back Back

Credit Risk versus Fraud Risk

Breach, Collateral Management, Credit Analysis, Credit risk, Credit Risk Assessment, Cybersecurity, Dynamic PII, Ekata, Fraud Assessment, Fraud Management, Fraud Risk, Liquidity risk, Personally Identifiable Information, Risk Management, Security Audit

December 08, 2020

  • Breach
  • Collateral Management
  • Credit Analysis

Credit risk and fraud risk are often discussed in relation to one another but in truth, determining an individual’s fraud risk is not the same as determining their credit risk. An evolving fraud landscape with increasingly sophisticated methods requires new tactics for mitigating fraud risk. This means moving away from the old, rigid credit risk assessment tactics.

By Beth Shulkin, VP Global Marketing, Ekata

In the 1980s and early 1990s, the traditional method for determining credit risk was based on data tied to consumer credit histories, and only done for mature credit markets. This information was used by the government to identify the correct person for payments, such as welfare, social benefits, wages, and stimulus checks. Banks and other financial institutions also leveraged this data to process account openings and assess loan worthiness. Credit data was essential for preventing mispayments, flagging individuals who do not pay back their loans, and more.

Beth Shulkin of Ekata on Credit Risk vs Fraud Risk
Beth Shulkin, VP Global Marketing, Ekata

When the tech boom occurred in the mid-1990s and e-commerce began to take off (as well as digital fraud), companies turned to a method they were already using to determine credit risk and prevent fraud – using namely credit data. By utilising easily accessible information like addresses and ZIP (post) codes, the companies could determine if an individual making the purchase was real. However, the massive number of security breaches that occurred in the 2000s, including Equifax in 2017, compromised much of this credit data. Non-fraudulent customers trying to make valid purchases were often flagged as risky, even if they were perfectly legitimate customers, leaving money on the table for businesses and creating unnecessary friction for buyers. According to Gartner there is a greater than 50% chance that an individual’s credit data is already in the hands of a cybercriminal. With this in mind, businesses are finding new ways to determine creditworthiness.

Fraud Assessment to Determine Risk

Modern businesses are leaving behind old, rigid credit risk assessments, and are turning their attention to new approaches for determining the probability of fraud risk. This assessment leverages new types of dynamic personally identifiable information (PII) to make a risk assessment, and new technologies (such as machine learning) to help organisations anticipate the behavior of potential fraudsters.

There are three ways this type of analysis is helpful for businesses:

  1. It eliminates friction in the digital customer journey: Credit risk makes a determination based on a set threshold. For instance, customers must meet a certain credit score in order to be eligible. Fraud risk looks at the likelihood that a bad actor is behind the digital interaction. Using a probabilistic approach to risk assessment for digital fraud can help businesses move away from utilising rigid, friction-filled deterministic methods to fight digital fraud. This creates a smoother process for good customers while also flagging suspicious online activity and protecting the business.
  2. It provides a more comprehensive assessment: The PII used for credit risk analysis is based on static information (social security numbers, government IDs, phone numbers, etc.) most of which has been compromised. While the information used in probabilistic fraud risk analysis utilises dynamic PII and more importantly the links between those attributes and how they behave online. Dynamic PII moves beyond credit history determinations and instead looks at device ID, IP, emails, consumer behavior, metadata, and biometrics, to get a better sense of the customer risk. By evaluating the multiple dynamic linkages between these elements, organisations can learn how consumers are behaving online and provide a more comprehensive assessment of risk in fractions of a second.
  3. Extends beyond border limitations: Another issue with using only a deterministic approach with credit data is that it resides in country-based silos in only around 20 mature credit markets, making it difficult for businesses to evaluate risk internationally or across borders. Dynamic PII elements can circumvent this issue and be leveraged with a consistent data format around the world to assess risk.


A rigid, deterministic approach was useful for fraud detection when e-commerce was in its infancy, but in today’s world, it simply isn’t sustainable. More than 70% of consumers say account creation should be instantaneous. An overwhelming majority also expect a fast, frictionless experience while also getting one that is as trustworthy and secure as possible. As data breaches continue to compromise customer’s credit information, it’s imperative that organisations move beyond traditional risk analysis and shift toward new ways to protect themselves and their customers. Dynamic PII used through machine learning is the future of fraud analysis, and by utilising a wider breadth of data, businesses can enable a quick and easy process for their good customers while mitigating risk.

Previous Article

December 08, 2020

Continuity in effective wealth management in uncertain times

Read More
Next Article

December 16, 2020

SymphonyAI: Banks are savvier than FinCEN headlines reveal

Read More

IBSi News


September 26, 2022


AccessFintech raises $60m in Series C round

Read More

  • Daily insightful Financial Technology news analysis
  • Weekly snapshots of industry deals, events & insights
  • Weekly global FinTech case study
  • Chart of the Week curated by IBSi’s Research Team
  • Monthly issues of the iconic IBSi FinTech Journal
  • Exclusive invitation to a flagship IBSi on-ground event of your choice

IBSi FinTech Journal

  • Most trusted FinTech journal since 1991
  • Digital monthly issue
  • 60+ pages of research, analysis, interviews, opinions, and rankings
  • Global coverage
Subscribe Now

Other Related Blogs

April 06, 2022

Caught in the crossfire: How the Russia-Ukraine crisis is exposing firms to cyber risk and what they can do about it

Read More

April 01, 2022

Why financial institutions need to start taking crypto fraud seriously – and how they can fix it

Read More

March 29, 2022

Don’t be an open window: combatting cyber threats for private equity firms and their portfolio companies

Read More

Related Reports

Sales League Table Report 2022

£1,500.00 / year

Know More
IBS Intelligence - Global Digital Banking Vendor & Landscape Report Q2 2022
Global Digital Banking Vendor & Landscape Report Q2 2022

£1,500.00 / year

Know More
IBS Intelligence - Wealth Management & Private Banking Systems Report Q2 2022
Wealth Management & Private Banking Systems Report Q2 2022

£1,500.00 / year

Know More
Global Transaction Banking Vendors and Landscape Report Q2 2022

£1,500.00 / year

Know More
IBS Intelligence - Treasury & Capital Markets Systems Report Q2 2022
Treasury and Capital Markets Systems Report 2022

£1,500.00 / year

Know More