Skip to content

The New Face of Fraud: Collusion, Complexity, and Concealment

New face of fraud 1
Listen to the Podcast

The New Face of Fraud: Collusion, Complexity, and Concealment

There is a reasonable chance that a fraud scheme is operating inside your organisation in South Africa right now. Many organisations focus heavily on creating controls while spending far less time assessing whether those controls can be manipulated, circumvented, or overridden by trusted insiders. They can and they are!

It may not look dramatic from the outside. The payments may appear legitimate. The supporting documents may be in place. The approvals may look routine. The people involved may be trusted, experienced, and well-regarded. They may sit in finance, procurement, operations, or senior management. They may understand the control environment better than the people responsible for monitoring it.

That is what makes modern occupational fraud so dangerous.

According to the ACFE Occupational Fraud 2026: A Report to the Nations, occupational fraud has changed significantly over the past three decades. It is no longer predominantly the work of isolated employees exploiting obvious weaknesses in control environments. Today’s fraud schemes are increasingly collaborative, sophisticated, and deliberately concealed. They are often driven by corruption, enabled by multiple perpetrators, and designed from the outset to survive scrutiny.

The report, which analysed 2,402 investigated fraud cases across 143 countries, provides one of the clearest pictures yet of how occupational fraud is evolving. For South African organisations, the findings should serve as a warning. South Africa contributed more cases to the study than any other country in Sub-Saharan Africa, suggesting that the risks described in the report are already deeply embedded in the local business environment.

The central message is difficult to ignore: while fraud has evolved, many organisations continue to defend themselves using assumptions and controls designed for a very different threat.

A Problem Bigger Than Most Leaders Realise

The ACFE estimates that organisations lose approximately 5% of annual revenue to occupational fraud each year. Across the cases analysed in the 2026 report, confirmed losses exceeded $3.4 billion.

Those figures alone are substantial, but they reveal only part of the story.

The median loss per case was $104,000. The average loss, however, exceeded $1.45 million. That difference highlights a reality that many executives underestimate. Fraud rarely remains static. Given time, successful schemes tend to expand, drawing in additional participants, exploiting additional weaknesses, and causing increasingly severe financial damage before they are detected.

Perhaps the most concerning finding in the report is how long many schemes survive.

The median fraud case operated for twelve months before detection. Schemes involving managers continued for an average of fourteen months. When owners or executives were involved, the average duration rose to twenty-three months.

These figures raise an uncomfortable question. If a sophisticated fraud scheme can survive nearly two years before detection, what confidence should leaders place in the assumption that existing controls will identify problems quickly?

The answer becomes even more troubling when one considers how these schemes operate.

The Rise of Collusion

For many years, fraud prevention programmes were designed around the idea of a lone fraudster acting independently. Segregation of duties, approval hierarchies, and management oversight were all built on the assumption that different individuals within a process would act honestly and independently of one another.

The data suggests that assumption is becoming increasingly risky.

One of the most significant trends identified by the ACFE is the growing role of collusion. Increasingly, occupational fraud involves multiple perpetrators working together to bypass controls, conceal transactions, and avoid detection.

The impact on losses is dramatic.

When a single perpetrator acts alone, the median loss is $55,000. When three or more perpetrators are involved, the median loss rises to $324,000, almost six times higher.

This is hardly surprising. A lone fraudster must create, approve, process, and conceal a scheme without attracting attention. A coordinated group can distribute those responsibilities across multiple individuals, making suspicious activity appear legitimate at every stage of the process.

The trend is particularly pronounced in Sub-Saharan Africa, where 65% of fraud cases involved two or more perpetrators. In practical terms, this means that organisations are increasingly facing organised internal fraud rather than isolated acts of misconduct.

At the same time, corruption has emerged as the dominant fraud threat across the region.

Globally, 45% of all occupational fraud cases now involve corruption. In Sub-Saharan Africa, the figure rises to 56%.

The historical trend is even more revealing. In 1996, corruption accounted for just 10% of occupational fraud cases. Today, it has become the most common fraud scheme in the region.

Corruption is particularly difficult to detect because it often disguises itself as legitimate business activity. Inflated contracts, manipulated procurement decisions, undisclosed conflicts of interest, preferred supplier arrangements, kickbacks, and hidden relationships rarely appear suspicious when viewed in isolation. The pattern only becomes visible when investigators examine the broader network of decisions and beneficiaries.

South Africa’s Exposure

South Africa’s contribution to the report deserves attention.

Of the 397 cases submitted from Sub-Saharan Africa, 123 originated in South Africa. That is almost double the number contributed by Nigeria despite Nigeria’s significantly larger population.

The broader risk environment supports the concerns raised by the ACFE findings.

Transparency International’s 2025 Corruption Perceptions Index awarded South Africa a score of 41 out of 100, placing the country 81st out of 182 countries. The 2025 Africa Organised Crime Index ranked South Africa second out of 54 African nations for criminality.

Commercial crime statistics point in the same direction. SAPS recorded 37,174 commercial crime cases during the October to December 2025 quarter, substantially higher than the number recorded during the same period four years earlier.

The country’s recent history provides numerous examples of the trends identified in the ACFE report. Matters involving Transnet, Denel, and several other high-profile institutions demonstrate how complex fraud schemes can survive for extended periods despite existing controls, audits, and oversight structures.

The work of the Zondo Commission further illustrates the scale of the challenge. While the Commission has contributed to 218 active investigations and the recovery of approximately R11 billion in stolen assets, many matters remain unresolved years after the misconduct occurred.

Once fraud becomes embedded in an organisation, recovery becomes difficult, investigations become lengthy, and accountability becomes increasingly expensive to pursue.

How Modern Fraud Hides

If the report identifies one defining characteristic of modern occupational fraud, it is concealment.

Only 11% of cases involved no effort to hide the misconduct. In almost nine out of ten cases, perpetrators took active steps to conceal their activities.

The most common concealment method involved creating fraudulent physical documents, which occurred in 39% of cases. Altering physical documents appeared in 33% of cases. Creating or altering electronic files occurred in 28% of cases, while 19% of perpetrators generated fraudulent transactions directly within accounting systems.

These figures reveal an important shift in the nature of occupational fraud.

Many schemes are no longer opportunistic acts carried out in moments of temptation. They are planned, structured, and specifically designed to survive scrutiny. The perpetrators understand how controls operate because they work within those environments every day. They know which reports receive attention, which exceptions are likely to be questioned, and which controls can be bypassed without attracting concern.

The report found that 33% of fraud cases resulted from a lack of internal controls. A further 19% resulted from the override of controls that already existed.

Together, these two factors account for more than half of all occupational fraud globally.

This distinction is important. Many organisations focus heavily on creating controls while spending far less time assessing whether those controls can be manipulated, circumvented, or overridden by trusted insiders.

The Human Warning Signs

One of the most revealing findings in the report is that fraud rarely occurs without warning signs.

The ACFE found that 84% of perpetrators displayed at least one behavioural red flag before they were caught. Common indicators included living beyond one’s means, unusually close relationships with vendors or customers, financial difficulties, excessive control over responsibilities, reluctance to take leave, and unwillingness to share duties.

In many cases, these indicators were visible long before the fraud was discovered.

The problem was not a lack of warning signs. The problem was that the warning signs were often rationalised, ignored, or viewed in isolation.

This is particularly true when the individual involved is highly trusted, long-serving, or regarded as a strong performer. Ironically, the people who attract the least scrutiny are often the people capable of causing the greatest damage.

What Effective Organisations Do Differently

The report offers valuable insight into the controls that consistently reduce losses and accelerate detection.

Management review emerged as one of the most effective anti-fraud measures, reducing median losses by 55% and shortening detection times by 44%.

Proactive data monitoring and analysis reduced losses by 53% while producing similar improvements in detection speed.

Surprise audits reduced losses by 50% and shortened average detection time from sixteen months to eight months.

Equally important is the role of whistleblowing.

Tips accounted for 43% of all fraud detections globally, making them by far the most effective detection mechanism. More than half of those tips came from employees.

This finding reinforces a simple truth. In many organisations, somebody already knows something is wrong. The effectiveness of a whistleblowing programme depends on whether people trust the reporting process enough to speak up.

The Cost of Looking Away

Perhaps the most sobering finding in the report concerns recovery.

In Sub-Saharan Africa, 49% of organisations recovered none of their losses after occupational fraud was discovered. Only 12% recovered everything.

By the time a scheme has operated for twelve months, fourteen months, or even twenty-three months, the money has often moved, evidence has become more difficult to obtain, and the damage has spread far beyond the original financial loss.

This is why the most successful organisations do not treat fraud as a compliance issue. They treat it as a strategic business risk.

They actively test controls. They analyse data. They investigate anomalies. They encourage reporting. Most importantly, they recognise that fraud risk evolves continuously and that yesterday’s assumptions may not protect them from today’s threats.

The ACFE’s findings point to a clear conclusion. Occupational fraud has become more collaborative, more concealed, and more sophisticated than many organisations appreciate. Yet many leaders continue to rely on controls designed for a simpler era.

That may be the most significant risk of all.

Fraud has changed.

The question is whether organisations have changed with it.