According to PYMNTS.com, fraud has evolved from clumsy phishing into a sophisticated, fast-moving industry powered by AI and social engineering. Executives from Block and PayPal revealed that nearly 1 in 5 U.S. adults has been scammed in the past five years, with victims now spanning all age groups, including Gen Z and millennials. The attack surface has shifted to social media and messaging apps, where over half of victims send money within 24 hours of contact, and a quarter do so within just 30 minutes. In response, companies like Block are using machine learning to surface warnings in about 1% of transactions, while PayPal emphasizes global intelligence gathering. The fallout is severe: 42% of victims consider switching banks, and 19% actually do, eroding trust in digital finance entirely.
The New Scam Economy
Here’s the thing: we’re not talking about your grandma’s email scam anymore. This is a professionalized operation. The whole model has flipped. Scammers aren’t just exploiting technological ignorance; they’re exploiting digital fluency. They go where the trust is—social feeds, DMs, marketplace apps—and they use psychological pressure as their main tool. It’s social engineering at an industrial scale. And because the grooming happens outside the payment app, by the time someone opens Venmo or Cash App to send money, they’re already convinced. The platform is just the final, frictionless conduit. That’s why PayPal’s Dave Szuchman calls it an “ecosystem problem.” No single company can wall off its garden when the whole forest is on fire.
The Needle to Thread
So, what can the payment companies actually do? Their biggest challenge is one of timing and perception. As Szuchman put it, they “don’t want to get in the middle of a good payment.” Too many warnings, and you train users to just click through everything—a “click-through culture” that helps the scammer. Too few, and you miss your shot to break the psychological spell. Block’s approach is interesting: they use ML to flag only about 1% of transactions, but then they provide context. You can see if you’ve ever transacted with that person before, when their account was created, if they’re in your contacts. That absence of a shared history can be the cold water to the face someone needs. It’s smart friction. But it’s a constant calibration. And with AI making cloned voices and deepfake videos easier, that calibration is only getting harder.
The Trust Reckoning
Maybe the most alarming stat isn’t about money lost. It’s that 42% of scam victims thought about leaving their bank, and 19% did. Think about that. A successful scam doesn’t just steal $500; it can drive a customer away from digital finance for good. That’s an existential threat for these companies. This is why the post-scam response is becoming as important as prevention. Block’s simplified reporting and reimbursement program, and PayPal’s dispute centers, aren’t just customer service. They’re explicit trust-building exercises. They’re saying, “We messed up by not catching it, but we have your back.” It turns a negative event into a (painful) loyalty opportunity. The data from those investigations also feeds the detection models, creating that “closed-loop” Boates mentioned. Every failure makes the system slightly smarter.
An Ecosystem Fight
Look, technology alone won’t fix this. You can have the best fraud models in the world, but if someone is emotionally manipulated into sending money to a “friend in jail,” they’ll find a way. That’s where education and awareness come in—like the FinTech Association’s Smarter Than Scams campaign pushing for simple pauses and checks. But let’s be real: telling someone to “pause before you pay” while they’re in a state of panic is a tall order. The real shift, the one these execs are hinting at, is moving from isolated defense to ecosystem collaboration. Sharing intelligence globally, designing consistent interventions across platforms, and maybe even rethinking some regulatory frameworks that slow down defensive innovation. In a world run on digital trust, securing the transaction isn’t enough anymore. You have to secure the human behind it.
