• US & Canada
• Japan |
• Contact Us |
• News & Events |
• Home |

Quick Find... Global Payment Processing - Credit Card Processing - International Payment Options - Recurring Billing - PayPal - Tax Calculation Fraud Management - Decision Manager - Managed Services - Payer Authentication Payment Security Reporting & Reconciliation Professional Services or

• Solutions
• Sectors
• Integrations
• Resources
• Partners
• Support Centre
• About Us
• +44 (0)118 929 4840

Online Fraudsters Focus Attention on Large Merchants

Annual survey shows large UK merchants see more sophisticated criminal tactics; smaller merchants subject to random attacks

Reading, UK, 14th January 2008

Research conducted for the fourth annual CyberSource UK Online Fraud Report has shown that sophisticated criminals are focusing their attention on high-value wins from larger merchants. Meanwhile, small merchants are being targeted with simpler approaches that rely more on luck than ingenuity to succeed. Specific examples given by merchants in the telephone survey also suggest that fraudsters are becoming increasingly bold.

42% of large merchants say they recognised fraudsters targeting specific products that could be easily sold and 25% documented fraudsters testing and exploiting 'ceiling' and 'floor' limits for transactions, outside of which purchases are more likely to be reviewed before approval.  By contrast, only 23% of small merchants saw specific product targeting, and only 3% recognised the practice of testing ceiling and floor limits.

Small merchants are subject to many more attempts by fraudsters to use card generators - software that generates possible card numbers against a specific set of customer data.  48% recognised this type of fraud versus just 22% of large merchants.  Small merchants also saw a higher incidence of multiple identities being tried against a single card number (42% vs 31% for large merchants).  Both of these exploits rely on luck and multiple attempts to succeed, and are much less deliberate and planned than those tactics experienced by larger merchants.

"Fraudsters are constantly reacting to whatever barriers are placed in their path, finding new ways to beat the system," said Simon Stokes, managing director of CyberSource.  "This year's report shows that online retail fraud has reached a level of sophistication where we can recognise different patterns of behaviour and different targets for 'professional' and 'rookie' fraudsters."

Nearly half of all businesses have seen fraud levels rise in the last twelve months; 38% have seen them stay static.  Large and very large merchants have been hit hardest: over a quarter have recorded losses up more than 10% on last year.

Specific examples from respondents to the telephone survey suggest fraudsters are becoming increasingly brazen in their attempts to defraud retailers.  Merchants report incidents of orders being placed with stolen identities, followed by the fraudster waiting outside the address of the ID fraud victim for a package to be delivered.  Just 17% of overall respondents agreed that the police are effectively tackling online retail fraud today.

"Online retail continues to grow at a phenomenal rate, and the infrastructure to support it cannot always keep up," commented Jo Evans, managing director of the Interactive Media in Retail Group (IMRG).  "At the moment law enforcement policies and practices may be lagging behind but as an industry we also need to look at ways that we can work together more effectively to tackle the issue of fraud."

Merchants of all sizes have typically implemented between five and six different lines of defence, comprising simple checks on addresses (Address Verification Service or AVS) and card details (Card Verification Number or CVN), as well as more sophisticated tools including rules-based automated decision engines, such as CyberSource Decision Manager.  165 retailers were surveyed for the report by independent research company Vanson Bourne.  38% of the respondents came from medium sized businesses (£1m-£10m turnover).  The remainder were divided evenly between small (£0-1m), large (£10m-50m) and very large businesses (£50m+). 

The Fourth Annual UK Online Fraud Report was sponsored by CyberSource Ltd.  The survey involved 165 UK-based businesses trading online, and 1002 randomly selected adults over the age of 16 from across the UK.  The research partner for the merchants was Vanson Bourne, and for the consumers, GfK NOP.  The consumer research was conducted entirely by telephone, and the merchant research used a split of telephone research and online questionnaires.

Press Only: Please email Noiseworks (cybersource@noiseworks.com) for your advance copy of the 2008 UK Online Fraud Report, to be launched to the public in January

About CyberSource
CyberSource Ltd is a wholly-owned subsidiary of CyberSource Corporation (NASDAQ: CYBS). CyberSource is a leading provider of electronic payment and risk management solutions. CyberSource solutions enable electronic payment processing for web, call centre, and point-of-sale environments. CyberSource also offers industry leading risk management solutions for merchants accepting card-not-present transactions. CyberSource Professional Services designs, integrates, and optimises commerce transaction processing systems. Over 220,000 businesses use CyberSource solutions, including half the companies comprising the Dow Jones Industrial Average. The company is headquartered in Mountain View, California, and has sales and service offices in Japan, the United Kingdom, and other locations in the United States including Bellevue, Washington and American Fork, Utah. For more information, please visit the CyberSource Ltd web site at www.cybersource.co.uk or email uk@cybersource.com.

©2008 CyberSource Corporation. All rights reserved. CyberSource is a registered trademark in the U.S. and other countries. All other brands and product names are trademarks or registered trademarks of their respective companies.

back to news archive