The Basics of Ecommerce Fraud – What It Is and How To Manage It
Ecommerce sales are predicted to reach $630+ billion by the year 2020. Unfortunately, growing sales mean not only higher revenue but also bigger losses due to fraud. And if appropriate ecommerce fraud prevention measures aren’t taken, ecommerce fraud losses in the United States can sum up to more than $12 billion by next year.
In 2018, almost three-quarters of businesses cited fraud as a growing concern and nearly two-thirds reported the same or higher levels of fraudulent losses.
All of a sudden it’s not just something you read about in the news, but actually something you might face yourself, even as a small business owner. Being equipped with the necessary tools is key in everyday fraud management, but it’s even more important around the holidays. Fraudsters, just like Santa Claus, are active when everyone else is sleeping. With Black Friday & Cyber Monday coming up soon, better keep an eye on any suspicious orders coming your way. Read this blog post to find out how to do it!
What is ecommerce fraud?
The term ecommerce fraud, also known as purchase fraud, is pretty self-explanatory. It occurs when a fraudster approaches a merchant and proposes a business transaction using fraudulent means such as a stolen or fake credit card to pay for it. This leaves the merchant without payment for the sale that was just made.
Fraud has always been around in one form or another, so the concept itself isn’t that new. It used to be limited to the physical stealing of a credit card. And although this still happens, online fraud is far more popular now. With the rise of new technologies, payment methods, and data processing systems, online store owners are unwillingly opening their doors to new forms of fraud every day.
Online fraud most commonly takes place when the credit card is lost, or its information is not stored securely. And while card-present fraud losses have decreased over the last couple of years, card-not-present (CNP) fraud continues to grow.
Types of online transaction fraud
Every online store owner dreams of being successful and having a recognized brand. However, the more popular your brand is, the more likely it is to become a target of online fraud.
The percentage of total revenue loss by fraudulent orders in 2018 was 1.8%, up from 1.58% in 2017. And the average cost for each dollar lost to fraud rose by $0.17 from 2017 and reached $2.94 in 2018.
To prevent or manage fraud for your brand, you need to know the types of online retail fraud you might have to deal with. Let’s take a look at the two most popular types of fraud known to ecommerce.
1. The friendly fraud
Contrary to what the name suggests, there’s nothing friendly about this type of fraud. It happens when a customer purchases a product with their own credit card and issues a chargeback (in some cases deliberately), claiming an item was never received or that they never made the charge.
If you think about your customer FAQs, you’ll quickly realize that they’re all in some way or form a distant relative of the friendly fraud. “My order never arrived although the tracking information states it did” might be the most popular of them all.
How to prevent friendly fraud
You should make sure your credit card descriptors match your business name. A lot of times, chargeback fraud happens because customers don’t recognize the company name on their card statements.
Here’s an example of how payment descriptors appear on card statements:
Also, if you can, only use shipping with tracking. In case customers approach you asking for a refund, it’s the best evidence you can provide to prove the products were delivered to their door.
Last but not least, have a clear reshipping, refund, and return policies set up for your store. Here are Printful policies you can copy for your store with free templates inside!
2. The clean fraud
Clean fraud occurs when a purchase is made with a stolen credit card. This type of fraud has definitely graduated to the adult table because it takes some actual skill to pull it off. To perpetuate clean fraud, a cyber-criminal uses a stolen card, as well as information about the cardholder. So basically, clean fraud is the ultimate doppelgänger because it looks like a legitimate transaction with good shipping, billing, and IP addresses as well as complete and verified card data.
Here’s how clean fraud works:
How to prevent clean fraud
As an online store owner, this type of fraud can be hard to spot because the data is so, well, clean. The bad news is, if you’re a smaller retailer without effective fraud prevention software, you’re more likely to experience clean fraud.
Not familiar with fraud prevention software? It’s basically an online solution that helps ecommerce businesses detect high-risk transactions. Fraud detection software applies algorithm-based analysis to data sources to assess the potential risk of each transaction.
Fraud prevention software can be on a pricey side, but since fraudsters are the most active around the holiday season, you should take advantage of the free trial plans these companies offer. We recommend checking out Sift Science, Kount, Signifyd.
You should also check more suspicious transactions manually. It takes a bit of extra time, but it can save you a lot of money and sleepless nights. To learn how to identify fraudulent activity on your store, keep reading!
What does a fraudulent order look like?
Ecommerce transactions can contain some hints to help you recognize them as possibly fraudulent. Listed below are 11 signs of a potentially fraudulent transaction.
If just a couple of these are present in your transactions, it might not be anything to worry about. But if a single transaction contains several, it’s time to roll up your sleeves and start digging!
- First-time shoppers. Fraudsters usually target several websites they’ve never shopped on before. Once they commit fraud at one, they’ll quickly move on to the next.
- Larger-than-average orders. Stolen payment cards have a very short lifespan, so the fraudster’s goal is to maximize the spending in a single transaction.
- Fast shipping. The majority of your customers are more likely to select a less expensive shipping option. But since money isn’t an issue for fraudsters, pay attention to orders with overnight shipping.
- Unusual location. Double-check transactions that come from countries you usually don’t get orders from. They tend to have a higher fraud risk.
- A large quantity of the same product. Just as with large orders, buying multiple items of the same kind is a way of maxing out stolen cards as quickly as possible.
- Multiple shipping addresses. These orders might indicate that there is a batch of stolen cards, each with a different name. The common denominator here is the identical shipping address.
- Shipping/billing address doesn’t match IP address. Check if the IP address matches the billing address and/or the shipping address. If there are mismatches, the risk of a fraudulent transaction is higher.
- Multiple cards from a single IP address. These transactions indicate that multiple orders have been placed from the same computer. They may have different names and shipping addresses.
- Odd use of punctuation or letter capitalization. Perhaps fraudsters can’t be bothered to turn off caps lock, or use spaces instead of commas. With no scientific explanation here, it is one of the signs to look out for.
- Multiple transactions in a short amount of time. This one is a sign of a criminal attempting to run up a stolen card’s credit line as quickly as possible before the account is closed.
How to prevent fraud on your store?
The sad truth is, no system is 100% fraud-proof and your online store is no exception. However, there are several things you can do to make personal and financial information on your website more secure.
- Pick a reliable third-party payment processor. Since third-party payment processors make money off your sales, it’s in their best interest to keep your store’s payments secure.
- Keep platforms and software up to date. Whichever platforms or software you’re using to keep your store up and running, always make sure you’re running the latest version. As fraudulent activities get more intricate, providers are hard at work improving the security aspects of their products.
- Check if all your checkout pages stay in the “HTTPS.” The encryption within HTTPS allows your information to remain confidential from prying eyes because only your browser and the server can decrypt the traffic.
- Use AVS and CVV. AVS or Address Verification Service ensures that the billing address of the purchase matches the billing address credit card company has on file. CVV or Credit Code Verification is a security code printed on the credit cards, and not stored in data holds. It means that the customer needs to have a physical credit card on their hands to make a purchase.
- Get an outsider’s perspective. Consider hiring a professional that can evaluate the security of your site is and suggest what else can be done to detect and prevent fraudulent activities on your store.
- Get fraud protection software. This will help you detect high-risk transactions and analyze other risk factors to prevent and reduce fraudulent activities on your store. There are plenty to choose from on the market, with various price points and protection
Finding the right tools that automatically detect suspicious transactions is crucial if you want to protect your business from revenue loss. However, never underestimate the power of manual monitoring to catch fraudsters. You know your customers and their shopping habits better than anyone else. So if you notice something unusual or suspicious, act fast!
Protect your business
Ecommerce fraud numbers have grown rapidly over the last couple of years. And with the holiday (and peak fraud) season fast approaching, you have to equip yourself with the tools to keep your online store safe.
Make sure your software is using fraud protection filters that will alert you about anything out of the ordinary. Also, don’t forget to remind your team to keep an eye out for any unusual orders.
Now that you know how to recognize a fraudulent order and what tools to use to prevent it from happening to you, the ball’s in your court. Stay safe!