Skip to content
CityLearning
Financial crime

Fraud Prevention

Fraud prevention training for UK firms, helping staff identify, prevent and report fraud, including authorised push payment (APP) and social engineering.

Duration: ~20 min Accreditation: CPD accredited (CII) Last updated: March 2026 Reviewed by: Margaret Hassett
Request a demo

What is fraud prevention and why does it matter?

Fraud is one of the most persistent threats facing financial services, and the obligations on UK firms continue to grow. Firms must not only prevent fraud but increasingly protect and reimburse customers who fall victim. Authorised push payment (APP) fraud now sits within a mandatory reimbursement framework overseen by the Payment Systems Regulator (PSR), while the FCA expects effective systems and controls to detect and deter fraud.

Why are staff central to preventing fraud?

The risks of getting this wrong are substantial: direct financial loss, reimbursement costs and regulatory and reputational harm. Both internal fraud, committed by people inside the business, and external fraud, driven by ever more sophisticated criminals, depend on weaknesses that staff are often best placed to spot. An employee who misses an impersonation attempt, or hesitates to report, can allow an avoidable loss to occur.

What does fraud prevention training cover?

This course covers the fraud risks most relevant to financial services. Learners come away able to recognise common internal and external fraud typologies, understand APP fraud and your firm’s reimbursement obligations, and spot social-engineering and impersonation attempts. It also makes clear how to report suspected fraud quickly, anchored in the fraud triangle and practical prevention controls.

What does the FCA expect from fraud controls?

The FCA expects firms to maintain effective systems and controls to detect and deter fraud, with staff awareness a key element. Alongside this, the failure-to-prevent-fraud offence under the Economic Crime and Corporate Transparency Act 2023 makes reasonable prevention procedures, including training, important for large firms. CityLearning keeps the content concise, scenario-based and current with the UK landscape.

The course is designed for customer-facing, operations and finance staff across regulated firms, the people most likely to encounter fraud, and best placed to stop it.

What your team will learn

  • Recognise common internal and external fraud typologies
  • Explain APP fraud and the firm's reimbursement obligations
  • Spot social-engineering and impersonation attempts
  • Identify how to report suspected fraud quickly

What's included

  • ~20 min of focused, scenario-based learning
  • CPD accredited (CII)
  • Built-in quiz with a configurable pass mark
  • Reviewed and kept current with UK regulation
  • Time-stamped completion records for your audit trail

How it works

  1. Assign it in seconds

    Enrol a team, a role or your whole firm from the CityREPORTS dashboard, with automated reminders that chase completion for you.

  2. Your team completes it

    Learners work through the course at their own pace on any device, finishing with a short assessment that demonstrates understanding.

  3. Evidence it to the regulator

    Every completion is time-stamped and retained, so you can prove the right people did the right training at any moment.

Frequently asked questions

What is APP fraud?
Authorised push payment (APP) fraud is where a customer is tricked into authorising a payment to a criminal, often through impersonation or a fake invoice. Because the customer authorises it, traditional unauthorised-transaction protections do not apply, which is why the UK introduced a mandatory reimbursement framework overseen by the Payment Systems Regulator (PSR).
Who needs fraud prevention training?
Customer-facing, operations and finance staff across regulated firms benefit most, as they are most likely to encounter fraud and best placed to stop it. The FCA expects firms to maintain effective systems and controls to detect and deter fraud, and trained staff are central to recognising impersonation and escalating concerns quickly.
What are the firm's APP fraud reimbursement obligations?
Under the Payment Systems Regulator's mandatory reimbursement scheme, payment firms within scope must reimburse victims of APP fraud, with the cost generally shared between the sending and receiving firms. Training helps staff prevent fraud at source and understand when reimbursement obligations are triggered, reducing both losses and customer harm.
What is the difference between internal and external fraud?
Internal fraud is committed by people inside the business, such as employees or contractors abusing access or trust. External fraud is driven by outside criminals, often through social engineering, impersonation or APP scams. Both rely on control weaknesses that staff are frequently best placed to spot, which is why firm-wide awareness matters.
How does the failure to prevent fraud offence affect firms?
The Economic Crime and Corporate Transparency Act 2023 introduced a corporate offence of failure to prevent fraud for large organisations. A firm can be liable where an associated person commits fraud for its benefit, unless it had reasonable fraud-prevention procedures. Staff training is a core part of demonstrating those procedures.
How does fraud prevention relate to AML?
Fraud and money laundering are closely linked: fraud often generates the criminal proceeds that are later laundered, and the same red flags and reporting routes frequently apply. Effective fraud controls support a firm's AML obligations under the MLR 2017, and suspicions identified through fraud detection may need escalation to the MLRO.
What records should firms keep on fraud prevention?
Firms should retain records of fraud-prevention training and completion, fraud risk assessments, reported incidents and the actions taken, and the controls in place. These records support the FCA's expectation of effective systems and controls and help evidence the reasonable procedures relevant to the failure-to-prevent-fraud offence.