Most common forms of identity fraud and how to avoid them

Published: 1 April 2023
Last updated: 29 July 2025
Identity fraud
Image by Cybernews.

From online impersonation to ethnic targeting, learn more about how identity fraud is a rapidly evolving threat that does not discriminate. It can affect anyone, regardless of age, gender, or background.

Criminals are becoming more innovative in developing sophisticated ways to steal and use personal information to their advantage. One of the most concerning trends in identity fraud is the expansion of online impersonation. Hackers use a variety of tried and trusted attack methods, such as phishing and social engineering. The goal is to gather personal information to enable them to open new accounts or take over existing ones.

Unfortunately, it's not just financial accounts at risk; non-financial accounts like social media are also considered rich pickings for identity fraud. Very often, our oversharing online provides criminals with a deluge of personal information to bypass security features and steal even more sensitive data.

ADVERTISEMENT

Synthetic Identity Fraud

Synthetic identity fraud is an evolving type of identity theft in which criminals create a new, fictitious identity by combining real and fake personal information. This fabricated identity is used to open bank accounts, apply for loans, or obtain credit cards in order to defraud financial institutions and individuals.

The process usually involves combining genuine information with fabricated details like names, addresses, or dates of birth. In addition, criminals may obtain real personal information from data breaches, the dark web, or other illicit sources.

Synthetic identity fraud differs from traditional identity theft, where a criminal uses a victim's identity to commit fraud. In synthetic identity fraud, the created identity is not tied to a specific person but rather a mix of multiple identities or entirely made-up information. This makes it harder for financial institutions and law enforcement to detect, as linking fraudulent activities to a specific individual is challenging.

Preventing synthetic identity fraud can be challenging due to its sophisticated nature. Safeguarding personal information and being mindful of what data you share online can help protect you from being another identity fraud victim.

Be wary of unsolicited emails, phone calls, or messages requesting personal information. Always verify the legitimacy of every source before providing any details. Finally, users should adopt a more proactive mindset by regularly checking credit reports for suspicious activities or unauthorized accounts.

Energy price cap fraud

ADVERTISEMENT

Energy price cap fraud is another popular scam targeting households affected by energy price cap increases. Criminals pretend to be representatives from well-known energy companies and offer financial support or refunds to their victims. This fraud has become increasingly prevalent as energy prices rise, causing financial strain on many households.

Phishing emails are a standard method used by scammers to target unsuspecting individuals. These emails may appear legitimate, using the logos and branding of reputable energy companies such as Eon, British Gas, or others. They often claim to offer additional financial support or refunds that surpass the £400 provided by the government in response to the energy price cap increase.

Attackers typically use stolen details to access online accounts and even offer discounted energy prices to prepayment customers, falsely claiming to top up meters for a cut-price fee. Impersonation scams are also on the rise, with fraudsters sending genuine-looking text messages from trusted energy organizations and harvesting personal information from unsuspecting victims.

Scammers have also targeted prepayment customers by offering discounted energy prices. They falsely claim to be able to top up meters for a reduced fee, enticing victims to provide their payment details. Once again, it's crucial to be vigilant and never share your details.

If something feels off, it usually is.

Swipe left to relationship scams

Relationship scams and the targeting of people who feel left behind by love represent the oldest trick in the book. However, this scam has recently had a tech upgrade. Fraudsters now use dating apps with fake profiles, attractive photos, and compelling backstories to lure their victims.

Heartless fraudsters invest time and effort into building rapport, often communicating for weeks or months to create a false sense of intimacy. Once trust is established, scammers may share fabricated personal crises or emergencies that require financial assistance, playing on the victim's emotions and desire to help their newfound partner.

Scammers don't always ask directly for money. Instead, they will slowly obtain personal details. They may even send emails or messages disguised as official communications from banks, payment platforms, or other institutions to trick the victim into revealing their login credentials or additional sensitive information.

In more elaborate schemes, the scammer may ask the victim to receive funds or transfer money through their bank account. This unwittingly involves them in money laundering or other illegal activities.

ADVERTISEMENT

Consistent collection of personal and financial information over a period of time is often enough for scammers to apply for credit cards or loans from someone blinded by love. From the outset, the best defense is trusting your gut when strangers quickly develop strong emotional connections. Remember that people may not always be who they claim to be online, and be mindful of sharing personal details that could be used to steal your identity.

Regular Catfish viewers will also know the importance of performing a reverse image search on the person's profile picture to check if it has been stolen from someone else or is being used in multiple profiles. You can also search for the person's name, job, or other details provided to see if they align with reality and stay alert for inconsistencies in their story, grammar, or language use.

Ethnic targeting

Ethnic targeting is also becoming more common, with identity thieves tailoring scams to specific ethnic groups to make them more effective. Unscrupulous attackers also try to obtain personal information such as the name, address, and date of birth of individuals from specific ethnic or racial groups in order to commit identity fraud. The perpetrators of identity fraud may use this information to open financial accounts and credit in the victim's name.

Ethnic targeting can occur in various ways, including through data breaches, phishing scams, and other types of online fraud. In addition, perpetrators may target specific ethnic or racial groups because they believe they will be less likely to monitor their financial accounts, less likely to report fraudulent activity, or because they perceive these groups as having lower credit scores or weaker credit histories.

Social media has become a hotbed of criminal activity, with scammers using sites like Instagram and Facebook to lure victims into parting with their cash. Advertisements encourage people to put money into fake accounts, using cloned websites masquerading as genuine investment companies. Food voucher scams have increased online, with people being promised supermarket coupons and dining-out vouchers if they sign up and give their personal details to websites that are not genuine.

The WhatsApp Scam

Last year, the infamous"Hello Mum" WhatsApp identity fraud scam involved criminals leveraging social engineering to send parents or grandparents a message posing as their children or grandchildren urgently needing financial assistance.

The scam famously began with an unsolicited message sent through WhatsApp to random phone numbers. The message "Hello Mum" or "Hello Grandma" is written in a way that suggests that the sender is a child or grandchild in need of immediate financial help. The sender may claim to be in a difficult situation, such as having their phone stolen, being stranded in a foreign country, or needing money urgently.

This message has since evolved into fraudsters pretending to be parents who need help and money after leaving home without money and requesting a quick cash transfer to a friend's account. If the recipient falls for the scam and sends money, they will likely never see it again.

ADVERTISEMENT

With this in mind, you should remember never to make payments until you have verified the sender's identity. You can do this by speaking to them and cross-checking all the information provided.

Stop reusing passwords

Hackers are targeting the gap in passwordless tech, where some people can't or won't shift to services like Passkey or 1Password, making them more vulnerable to identity theft. Reusing passwords is a dangerous practice that can leave you vulnerable to cybercriminals. The problem with using the same password for multiple accounts is that cybercriminals will often try that password on your other accounts if one of your accounts is compromised. This is called credential stuffing, one of the most common ways cybercriminals gain access to personal information and sensitive data.

A quick trip to have I been pwned will reveal if your email or phone has ever been involved in a data breach. In addition to securely storing passwords, many password managers can suggest hard-to-crack passwords. This makes creating unique passwords for each account easy without creating them yourself.

In addition to using unique passwords for each account, enabling two-factor authentication (2FA) whenever possible is essential. 2FA is a much-needed additional layer of security that requires a code generated by something that only you should have access to, like an authenticator app or a dedicated keyfob, in addition to your password.

Identity fraud is a serious threat that requires constant vigilance to stay safe. Therefore, it's essential to remain aware of the latest trends and tricks used by fraudsters to avoid falling victim to their schemes. In addition, you can protect yourself by safeguarding your personal information, using strong and unique passwords for all accounts, and being cautious when responding to unsolicited personal or financial information requests.

By taking proactive measures and staying aware of the latest trends in identity fraud, you can keep yourself and your personal information safe from harm.

More from Cybernes:

ADVERTISEMENT

ChatGPT and the future of digital identity: bot, until proven otherwise

Ukraine cyber cops bust $4.3m phishing gang

Cybernews weekly briefing: top AI and security trends

BreachForums admins distance themselves from a sprawl of replicas

Microsoft’s latest bug: how Bing nearly went bang

Subscribe to our newsletter

Share
Post
Share
Share
Share
More from Cybernews
By participating in this viral trend, you help train AI where it struggles the most
Windows hibernation may contribute to SSD wear as storage costs rise
UFO skeptic Michael Shermer apologizes to David Grusch
Man tries to make a sale on Facebook Marketplace, gets scammed out of $300 via Zelle
Critical FFmpeg flaw discovered: just watching a video can fully compromise your system
The world's top intelligence alliance: AI could supercharge cyberattacks within months
ADVERTISEMENT