Catfishing in Ecommerce: How Identity Fraud Hides in Plain Sight

Originally published February 6, 2024. Last updated May 12, 2026 with current FTC and identity-theft data, refreshed scenarios, and an expanded view on how trust-led decisioning helps merchants spot coordinated abuse without punishing good customers.

Identity fraud has become one of the most consequential forces shaping the ecommerce experience, and not only for the shopper whose information is stolen. Merchants pay too, often in the form of declined good orders, false positives, lost margin, and quiet erosion of customer trust.

The numbers underline the pressure. The Federal Trade Commission’s 2024 Consumer Sentinel Network Data Book recorded 6.5 million consumer reports last year, including more than 1.1 million identity-theft cases. Reported fraud losses jumped 25% year over year to $12.5 billion. LendingTree’s identity theft analysis found two-thirds of the 100 largest U.S. metro areas saw identity-theft reports rise in early 2024, with states like Florida, Georgia, Nevada, Texas, and Delaware leading the per-capita rankings.

For ecommerce merchants, that climbing volume shows up as a specific category of abuse: catfishing. The term started in online dating and has migrated into commerce, where it describes a fraudster building a false identity to deceive a merchant, a supplier, or another customer. The goal is almost always the same: financial gain at someone else’s expense. The signals are often subtle until you know what to look for.

This guide breaks down what catfishing actually looks like in ecommerce, how it connects to identity theft, the warning signs to watch for, and how a trust-led approach to risk decisioning helps merchants protect good customers while stopping coordinated abuse.

What Is Catfishing in Ecommerce?

Catfishing in ecommerce is the use of a fabricated or stolen identity to interact with a merchant under false pretenses, usually with the goal of obtaining goods, money, or access without paying or with the intention of disputing the charge afterward. Catfishers pose as legitimate customers, suppliers, affiliates, or partners. They rely on social engineering to manipulate verification steps, return policies, and chargeback processes in their favor.

Catfishing in ecommerce overlaps with identity theft but is not identical. Identity theft is the underlying act of taking someone else’s personal information. Catfishing is one of the ways stolen or fabricated identities get used.

How Catfishing and Identity Theft Connect

The two are different concepts, but they share enough that they often appear in the same incident:

• False identity creation. Catfishers build personas. Identity thieves take real ones. Both end with a merchant interacting with someone who is not who they claim to be.
• Deceptive intent. Both are designed to manipulate a transaction or a relationship for financial gain.
• Online surface. Both play out across the same digital channels: marketplaces, accounts, social platforms, and merchant sites.
• Financial consequences. Victims, whether shoppers or merchants, often face direct loss, lost inventory, lost margin, and operational drag.
• Legal exposure. Both are illegal in most jurisdictions and increasingly carry serious consequences for the perpetrator when caught.

Importantly, the most damaging catfishing patterns in ecommerce often involve coordinated actors using multiple stolen or synthetic identities across what appear, at first glance, to be unrelated shoppers, emails, accounts, or devices. Recognizing those connections is where modern risk intelligence earns its place in the playbook.

Common Catfishing Scenarios in Ecommerce

The patterns to watch for vary by category, but five scenarios show up consistently:

• Fake customer orders. A fabricated account places orders the actor never intends to pay for, often using stolen card data. Merchants ship the goods and absorb the loss when the charge is reversed.
• Supplier impersonation. Someone poses as a supplier or wholesaler with an attractive offer. The merchant pays. The goods never arrive.
• First-party (friendly fraud) chargebacks. The catfisher places a real order, receives the product, then disputes the charge with the issuing bank, claiming the item was never delivered or was defective. Merchant loses both the inventory and the revenue, often plus a fee.
• Affiliate marketing fraud. A fake affiliate generates fraudulent clicks, leads, or sales to extract commissions the merchant did not actually earn.
• Fake reviews and ratings. Coordinated actors post inflated positive reviews on their own product or negative reviews on competitors’ to distort buying decisions.

Each scenario looks like an isolated event in isolation. Connected together, they often reveal one actor or one coordinated group operating across multiple surfaces.

Signs You’re Being Catfished

The strongest signal is rarely one red flag. It’s a cluster of them appearing together.

Unusual order patterns. Multiple high-value orders in a short window, especially on a new account, often signal an attempt to drain inventory before the activity is noticed.

Rapid shipping requests. Expedited shipping is a common request from catfishers who want the goods in hand before the merchant’s risk review catches up.

Anonymous or disposable contact information. Throwaway email addresses, untraceable phone numbers, or refusal to share verifiable contact details should raise questions. Legitimate customers usually do not push back on basic verification.

Inconsistent communication. Broken language, contradictory statements, evasive answers to specific questions, or unusual urgency are common in social-engineering scripts.

Unusual payment methods. Prepaid debit cards, certain digital wallets, buy now pay later (BNPL), or international wire transfers in categories where they are uncommon for the merchant warrant a second look. The point is not the payment method itself; it is the deviation from the merchant’s normal mix.

Frequent returns or disputes. A pattern of returns or chargebacks tied to one customer (or one device, one address, one set of card numbers) is one of the most reliable signals of catfishing in action.

Suspicious IP, device, or geographic signals. Multiple seemingly unrelated accounts placing orders from the same IP, device fingerprint, or proxy infrastructure are often one actor wearing several costumes.

Resistance to verification. Genuine shoppers will generally complete a reasonable verification step to release a flagged order. Resistance, evasion, or repeated attempts to circumvent verification deserves attention.

No single signal should trigger an automatic decline. The strongest fraud programs use these flags as inputs to a connected decision, not as a stand-alone verdict.

Preventing Catfishing Without Punishing Good Customers

The hardest part of catfishing prevention is that the same controls that catch bad actors can also block legitimate shoppers. Static rules, blanket holds, and aggressive verification flows tend to push real customers away long before they push fraudsters out. The merchants who get this right treat trust as part of the customer experience, not a separate function.

A modern catfishing-prevention program is built around five practices:

• Robust, proportionate verification. Tighter checks for high-value orders, brand-new accounts, or unfamiliar suppliers. Lighter touch for established customers with consistent history. Precision over paranoia.
• Connected signal across the journey. Monitor transactions, returns, account behavior, support interactions, and post-purchase activity together, not in separate dashboards. The patterns hide in the connections.
• Team education on social engineering. Train customer service, ops, and finance to recognize manipulation tactics and flag rather than accommodate suspicious urgency.
• Software hygiene. Keep your commerce platform, payment gateway, and security tooling current with the latest patches and protocols.
• A risk intelligence partner. A partner that can recognize coordinated actors, link seemingly separate accounts, and embed decisions where teams already work. That is where Wyllo earns its place: the CX-first risk intelligence platform that helps merchants understand customer intent across the journey, surface clustered abuse patterns that a transaction-level view would miss, and make confident decisions inside the workflows their teams already use.

Designed to think ahead. Built for what’s next.

Frequently Asked Questions

What is catfishing in ecommerce?

Catfishing in ecommerce is the use of a false or stolen identity to deceive a merchant, supplier, or other customer for financial gain. The most common patterns include fake customer orders, supplier impersonation, friendly-fraud chargebacks, affiliate-marketing fraud, and coordinated fake reviews. Catfishing overlaps with identity theft but specifically refers to the impersonation behavior, not just the underlying data breach.

How is catfishing different from identity theft?

Identity theft is the act of taking someone’s personal information. Catfishing is one of the ways stolen or fabricated identities get used. A catfisher may rely on stolen identity data, on entirely synthetic identity data, or on a mix of both. The two often appear in the same incident, but they are distinct concepts.

What are the warning signs of ecommerce catfishing?

The most reliable signals appear in clusters, not isolation: unusual order patterns, rapid-shipping requests on new accounts, disposable or unverifiable contact information, inconsistent communication, atypical payment methods for the merchant, frequent returns or chargebacks tied to the same actor, suspicious IP or device patterns across accounts that appear unrelated, and resistance to reasonable verification.

How prevalent is identity fraud in 2026?

The FTC’s 2024 Consumer Sentinel Network Data Book recorded 6.5 million consumer reports and more than 1.1 million identity-theft cases last year, with reported fraud losses up 25% year over year to $12.5 billion. LendingTree’s identity theft research shows two-thirds of large U.S. metro areas saw rising identity-theft reports in early 2024.

How can merchants prevent catfishing without blocking real customers?

Move away from one-size-fits-all rules toward connected, trust-led decisioning. Verify proportionately to risk, monitor signals across the full journey (not just the transaction), train teams to recognize social engineering, keep tooling current, and partner with a risk intelligence platform that can link seemingly separate accounts and recommend decisions inside existing workflows. The goal is precision over paranoia.

Does catfishing always lead to a chargeback?

No, but chargebacks are one of the most common outcomes. Other endings include unreturned goods, paid invoices that go nowhere, fraudulent affiliate payouts, and reputational damage from coordinated fake reviews. The financial and operational cost of catfishing extends well beyond the disputed transaction itself.

Bringing It Together

Catfishing is not a niche problem. It is a connected pattern of behavior that touches checkout, returns, chargebacks, support, supplier management, and review systems. The merchants who handle it well treat trust as an experience layer, not a back-office checkbox. They invest in connected signal, proportionate verification, and decisioning that lives inside the workflows their teams already use.

Curious how a CX-first risk intelligence approach helps you spot catfishing patterns without slowing trusted shoppers down? Wyllo helps commerce teams turn connected context into trust-led decisions across the customer journey.