Synthetic Identity Fraud in America 2026
There is a type of fraud operating at enormous scale across the United States that most Americans have never heard of, and that even the financial institutions it targets have historically struggled to detect, measure, or classify correctly. Synthetic identity fraud (SIF) is, by the Federal Reserve’s own description, the fastest-growing type of financial crime in the United States — and in 2026, powered by cheap artificial intelligence tools, an ecosystem of billions of stolen data records, and a financial system still working through inconsistent detection methods, it is accelerating. Unlike traditional identity theft, where a fraudster steals a real person’s full identity and impersonates them, synthetic identity fraud involves building an entirely new, fabricated identity by combining real pieces of personal data — typically a genuine Social Security number (SSN) — with fictional names, addresses, and dates of birth. The resulting “person” does not exist, but their credit profile is very real, and their debts are very real when fraudsters eventually disappear.
The Federal Reserve formally defined synthetic identity fraud in 2021 as: “the use of a combination of personally identifiable information (PII) to fabricate a person or entity in order to commit a dishonest act for personal or financial gain.” By 2022, the Federal Reserve estimated that synthetic identity fraud resulted in approximately $20 billion in losses for US financial institutions in 2020 alone — a figure that analysts expect to grow substantially through 2026 and beyond. TransUnion’s H1 2025 data showed US lenders carrying $3.3 billion in exposure to synthetic identities tied to new credit accounts — an all-time high. And with over 3,200 data breaches reported in the United States in 2024 and between 1.6 and 1.7 billion breach notices sent to Americans in that year alone (per the Federal Reserve Bank of Boston), the raw material supply chain for synthetic identity creation has never been more abundant or accessible.
Key Facts: Synthetic Identity Fraud Statistics in the US 2026
SYNTHETIC IDENTITY FRAUD — US KEY METRICS AT A GLANCE (2026)
============================================================
Fed Reserve Est. US Loss (2020 baseline) |████████████████████████ $20 billion/year
Projected US Loss by 2030 |████████████████████████████████ $23–35B/year
US Lender Exposure H1 2025 (TransUnion) |███████ $3.3 billion (all-time high)
US Data Breaches 2024 |█████████████████████ 3,200+
AI Acceleration of Synthetic ID Fraud |████████████████████████████████ +311% in one year
Digital Account Creations Flagged H1 2025 |████████████████ 8.3% suspected fraudulent
| Fact | Key Figure |
|---|---|
| Federal Reserve classification | Fastest-growing financial crime in the United States |
| Federal Reserve definition (official) | Use of a combination of PII to fabricate a person for dishonest financial gain |
| Estimated US financial institution losses (2020) | Approximately $20 billion — Federal Reserve / Federal Reserve Bank of Boston |
| US lender exposure to synthetic identities (H1 2025) | $3.3 billion — all-time high, per TransUnion |
| Projected US synthetic ID fraud losses by 2030 | $23 billion to $35 billion annually |
| Global annual losses to synthetic identity fraud | Estimated $20–$40 billion globally |
| US data breaches in 2024 | Over 3,200 reported breaches — Federal Reserve Bank of Boston, 2025 |
| Breach notices sent to Americans in 2024 | Between 1.6 and 1.7 billion notices — Federal Reserve Bank of Boston |
| 5-year US data breach volume | Exceeded 16,000 data breaches from 2020–2024 (TransUnion) |
| Traditional identity fraud losses 2025 (Javelin) | $27.3 billion, affecting 18 million victims |
| Combined identity fraud + scam losses 2025 (Javelin) | $38 billion, affecting 36 million Americans |
| New account fraud victims surge 2025 | 31% increase from 2024 to 2025 (Javelin 2026 Study) |
| Digital onboarding attempts flagged as suspicious (H1 2025) | 8.3% of all digital account creations — TransUnion |
| AI acceleration of synthetic identity fraud | AI has accelerated synthetic ID fraud by 311% in one year |
| Organizations reporting fraud rate increases 2025 | 67% of financial institutions reported rising fraud rates |
| Firms citing AI/deepfakes as top fraud threat | 64% of industry respondents — TransUnion H1 2025 Report |
| SIF share of unsecured lending charge-offs | 10% to 15% of charge-offs in typical unsecured lending portfolios |
Source: Federal Reserve / FedPayments Improvement Initiative; Federal Reserve Bank of Boston Podcast, March 2025; TransUnion H1 2025 State of Omnichannel Fraud Report; Javelin Strategy & Research 2026 Identity Fraud Study (April 2026); FTC Consumer Sentinel Network 2024
These figures capture why synthetic identity fraud is such a uniquely dangerous form of financial crime: it does not target individuals in the way that credit card fraud or account takeover does — it builds invisible phantom borrowers who accumulate real credit and then vanish. The $3.3 billion in US lender exposure tracked by TransUnion in H1 2025 is an all-time high, and it represents only what was detectable. Because synthetic identity fraud is routinely logged as bad debt and credit charge-offs rather than fraud, the vast majority of it never surfaces in fraud statistics at all — making the Federal Reserve’s $20 billion 2020 estimate likely a significant undercount even of losses that have already occurred.
The 311% acceleration of AI-driven synthetic identity fraud in a single year is perhaps the most alarming data point of all, because it captures a structural inflection: fraudsters who previously had to manually construct synthetic identities — a slow, skilled process — can now use generative AI tools to produce them at industrial scale. Combine that with the 1.6–1.7 billion data breach notifications sent to Americans in 2024 alone, and the implication is clear: the raw material (real SSNs and PII) is available in extraordinary abundance, the construction tools (AI) are cheap and powerful, and the detection systems are still catching up.
How Synthetic Identity Fraud Works in the US 2026
SYNTHETIC IDENTITY "BUST-OUT" FRAUD LIFECYCLE
==============================================
Step 1: Acquire → Real SSN (often child, elderly, immigrant, deceased) from data breach
Step 2: Fabricate → Attach fictional name, address, date of birth → create synthetic "person"
Step 3: Apply → Apply for secured card, small loan; get rejected → builds credit footprint
Step 4: Nurture → Make on-time payments; add to authorized user accounts → build credit score
Step 5: Escalate → Obtain higher credit limits, auto loans, personal loans
Step 6: Bust-Out → Max all accounts simultaneously; purchase high-value goods
Step 7: Disappear → Ghost creditors; "person" never existed; lender books as bad debt
Timeline: Can take 6 months to 2 years before "bust-out"| Phase | Action | Detection Difficulty |
|---|---|---|
| Identity Creation | Combines real SSN with fake name, DOB, address | Near-impossible at creation stage |
| Credit File Building | Applies for credit; initial rejections create an inquiry footprint | Appears as normal new-to-credit behavior |
| Credit Nurturing | Makes payments; gets added to authorized user accounts | Indistinguishable from legitimate credit building |
| Scaling | Opens multiple accounts across lenders using strong synthetic credit score | Low alert rate; strong scores pass risk models |
| Bust-Out | Maxes all credit simultaneously; buys high-value goods or withdraws cash | First signal that fraud has occurred |
| Abandonment | Synthetic identity disappears; lenders book losses as bad debt | Often never classified as fraud |
| AI-Accelerated Version | Generative AI creates thousands of synthetic IDs simultaneously | Automated at scale; harder to detect patterns |
Source: Federal Reserve Synthetic Identity Fraud White Paper (2019); FedPayments Improvement Initiative; Federal Reserve Bank of Boston, “Synthetic Identity Fraud: How AI is Changing the Game,” March 2025
The mechanics of synthetic identity fraud explain why it is simultaneously so profitable for criminals and so difficult for the financial system to combat. The “bust-out” pattern — nurturing a synthetic credit identity over months or even years before monetizing it — means that at every step before the final bust-out, the behavior of a synthetic identity is statistically identical to a legitimate new credit customer. A real person building credit from scratch for the first time and a fraudster nurturing a synthetic identity follow the exact same behavioral path. The only reliable difference is what happens at the end. The Federal Reserve’s white paper specifically highlighted that synthetic identities “can escape detection by today’s identity verification and credit-screening processes” — a statement that remains accurate in 2026, even with improved detection tools.
The AI acceleration factor fundamentally changes the operational economics of this fraud. Previously, building a convincing synthetic identity required time, skill, and access to suitable PII. Generative AI can now automate identity creation, write convincing synthetic application histories, and match PII fragments from multiple breach datasets to create more coherent and harder-to-flag personas. The Federal Reserve Bank of Boston’s March 2025 commentary specifically discussed how generative AI amplifies the synthetic identity threat, noting that the same tools that can write emails and generate content can, in the hands of fraudsters, manufacture synthetic personal histories at a pace no manual fraud operation could match.
Synthetic Identity Fraud Impact on Financial Institutions in the US 2026
SYNTHETIC IDENTITY FRAUD — FINANCIAL INSTITUTION IMPACT (US 2025–2026)
=======================================================================
Lender Exposure (TransUnion H1 2025) |████████████████████████████ $3.3B (all-time high)
Fraud Rate Increase (2025) |████████████████████████████ 67% of FIs reported rise
Digital Account Fraud Rate (H1 2025) |████████████████ 8.3% of creations flagged
SIF Share of Unsecured Charge-Offs |████████████ 10%–15% of charge-offs
Breach Risk Severity Increase 2024 |████████████████████████████ +34% (all-time high, TransUnion)
Bust-Out Fraud Share of All Fraud |████████████ 21% of all fraud cases
(Source: TransUnion H1 2025 Fraud Report; Federal Reserve estimates)
| Metric | Data | Source / Period |
|---|---|---|
| US lender exposure to synthetic identities | $3.3 billion — all-time high | TransUnion, H1 2025 |
| Financial institutions reporting fraud rate increases | 67% | TransUnion H1 2025 |
| Digital account creations flagged as suspicious | 8.3% | TransUnion H1 2025 |
| Bust-out fraud share of all fraud cases | 21% — most frequent fraud type | TransUnion H1 2025 |
| Bust-out fraud share of total financial losses | 16% of total fraud losses | TransUnion H1 2025 |
| SIF share of unsecured lending charge-offs | 10%–15% | Federal Reserve / Thomson Reuters |
| Breach risk severity increase (2024) | +34% — highest ever since 2020 | TransUnion TruEmpower BRS |
| US data breaches 2020–2024 cumulative | Exceeded 16,000 breaches | TransUnion H1 2025 |
| AI / deepfake as primary threat concern | 64% of respondents | TransUnion H1 2025 |
Source: TransUnion H1 2025 Update: State of Omnichannel Fraud Report; Federal Reserve Bank of Boston; Thomson Reuters Institute on Synthetic Identity Fraud
The financial institution data on synthetic identity fraud is sobering in what it reveals about exposure that is already baked into the system. TransUnion’s H1 2025 finding that US lenders carried $3.3 billion in exposure to synthetic identities — an all-time high — means that right now, billions of dollars in fraudulent credit obligations are sitting on lender balance sheets, held by people who do not exist, waiting for the bust-out that will eventually come. The 10%–15% of unsecured lending charge-offs attributable to synthetic identity fraud is particularly revealing: when lenders write off bad debt, most of what they classify as credit risk is in fact fraud that has never been properly identified. This matters for consumers too, because those losses ultimately feed into credit pricing, interest rates, and tightened lending standards that affect real borrowers.
The +34% increase in average breach risk severity in 2024 — TransUnion’s measure of the ability of a specific breach to enable identity fraud — signals that it is not just breach volumes that are growing but the quality of stolen data. More complete data packages (full name, SSN, DOB, address history) are appearing on dark web markets, giving fraudsters everything they need to construct a more convincing synthetic identity. The 64% of financial institutions citing AI and deepfakes as their primary identity fraud concern reflects a recognition that the 2025–2026 synthetic identity threat is qualitatively different from what came before — not merely more of the same, but a structurally new challenge that existing detection systems were not built to face.
Who Is Most Vulnerable to Synthetic Identity Fraud in the US 2026
MOST TARGETED SSN CATEGORIES FOR SYNTHETIC IDENTITY CREATION (US)
=================================================================
Children (under 18) |████████████████████████████████ Clean credit file; unmonitored for years
Elderly adults |████████████████████████ SSNs pre-date digital validation
Immigrants |████████████████████ New to credit; SSN-credit mismatch expected
Recently deceased |████████████ Delays in reporting; still "valid" SSNs
Low-credit individuals |████████ Less likely to notice new account anomalies
| At-Risk Group | Why Targeted | Key Risk |
|---|---|---|
| Children | Clean SSNs with no credit history — blank slate for fraud | May go undetected for years until child applies for credit |
| Elderly adults | SSNs issued before digital cross-referencing systems | Harder to flag mismatch between SSN issuance era and synthetic DOB |
| Immigrants (new to US) | Normal credit file gap between SSN issuance and credit activity | Synthetic behavior pattern indistinguishable from legitimate new credit use |
| Millennials | 54% have been identity theft victims — highest generational rate | Frequent data breach exposure; most active in digital financial platforms |
| Recently deceased | Death reporting lag creates a window for SSN use | Synthetic identity can be built before Social Security database is updated |
| People with no credit file | No baseline credit activity to generate anomaly alerts | Account creation fraud victims up 31% from 2024 to 2025 (Javelin) |
Source: Federal Reserve Synthetic Identity Fraud White Papers (2019, 2021); FedPayments Improvement Initiative; Javelin Strategy & Research 2026 Identity Fraud Study, April 2026
The vulnerability profile for synthetic identity fraud victims is unlike almost any other fraud type, because in most cases the person whose Social Security number is used as the foundation of a synthetic identity does not know their data is being used. A child’s SSN can be incorporated into a synthetic identity at age 3 and the fraud could run for 15 years before that child applies for their first credit card and discovers the damage. This is why children’s identity data is described by fraud experts as particularly valuable: it is “clean” in the sense that there is no existing credit history to generate anomaly alerts when a fraudulent account is opened against it. The Federal Reserve has specifically noted this dynamic in its educational materials for financial institutions.
The Javelin 2026 Identity Fraud Study finding that new account fraud victims jumped 31% from 2024 to 2025 is directly linked to the synthetic identity fraud ecosystem: when a synthetic identity with a carefully nurtured credit score opens new accounts, the person whose SSN underpins the synthetic profile becomes a victim of new account fraud — even if they were never directly defrauded themselves. The 54% of Millennials who have been identity theft victims reflects this generation’s disproportionate exposure through data breaches — having grown up conducting their financial and personal lives online, they have had more opportunities to have their PII captured in the 16,000+ US data breaches recorded over the past five years.
AI’s Role in Synthetic Identity Fraud in the US 2026
AI IMPACT ON SYNTHETIC IDENTITY FRAUD — US 2025–2026
=====================================================
Deepfake files growth (2023–2025) |████████████████████████████████ 500K → 8 Million (+1,500%)
AI acceleration of SIF |████████████████████████████████ +311% in one year
FBI IC3 AI-related fraud 2025 |████████████████████ $893 million in losses
FBI IC3 AI fraud complaints 2025 |████████████████ 22,364 complaints (new category)
FI respondents citing AI threat |████████████████████████████████ 64% of financial institutions
| AI Fraud Metric | Data | Source |
|---|---|---|
| FBI IC3 AI-related fraud complaints 2025 | 22,364 complaints — first standalone AI category | FBI IC3 2025 Annual Report |
| FBI IC3 AI-related fraud losses 2025 | $893 million | FBI IC3 2025 Annual Report |
| Deepfake files worldwide (2023 vs 2025) | Grew from ~500,000 to ~8 million — a 1,500% increase in 2 years | Research cited by UK government |
| AI acceleration of synthetic ID fraud | +311% in one year | Industry analysis; multiple fraud reports |
| Financial institutions citing AI/deepfakes as top threat | 64% | TransUnion H1 2025 |
| Biometric fraud concern for 2026 | Stolen biometric data flagged as new vector for synthetic identity creation | TransUnion H1 2025 prediction |
| Voice cloning and deepfake investment scam use | $893 million in AI-enabled fraud losses (includes all types) | FBI IC3 2025 Annual Report |
Source: FBI Internet Crime Complaint Center 2025 Annual Report; TransUnion H1 2025 State of Omnichannel Fraud Report; Federal Reserve Bank of Boston, “Synthetic Identity Fraud: How AI is Changing the Game,” March 31, 2025
The role of artificial intelligence in synthetic identity fraud in 2026 is not a future risk — it is a present operational reality that is already reshaping the fraud landscape in measurable ways. The FBI IC3’s decision to track AI-facilitated fraud as a standalone category for the first time in its 2025 Annual Report — recording 22,364 complaints and $893 million in losses — is significant, but the agency itself noted this is likely a major undercount because most victims do not recognize AI involvement in the attacks targeting them. The explosive growth of deepfake files from 500,000 in 2023 to an estimated 8 million in 2025 — a 1,500% increase in two years — represents the technological infrastructure being built to support identity and financial fraud at a scale that was simply not possible three years ago.
For synthetic identity fraud specifically, generative AI has transformed what was once a skilled, manual operation into something that can be automated at scale. A fraudster with access to a language model and a dataset of breached PII can now generate thousands of synthetic application profiles — each with internally consistent personal histories, addresses, and backstories — and submit them across multiple lenders simultaneously. The Federal Reserve Bank of Boston’s March 2025 commentary specifically flagged that generative AI amplifies the synthetic identity threat by enabling automation of identity construction at volumes no prior fraud operation could achieve. The TransUnion H1 2025 prediction that stolen biometric data will become the next frontier for synthetic identity creation — building fake identities that can also pass facial recognition checks — suggests that the next chapter of this fraud type will be harder still to detect and defend against.
Disclaimer: This research report is compiled from publicly available sources. While reasonable efforts have been made to ensure accuracy, no representation or warranty, express or implied, is given as to the completeness or reliability of the information. We accept no liability for any errors, omissions, losses, or damages of any kind arising from the use of this report.