# 2.4 Finance Problem – Fraud Detection

## 💳 The Financial Crime Challenge

Financial fraud represents one of the most costly and sophisticated threats to the global economy, with **$5.1 trillion lost annually** to fraudulent activities worldwide. The challenge is detecting fraudulent patterns among billions of legitimate transactions in real-time.

### Types of Financial Fraud:
- **Credit card fraud**: Stolen cards, account takeovers, synthetic identities
- **Wire transfer fraud**: Business email compromise, authorized push payment fraud
- **Identity theft**: Opening accounts with stolen personal information
- **Money laundering**: Converting illegal proceeds into legitimate-appearing assets

### Why Fraud Detection is Extremely Difficult:
- **Needle in haystack**: Less than 0.1% of transactions are fraudulent
- **Evolving tactics**: Fraudsters constantly adapt to avoid detection systems
- **Speed requirement**: Must detect fraud in milliseconds during transaction processing
- **False positive cost**: Blocking legitimate transactions frustrates customers and costs sales

### Traditional Rules-Based vs. AI Approach:
- **Rules-based**: "Flag transactions over $500 from new countries" - rigid, easy to circumvent
- **AI-based**: Machine learning identifies subtle patterns across hundreds of variables simultaneously

## 🤖 Machine Learning in Fraud Detection

Modern fraud detection systems use **ensemble models** that combine multiple algorithms to create a single fraud probability score for each transaction. This score drives automated decisions and investigator prioritization.

### Key Data Features Used:
- **Transaction patterns**: Amount, time, location, merchant type, frequency
- **Historical behavior**: Customer's typical spending patterns, geographic locations
- **Device intelligence**: Browser fingerprint, mobile device ID, IP address reputation
- **Network analysis**: Connections between accounts, shared devices, linked addresses

### Model Architecture:
- **Supervised learning**: Trained on labeled fraud/legitimate transactions
- **Unsupervised learning**: Detects unusual patterns without prior fraud examples  
- **Deep learning**: Neural networks identify complex, non-linear fraud patterns
- **Real-time scoring**: Models must make decisions in <100 milliseconds

### Business Impact Metrics:
- **Fraud detection rate**: Catching 85-95% of fraudulent transactions
- **False positive rate**: Keeping legitimate transaction blocks under 1-2%
- **Financial impact**: Preventing $10-50 million in losses per year for large banks
- **Customer experience**: Seamless processing for 99%+ of legitimate customers

### Challenges in Model Performance:
- **Class imbalance**: 999 legitimate transactions for every 1 fraudulent one
- **Concept drift**: Fraud patterns change over time, requiring model retraining
- **Adversarial attacks**: Fraudsters actively try to fool the AI models
- **Regulatory compliance**: Must be explainable for regulatory audits

## 📊 Figure 2.4: Fraud Detection Risk Score Distribution

This histogram illustrates the distribution of fraud risk scores across all financial transactions, demonstrating how machine learning models can effectively separate legitimate transactions (clustered near 0.0 risk score) from potentially fraudulent ones (higher risk scores). The clear separation between low-risk and high-risk transactions enables automated decision-making and helps investigators focus their efforts on the most suspicious activities.

**Don't worry about the code — just focus on the visual insight.**

In [None]:
# Import required libraries
import matplotlib.pyplot as plt
import numpy as np

# Set random seed for consistent educational results
np.random.seed(123)

# Simulate realistic fraud score distribution
# In real fraud detection, most transactions have low fraud scores (legitimate)
# Only a small percentage have high fraud scores (suspicious/fraudulent)

# Generate legitimate transactions (90% of total) - low fraud scores
legitimate_scores = np.random.normal(0.15, 0.08, 900)  # Mean=0.15, std=0.08
legitimate_scores = np.clip(legitimate_scores, 0, 1)     # Keep scores between 0-1

# Generate fraudulent transactions (10% of total) - high fraud scores  
fraudulent_scores = np.random.normal(0.75, 0.12, 100)   # Mean=0.75, std=0.12
fraudulent_scores = np.clip(fraudulent_scores, 0, 1)     # Keep scores between 0-1

# Combine all scores to simulate real-world transaction mix
all_scores = np.concatenate([legitimate_scores, fraudulent_scores])

# Create the histogram
plt.figure(figsize=(12, 6))

# Plot histogram with detailed formatting
counts, bins, patches = plt.hist(all_scores, bins=25, 
                                edgecolor='black', linewidth=0.8,
                                alpha=0.7, color='skyblue')

# Color code the bars: green for low-risk, yellow for medium, red for high-risk
for i, patch in enumerate(patches):
    bin_center = (bins[i] + bins[i+1]) / 2  # Calculate center of each bin
    if bin_center < 0.3:
        patch.set_facecolor('lightgreen')     # Low risk - green
    elif bin_center < 0.6:
        patch.set_facecolor('gold')           # Medium risk - yellow  
    else:
        patch.set_facecolor('lightcoral')     # High risk - red

# Add vertical lines to show decision thresholds
plt.axvline(x=0.3, color='orange', linestyle='--', linewidth=2, 
            label='Review Threshold (30%)')
plt.axvline(x=0.6, color='red', linestyle='--', linewidth=2, 
            label='Block Threshold (60%)')

# Chart formatting
plt.title("Fraud Risk Score Distribution Across All Transactions", 
          fontsize=16, fontweight='bold', pad=20)
plt.xlabel("Fraud Risk Score (0 = Definitely Legitimate, 1 = Definitely Fraudulent)", fontsize=12)
plt.ylabel("Number of Transactions", fontsize=12)

# Add legend
plt.legend(fontsize=11, loc='upper right')

# Add text annotations explaining the interpretation
plt.text(0.05, max(counts)*0.8, 
         f'Legitimate Transactions\n({len(legitimate_scores):,} total)\nLow Risk Scores', 
         fontsize=10, bbox=dict(boxstyle="round,pad=0.3", facecolor="lightgreen", alpha=0.7))

plt.text(0.82, max(counts)*0.6, 
         f'Suspicious Transactions\n({len(fraudulent_scores):,} total)\nHigh Risk Scores', 
         fontsize=10, bbox=dict(boxstyle="round,pad=0.3", facecolor="lightcoral", alpha=0.7))

# Add grid for easier reading
plt.grid(axis='y', alpha=0.3, linestyle=':')

# Set x-axis to show full 0-1 range
plt.xlim(0, 1.0)

plt.tight_layout()
plt.show()

# Calculate and display business metrics
total_transactions = len(all_scores)
low_risk = np.sum(all_scores < 0.3)
medium_risk = np.sum((all_scores >= 0.3) & (all_scores < 0.6))
high_risk = np.sum(all_scores >= 0.6)

print("=== FRAUD DETECTION SYSTEM SUMMARY ===")
print(f"Total Transactions Analyzed: {total_transactions:,}")
print(f"Low Risk (Auto-Approve): {low_risk:,} ({low_risk/total_transactions:.1%})")
print(f"Medium Risk (Manual Review): {medium_risk:,} ({medium_risk/total_transactions:.1%})")
print(f"High Risk (Auto-Block): {high_risk:,} ({high_risk/total_transactions:.1%})")
print()
print("BUSINESS IMPACT:")
print(f"• Transactions requiring human review: {medium_risk + high_risk:,}")
print(f"• Estimated fraud prevented: ${high_risk * 850:,} (assuming $850 avg fraud amount)")
print(f"• Legitimate customers unaffected: {low_risk/total_transactions:.1%}")

## 🔍 Key Fraud Detection Insights

### The Distribution Pattern:
1. **Most transactions are legitimate** (green bars on left): The vast majority cluster around low risk scores (0.0-0.3)
2. **Clear separation exists** (gap in middle): Few transactions fall in the medium-risk range, creating natural decision boundaries
3. **Fraudulent transactions stand out** (red bars on right): Suspicious activities generate distinctly higher risk scores

### Decision Thresholds:
- **Auto-Approve (<30%)**: Process immediately without human intervention
- **Manual Review (30-60%)**: Flag for fraud analyst investigation
- **Auto-Block (>60%)**: Immediately decline and alert customer

### Why This Approach Works:
1. **Scalability**: Automatically processes 85%+ of transactions
2. **Resource optimization**: Focuses human expertise on ambiguous cases
3. **Customer experience**: Minimizes false positive disruptions
4. **Cost effectiveness**: Prevents major losses while controlling operational costs

## 💡 Real-World Implementation

### Major Financial Institutions:
- **JPMorgan Chase**: Processes 5+ billion transactions annually using ML models
- **Visa**: Real-time fraud scoring for 150+ billion transactions per year
- **PayPal**: Uses 200+ risk variables to score every transaction in <100ms

### Advanced Techniques:
- **Graph neural networks**: Detect fraud rings and synthetic identity schemes
- **Behavioral biometrics**: How users type, swipe, and interact with apps
- **Federated learning**: Share fraud patterns across institutions without sharing data
- **Adversarial training**: Continuously adapt to fraudster counter-measures

### Success Metrics:
- **Detection rate**: 90%+ of fraud caught
- **False positive rate**: <2% of legitimate transactions blocked
- **Processing speed**: <50ms average decision time
- **Cost savings**: $10-50M annually for major banks