CYBERSECURITY & RISK MANAGEMENT | MARCH 2026
By the Black Tyger Strategies Team
It started with a tip. Stellantis flagged Ford about a suspicious dealer. Both automakers pulled their records — and when the dust settled, they had found the same 81 vehicles, each financed twice. One dealer. Two lenders. Eighty-one fraudulent transactions.
This wasn’t a sophisticated cyberattack. There was no ransomware, no nation-state actor, no zero-day exploit. It was a straightforward scheme: a dealer submitted the same vehicles to two separate financing institutions, collected funds from both, and — for a time — nobody connected the dots.
The scheme only unraveled because two competitors happened to compare notes. That is not a fraud detection strategy. That is luck. And luck is not a system.
How Did This Happen?
The mechanics of the fraud were simple. Vehicle floor plan financing is the lifeblood of auto dealerships — lenders advance funds against inventory, and dealers repay as vehicles sell. The system runs on trust and data. In this case, the dealer exploited a gap: Ford and Stellantis each had clean data in their own systems, but neither could see the other’s exposure.
Eighty-one vehicles. Financed twice. The number isn’t what’s staggering — it’s how long it likely went undetected, and how casually the exposure existed across two Fortune 500 companies’ dealer networks.
The scheme only unraveled because two competitors happened to compare notes. That is not a fraud detection strategy. That is luck.
For any business owner reading this: replace “floor plan financing” with “vendor invoices,” “expense reimbursements,” “client billing,” or “grant disbursements.” The vulnerability is the same. Siloed data, manual processes, and a misplaced trust that someone else is checking the work.
The Pattern Behind the Pattern
What makes this case instructive is not its uniqueness — it’s its familiarity. Fraud in business almost always exploits the same three conditions:
- Siloed data that prevents cross-system visibility
- Manual or trust-based verification processes
- A gap between when fraud occurs and when it is detected
Ford and Stellantis each had strong internal controls. What they lacked was a unified view across their shared dealer ecosystem. The fraud lived in the space between their systems.
This is exactly the environment that modern fraud detection technology is designed to address. Not by creating a surveillance state — but by closing the information gaps that fraudsters depend on.
What Modern Fraud Detection Actually Looks Like
Fraud detection has matured well beyond rule-based flags and quarterly audits. The tools available to businesses today — even mid-market companies with no dedicated fraud team — can surface anomalies in real time, before the exposure compounds.
Here is what a well-designed fraud detection layer actually does:
- Cross-references transactions across systems, vendors, and counterparties to identify duplicate or conflicting records
- Establishes behavioral baselines so that deviations — unusual transaction volumes, timing anomalies, atypical counterparties — trigger review automatically
- Creates an auditable trail that makes post-incident forensics faster and more defensible
- Integrates with existing ERP, accounting, and CRM platforms rather than requiring a wholesale system replacement
None of this requires a Fortune 500 budget. It requires intentionality — and the right partner to implement it cleanly.
The Cost of Waiting
Fraud is not a risk that stays static. The longer a scheme runs, the more it compounds. In the Ford and Stellantis case, 81 vehicles. In other industries, the number can be far higher before detection — because most organizations don’t discover fraud through their own controls. They discover it through external tip-offs, audits, or, in the worst cases, litigation.
The Association of Certified Fraud Examiners (ACFE) consistently finds that organizations without proactive fraud controls suffer losses roughly twice as large as those with controls in place, and that the median fraud scheme runs for 12 months before detection. Twelve months of exposure. Twelve months of compounding risk.
That is not a technology problem. That is a strategy problem. And it is solvable.
The median fraud scheme runs for 12 months before detection. Twelve months of exposure — and most organizations discover fraud not through their own controls, but through a tip.
What This Means for Your Business
You don’t need to be a major automaker with a national dealer network to be exposed to this class of risk. Any business that processes payments, manages vendor relationships, extends credit, or operates across multiple systems has surface area for this kind of fraud.
The question is not whether your systems are perfect. They are not. The question is whether the gap between when fraud could occur and when you would detect it is measured in hours — or in months.
At Black Tyger Strategies, we help businesses build the data infrastructure and risk controls that close that gap. Not through expensive point solutions that don’t talk to each other — but through a cohesive architecture that gives you visibility across your entire financial and operational footprint.
If Stellantis hadn’t called Ford, those 81 vehicles might still be sitting on two sets of books. Don’t build a business that depends on a competitor’s phone call to protect it.
Ready to understand your fraud exposure — and what it would take to close it? Let’s talk.
Black Tyger Strategies is a Full Stack Digital Solutions Business Development Consultancy specializing in IT Project Management, Custom Software Development, Digital Transformation Consulting, and Cybersecurity & Risk Management.