Are You Being Outsmarted by Fraudsters When it Comes to EMV?
Organized crime rings have October 1 circled on their calendars. Do you?
If you’re a merchant or retailer, you have other days like November 27 and December 24 engrained in your mind, marked on your smart phone and on the calendar hanging in your break area. It’s time to add another date to your list, because chances are good that if you’re not using terminals capable of processing chip-enabled card payments by the EMV compliance deadline of October 1, you’re painting a big target on your back for the world’s most sophisticated data thieves to hit.1
In EMV Deadline, Data Thieves See an Opportunity
Stopping fraud has always been a game of cat and mouse, with retailers more often reacting to data thieves than nabbing them. Fraud didn’t become a $5.5 billion global industry because hackers are lucky. Fraudsters are highly intelligent. Their operations are sophisticated and they’re smart about who they target. They’ll swipe data from retailers still operating mag-stripe only terminals and then use that data to make fraudulent purchases online.
The impending EMV compliance deadline of October 1 promises to create acrimony between banks and merchants, leaving an opportunity for thieves to take advantage of merchants that haven’t yet updated their terminals, certified their software or trained their employees on how to process chip-enabled card payments. Yet, if the recent, massive data breaches experienced by high-profile retail giants taught us anything, it’s that the cost of losing the public’s trust in the safety of your shopping experience can be devastating. Those breaches stand as a warning to non EMV-compliant merchants and signal the need to invest in EMV compliance as one of the necessary protocols to put in place to guard against fraud.
What History Tells Us
Introduce a new wrinkle into the payments process to make it safer and it’s a sure bet that in a matter of time, thieves will figure out how to change their behavior to maintain their income. Such has been the case with EMV in its UK rollout. Chip-and-PIN implementation in the UK gained traction in 2004 and within two years had reached near full migration. At the end of August 2006, 99.8 percent of chip transactions were PIN-verified.
Tracked over a ten-year period from 2004 to 2014, card-not-present (CNP) fraud soared in the UK as sophisticated thieves were forced to replace their traditional domestic counterfeiting and card-present fraud activities. If past history is any indication, a similar rise in CNP fraud should be expected in the U.S. over the coming years; taken together with an ongoing growth in eCommerce transactions, it would appear that a perfect storm is shaping up to hit the payments industry in the U.S.
And it’s not just about CNP fraud. We also saw other fraud behavior here in the UK in the post EMV environment. In some cases, domestic fraudsters who didn’t target CNP fraud or engage in cross-border fraud moved instead to account takeover and online banking fraud to get access to genuine cards, enabling them to continue with their domestic spending sprees.
Not Just a Brick and Mortar Issue
EMV isn’t just a mandate which impacts the issuance of plastic cards and in-store point-of-sale systems. Although online retailers have always assumed liability for transactions given the lack of physical touchpoints, their potential for loss gets larger with EMV when the fraudsters switch tactics now that physical stores have stronger fraud prevention systems in place at the in-store terminal level. Pure play eCommerce merchants (or E-tailers) have as much to lose if not more, given the fact that all of their business comes from the CNP channel.
Smart Merchants Will Make the Safe Move
When it comes to EMV compliance and outmaneuvering data hackers and fraudsters, merchants are at the tip of the spear. They have to discern what the payment experience will be like in their stores and how they will engage customers who are frustrated by the new payment experience. Merchants will bear the brunt of customer frustration, confused employees and eager thieves. Non EMV-compliant merchants will also shoulder the liability that used to fall to payment processors and issuing banks for fraudulent transactions.
In the unending effort to stay a step ahead of fraudsters, EMV compliance and CNP fraud detection and prevention are the safest and smartest moves a merchant can make. Are you ready?
This is the fourth post in a new series on EMV. Catch up on past posts below.
1. Peterson, T., Fishman, J. EMVelocity: Outlook for POS Reterminalization and Mobile Payments. Aite Group, January 2015.
Related Blog Posts
European Banks Have the Right Tools to Stay Ahead – But Will Big Tech Overtake?
Open banking and immediate payments have come a long way, according to the panellists who joined me during the ‘Open Banking in an Instant World’ session at EBAday in Stockholm recently. The building blocks are now falling into place through the introduction of national and regional schemes, open banking initiatives, regulations such as PSD2 and the acceptance and use of APIs.
Checkout Optimization Challenges: Top Tips for Online Merchants
As the current conference season draws to a close, it’s time to reflect on one of the key topics topping the agenda for many online merchants: checkout optimization.
How Banks and Acquirers Can Deliver on the Benefits of PSD2 SCA Exemptions and Differentiate Their Merchant Services
PSD2 is an opportunity for acquirers to differentiate themselves by delivering improved services to their merchants, if they implement modern solutions to manage SCA exemptions. This will drive the best customer experience in combination with regulatory compliance.
How UPI is Driving India's Shift from Cash to Digital Payments
The Indian economy has traditionally been heavily dominated by cash, while experiencing low adoption of various online payment systems including National Electronic Funds Transfer (NEFT), Real Time Gross Settlement (RTGS) and inter-bank mobile payments. The dominance of cash is evidenced by the ratio of cash withdrawals at ATMs vs debit card usage at Point of Sale (POS)—ATM transaction volume is more than 2x greater than POS.
Cooperation, Consultation and Collaboration Are the Keys to Countering CNP Fraud in Australia
As Europe, and other parts of the world ramp up for regulatory changes around PSD2, Australia is about to launch its own strategy to combat Card Not Present (CNP) fraud.
PSD2 and Strong Customer Authentication – What's in Store for Merchants?
With the final pieces of the Payment Services Directive (PSD2) puzzle coming together, payments businesses are highly focused on meeting their compliance obligations. But the forthcoming changes will affect everyone in the payments chain – and it’s important for merchants and PSPs to understand the practical implications for their businesses and customer relationships.
Transforming Telecom Companies in a Retail World
The recent MVNO World Congress in Amsterdam brought fascinating insights into the changing telecom industry, particularly around the opportunities that lie ahead for Mobile Virtual Network Operators (MVNOs) and how they can they can cement their position in today’s fast-paced climate.
Success Speaks: Surprising New Ways Students Want to Pay
Colleges and universities are facing the dual tasks of accommodating not only new payment methods, but also a new generation of students, Gen Z, whose expectations differ greatly from even millennials. How can higher education institutions meet these demands?
In our latest Success Speaks webinar, experts from Temple University, FutureCast, ACI and MTFX Group of Companies explored today’s payments landscape for colleges and universities, payment desires of Gen Z, innovations the higher education sector is already implementing and how schools can better assist with international payments.
Women Must Choose to Rise Up Despite Past, Current and Future Circumstances
Money20/20, Europe’s biggest payments and fintech event, was recently held in Amsterdam and featured Rise Up Money20/20, a global program designed to address the gender imbalance in leadership positions within the financial services and fintech industries. A cohort of 30 female professionals was selected to take part in an exclusive curated agenda, complete with a series of bespoke content sessions, one-to-one mentoring and unique networking opportunities.
Beyond Borders: Navigating the Challenges of eCommerce Expansion
eCommerce continues to flourish, with impressive growth figures year after year. In 2018, global online sales reached almost $3 trillion, and are expected to hit $4 trillion by the end of 2020.
Despite eCommerce taking an increasing slice of the retail pie (which could now be as high as 15 percent according to recent figures), it is increasingly challenging, with competition and cost pressures creating significant issues for merchants of all sizes.