Notifications
Clear all
Topic starter
10/06/2026 10:39 pm
TL;DR: First party fraud is becoming a scalable criminal model as legitimate customers exploit refunds, disputes, chargebacks, subscriptions, and reimbursement systems for personal gain, according to SumSub’s conversation with Monzo Bank’s Richard Bromley. The risk is no longer just transaction abuse; it is governance drift across identity verification, behavioural signals, and dispute handling.
NHIMG editorial — based on content published by SumSub: first party fraud, refund abuse, and disputes risk
Questions worth separating out
Q: How should teams distinguish genuine disputes from first party fraud?
A: Use behavioural evidence, not just identity verification.
Q: Why does first party fraud create an identity governance problem?
A: Because the actor is already a verified customer, so the security failure occurs after authentication.
Q: What do security and risk teams get wrong about friendly fraud?
A: They often treat it as a minor customer-service issue rather than repeatable abuse.
Practitioner guidance
- Separate honest customer error from repeat abuse Create dispute and refund triage rules that compare claim timing, frequency, device consistency, and prior case history before approving high-risk reimbursement requests.
- Feed investigator decisions back into detection models Use investigator outcomes to tune machine learning models so repeated abuse patterns improve scoring, while genuine victims are not suppressed by crude rules.
- Build shared fraud typologies across functions Align fraud, IAM, customer operations, and payments teams on common abuse patterns so a case seen in one channel can inform decisions in another.
What's in the full article
SumSub's full article covers the operational detail this post intentionally leaves for the source:
- Richard Bromley’s fraud-and-disputes perspective on how customer abuse evolves into a repeatable criminal model
- The practical distinctions between genuine victims, dishonest claimants, and organised reimbursement abuse
- Behavioural signal examples that investigators can use when reviewing refund, dispute, and chargeback claims
- The article’s commentary on why the term friendly fraud can distort escalation and governance decisions
👉 Read SumSub’s discussion of first party fraud and disputes governance →
First party fraud and refund abuse: what IAM teams should notice?
Explore further
11/06/2026 2:46 am
First party fraud is an identity governance problem, not just a payments problem. The article shows that the fraudster may already be inside the trust boundary, using a verified human identity to exploit refund, dispute, and reimbursement systems. That shifts the real control question from authentication to intent detection and behavioural governance. Practitioners should treat customer-facing claims processes as part of the identity attack surface.
A few things that frame the scale:
- 72% of organisations have experienced or suspect they have experienced a breach of non-human identities, with 46% confirmed and 26% suspected, according to The 2024 ESG Report: Managing Non-Human Identities.
- Enterprises that have experienced a compromised NHI averaged 2.7 separate incidents in the past 12 months, according to The 2024 ESG Report: Managing Non-Human Identities.
A question worth separating out:
Q: How can organisations reduce reimbursement abuse without harming genuine customers?
A: Use layered review thresholds, case history, and investigator feedback instead of blanket denial rules. Genuine customers benefit when the process is transparent and evidence-based. The goal is to make abuse expensive and slow while keeping legitimate claims accessible, fast, and explainable.
👉 Read our full editorial: First party fraud is reshaping payment risk and disputes governance
