Welcome!

Article

The Winners and Losers of Online Payments Fraud

How does payment fraud affect all the players involved?

Online credit card payment fraud is an unfortunate facet of online commerce - and one that is likely permanent. For every safeguard put in place, there is someone willing to find a way to get around it. While the vast majority of online transactions are uneventful, the threat of fraud is always present.

There is no way to be completely safe from credit card fraud. As was made evident in the infamous Target security breach in the United States, where the information of thousands of credit card holders was compromised, and the recent massive fraud case in India, in which one man was found to have stolen money from 4,500 credit cards, fraud takes many forms and can happen in unexpected ways.

So how does payment fraud affect all the players involved? Who are the real winners, and the real losers?

The merchant
Merchant credit card fraud losses occur mainly on transactions where the card is not presented, such as those done online or in call centers. In 2012, merchants shouldered 37 percent of the burden of credit card losses. Merchants can be especially vulnerable to credit card fraud. If someone purchases merchandise fraudulently, they must often pay back the money to the consumer, and suffer the loss of their merchandise. However, this loss isn't the only way in which fraud can affect a merchant's business.

If merchants fail to act promptly when credit card fraud occurs, or try to save money by cutting corners on fraud prevention technology, they can earn a reputation among their clients as being indifferent at best and disreputable at worst. This can cause distrust and a loss of business.

The credit card company
Credit card companies have safety practices in place to protect consumers, but sometimes they fail. Credit card companies take the lion's share of responsibility for credit card fraud. In 2012, they took on 63% of fraudulent losses. While insurance does compensate for some of the loss, credit card companies are still out a significant amount of time and expense, including the cost of maintaining current fraud prevention measures.

The buyer
In the United States, there are legal protections for consumers that prevent them from being held liable for fraudulent charges, so buyers are not usually directly affected by credit card fraud. However, all consumers are indirectly affected by credit card fraud, as the credit card companies, who suffer huge losses every year, pass those losses on to consumers in the form of higher interest rates and fees.

The perpetrator
If an astute buyer detects credit card fraud, the credit card company will decide whether the cost of investigating the fraud is more than simply compensating the buyer and sending them a new card. Large fraudulent transactions prompt credit card companies to do investigations, which typically involve the police. The police can use detective work, surveillance, and other methods to track down perpetrators. Contrary to popular opinion, the thieves do leave a trail, and they don't always get away with it. Credit card fraud is a felony, and perpetrators can look forward to jail time, plus a permanent criminal record.

What to do to protect yourself or your business
While the prevalence of credit card fraud makes it an unescapable reality for the time being, there are ways buyers and merchants can protect themselves.

Consumers should memorize pin numbers and destroy pin number letters. They should monitor their credit cards continuously for unauthorized charges - not just when they get their statement. When shopping online, buyers should check to ensure that site security measures are in place before entering any sensitive information.

Merchants can also take care to verify the signature and identity of customers before honoring any credit card transactions. They can ask customers for the card verification value number on the back of the customer's credit card, which will at least show that he or she has it in their possession. They can also place a hold on shipments of foreign orders in order to buy time to verify card information and cancel the order if need be.

Finally, and perhaps most helpfully, merchants can use real time credit card processing, which will alert then immediately if a card is lost or stolen, so that they can void the transaction. Better merchant protection is achieved via the use of PCI DSS compliant processing services and platforms; merchants can help ensure they have better protection by inquiring as to how their payment-processing provider manages security and prevents fraud.

More Stories By Eran Feinstein

Eran Feinstein is the founder 3G Direct Pay Limited. 3G provides global e-commerce and online payments solutions for the travel and related industries. He is a leading authority in the fields of e-commerce, travel and payments, having acquired extensive experience from various parts of the world.

Latest Stories
With more than 30 Kubernetes solutions in the marketplace, it's tempting to think Kubernetes and the vendor ecosystem has solved the problem of operationalizing containers at scale or of automatically managing the elasticity of the underlying infrastructure that these solutions need to be truly scalable. Far from it. There are at least six major pain points that companies experience when they try to deploy and run Kubernetes in their complex environments. In this presentation, the speaker will d...
While DevOps most critically and famously fosters collaboration, communication, and integration through cultural change, culture is more of an output than an input. In order to actively drive cultural evolution, organizations must make substantial organizational and process changes, and adopt new technologies, to encourage a DevOps culture. Moderated by Andi Mann, panelists discussed how to balance these three pillars of DevOps, where to focus attention (and resources), where organizations might...
The deluge of IoT sensor data collected from connected devices and the powerful AI required to make that data actionable are giving rise to a hybrid ecosystem in which cloud, on-prem and edge processes become interweaved. Attendees will learn how emerging composable infrastructure solutions deliver the adaptive architecture needed to manage this new data reality. Machine learning algorithms can better anticipate data storms and automate resources to support surges, including fully scalable GPU-c...
When building large, cloud-based applications that operate at a high scale, it's important to maintain a high availability and resilience to failures. In order to do that, you must be tolerant of failures, even in light of failures in other areas of your application. "Fly two mistakes high" is an old adage in the radio control airplane hobby. It means, fly high enough so that if you make a mistake, you can continue flying with room to still make mistakes. In his session at 18th Cloud Expo, Le...
Machine learning has taken residence at our cities' cores and now we can finally have "smart cities." Cities are a collection of buildings made to provide the structure and safety necessary for people to function, create and survive. Buildings are a pool of ever-changing performance data from large automated systems such as heating and cooling to the people that live and work within them. Through machine learning, buildings can optimize performance, reduce costs, and improve occupant comfort by ...
As Cybric's Chief Technology Officer, Mike D. Kail is responsible for the strategic vision and technical direction of the platform. Prior to founding Cybric, Mike was Yahoo's CIO and SVP of Infrastructure, where he led the IT and Data Center functions for the company. He has more than 24 years of IT Operations experience with a focus on highly-scalable architectures.
The explosion of new web/cloud/IoT-based applications and the data they generate are transforming our world right before our eyes. In this rush to adopt these new technologies, organizations are often ignoring fundamental questions concerning who owns the data and failing to ask for permission to conduct invasive surveillance of their customers. Organizations that are not transparent about how their systems gather data telemetry without offering shared data ownership risk product rejection, regu...
CI/CD is conceptually straightforward, yet often technically intricate to implement since it requires time and opportunities to develop intimate understanding on not only DevOps processes and operations, but likely product integrations with multiple platforms. This session intends to bridge the gap by offering an intense learning experience while witnessing the processes and operations to build from zero to a simple, yet functional CI/CD pipeline integrated with Jenkins, Github, Docker and Azure...
René Bostic is the Technical VP of the IBM Cloud Unit in North America. Enjoying her career with IBM during the modern millennial technological era, she is an expert in cloud computing, DevOps and emerging cloud technologies such as Blockchain. Her strengths and core competencies include a proven record of accomplishments in consensus building at all levels to assess, plan, and implement enterprise and cloud computing solutions. René is a member of the Society of Women Engineers (SWE) and a m...
Dhiraj Sehgal works in Delphix's product and solution organization. His focus has been DevOps, DataOps, private cloud and datacenters customers, technologies and products. He has wealth of experience in cloud focused and virtualized technologies ranging from compute, networking to storage. He has spoken at Cloud Expo for last 3 years now in New York and Santa Clara.
Enterprises are striving to become digital businesses for differentiated innovation and customer-centricity. Traditionally, they focused on digitizing processes and paper workflow. To be a disruptor and compete against new players, they need to gain insight into business data and innovate at scale. Cloud and cognitive technologies can help them leverage hidden data in SAP/ERP systems to fuel their businesses to accelerate digital transformation success.
Containers and Kubernetes allow for code portability across on-premise VMs, bare metal, or multiple cloud provider environments. Yet, despite this portability promise, developers may include configuration and application definitions that constrain or even eliminate application portability. In this session we'll describe best practices for "configuration as code" in a Kubernetes environment. We will demonstrate how a properly constructed containerized app can be deployed to both Amazon and Azure ...
Poor data quality and analytics drive down business value. In fact, Gartner estimated that the average financial impact of poor data quality on organizations is $9.7 million per year. But bad data is much more than a cost center. By eroding trust in information, analytics and the business decisions based on these, it is a serious impediment to digital transformation.
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As automation and artificial intelligence (AI) power solution development and delivery, many businesses need to build backend cloud capabilities. Well-poised organizations, marketing smart devices with AI and BlockChain capabilities prepare to refine compliance and regulatory capabilities in 2018. Volumes of health, financial, technical and privacy data, along with tightening compliance requirements by...
Predicting the future has never been more challenging - not because of the lack of data but because of the flood of ungoverned and risk laden information. Microsoft states that 2.5 exabytes of data are created every day. Expectations and reliance on data are being pushed to the limits, as demands around hybrid options continue to grow.