TL;DR: 2025 crypto fraud reached an estimated $17 billion, impersonation scams jumped 1,400% year over year, and AI-assisted fraud generated about 4.5 times more profit than traditional scams, while phishing-as-a-service and laundering networks made operations more industrialised, according to Chainalysis. The lesson for identity and fraud teams is that trust abuse, not just technical compromise, is now the core control problem.
NHIMG editorial — based on content published by Chainalysis: 2026 Crypto Crime Report coverage of crypto fraud, impersonation scams, and AI-assisted fraud
By the numbers:
- The average scam transfer amount rose from $782 in 2024 to $2,764 in 2025.
Questions worth separating out
Q: What breaks when customer identity verification is too weak for support and recovery requests?
A: Weak verification turns support and recovery into an attacker’s easiest path.
Q: Why do impersonation scams scale so quickly in digital channels?
A: They scale because the attacker can automate the first contact, reuse the same brand story across many victims, and outsource the rest of the workflow through phishing kits and laundering services.
Q: How can teams tell whether AI-driven fraud controls are keeping up?
A: Teams should measure how quickly fraud patterns are detected, validated, and pushed into controls compared with how fast attackers adapt.
Practitioner guidance
- Harden support and recovery verification Require stronger proofing for password resets, account recovery, and wallet-change requests, especially when the request follows an impersonation-style contact path.
- Instrument impersonation-detection signals Track brand impersonation, fake support domains, and suspicious contact patterns across SMS, email, and social channels.
- Align fraud response with AML freezing workflows Pre-agree escalation paths with payments, legal, and AML teams so suspicious transfers can be frozen or traced quickly.
What's in the full report
Chainalysis' full report covers the operational detail this post intentionally leaves for the source:
- Per-campaign laundering path analysis showing how scam proceeds move through exchanges, wallets, and regional cash-out services.
- Breakdowns of the most active impersonation clusters, including the infrastructure patterns behind SMS and support-channel abuse.
- On-chain evidence linking phishing kits, AI vendors, and laundering services to specific fraud ecosystems.
- Case-by-case enforcement actions and seizure details that help investigators compare disruption strategies.
👉 Read Chainalysis' full 2026 Crypto Crime Report on impersonation fraud and AI-driven scams →
Crypto fraud industrialisation: what identity teams should watch?
Explore further
Impersonation fraud is becoming an identity governance problem, not just a fraud problem. The article shows that attackers succeed by hijacking trust in brands, support desks, and government channels. That means customer identity, support verification, and recovery procedures now sit inside the fraud attack surface. Practitioners should govern trusted interaction paths as carefully as authentication flows.
A question worth separating out:
Q: Who is accountable when impersonation fraud succeeds through support or recovery channels?
A: Accountability is shared across fraud, identity, support operations, and payments, because the attack crosses all four boundaries. The strongest model assigns ownership for verification design, staff privilege, customer recovery, and transaction freeze decisions so no team can assume another layer will catch the failure.
👉 Read our full editorial: AI-enabled crypto fraud is industrialising at global scale