Synthetic identity fraud combines real social security numbers with fake names and dates of birth to create identities that are nearly invisible to traditional detection. Here is how it works and what stops it.
Most financial fraud conversations focus on stolen identities: a criminal steals someone's credentials and uses them to access existing accounts. This is serious, well-understood, and has a clear victim who will notice and report the fraud.
Synthetic identity fraud is different. It is a category of fraud so well-constructed that it can evade detection for years, the "victim" often does not exist as a real person, and the economic damage falls almost entirely on financial institutions and businesses — not on individuals who would trigger fraud alerts.
The Federal Reserve estimates synthetic identity fraud costs the US financial system alone $6 to $8 billion per year. It is the fastest-growing financial crime category in North America, and it remains dramatically under-discussed relative to its scale.
A synthetic identity combines:
The combination creates an entirely new identity that does not appear in fraud databases because no one has ever reported it as compromised. The SSN is real, so it passes basic credit bureau checks. But the name, DOB, and address attached to it belong to no real person.
The fraudster then spends months or years building a credit profile for this synthetic identity: opening secured credit cards, taking small loans, making payments on time. This is called the "credit washing" phase. The goal is to establish a credit history that makes the synthetic identity indistinguishable from a legitimate customer.
Then comes the "bust-out": the fraudster maxes out every available credit line simultaneously and disappears. The resulting charge-offs are reported against the SSN — which looks like it belongs to a legitimate person who has simply defaulted — rather than being classified as fraud.
Traditional fraud detection relies on matching reported information against known records. But a synthetic identity has no "ground truth" to match against — the SSN holder did not apply for credit, so there is no legitimate file to compare against.
Credit bureau fraud models are built primarily to detect ID theft — where a known person's file is accessed or modified. They perform poorly at identifying fabricated identities built from scratch because there is no anomaly to detect at the individual account level.
Only when synthetic fraud is analysed at the network level — looking at relationships between accounts using shared SSNs, addresses, phone numbers, or device fingerprints — does the pattern become visible. This is why most synthetic fraud rings are only detected after the bust-out, not before it.
| Dimension | Stolen Identity Fraud | Synthetic Identity Fraud |
|---|---|---|
| Identity type | Real person's credentials used without consent | Fabricated identity with real SSN component |
| Detection difficulty | Moderate (victim reports) | Very high (no real victim to report) |
| Scale | Individual (one account per stolen ID) | Industrial (rings operate hundreds of synthetic IDs) |
| Time horizon | Immediate to weeks | Months to years of credit building |
| Average fraud value per identity | $2,000-$5,000 | $10,000-$100,000+ (after credit building) |
| Primary industries affected | Consumer banking, e-commerce, healthcare | Lending, auto finance, credit cards, mortgages |
| Typical detection point | At fraudulent transaction | After bust-out (too late) |
Auto finance is the highest-risk sector for synthetic identity fraud. Auto loans are relatively easy to obtain with a short credit history, the loan amount is large ($25,000-$75,000 typical), and vehicles can be quickly liquidated. A single synthetic identity used for auto fraud generates a loss an order of magnitude larger than credit card fraud.
Consumer lending and credit card issuers are the traditional targets — the original breeding ground for synthetic fraud rings. The ease of online application means fraudsters can operate at scale with minimal physical exposure.
Banking institutions face synthetic fraud at new account opening — a synthetic identity that successfully opens a checking account becomes a foundation for further fraud including ACH fraud, check kiting, and loan applications.
Fintech lenders, which often have faster and more automated underwriting than traditional banks, have become high-value targets precisely because speed-to-decision works against fraud detection.
The defining characteristic of synthetic identity fraud is that the identity has no face attached to it. A real person cannot be associated with the fabricated combination of SSN + false name + false DOB.
This is the critical vulnerability that biometric verification exploits:
At account opening — requiring a government-issued ID document plus a biometric selfie match creates a permanent, auditable link between the identity being claimed and a specific biological individual. A synthetic identity cannot produce a face that matches the SSN holder, because the SSN holder is not participating in the fraud.
When biometric verification is applied at account opening, the fraud ring faces a fundamental problem: they can fabricate documents, but they cannot produce a biometric match for a real person who does not exist. They must either use a mule (a real person who submits their genuine face, creating a different trail of evidence) or abandon the application.
Document authentication is the second layer. Synthetic identities require fabricated ID documents. High-quality document authentication — checking security features, fonts, watermarks, and layout against verified templates for 14,000+ document types — catches the majority of fraudulent documents before the biometric check is even reached.
deepidv's online verification platform combines both layers — document authentication and biometric face matching — in a single onboarding flow designed specifically to close the synthetic fraud gap.
The $8 billion question is when your institution will close it too. Talk to us about implementing biometric verification at account opening.
Go live in minutes. No sandbox required, no hidden fees.
Rental fraud costs property managers billions annually. Discover how digital identity verification is transforming tenant screening and protecting property portfolios.
Real estate wire fraud exceeds $1 billion annually. Identity verification at critical transaction points can stop it — here is how leading platforms are implementing it.
Deepfakes have moved from novelty to weapon. Fraudsters now use AI-generated faces, documents, and videos to bypass identity checks at scale. Here is what has changed and what it means for your verification stack.
