SecurityBrief UK - Technology news for CISOs & cybersecurity decision-makers
United Kingdom

Guides

#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware

Search

Uk bank security ops room fraud detection data protection
#
Gaming
#
Data Protection
#
Hybrid Cloud

Group-IB unveils GDPR-safe real-time fraud intel hub

Mon, 5th Jan 2026
Author image
By Joseph Gabriel Lagonsin, News Editor

Group-IB has launched a Cyber Fraud Intelligence Platform that allows banks and other organisations to share real-time fraud intelligence while keeping customer data anonymised and in line with GDPR rules.

The Singapore-headquartered cybersecurity company said the Cyber Fraud Intelligence Platform, known as CFIP, supports collaboration across financial services, payments, telecommunications, eCommerce and gaming. The system lets institutions exchange anonymised "risk signals" about suspicious payments, accounts and devices.

Group-IB positions the launch against sharp increases in fraud losses. In the UK, fraudsters stole about £600 million in the first half of 2025, with reported cases up 17%, driven by the continued growth of authorised push payment fraud.

GDPR-compliant sharing

CFIP relies on Group-IB's patented Distributed Tokenization technology. The company said this technology anonymises personal data before any information leaves a participating organisation and supports real-time comparison of suspicious activity between institutions.

Bureau Veritas has independently verified the privacy architecture and confirmed that CFIP's design and processing methods comply with GDPR. Group-IB said this makes CFIP the first global, real-time fraud intelligence platform with this level of external validation.

At the centre of the approach is a move from intelligence sharing based only on confirmed fraud to intelligence sharing on suspicious activity. Banks and payment providers can match anonymised indicators in milliseconds and decide whether to block or investigate a transaction before completion.

"CFIP bridges one of the biggest gaps in financial-crime prevention - the ability to collaborate securely," said Julien Laurent, Financial Crime and Compliance Specialist, Group-IB. "By combining real-time risk-signal sharing with independently verified privacy safeguards, CFIP allows the industry to work together to stop fraud before it happens."

Industry-wide challenge

Traditional fraud-sharing arrangements focus on post-incident reporting. By the time fraud is confirmed, funds have often moved through multiple accounts and jurisdictions, and recovery becomes difficult or impossible. Group-IB said GDPR requirements have added further constraints by limiting how banks and businesses exchange personal data in real time.

Group-IB said CFIP tackles this problem through a privacy-first model. All customer information remains anonymised so that personal data does not leave the originating institution. The platform exchanges only pseudonymised or tokenised indicators, such as device fingerprints, behavioural patterns, and risk scores.

The company said the platform's microservices architecture supports instant, reactive detection across a network of institutions. It is already handling more than 25 million transactions per day in national-level deployments, according to Group-IB.

Use cases and early results

Group-IB said CFIP targets a range of fraud types, including authorised push payment scams, investment and romance scams, business email compromise, mule-account networks, synthetic identities and account takeovers. Institutions can share risk scores on recipient accounts, correlate pseudonymised device and session data, and flag patterns that suggest "warm-up" activity by mule accounts.

The platform also supports checks on loan applications, know-your-customer processes and synthetic identity detection, by revealing links across shared phone numbers, addresses or documents. A cross-bank "track and trace" function supports rapid freezing and recovery of stolen funds, based on shared risk indicators rather than raw customer records.

In a Central Asian national deployment, Group-IB said CFIP already identifies 300-400 mule accounts per day and processes around 180,000 checks daily. The company projects annual savings of between USD $100 million and USD $300 million at full adoption in that market.

Technology and deployment

CFIP runs on Amazon Web Services infrastructure as part of Group-IB's status as an AWS ISV Accelerate Partner. The company said the platform is system-agnostic and integrates with existing fraud and risk management tools, as well as case management systems.

Group-IB said institutions can deploy CFIP in cloud, on-premise or hybrid models, depending on data sovereignty and regulatory requirements. The microservice design supports interoperability between different banks and sectors and allows scaling to national or cross-border schemes.

Regulatory context

Regulators in several markets are pressing financial institutions to share more fraud-related information. Frameworks such as the UK Payment Systems Regulator's Specific Direction 20, the EU's Anti-Money Laundering Regulation Article 75, Singapore's COSMIC initiative and Australia's Scam-Safe Accord all encourage greater collaboration on intelligence.

International guidance from the Financial Action Task Force has also highlighted private-to-private data exchange as a tool against money laundering, while the US Department of the Treasury has called for operational improvements in the anti-money laundering and counter-terrorist financing regime.

Group-IB said CFIP provides a structured way for institutions to meet these expectations. The company said the platform supports emerging resilience standards such as the EU's Digital Operational Resilience Act by allowing firms to demonstrate real-time intelligence sharing and consumer protection processes.

Call for collaboration

Group-IB said CFIP is intended as a cross-industry network that involves financial institutions, regulators and industry bodies. The company said this collective model addresses blind spots that criminals exploit when banks and service providers operate in silos.

"Financial crime is one of the most complex and costly challenges of our time, and no single organization can solve it alone. CFIP reflects our commitment to tackling digital crime through collaboration - proving that when privacy, compliance, and shared intelligence come together, the entire financial ecosystem becomes stronger and more resilient," said Volkov.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Deepfake boom fuels relentless wave of celebrity scams
Visionplatform.ai adds AI agents to Milestone XProtect
Ofcom probes X over Grok deepfake sexual imagery risk
European privacy teams warn of cuts amid rising risks
Phishing services drive 389% surge in account breaches

Top stories

Executive-level CISO titles surge amid rising scope strain
UK unveils Software Security Ambassadors to push new code
Dun & Bradstreet outlines seven key compliance trends
Asimily boosts Cisco ISE with new device microsegmentation
Cyb3r Operations raises $5.4m to tackle cyber risk