite of loss magnitude, growth velocity, victim count, demographic vulnerability, and recovery difficulty.
Limitations: (1) All loss figures represent reported data; true losses are significantly higher. (2) Agency databases use different intake criteria, making cross-source comparison imprecise. (3) This assessment reflects a point-in-time snapshot; the fraud landscape evolves continuously. (4) Projected figures (e.g., $40B AI fraud by 2027) are drawn from industry sources with varying methodological rigor. (5) Open-source intelligence does not capture ongoing classified investigations or sealed indictments.