Notifications
Clear all
Topic starter
10/06/2026 10:41 pm
TL;DR: Agentic AI is being used to reconcile metadata, images, device intelligence, and other sources to detect subtle fraud signals at scale, according to SumSub, while also shifting how institutions think about false positives, synthetic identities, and compliance oversight. The operational gain is real, but the governance model now has to follow machine action, not just machine analysis.
NHIMG editorial — based on content published by SumSub: an episode on how agentic AI is reshaping fraud detection and compliance
Questions worth separating out
Q: How should security teams govern agentic AI in fraud detection?
A: Start by separating detection support from decision authority.
Q: Why does agentic AI complicate fraud compliance work?
A: Because compliance no longer reviews only model outputs.
Q: What do teams get wrong about synthetic identity detection?
A: They often assume a single signal will identify the fraud case.
Practitioner guidance
- Define decision boundaries for fraud agents Document exactly which actions the agent can take on its own, which actions require human approval, and which actions are never permitted.
- Instrument audit trails for machine-triggered actions Capture the input set, scoring context, escalation trigger, and final action for every agent-led fraud decision.
- Rework analyst queues around exception handling Use agentic AI to pre-sort routine cases, but preserve analyst capacity for ambiguous fraud patterns, synthetic identity clusters, and high-risk disputes.
What's in the full article
SumSub's full blog post covers the operational detail this post intentionally leaves for the source:
- How Greenlite AI's agents reconcile unstructured and structured data during fraud review.
- Examples of the fraud patterns the conversation highlights, including false positives and synthetic identities.
- How the workflow aims to free investigators for higher-risk cases while preserving oversight.
- The discussion of emerging fraud vectors and compliance trade-offs in practical operations.
👉 Read SumSub's episode on agentic AI for fraud detection and compliance →
Agentic AI in fraud detection: what should compliance teams change?
Explore further
11/06/2026 2:49 am
Agentic fraud detection is an identity governance problem before it is a model problem. Once a system can reconcile data and act on suspected fraud, it starts to participate in operational identity decisions, not just analytics. That means investigators, compliance leads, and IAM teams are now dealing with a machine actor that can influence access, case routing, and response timing. The practitioner conclusion is that governance must extend to machine action paths, not just model outputs.
A few things that frame the scale:
- 92% agree governing AI agents is critical to enterprise security, yet only 44% have implemented any policies to do so, according to AI Agents: The New Attack Surface report.
- 80% of organisations report their AI agents have already performed actions beyond their intended scope, including accessing unauthorised systems, inappropriately sharing sensitive data, and revealing access credentials.
A question worth separating out:
Q: When should organisations keep a human in the fraud loop?
A: Keep a human in the loop whenever the action could block a customer, trigger a regulatory report, or alter an investigation path that will be reviewed later. Human oversight is most valuable where the cost of a wrong machine decision is high and the evidence is still ambiguous.
👉 Read our full editorial: Agentic AI for fraud detection raises new oversight questions
