UK Authorized Push Payment fraud losses tied to dropper accounts in 2022
Target Trend
Summary
Hide ▲
Show ▼
UK Authorized Push Payment fraud losses reached £485.2m ($649m) in 2022, and dropper accounts were identified as a major contributor, signaling a persistent fraud pattern across UK banking and payments. The mechanism matters because cloud-phone infrastructure can make fraudulent accounts look like ordinary mobile users. Banks facing this pattern need stronger identity, device, and network correlation to catch reused or transferred accounts.
Related Happenings
Cloud phone fraud-enablement ecosystem and darknet resale channels
Threat Actor Meta
First: 25.03.2026 18:05
Last: 25.03.2026 18:05
Sources 1
How related:
In some cases, pre-verified bank accounts linked to cloud phone devices are sold on darknet markets, allowing buyers to access both the account and the same virtual device used during verification.
About this happening:
**Cloud phone platforms** have become a **fraud-enablement ecosystem** that lets criminals rent realistic mobile devices, abuse **pre-verified bank accounts**, and move stolen fun...
Cloud phone fraud-enablement ecosystem and darknet resale channels
Threat Actor MetaHow related: In some cases, pre-verified bank accounts linked to cloud phone devices are sold on darknet markets, allowing buyers to access both the account and the same virtual device used during verification.
About this happening: **Cloud phone platforms** have become a **fraud-enablement ecosystem** that lets criminals rent realistic mobile devices, abuse **pre-verified bank accounts**, and move stolen fun...
UK Home Office and National Crime Agency Online Crime Centre launching the Online Crime Centre to crack down on fraud and disrupt cyber-criminal operations for Set to begin work
Public Sector Action
First: 09.03.2026 16:00
Last: 09.03.2026 16:00
Sources 1
About this happening:
The **UK Home Office** and **National Crime Agency** are launching the **Online Crime Centre** to disrupt **cyber-criminal operations** and fraud at source. The unit, set to begin...
UK Home Office and National Crime Agency Online Crime Centre launching the Online Crime Centre to crack down on fraud and disrupt cyber-criminal operations for Set to begin work
Public Sector ActionAbout this happening: The **UK Home Office** and **National Crime Agency** are launching the **Online Crime Centre** to disrupt **cyber-criminal operations** and fraud at source. The unit, set to begin...
Peru loan phishing campaign impersonating financial institutions across Latin America
Campaign
First: 21.01.2026 17:00
Last: 21.01.2026 17:00
Sources 1
About this happening:
A **Peru-focused loan phishing campaign** has expanded across **Latin America**, putting users' **card numbers**, **PIN codes**, and **banking credentials** at risk. The operation...
Peru loan phishing campaign impersonating financial institutions across Latin America
CampaignAbout this happening: A **Peru-focused loan phishing campaign** has expanded across **Latin America**, putting users' **card numbers**, **PIN codes**, and **banking credentials** at risk. The operation...
Bank hit by network compromise
Incident
First: 20.11.2025 18:00
Last: 20.11.2025 18:00
Sources 1
About this happening:
**Bank A** suffered a **compromise** in **February 2022** that gave **UNC2891** persistent access to **more than 30 systems**, making the intrusion materially larger than a single...
Bank hit by network compromise
IncidentAbout this happening: **Bank A** suffered a **compromise** in **February 2022** that gave **UNC2891** persistent access to **more than 30 systems**, making the intrusion materially larger than a single...
Timeline
-
25.03.2026 18:05 2 articles · 2mo ago
UK Authorized Push Payment fraud losses tied to dropper accounts
Victim Impact UpdateUK banks and payment users faced £485.2m ($649m) in Authorized Push Payment fraud losses in 2022, with dropper accounts identified as a major contributor. Group-IB says cloud phones can make a bank login appear to come from a familiar device, weakening traditional device fingerprinting, and recommends multi-layered fraud detection that combines device fingerprinting with network intelligence, behavioral modeling, and graph-based risk analysis.
Show sources
- Cloud Phones Linked to Rising Financial Fraud Threat — www.infosecurity-magazine.com — 25.03.2026 18:05
- Cloud Phones Linked to Rising Financial Fraud Threat — www.infosecurity-magazine.com — 25.03.2026 18:05