Fraud Tools, Tactics, and Techniques (FT3) is Stripe’s adaptation of ATT&CK-style security frameworks, specifically designed to enhance our understanding of the tactics, techniques, and procedures (TTPs) used by actors in fraudulent activities. Developed as a resource for combating financial crime and improving organizational fraud prevention, FT3 serves a variety of stakeholders across the Fraud ecosystem.
Fraud is an ever-evolving threat that necessitates a structured approach for organizations to adapt and respond effectively. By documenting the common tactics and techniques used by fraudsters, FT3 helps organizations to:
High-level categories representing various phases or goals within the fraud lifecycle. Each tactic delineates specific objectives pursued by fraudsters.
Example:
Methods or modes of operation fraudsters use to achieve their objectives under each tactic. Techniques can vary in complexity and sophistication.
Example:
Specific implementations of techniques that detail the exact methods actors use within the context of fraud, often involving unique tools and sequences of actions.
Example:
Details that suggest fraudulent activity, such as unusual transaction patterns or changes in account behavior.
Example:
Proactive actions organizations can adopt to decrease the risk or impact of fraud.
Example:
Mechanisms for identifying potential fraud through analysis of transaction patterns and customer behaviors.
Example:
Predefined procedures for organizational response to detected fraud events, aimed at minimizing impact and facilitating recovery.
Example:
This enhanced context focuses on the specific tactics, techniques, and procedures related to fraud, making it more applicable to your goals.
We welcome contributions to the FT3 framework from the community! Here are some ways you can help:
Please see the CONTRIBUTING file for further details.
Please see the SECURITY file for further details.
Please see the CODE_OF_CONDUCT, file for further details.
For further inquiries about the FT3 framework, please reach out to intel [at] stripe.com
Please see the LICENSE, CODE_OF_CONDUCT, CONTRIBUTING, and SECURITY files for further details.
Copyright © 2024-2025 Stripe Inc. All rights reserved.