Fraud and cyber risk are becoming more dynamic, more event-driven, and more tightly connected to external developments. Threats that once built gradually are now more likely to spike in response to geopolitical unrest and disruption. In those moments, customer behaviour, operations, and risk signals all move at once, and the time available to understand what is happening narrows.
We see this play out in the way different actors converge around the same moments of instability. Some may seek disruption or data corruption to undermine trust in financial infrastructure. Others are hacktivist groups that prioritise visibility and reputational impact through denial-of-service attacks, defacements, or leaks. And then there are financially motivated criminals who move fastest to turn crisis narratives into credential theft, payment data capture, and account takeover. Their goals differ, but for institutions the lived reality is the same: disruption itself becomes part of the threat.
The individual patterns are well known to every risk and security team. Impersonation, where fraudsters mimic government bodies, law enforcement, emergency services or crisis-management organisations to extract personal and financial information. Crisis-themed phishing, where messages about emergency payments, compensation, aid or relief are used to pressure people into sharing credentials, card data, or one‑time passcodes. Malware-enabled payment data capture linked to fake news, donation appeals, charity schemes, or cryptocurrency offers, where a single click can lead to downstream credential theft and account compromise. Recent warnings in the UAE about scam calls and unsecured home routers show that these risks are real and increasingly relevant for residents.
Artificial Intelligence is sharpening all of this. It has become a force multiplier for attackers, improving the realism of phishing, making impersonation more convincing, increasing targeting precision, and accelerating the deployment of new campaigns. Response plans that rely too heavily on static patterns or historical baselines struggle in this world. Yet AI is also changing the way we defend. It is now central to anomaly detection, pattern recognition, real-time scoring, and connecting weak signals across complex transaction environments. At Visa, we have highlighted our AI-enabled fraud defenses as a core part of ecosystem protection and detection at scale. The fundamentals of risk management still matter, but AI is raising the bar, making it imperative for even mature teams to operate with greater agility.
In this environment, the easy response is to overreact. When threat levels rise, the instinct is to tighten controls broadly, to pull every lever at once. But blunt defenses create their own problems: false positives, unnecessary declines, friction for legitimate customers, disruption to commerce. In payments, resilience depends not just on stopping bad activity, but on preserving trusted activity. Our goal is a posture of practical vigilance: stronger monitoring, quicker interpretation, more tailored controls, and better collaboration across the organisation.
That discipline is practical, not abstract. It means reassessing whether historical baselines still hold. It means connecting fraud and cyber signals more closely, updating thresholds and rules more dynamically, strengthening customer communication readiness, and preparing for surge-based responses when external conditions shift abruptly. It also means recognising that fraud resilience and operational resilience are now tightly intertwined. Detection, response, and communication speed stand alongside prevention as core capabilities.
No institution can do this alone. Issuers, acquirers, merchants, processors, fintechs, and networks each hold part of the signal, and in uncertain periods those fragments become far more valuable when combined. Collaboration across the ecosystem is essential. So is collaboration within institutions themselves, ensuring that fraud, cyber, operations, customer communications, and incident response do not operate as isolated workstreams.
At Visa, we will continue to support clients by monitoring the threat landscape, sharing insights, investing in intelligence, infrastructure, and AI-enabled defenses. Resilience in uncertain times depends on disciplined vigilance, modernised capability, and true partnership across the ecosystem. That is how we protect trust, support legitimate commerce, and respond with confidence when conditions are under pressure.