Generative AI makes scams more convincing. Agentic AI could make them persistent, adaptive, multilingual, and scalable.
Introduction: The Next AI Fraud Shift Is Autonomy
The first wave of AI fraud made scams look and sound more believable.
Generative AI can write cleaner phishing emails, create fake social profiles, produce synthetic images, clone voices, generate fake documents, and translate scam scripts across languages. Law enforcement has already warned that criminals use generative AI to make fraud schemes more believable and scalable, including social engineering, spear phishing, romance scams, investment scams, fake profiles, synthetic media, and voice impersonation.[1]
But the next AI fraud shift may be bigger.
The next shift is not only better scam content. It is more autonomous scam execution.
Agentic AI systems can plan, use tools, follow steps toward a goal, adapt to responses, and coordinate actions with limited human involvement. In finance, this is already becoming a regulatory and financial-stability topic. Bank of England Deputy Governor Sarah Breeden recently described how agentic AI is transforming cyber risk, markets, and payments; Reuters also reported that she warned existing oversight frameworks were not built for AI agents operating autonomously in areas such as payments and trading.[2][3]
For banks, that matters because scams are rarely one event. A scam is usually a journey.
A fraudster identifies a target, builds trust, creates urgency, moves the customer across channels, asks for payment, coaches the customer through warnings, routes funds to a mule account, and follows up if the customer hesitates.
That is exactly the kind of workflow agentic AI could help automate.
The core risk is simple:
Generative AI makes scams more convincing. Agentic AI could make them more persistent.
Quick Takeaways
Get practical fraud analytics frameworks, AI risk notes, payment scam insights, and banking control ideas through the EdEconomy newsletter.
- Agentic AI fraud in banking is different from basic AI-generated phishing because it can support multi-step scam execution, not just content creation.
- Banks may not always know whether a scammer used an AI agent, so detection should focus on journey-level signals: external contact, warning overrides, first-time recipients, coached explanations, mule-risk indicators, and post-payment outcomes.
- APP fraud is especially exposed because the customer may authenticate correctly and still be acting under the scammer’s instructions.
- Public and regulatory sources are already flagging the issue. INTERPOL has warned that AI-enhanced fraud is significantly more profitable than traditional methods and that agentic AI systems can autonomously plan and execute fraud campaigns.[4]
- The best control strategy is not “detect every AI scam instantly.” It is to detect uncertainty early, slow down risky decisions, and escalate the right cases to human review.
- Banks can also use AI agents defensively, but bank-side AI agents require governance, audit trails, scope limits, model monitoring, and human escalation.
Who This Guide Is For
This guide is for fraud analysts, banking risk leaders, payment-risk teams, financial-crime analytics teams, fraud strategy teams, AI governance teams, AML/BSA teams, scam-prevention teams, and product owners working on digital payments.
This is not legal, compliance, investment, or financial advice. It is an educational and analytical framework for understanding agentic AI fraud risk in banking.
What Bank Employees Should Take From This
The practical point is not that every employee must prove whether a scammer used AI. Most bank teams will not have that evidence at the payment moment.
The better operating question is simpler: does this customer look like they are being guided through a payment decision by someone outside the bank?
| Bank Role | What to Watch | Useful Action |
|---|---|---|
| Branch and contact-center staff | Urgency, secrecy, coached language, safe-account stories, reluctance to explain payment purpose | Slow the conversation, ask scam-specific questions, escalate when the story changes |
| Fraud analysts | Warning overrides, first-time recipients, copied instructions, unusual session behavior, repeat attempts | Score the journey, not only the transaction |
| Payment operations | New payee setup, unusual rail choice, fast-payment pressure, high-risk recipient patterns | Add recipient-risk context before release where policy allows |
| AML/BSA teams | Incoming funds from unrelated victims, rapid funds-out, mule-like receiving behavior | Feed mule and recipient outcomes back to fraud teams |
| Product and digital banking teams | Warnings that customers override and later dispute | Test warning language, friction, and escalation paths by outcome |
| AI governance teams | Defensive AI tools used for triage, summaries, or warning personalization | Require scope limits, audit trails, monitoring, and human escalation |
What Customers and Business Readers Should Take From This
For readers outside a bank, the lesson is also practical. If someone is guiding you through a payment, asking you to hide the reason, pushing urgency, moving you between apps, or telling you how to answer bank questions, stop before sending money.
- A real bank will not ask you to move money to a “safe account.”
- A legitimate business contact should not pressure you to change payment details without independent verification.
- A romantic, investment, government, tech-support, or family-emergency story can still be a payment scam.
- A warning screen is not a formality. It is a moment to pause and verify through a trusted channel.
Related EdEconomy Guides
- AI Fraud Detection hub
- AI vs. AI in Banking Fraud
- AI-Generated Identity Fraud in Banking
- Payee Verification and Recipient Intelligence
- Money Mule Detection in Banking
- Fraud Analytics KPIs for Banking Teams
- Bank Scam Prevention
- Synthetic Identity Fraud
- FedNow Fraud Detection
- Banking Fraud hub
- Resources
What Is Agentic AI Fraud in Banking?
Agentic AI fraud in banking refers to fraud where AI is used not only to create scam content, but to help plan, execute, adapt, or coordinate parts of the scam journey.
A traditional scammer might use a script. A generative AI scammer might use AI to write a better script. An agentic AI scammer could potentially use AI to run more of the workflow: research a target, personalize a story, maintain a conversation, translate messages, escalate urgency, handle objections, coach the customer through warnings, and provide payment instructions.
That does not mean every future scam will be fully autonomous. It means the fraud operation can become more automated, more adaptive, and less dependent on one human scammer manually handling every step.
That is why agentic AI fraud belongs in the banking fraud conversation.
Generative AI vs. Agentic AI Fraud
Banks should not treat every AI fraud risk as the same thing.
| Type | What It Does | Fraud Example |
|---|---|---|
| Generative AI | Creates text, images, documents, or scripts | phishing email, fake profile, fake document, scam message |
| Deepfake AI | Creates synthetic audio or video | fake executive voice, fake video call, fake family emergency |
| Agentic AI | Plans and acts across steps | researches target, adapts conversation, follows up |
| Multi-agent fraud | Coordinates specialized agents | one agent researches, one chats, one translates, one routes payment instructions |
Generative AI helps a scammer create better content.
Agentic AI could help a scammer run more of the workflow.
That difference matters because bank controls are often designed around transactions, logins, devices, authentication, and known fraud patterns. Agentic scams may operate across time, channels, and behavioral signals before the payment ever happens.
Why Banks Should Care About Autonomous Scam Agents
A bank may only see the final payment. The scammer controls much of what happened before it.
That is the control gap.
Traditional fraud controls often evaluate login behavior, device history, customer authentication, transaction amount, payment rail, recipient account, velocity, and warning screens.
Those signals still matter. But APP fraud and scam payments are different because the customer may be legitimate. The device may be familiar. The transaction may be authorized. The payment may still be fraudulent.
Wells Fargo’s commercial banking guidance makes this point in a practical way: AI-enabled fraud can make payment scams harder to detect because criminals can create higher-quality emails, texts, calls, videos, and deepfake impersonations, and an employee may authorize a payment that appears legitimate in the payment system.[5]
Agentic AI could intensify that problem. The customer might not just be reacting to one scam message. They may be interacting with a system that adapts.
A future scam journey may look like this:
- AI researches the target.
- AI builds a believable persona.
- AI starts a conversation.
- AI switches channels when the victim hesitates.
- AI escalates urgency.
- AI generates new explanations in real time.
- AI coaches the customer around bank warnings.
- AI provides payment instructions.
- AI routes funds to a mule or high-risk recipient.
- AI follows up for a second payment.
The payment is only the final symptom.
The manipulated trust journey is where the risk forms.
The Fraud Operating Model Is Changing
Scam operations are already industrialized. Agentic AI could make them more efficient.
An AP and FRONTLINE investigation found that AI tools and scam software are being used in industrial-scale scam operations to create believable personas, translate languages, automate replies, and track worker productivity.[6]
BCG has warned that agentic AI could change scam economics. Its 2026 analysis estimates that the cost of running scams and fraud could fall by 90% or more if agentic systems become capable of running scams end to end, potentially enabling much larger volumes of attacks. This is an industry forecast, not a government statistic, but it captures the direction of risk: fraud becomes cheaper to personalize and easier to scale.[7]
A possible agentic fraud operating model looks like this:
| Fraud Stage | Agentic AI Capability | Banking Risk |
|---|---|---|
| Reconnaissance | Searches public data, social posts, leaked data | Better personalization |
| Persona building | Creates believable identity and backstory | Faster trust formation |
| Conversation | Maintains multi-turn dialogue | Long-running manipulation |
| Translation | Communicates across languages | Larger victim pool |
| Channel switching | Moves victim across email, chat, phone, video | Detection gaps |
| Pressure escalation | Adjusts urgency based on victim response | Higher compliance |
| Payment coaching | Guides customer through warnings | APP fraud |
| Mule routing | Provides recipient or wallet instructions | Receiver-side risk |
| Follow-up | Recontacts after hesitation or payment | Repeat loss |
This is why banks should not think of agentic AI fraud as “better phishing.”
It is closer to fraud workflow automation.
Public Bank Warnings Are Already Moving in This Direction
Major banks are already warning customers and businesses about AI-enabled scam behavior.
Chase now has a public AI-enabled scams page that specifically names autonomous scam agents. It says agentic AI bots can carry out conversations over text or phone without human involvement and are designed to build trust over time before asking for sensitive information.[8]
Capital One’s commercial banking guidance says generative AI is making payment fraud easier at scale and highlights risks such as flexible bots, mass automated customization, more believable synthetic voices, and more realistic fraud conversations.[9]
Bank of America’s business guidance says criminals are using machine learning and generative AI tools to automate more convincing personalized phishing, investment scams, business email compromise, voice cloning, and deepfake video lures.[10]
These are customer-facing and business-facing guidance pages. They do not reveal internal fraud systems. But they are useful because they show the same risk theme from different institutions:
AI is not just making scams look better. It is making scams easier to personalize, automate, and scale.
Why Transaction-Level Controls May Miss Agentic AI Fraud
A transaction can look normal after the customer has been manipulated.
That is the key challenge.
A customer may log in from a known device, pass multifactor authentication, add a first-time recipient, ignore a warning, explain the payment as “family help,” “investment,” or “business expense,” approve the transfer, and later file a scam claim.
From a transaction-only view, this may look like an authorized payment.
From a journey view, the warning signs may have appeared earlier:
- unusual contact before the payment;
- long dwell time in the payment flow;
- copied payment instructions;
- new payee creation;
- customer hesitation;
- warning override;
- inconsistent payment explanation;
- high-risk recipient;
- rapid funds-out after receipt.
That is why fraud analytics needs to move from transaction scoring to journey scoring.
The Philadelphia Fed has argued that the goal in AI-enabled fraud is not perfect prediction, but detecting uncertainty early and deliberately slowing down risky transactions to create room for human judgment.[11]
Do not only score the payment.
Score the path to the payment.
Scam Journey Analytics
Scam Journey Analytics is an EdEconomy framework for detecting manipulation before and around a payment.
Banks may not always know whether an AI agent was used. But they can look for signs of an automated, adaptive, or coached scam journey.
| Stage | What to Watch | Why It Matters |
|---|---|---|
| External contact | Customer reports call, text, chat, social message, or email | Scam starts outside the bank |
| Trust building | Long session, repeated edits, hesitation | Possible coaching |
| Channel shift | Customer moves across phone, text, WhatsApp, email, or video | Detection gaps |
| Payment setup | New payee, new rail, unusual amount | Fraud enters the payment system |
| Warning interaction | Customer ignores or overrides warnings | Scam coaching may be active |
| Explanation change | Customer changes payment reason after questioning | Coached or inconsistent narrative |
| Recipient risk | First-time payee, mule linkage, rapid funds-out | Money movement infrastructure |
| Outcome | Claim, recovery, repeat victimization | Feedback loop for models |
This framework is useful because agentic AI fraud is not always detectable from content alone. The scam message may not be available to the bank. The call may occur outside the bank’s systems. The chat may happen in another app.
But the bank may still see the payment behavior.
The fraud team may see customer behavior inside the authenticated session, payment setup patterns, warning responses, call-center notes, recipient risk, claim outcomes, and repeat attempts.
That is enough to build better analytics.
Synthetic Trust Score
A Synthetic Trust Score is a fraud analytics concept for estimating whether trust may have been artificially created before a payment.
This should not be treated as a literal formula. It is a framework.
| Input | Example |
|---|---|
| Recipient novelty | First-time payee or new external account |
| Urgency language | “Act now,” “account compromised,” “safe account” |
| Customer behavior | Long dwell time, hesitation, repeated edits |
| Warning behavior | Customer overrides warning |
| Scripted action | Copy/paste into memo, payee field, or message |
| Payment context | Unusual amount, unusual rail, new recipient |
| Recipient risk | Mule linkage or rapid funds-out behavior |
| Human interaction | Customer appears coached, evasive, or pressured |
| Post-event outcome | Claim, recovery request, repeat scam attempt |
The purpose is not to accuse the customer. The purpose is to recognize manipulation.
In account takeover fraud, the bank asks: “Is this really the customer?”
In scam fraud, the better question is: “Is this customer acting independently?”
Agentic AI makes that question more important.
A customer can be fully authenticated and still be under the control of a scam journey.
Agentic Scam Pattern Library
Fraud teams should classify scams not only by story type, but by behavior pattern.
A traditional classification might say romance scam, investment scam, bank impersonation, government impersonation, tech support scam, or purchase scam.
Those categories are useful, but agentic AI fraud may require a second layer: how the scam behaves.
| Pattern | Description | Risk Signal |
|---|---|---|
| Slow-build trust | Romance or investment manipulation over days or weeks | repeat contact, emotional pressure |
| Urgent authority | Bank, government, law enforcement, or executive impersonation | urgency, secrecy, immediate payment |
| Recovery scam | Claims to recover previous losses | repeat victimization |
| Payment-coaching scam | Customer is guided through warnings | warning override, coached language |
| Multi-channel escalation | Email, text, phone, chat, video used together | channel switching |
| Mule-routing scam | Customer is directed to a risky recipient | first-time payee, rapid funds-out |
| Repeat-victim cycle | Same customer targeted after initial payment | follow-up payment attempts |
The pattern layer is important because AI agents can adapt the story while keeping the same behavioral structure.
A scam might start as an investment opportunity, shift to a fraud department impersonation, then become a recovery scam. The narrative changes. The manipulation pattern continues.
Warning Effectiveness in the Age of Scam Coaching
Many banks use warnings to slow down risky payments. That is good.
But agentic AI may make generic warnings less effective.
A scammer, human or AI-assisted, can coach the customer through the warning:
- “The bank will ask you questions.”
- “Do not tell them this is for crypto.”
- “Say it is for family.”
- “Ignore the warning; it appears for everyone.”
- “Send a smaller amount first.”
- “Use this other payment method.”
This is why warning effectiveness needs its own KPI layer.
| KPI | What It Measures |
|---|---|
| Warning exposure rate | Was a warning shown before payment? |
| Warning abandonment rate | Did the customer stop after seeing it? |
| Warning override rate | Did the customer continue? |
| Post-warning claim rate | Did a warned payment later become a scam claim? |
| Repeat warning override rate | Did the customer override multiple warnings? |
| Scam narrative after warning | Did the customer’s explanation change after the warning? |
| Human escalation conversion | Did staff intervention stop or delay the payment? |
| Recipient risk after warning | Did warned payments go to high-risk recipients? |
The most important metric may be post-warning claim rate, because it shows whether a warning actually changed risk instead of merely documenting that the bank displayed a message.
If customers keep seeing a warning, overriding it, and later filing scam claims, the warning is not working well enough. It may be too generic, too late, too easy to dismiss, or not paired with the right friction.
Human-in-the-Loop Defense
The answer to agentic AI fraud is not to manually review every payment.
That would create too much friction.
The better goal is to slow down uncertainty.
Human escalation should focus on moments where the scam journey shows manipulation:
- customer is paying a first-time recipient;
- customer recently changed payment explanation;
- customer ignored multiple warnings;
- customer appears coached;
- payment follows unusual external contact;
- customer refuses to explain the purpose;
- customer says someone from “the bank” told them to move money;
- recipient has mule-risk signals;
- payment rail is fast and difficult to recover.
The FSSCC AI-generated fraud report argues that AI is reshaping the speed, scale, and credibility of existing scams, and it emphasizes dynamic warnings, human-in-the-loop escalation, cross-channel intelligence, incident response, and better operational reporting.[12]
That aligns with a practical banking strategy:
Use automation to find uncertainty. Use humans to interrupt manipulation.
Bank-Side AI Agents Can Help — But They Need Governance
Banks can use AI agents defensively.
Possible use cases include:
| Defensive Use Case | What It Does |
|---|---|
| Scam journey summarization | Summarizes session, payment, call notes, and recipient risk |
| Warning personalization | Tailors warning language to scam type |
| Customer support co-pilot | Helps staff ask better verification questions |
| Case triage | Prioritizes risky payments and scam claims |
| Recipient risk enrichment | Pulls mule, payee, claim, and network context |
| Scam narrative clustering | Groups similar scam stories across cases |
| Feedback loop automation | Sends confirmed outcomes back to models and rules |
But defensive AI agents are still AI agents. They need governance.
The Financial Stability Board’s 2026 consultation on responsible AI adoption by financial institutions emphasizes organization-wide governance, AI lifecycle management, board and senior-management oversight, risk management, documentation, proportionality, and controls for AI use cases.[13]
NIST’s AI Risk Management Framework is also relevant because it is designed to help organizations manage AI risks to individuals, organizations, and society.[14]
For fraud teams, this means bank-side AI agents should have defined scope, approved use cases, audit trails, human review thresholds, model monitoring, data-access controls, prompt and instruction security, vendor oversight, escalation rules, performance measurement, and fallback procedures.
AI can help fight AI-enabled fraud. But unmanaged AI can become another risk surface.
Authorization, Agent Identity, and Payment Risk
Agentic AI also creates a second issue: what happens when legitimate AI agents begin influencing payments?
This is separate from scam agents, but it matters for fraud strategy.
The IMF has examined how agentic AI could affect payment systems, including authorization, liquidity management, settlement, compliance, and resilience. It highlights a tension between probabilistic AI behavior and the deterministic requirements of payment infrastructure.[15]
The Atlanta Fed has also discussed agentic AI in payments, noting that agentic AI could choose between payment rails such as FedNow, RTP, or ACH and initiate transactions based on objectives.[16]
That raises important fraud questions:
- Who authorized the payment: the customer, the agent, or both?
- What permissions did the agent have?
- Was the agent identity verified?
- Was the transaction within the customer’s intended scope?
- Can the customer review or revoke the action?
- What audit trail exists?
- What happens if an agent is manipulated by prompt injection or malicious instruction?
- How should banks distinguish legitimate agent-driven payments from scam-driven payments?
This may sound futuristic, but payment risk teams should start preparing now.
The line between customer action, agent action, and fraudster manipulation will become harder to interpret.
Agentic AI Fraud KPIs for Banking Teams
Agentic AI fraud needs measurement. Without measurement, the topic becomes hype.
A practical KPI framework could include:
| KPI | What It Measures |
|---|---|
| Suspected agentic scam case count | Cases showing automated, adaptive, or multi-channel scam behavior |
| AI-involvement capture rate | Share of scam claims with structured “AI involvement” field completed |
| Multi-channel scam rate | Scams spanning text, email, phone, chat, video, social, or messaging apps |
| Warning exposure rate | Whether the customer saw a relevant scam warning |
| Warning override rate | Whether the customer continued despite warning |
| Post-warning claim rate | Whether warned payments later became scam claims |
| First-time recipient after scam signal | New recipient created after suspicious journey signals |
| Payment coaching indicator rate | Customers using coached phrases or refusing to explain |
| Scam narrative shift rate | Customer changes explanation after warning or questioning |
| Session-to-payment dwell time | Time between suspicious session behavior and payment |
| Repeat victim contact rate | Same customer targeted again after initial payment |
| Mule-recipient linkage rate | Scam payment connected to risky recipient or mule pattern |
| Human escalation conversion rate | Staff intervention stops, delays, or escalates the payment |
| Bank-side AI assist success rate | Defensive AI assistant helps identify or escalate scam risk |
| Scam journey feedback latency | Time between claim outcome and model/rule update |
One of the most important metrics is the AI-involvement capture rate.
Many institutions may not yet have a clean field for whether AI was suspected in a scam. The FSSCC report highlights the need for better tracking, operational reporting, and cross-functional coordination around AI-generated fraud in the financial sector.[12]
If the data is not captured, the trend cannot be measured.
Fraud Analyst Checklist for Agentic AI Fraud
Use this checklist when reviewing suspected AI-assisted or agentic scam cases.
Customer Journey
- Did the customer report an external call, text, email, chat, or social-media contact?
- Did the payment follow a long online session or unusual activity?
- Did the customer appear hesitant, confused, or coached?
- Did the customer change the payment explanation?
- Did the customer refuse to explain the purpose of the payment?
- Did the customer mention urgency, secrecy, or “safe account” instructions?
Payment Setup
- Was the recipient new?
- Was a new external account added?
- Was the amount unusual for the customer?
- Was the rail unusual for the customer?
- Were multiple attempts made after a decline or warning?
- Did the payment memo look copied or scripted?
Warning Behavior
- Was a warning shown?
- Did the customer override it?
- Did the customer override multiple warnings?
- Did the warning match the likely scam type?
- Did a warned payment later become a claim?
Recipient Risk
- Is the recipient linked to prior scam claims?
- Does the recipient show mule behavior?
- Did funds move out quickly after receipt?
- Is the recipient account new or recently reactivated?
- Is there a network link to other suspicious accounts?
Case Outcome
- Was the scam confirmed?
- Was there recovery?
- Was there a repeat victimization attempt?
- Was the case referred to AML?
- Did the outcome feed back into models, rules, and warning strategy?
Common Mistakes Banks Should Avoid
Mistake 1: Treating Agentic AI Fraud as Only a Content Problem
The issue is not only better scam messages. It is the possibility of automated targeting, conversation, adaptation, coaching, and payment routing.
Mistake 2: Scoring Only the Transaction
The payment may look authorized. The manipulation may be visible only in the journey.
Mistake 3: Relying on Generic Warnings
Warnings need to be specific, timely, measurable, and connected to escalation.
Mistake 4: Not Capturing AI Involvement
If claims systems do not capture suspected AI involvement, fraud teams will underestimate the trend.
Mistake 5: Separating Fraud, AML, and Recipient Risk
Agentic scams can connect customer manipulation, authorized payments, mule accounts, and laundering. Those teams need feedback loops.
Mistake 6: Deploying Defensive AI Without Governance
Bank-side AI agents can help, but they need scope limits, audit trails, human oversight, monitoring, and vendor controls.
A Strong Operating Principle
Banks should not build agentic AI fraud programs around fear of a new label. They should build them around a durable operating principle:
When a payment looks authorized but the journey looks manipulated, treat the journey as evidence.
That principle works whether the scammer used a call-center script, a generative AI chatbot, a voice clone, or a more autonomous agentic workflow. It keeps the bank focused on observable behavior, measurable controls, and customer protection.
The EdEconomy View: The Payment Is the Symptom
Agentic AI fraud is not just about fake content.
It is about automated manipulation.
That is why the strongest banking response is not simply “detect AI.” Banks may not always know whether an AI agent created the message, conducted the chat, translated the conversation, or coached the customer.
But banks can detect the shape of manipulation.
They can measure warning overrides, first-time recipients, channel shifts, inconsistent explanations, payment coaching indicators, mule linkage, and post-payment outcomes.
The future of AI fraud detection is not only content detection.
It is journey detection.
In agentic AI fraud, the payment is the final symptom.
The manipulated trust journey is where the risk forms.
FAQ
What is agentic AI fraud in banking?
Agentic AI fraud in banking refers to fraud where AI systems are used not only to create scam content, but to help plan, execute, adapt, or coordinate parts of the scam journey. This could include researching targets, maintaining conversations, translating messages, switching channels, escalating urgency, coaching victims, and routing payment instructions.
How is agentic AI fraud different from generative AI fraud?
Generative AI usually creates content, such as phishing emails, fake profiles, voice clones, or fake documents. Agentic AI can potentially act across multiple steps, such as planning, following up, adapting to responses, and using tools to complete parts of a fraud workflow.
Are autonomous scam agents already real?
Major banks and law-enforcement organizations are already warning about AI-enabled scams and autonomous scam agents. However, it would be an overclaim to say fully autonomous scam agents are present in every scam. The safer conclusion is that generative AI fraud is already documented, and agentic AI could make scam operations more automated and scalable.
Why does agentic AI matter for APP fraud?
APP fraud often involves a legitimate customer authorizing a payment after being manipulated. Agentic AI could make that manipulation more persistent and adaptive, especially if the scammer can coach the customer through warnings or push them toward risky recipients.
What is Scam Journey Analytics?
Scam Journey Analytics is a framework for analyzing the path that leads to a risky payment. It looks at external contact, trust-building behavior, channel switching, payment setup, warning interaction, explanation changes, recipient risk, and post-payment outcomes.
What is a Synthetic Trust Score?
A Synthetic Trust Score is a conceptual fraud analytics framework for estimating whether trust may have been artificially created before a payment. It can include signals such as first-time recipient, urgency, warning override, copied instructions, customer hesitation, recipient risk, and later scam claims.
How can banks defend against agentic AI fraud?
Banks can use layered defenses: scam journey analytics, contextual warnings, recipient-risk scoring, mule detection, human escalation, AI-assisted case triage, customer education, and fraud-to-AML feedback loops.
Can banks use AI agents defensively?
Yes. Bank-side AI agents can help summarize scam journeys, enrich case context, personalize warnings, triage risky payments, and cluster scam narratives. But they need strong governance, audit trails, scope limits, data controls, human review, model monitoring, and vendor oversight.
Get practical fraud analytics frameworks, AI risk notes, payment scam insights, and banking control ideas through the EdEconomy newsletter.
Sources
- FBI Internet Crime Complaint Center (IC3), “Criminals Use Generative Artificial Intelligence to Facilitate Financial Fraud,” December 2024 https://www.ic3.gov/PSA/2024/PSA241203
- Bank of England, Sarah Breeden, “Agents of change,” speech at the European Central Bank Forum on Central Banking, June 2026 https://www.bankofengland.co.uk/speech/2026/june/sarah-breeden-panel-at-the-european-central-bank-forum-on-central-banking-2026
- Reuters, “Bank of England’s Breeden signals new rules to govern agentic AI,” June 2026 https://www.reuters.com/world/agentic-ai-may-require-regulatory-reform-boes-breeden-says-2026-06-30/
- INTERPOL, “INTERPOL report warns of increasingly sophisticated global financial fraud threat,” March 2026 https://www.interpol.int/en/News-and-Events/News/2026/INTERPOL-report-warns-of-increasingly-sophisticated-global-financial-fraud-threat
- Wells Fargo Commercial Banking, “How to protect your payments as AI changes the fraud landscape.” https://www.wellsfargo.com/com/insights/protect-payments-as-ai-changes-landscape/
- Associated Press and FRONTLINE, “Four days to make victims fall in love: How global scammers use US tech to fleece people,” June 2026 https://apnews.com/article/12f549d5203abd38857c4e2f2fb1c986
- Boston Consulting Group, “How Agentic AI Will Industrialize Financial Scams,” June 2026 https://www.bcg.com/publications/2026/how-agentic-ai-will-industrialize-financial-scams
- Chase, “AI Enabled Scams To Look Out For.” https://www.chase.com/personal/credit-cards/education/basics/ai-enabled-scams
- Capital One Commercial Banking, “Generative AI fraud: how to help protect your organization,” May 2024 https://www.capitalone.com/commercial/insights/how-to-help-protect-your-company-from-generative-ai-fraud/
- Bank of America Business, “Using Machine Learning and AI to Transform Cyber Security,” September 2025 https://business.bankofamerica.com/en/resources/machine-learning-and-cyber-security
- Federal Reserve Bank of Philadelphia, “AI-Enabled Fraud Is On the Rise — Here’s How to Beat It,” 2026 https://www.philadelphiafed.org/the-economy/banking-and-financial-markets/ai-enabled-fraud-is-on-the-rise-heres-how-to-beat-it
- Financial Services Sector Coordinating Council, “AI-Generated Fraud in the Financial Sector: Threat Categories and Defense Strategies,” 2026 https://fsscc.org/aieog-ai-deliverables/
- Financial Stability Board, “Sound Practices for Responsible Adoption of Artificial Intelligence by Financial Institutions: Consultation Report,” June 2026 https://www.fsb.org/2026/06/sound-practices-for-responsible-adoption-of-artificial-intelligence-ai-consultation-report/
- National Institute of Standards and Technology, “AI Risk Management Framework.” https://www.nist.gov/itl/ai-risk-management-framework
- International Monetary Fund, “How Agentic AI Will Reshape Payments,” IMF Notes, April 2026 https://www.imf.org/en/publications/imf-notes/issues/2026/04/22/how-agentic-ai-will-reshape-payments-575560
- Federal Reserve Bank of Atlanta, “Big Firms Bet on Agentic Artificial Intelligence (AI) in Payments,” December 2025 https://www.atlantafed.org/research-and-data/publications/take-on-payments/2025/12/08/big-firms-bet-on-agentic-artificial-intelligence-in-payments








