← Back to Blog

Pick up the phone today and you have no reliable way to know who's actually on the other end of the line. The caller ID says "Social Security Administration." It might be. Or it might be someone in another country who spoofed that name in under a minute. This isn't a hypothetical. It's now the single largest category of fraud reported to U.S. regulators, year after year.

The Scale of the Problem

The Federal Trade Commission's newest data, released in June 2026, puts a number on just how bad this has gotten:

One more detail matters for any business that calls its own customers: roughly 68% of scam calls now spoof a local number ("neighbor spoofing") specifically because people are more likely to answer, and trust, a number that looks like it's from their own area code. The exact tactic scammers use to get someone on the phone is now indistinguishable from a legitimate local business calling about an appointment, a payment, or a case update.

Why Phone Trust Quietly Broke

None of this is really new behavior from scammers. It's a structural problem. Every legitimate institution that has a real reason to call you (the IRS, a debt collector, your bank's fraud department, a hospital billing office, a car dealership finance manager) sounds and looks exactly like the people impersonating them. Caller ID can be spoofed. A friendly, professional tone can be rehearsed. A correct-sounding case number can be guessed or scraped from a data breach.

The advice consumer agencies give ("hang up and call the number on your statement") is sound, but it puts the entire burden of verification on the consumer, after the fact, with no help from the institution that actually placed the call. It also doesn't scale to the kind of one-time interaction that defines most of these calls: you don't pre-enroll in an app for a debt collector, a one-time SSA caseworker, or a dealership finance manager you've never spoken to before. By the time anyone would download and set up a verification app, the call is already over.

Years of Effort, a Problem That Keeps Growing Anyway

It's not that no one has tried. The FTC's Impersonation Rule has been in effect since April 2024, producing a dozen enforcement actions and more than $70 million in consumer redress. Telecom carriers rolled out STIR/SHAKEN call-authentication standards to flag spoofed numbers before they reach a phone. This year, the FTC, the Department of Justice, the Department of Health and Human Services, and private partners including the American Bankers Association, Google, and Microsoft ran the "Never Ever" public awareness campaign, timed to World Elder Abuse Awareness Day.

None of it has bent the curve. Imposter losses have nearly tripled since 2020, hit a new record in 2025, and stayed the single most-reported fraud category for the ninth year running. The honest explanation isn't that regulators or carriers haven't tried. It's that every available fix works either after the fact (enforcement, refunds, education) or around the edges (number labeling, awareness). None of them give the person answering the phone a way to know, in that exact moment, who's actually on the line.

That's the one piece of this problem that's been left unsolved for years, and it's the one piece that's actually solvable in real time. Americans have absorbed billions of dollars in losses waiting for that gap to close. PPLCARD exists to close it.

Where PPLCARD Fits

This is the specific gap PPLCARD was built to close. Rather than asking consumers to install software or pre-register with every company that might someday call them, PPLCARD's patent-pending system lets the employee on the call generate a real-time, one-time verification code that the consumer can check instantly in a standard web browser: no app download, no account, no advance enrollment.

In practice, that means a consumer who gets a call from someone claiming to be a debt collector, an SSA representative, or a bank's fraud department doesn't have to take it on faith, and doesn't have to hang up and start a separate verification process on their own. They can confirm, during the call itself, that the person speaking is a verified employee of the organization they claim to represent.

It's worth being precise about what that does, and doesn't, solve. Verifying that someone is a genuine employee of a real organization is not the same as verifying that everything they're asking for is appropriate. A scammer could, in theory, still try to social-engineer someone after a legitimate-sounding interaction, and no identity check replaces the FTC's basic "Never Ever" rules (never move money to "protect" it, never pay by gift card or crypto on demand, never act on threats of immediate arrest). PPLCARD removes the single biggest point of leverage scammers rely on (uncertainty about who's calling), but it works best alongside continued consumer education, not as a silent replacement for it.

Why It Matters by Industry

The Bottom Line

Imposter scams aren't a niche problem anymore. They're the largest and fastest-growing fraud category in the country, and the institutions being impersonated (banks, government agencies, collectors, dealerships) bear real reputational and financial cost even though they didn't make the call. Giving consumers a way to verify a caller's identity in the moment, without requiring them to download anything in advance, addresses the exact gap that's been driving these numbers up for six years running.

Sources

  • Federal Trade Commission, "FTC Data Show People Reported Losing $3.5 Billion to Imposter Scams in 2025" (June 2026), ftc.gov
  • Federal Trade Commission, "New Trends in Reports of Imposter Scams" (May 2026), consumer.ftc.gov
  • Federal Trade Commission, "FTC Data Show a More Than Four-Fold Increase in Reports of Impersonation Scammers Stealing Tens and Even Hundreds of Thousands from Older Adults" (August 2025), ftc.gov
  • Savi Security, "Top Scam Phone Numbers in 2025 & 2026" (March 2026), savisecurity.com
  • Office of the Comptroller of the Currency, "Debt Collection Fraud", occ.gov
← Back to Blog