That rate is suspiciously low even if there wasn't any mass fraud.
Though it doesn't explain a rate so low you shouldn't assume fraudsters don't have access to signatures and can't simply print them out. The whole system is compromised so whatever database they're using to verify you can't be sure that's not been made available either. Signature verification is incredibly weak especially when you know you have a huge potential for hostile insiders.
I'd be looking for exact matches or printed signatures as well.
That rate is suspiciously low even if there wasn't any mass fraud.
Though it doesn't explain a rate so low you shouldn't assume fraudsters don't have access to signatures and can't simply print them out. The whole system is compromised so whatever database they're using to verify you can't be sure that's not been used either.
I'd be looking for exact matches or printed signatures as well.