AI, identity and agentic commerce: 5 key takeaways from MRC San Diego 2025

Our team recently attended MRC San Diego 2025, hosted by the Merchant Risk Council, the go-to event for fraud, payments and risk in digital commerce.

Bobby Colombi, our Director of Strategic Accounts, came back with some powerful takeaways that are already shaping conversations with our clients and partners.

Here’s what stood out:

1. AI is reshaping the fraud landscape, both as a threat and a tool.

Agentic AI refers to autonomous systems that can act independently, make decisions and carry out tasks without constant human input. Fraudsters are now using these AI agents to launch coordinated, human-like attacks at scale. These agents can mimic real user behavior, bypass traditional security checks and even adapt in real time, making them incredibly difficult to detect and stop.

At the same time, businesses are also turning to AI to fight back. AI is being used for fraud detection, data enrichment and behavioral analysis, helping teams spot anomalies and suspicious patterns more efficiently. However, many companies still rely on manual review for final decisions, which can slow down response times and leave gaps in protection. 

The takeaway? AI is no longer just a tool. It’s a player. And in this new era, staying ahead means understanding how both malicious and defensive AI are evolving.

2. “Identity is the new defensive perimeter.”

This quote from keynote speaker Gordon Sheppard, Consultant of Digital Identity and Authentication at Sage West Associates, captured a major theme of the event. Bobby observed that identity verification gaps, especially in guest checkout, account takeovers (ATOs) and synthetic ID creation, are fueling e-commerce fraud.

The solution is a risk-based, evolving approach to identity. Merchants must find the right balance between fraud prevention and customer experience, ensuring that security doesn’t come at the cost of revenue growth.

3. Traditional fraud prevention is no longer sufficient.

Static rules and legacy systems are struggling to keep up with today’s dynamic threats. Bobby emphasized the need for a multilayered defense strategy that adapts in real time. Fraud is evolving, and our defenses must evolve with it.

4. The rise of agentic commerce requires new standards and strategies.

Agent-driven transactions are emerging as a new customer class. Think AI agents making purchases or managing subscriptions on behalf of users. This shift introduces new challenges in fraud prevention, including:

• Intent verification (Did the consumer authorize the agent?)
• Dispute evidence
• Robust trust frameworks 

Bobby highlighted the need for industry-wide collaboration to define standards and guardrails that protect consumers while enabling innovation.

5. Fraud isn’t just a security problem. It’s a revenue problem.

False declines cost merchants significantly, impacting both revenue and customer lifetime value. Subscription abuse is also on the rise, driven by poor cancellation flows and consumer expectations shaped by regulations like the FTC’s “Click-to-Cancel” rule (even though it was blocked in July 2025).

Consumers are acting as if the rule is in place, working directly with banks to cancel, bypassing merchants and triggering chargebacks.

Bobby’s tips:

• Humanize cancellation flows.
• Communicate before renewals.
• Automate to reduce disputes and protect brand reputation.

Final thoughts

Fraud prevention is no longer just about stopping bad actors. It’s about enabling trust, protecting revenue and delivering seamless customer experiences. As e-commerce continues to evolve, so must our strategies. The future belongs to those who adapt — with AI, identity innovation and agentic commerce readiness. Want to see how Experian helps clients stay ahead of fraud?