Submit Article

Gary Schwartz

President

The Disappearing Car and the Fraud Ghost

Abstract: A 22% decline in auto theft in 2025 is encouraging, but it risks masking a more structural shift. As MPP Zee Hamid acknowledged, organized crime adapts and migrates toward the weakest link. As physical theft becomes harder, criminal networks are pivoting upstream into vehicle financing, using synthetic identities, falsified documents and deepfake technologies to secure legitimate loans for illegitimate exports. What appears as improved public safety may, in fact, be displacement into credit systems. The industry is responding with stronger identity verification, data sharing and advanced analytics, but fraud must now be treated not as a marginal credit cost, but as a structural vulnerability at the heart of financial stability.

At our recent Automotive Finance Canada Summit, MPP Zee Hamid, Associate Solicitor General for Auto Theft and Bail Reform (Ontario) spoke about the downturn in theft. A 22% decline in auto theft in 2025 makes for an agreeable headline. The numbers appear to suggest progress. But numbers, as ever, tell only part of the story. In our discussion, MPP Hamid acknowledged something more structural. Enforcement is improving. Coordination across policing, ports and provincial agencies is stronger than it was. Yet organized crime does not operate in silos. It exploits fragmentation. It migrates across sectors. It follows the path of least resistance.

That observation should temper celebration.

When John Kontos, SVP of Auto Finance at Scotiabank, who took the stage following MPP Hamid, offered a similarly cautious view. If you plug one door the criminals do not retire, he observed, they reallocate. That distinction matters. As physical theft becomes harder, criminals are upgrading their methods. The pry bar has been replaced by the PDF, the hotwire by the synthetic identity, and the driveway by the dealership. Fraudsters now deploy engineered identities stitched from breached data, doctored income documents, mule networks and even deepfake video or voice confirmations to secure legitimate financing for illegitimate exports. These “ghost customers” move fluidly across prime, near-prime and non-prime channels, exploiting speed and automation in underwriting. The vehicle is no longer stolen in the night; it is approved, funded and quietly disappears.

What looks like a victory in auto theft may, in fact, be a migration.

From Theft to Fraud

Modern vehicles are increasingly difficult to steal. Encryption, immobilizers and GPS tracking have raised the technical bar. Organized crime, rational and profit-seeking, has responded accordingly.

Why steal a car when one make more return through fraud? Rather than breaking into vehicles, criminal networks are breaking into identities. Using stolen personal data or entirely fabricated profiles, they submit falsified income documents, manipulated bank statements and synthetic IDs. The application passes initial scrutiny. The vehicle leaves the lot. Payments may even be made for several months.

Equifax reports that nearly 80% of fraudulent applications involve first-party fraud, misrepresentation at origination. The industry is not confronting a surge in car theft so much as a surge in credit-enabled asset extraction.

Suppression in one domain has produced displacement in another.

The most troubling aspect of this evolution is its invisibility. A stolen car is obvious. It triggers police reports, insurance claims and public attention. A fraudulently financed car is something else entirely. It appears on a lender’s books as a performing loan. It ages. It accrues payment history. It may even flatter a risk model’s apparent performance.

Until it does not. This “long-tail bust-out” strategy allows organized networks to delay detection. When default finally occurs, the loss is often recorded as delinquency or credit deterioration. The fraud taxonomy is misapplied. The signal is buried in portfolio analytics.

Executives see stress in certain cohorts and attribute it to higher rates, affordability compression or looser underwriting. Some of that may be true. But embedded within those charge-offs may be organized extraction.

What once appeared in crime statistics now resides in credit performance reports. Victims of identity fraud can spend years repairing credit files, disputing accounts and unwinding financial entanglements created in their name. The reputational damage is diffuse, persistent and difficult to quantify. Unlike a vehicle, one’s financial identity cannot simply be replaced with a cheque.

The crime has moved upstream. The damage has become systemic.

An Industry Response Taking Shape

Our industry is not complacent. Credit bureaus such as Equifax and TransUnion are refining identity risk signals and expanding detection of synthetic profiles. Payment and verification platforms such as Paays and Treefort are strengthening front-line authentication and real-time fraud controls. Consortium-based initiatives like Trust Science’s LenderAPI are designed to allow institutions to share signals before losses cascade. Advanced analytics firms such as Trust Science are applying machine learning to detect behavioural anomalies traditional scorecards miss.

This represents a shift from static document review to dynamic intelligence. From siloed underwriting to networked defence. But coordination remains uneven. Data-sharing frameworks are still maturing. Loss classification is inconsistent. And growth incentives can conflict with friction.

As MPP Hamid suggested, the challenge is not merely stronger enforcement. It is smarter systems. Faster intelligence loops. Regulatory and industry architectures that anticipate migration rather than react to it.

Canada may indeed be reducing driveway theft. That is no small accomplishment. But if criminal enterprises have shifted from physical extraction to financial origination, aggregate risk has not disappeared. It has changed form.

Physical theft was the visible symptom. Lending fraud is increasingly the engine. The financing ecosystem, dealers, lenders, brokers, insurers and bureaus, now sits on the frontline. Identity integrity has assumed the role once occupied by steering columns and ignition systems. This demands a conceptual shift across our industry. Fraud is not a marginal credit cost to be absorbed in provisioning models. It is a structural vulnerability that strikes at the core of trust, capital allocation and market stability.

Five Key Points

  1. Crime Has Migrated, Not Disappeared
    The 22% drop in physical auto theft may reflect displacement rather than defeat, as organized crime reallocates from driveway theft to finance-enabled fraud.

  2. Identity Is the New Ignition Key
    Synthetic identities, falsified income documents and deepfake verification are being used to secure vehicle financing, creating “ghost customers” and export-ready “ghost cars.”

  3. Losses Are Often Misclassified
    Long-tail bust-out strategies allow fraudsters to make payments before defaulting, causing organized crime losses to appear as routine credit delinquencies in portfolio analytics.

  4. The Harm Is Systemic and Personal
    While a stolen vehicle is insurable, identity fraud can damage consumers for years and undermines trust across the financial ecosystem.

  5. The Industry Must Shift from Static Controls to Networked Defence
    Efforts by Equifax, TransUnion, Paays, Treefort, LenderAPI and Trust Science signal progress toward dynamic, data-driven fraud prevention, but stronger coordination and identity integrity must become core infrastructure rather than compliance afterthoughts.

Sign up for the CLA Finance Summit Series


All Op-Eds