← Essays
Fraud · AMLAI in Fintech

Forter Agents Show AI Risk Work Is Becoming Operational

Forter's agent launch and today's repo radar point to the same pattern: AI is moving from generic assistants into bounded workflows with data access, controls, and operating accountability.

June 26, 2026·8 min read·By Rizwan Zafar
Briefing note

Forter's five commerce AI agents show the practical shift from chatbots to workflow agents for fraud, disputes, payments, and integration.

Operator-written8 min read7 sectionsRecruiter-readable

The useful AI signal this week is not another chatbot.

It is AI being packaged around operational commerce jobs.

Forter announced the launch of Forter Agents and early access to Forter MCP. The five agents are mapped to specific workflows: analytics, disputes, abuse, payments, and integration. Forter also says the agents sit on top of its commerce intelligence network, which spans more than two billion shoppers and nearly one million merchants.

That is the important part.

The product is not "ask AI about fraud." The product is "put AI inside the decision workflows commerce teams already run."

For fintech and payment leaders, that distinction matters.

Agents Need A Job Boundary

Generic assistants are useful for exploration. Operational agents need a job boundary.

Forter's framing is a good example. An analytics agent surfaces insights. A dispute agent supports chargeback workflows. An abuse agent focuses on returns, promotions, loyalty, and related policy patterns. A payments agent monitors performance and gives recommendations to increase authorizations. An integration agent helps teams connect Forter faster through coding support.

Those are not the same job.

They have different data, risks, escalation paths, success metrics, and failure modes.

This is where AI in payments has to become more disciplined. An AI assistant that can answer questions is not the same as an agent trusted to influence authorization, dispute recovery, fraud policy, or merchant integration speed.

Every one of those workflows needs a clear boundary: what the agent can see, what it can recommend, what it can change, who approves, what gets logged, and how a bad recommendation is rolled back.

Commerce Risk Is A Strong Agent Use Case

Commerce risk has the right shape for agentic workflows.

The data is rich. The patterns are repetitive but not simple. Teams already investigate cases, compare decision rationale, review exceptions, update policies, dispute chargebacks, and tune payment performance. There is a lot of human work between the model output and the business decision.

That is where agents can help if they are bounded.

A dispute agent can draft evidence packs, summarize history, and prioritize recoverable cases. An abuse agent can propose policy changes but should not silently block entire customer cohorts. A payments agent can identify authorization patterns, but a product or risk owner should validate whether the recommendation helps conversion without raising fraud loss. An integration agent can reduce implementation time, but the code path still needs tests, review, and rollback.

The work becomes faster. It does not become ownerless.

That is the recurring problem in why AI and ML solutions fail in production payments. Teams over-focus on the model and under-design the operating loop.

MCP Makes Data Access The Product Question

Forter's early access to MCP is also worth watching.

MCP matters because agent value depends on context access. If an agent cannot safely reach transaction history, customer profiles, decision rationale, policy data, payment outcomes, and performance trends, it stays generic. If it can reach those systems without controls, it becomes a risk.

That is the product tension.

The same pattern shows up in RAG for merchant integration support. The hard part is not retrieval as a concept. The hard part is permissioning, source quality, freshness, redaction, audit logs, and deciding what the system should do when evidence is weak.

Commerce teams should treat MCP connectors as production integration surfaces. They need data contracts, scoped access, logging, tenant boundaries, test datasets, and operational runbooks.

An agent with better context is powerful. An agent with ungoverned context is expensive risk.

Repo Radar: Skills, Toolkits, And Domain Agents

The repo radar points in the same direction.

The local GitHub Trending sweep found mukul975/Anthropic-Cybersecurity-Skills, which the GitHub API showed at more than 21,000 stars today and describes as 817 structured cybersecurity skills mapped to frameworks including MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF, and MITRE F3.

It also surfaced aws/agent-toolkit-for-aws, an AWS-supported set of MCP servers, skills, and plugins for agents building on AWS, and xbtlin/ai-berkshire, a fast-moving Claude Code based multi-agent investment research framework.

I would treat those as radar signals, not procurement recommendations.

The signal is that agent work is becoming more domain-specific. Security skills, cloud toolkits, finance research agents, commerce risk agents, and payment agents are all converging on the same product problem: give the model enough structure and context to be useful without letting it improvise uncontrolled work.

That is the next maturity step.

What Leaders Should Try Next

If you lead a fintech, commerce, or payment product team, do not begin with a broad "agent strategy."

Pick one bounded workflow.

Good candidates are dispute evidence preparation, merchant integration triage, fraud policy review, payment authorization analysis, reconciliation exception summarization, or support escalation routing. Each has a clear input, output, owner, metric, and review path.

Then define the operating contract:

Allowed data, allowed actions, recommendation format, confidence threshold, human approval gate, logging requirement, rollback path, and business metric.

Only after that should you choose the model, MCP connector, or agent framework.

This is the difference between AI theatre and AI operations.

Actionable Takeaway

Forter's announcement is useful because it moves the conversation away from generic assistants and toward workflow-specific agents.

That is where serious value will appear: not in a demo that answers a broad question, but in an agent that helps a risk, payments, support, or integration team make a better operational decision with evidence.

The debate point for leaders is whether agents should be measured by hours saved or by decision quality.

I would start with decision quality: recovered disputes, authorization lift, lower abuse leakage, faster integration, fewer support escalations, and cleaner audit evidence. Hours saved only matter if the operating outcome improves.

If your AI roadmap still says "deploy agents" without naming the workflow, data boundary, owner, metric, and escalation path, it is not ready for production. For help turning AI into payment and commerce operations, start with AI auto-escalation in payment ops or contact Rizwan.

FAQ

What did Forter announce?

Forter announced five workflow-specific AI agents for analytics, disputes, abuse, payments, and integration, plus early access to Forter MCP for commerce data access.

Why does this matter for fintech leaders?

It shows AI moving from generic assistants into operational workflows where fraud, payments, disputes, and integrations require controls, evidence, and accountable owners.

What should teams test first?

Start with one bounded workflow such as dispute evidence preparation, payment authorization analysis, merchant integration support, or fraud policy review. Define data access, approval gates, logging, and success metrics before scaling.

Tags
ForterAI agentsfraud operationscommerce riskMCPrepo radar
Rizwan Zafar
Written by
Rizwan Zafar

Chief Product Officer · Payments, Fintech & AI

Payments product & program leader — scaled a regulated multi-rail platform from $0 to $1B+ GTV across five frontier markets. These essays are the public version of how I think through the work.

Continue the conversation

This writing is the public version of how I think through product, programme and payment-infrastructure decisions in regulated markets.

Contact Rizwan
Hiring for a senior payments product role?

Rizwan ZafarChief Product Officer · Payments, Fintech & AI.

Payments Infrastructure Notes

One operator email a week. No filler.

Payment acceptance, settlement and product delivery notes from running $1B+ annual GTV across frontier markets — written for founders and payment leaders.

Weekly at most. Unsubscribe with one reply.