Fighting Cyber-Enabled Fraud 2025

Protective actions focus on building systemic safeguards within downstream services that alert, shield and empower users against fraud and phishing. The objective is to reduce harm by ensuring that individuals, organizations and communities benefit from proactive defences embedded across the digital ecosystem. Internet service providers, technology companies and infrastructure operators can play a critical role by blocking known malicious activity and ensuring that security features are available by default. Protective DNS systems – like that offered by non- profit Quad9 – block access to known malicious domains at the resolution level, while email authentication protocols such as DMARC prevent email spoofing when properly implemented. Despite their promise, these measures suffer from inconsistent implementation, user resistance to added inconvenience, and attackers’ rapid adaptation, limiting their effectiveness against the speed and scale of modern phishing campaigns. National governments play a unique role in strengthening digital safety through their regulatory authority, convening power and ability to reshape market dynamics. In several jurisdictions, dedicated anti-scam centres serve as national coordination hubs, uniting agencies, law enforcement and the private sector. Beyond enforcement, governments can encourage stronger practices by supporting voluntary alliances, incentivizing innovation and providing positive recognition for stakeholders that improve defences.55 Without coordinated enforcement by national authorities and consistent implementation by stakeholders, uneven application of measures could leave gaps exploitable by malicious actors. Yet government action remains uneven across jurisdictions, with insufficient mutual learning and many governments lacking development efforts. Some governments lack the institutional capacity to coordinate frameworks or engage in cross- border collaboration, while others struggle to incentivize providers to take action. These gaps are particularly acute in developing countries, where limited institutional capacities, varying levels of digital adoption, informal marketplaces and entrenched criminal networks create fertile ground for cyber-enabled fraud. The newly adopted United Nations Convention against Cybercrime could become a reference point for new state-level policies in this realm.562.2 Protection At Quad9, our mission is to provide a safer and more robust Internet for everyone. As a Swiss non-profit, we offer free, privacy-focused DNS security services that block malware, phishing and spyware – protecting over 100 million users every day. With more than 245 locations in 115+ countries, we’re working to enhance privacy, reduce cyber harm in vulnerable regions, and improve internet performance in underserved areas. Simon Forster, General Manager, Quad9 Fighting Cyber-Enabled Fraud: A Systemic Defence Approach 15