CyberSource Brings New Levels of Automation to Online Fraud Control

Fraud Portal's Intelligent Review Technology to bring smart automation into order review; Device fingerprinting added to comprehensive detection intelligence system

Reading, UK, April 3, 2008

CyberSource Corporation (NASDAQ: CYBS) today announced Intelligent Review Technology as part of its risk management solutions for eCommerce merchants. New features of its enterprise-class case management system push automation beyond the initial order screening process and into secondary review cycles so that online sellers can more easily accommodate growth. Also, physical device fingerprinting has been added to the management portal's set of 150+ integrated fraud detectors.

"As eCommerce merchants continue to grow, fraud management presents a series of potential bottlenecks," said Kirsten Fry-Sanchez, CyberSource vice president, product management. "Though front-end screening tools have brought the online fraud rate to manageable levels for some, the price merchants are paying for that success now looms as the current challenge. On average, merchants review one out of every four orders they receive, adding significant cost and delay. To assist with this workload, they add more anti-fraud tools each year, which in turn adds to the management challenge. By making multiple detectors accessible on-demand via a single interface, and extending more automation and intelligence into the later stages of fraud screening, areas formerly managed almost entirely by human effort, we're taking order review to a whole new level of efficiency."

How the CyberSource global fraud management portal works
New--device fingerprinting
A single connection to CyberSource brings merchants to the CyberSource global fraud portal, Decision Manager, which begins the fraud detection process with industry-leading capabilities. The system can automatically apply over 150 global validation tests against the inbound orders and, per merchant-defined rules, automatically make a decision to accept, reject or mark the orders for further review. The aim is to corner fraudsters by examining each transaction from multiple perspectives. New to CyberSource fraud detection is device fingerprinting, which builds a digital fingerprint of the computer or other device being used to place the order. The digital fingerprint can expose fraudsters who are using the same computer systems to place multiple orders using different identities or addresses. Other tests included in initial screening are global multi-merchant transaction histories, same store purchase histories, IP geolocation tests, and global validation services (e.g., validation of international address and phone number formats). The system extends beyond standard payment cards to address global payment options offered by merchants that are expanding internationally.

New--Intelligent Review Technology, adds a second stage of automated screening Now merchants can easily define rules to automatically invoke a second stage of automated screening for orders that have been suspended for review. The second stage auto screen arms merchants with more sophisticated tools to automatically evaluate queued orders at a higher level of scrutiny. Automating the review of queued orders significantly reduces the length of time orders remain suspended, which can result in operational efficiencies, greater customer satisfaction, and higher conversion of valid orders.

Best reviewer "cloned"
To further speed review and reduce training time, orders can be automatically compared to orders having similar characteristics that have been seen and acted on before. A statistical comparison is made, guiding new or junior reviewers as to whether the best performing reviewers would have accepted the order.

Case priority assignment, service level management
Orders are assigned to queues, prioritised within queues, and assigned owners based on easily created merchant rules. Cases can be automatically monitored and accelerated to ensure they clear the queue in time to meet customer service commitments. Cases at risk can trigger email alerts or acceptance/rejection actions.

Managed services
To further reduce the burden of fraud detection and order management on merchants, CyberSource offers Managed Services, where an expert CyberSource team can complement internal merchant staff and procedures. These services are available in two forms, Performance Monitoring and Fully Managed Operations. Performance Monitoring can include on-site review of merchant processes, design of order screening strategies, and ongoing monitoring and system tuning to optimise business results. With Fully Managed Operations, CyberSource fraud analysts and order conversion experts manage every aspect of a merchant's fraud management process, including order review.

Availability
Decision Manager and Managed Services are available now. Intelligent Review Technology will be released in phases over the course of 2008.
For more information on CyberSource Risk Management Solutions
Go to http://www.cybersource.co.uk/products_services/risk_management/

About CyberSource
CyberSource Ltd is a wholly-owned subsidiary of CyberSource Corporation (NASDAQ: CYBS). CyberSource is a leading provider of electronic payment and risk management solutions. CyberSource solutions enable electronic payment processing for web, call centre, and point-of-sale environments. CyberSource also offers industry leading risk management solutions for merchants accepting card-not-present transactions. CyberSource Professional Services designs, integrates, and optimises commerce transaction processing systems. Over 228,000 businesses use CyberSource solutions, including half the companies comprising the Dow Jones Industrial Average. The company is headquartered in Mountain View, California, and has sales and service offices in Japan, the United Kingdom, and other locations in the United States including Bellevue, Washington and American Fork, Utah. For more information, please visit the CyberSource Ltd web site at www.cybersource.co.uk or email uk@cybersource.com.

"Safe Harbor" statement under the Private Securities Litigation Reform Act of 1995Statements in this release that are not purely historical are forward-looking statements within the meaning of Section 27A of the Securities Act of 1933 and Section 21E of the Securities Exchange Act of 1934, including, without limitation, statements regarding the company's expectations, objectives, anticipations, plans, hopes, beliefs, intentions or strategies regarding the future. Forward-looking statements in this release include, without limitation, statements regarding: (1) enhancing the company’s operational agility, leveraging partner synergies, and raising CyberSource brand awareness in Europe; and, (2) the company expanding its already successful operations in the European arena. Factors that could cause actual results to differ materially from the forward looking statements include risks and uncertainties such as changes in Generally Accepted Accounting Principles and the application thereof, changes in customer needs, the risks inherent in integrating a newly-acquired business, the risk of the economy, in general, and online economy, in particular, slowing down, new products and services offerings by the company and its competitors, any unforeseen event or any unforeseen system failures, and other risks indicated in our filings with the Securities and Exchange Commission. It is important to note that actual outcomes could differ materially from those in such forward-looking statements. Readers should also refer to the documents filed by CyberSource with the Securities and Exchange Commission, specifically the annual report filed on Form 10-K for the year ended December 31, 2007, filed with the Securities and Exchange Commission on March 11, 2008, and our quarterly reports filed on Form 10-Q from time to time, all of which identify important risk factors.

© 2008 CyberSource Corporation. All rights reserved. CyberSource is a registered trademark in the U.S. and other countries. Authorize.Net is a registered trademark in the U.S. All other brands and product names are trademarks or registered trademarks of their respective companies.