Fraudsters Don’t Wait for Peak, So Neither Should You: 2019 Fraud Strategy Starts Now!
In existence for barely two decades, eCommerce has transformed not only the way we shop, but also how retailers plan and execute their marketing strategies around the peak shopping season. Now that we’re deep into this period, retailers will have prepared for changes in buyer behaviors, relaxed their strategies to be within the limits of manageable review rate, and most important of all, put strategies in place for increased fraud attempts.
Retailers have made commendable progress in the way they fight fraud, but the advancements and the sophistication in merchant fraud is still a major concern. According to Invesp, the eCommerce industry suffered an estimated revenue loss of USD $6.7 billion due to chargebacks in 2016, out of which 71% ($4.8b) was due to friendly/chargeback fraud. Whether it’s highly-polished friendly fraud, sophisticated account takeover or simple manipulation based on address and email, effectively fighting fraud during peak requires time and pre-planning - which I’ll addressing in detail in this post.
Merchants should remember that eCommerce fraud grows nearly twice as fast as sales. Fraud increased 30% in 2017 compared to 2016, while overall eCommerce volumes were up only 16%.
The fraud trend is also clear from our own internal benchmark data:
- In 2017, 1 in every 85 transactions was a fraud attempt
- In 2016, 1 in every 95 transactions was a fraud attempt
- In 2015, 1 in every 109 transactions was a fraud attempt
Factors determining peak season
While different merchants across different sectors (including retail, travel, gaming and telco) experience different spending patterns, KPIs and customer behaviors, one thing they all share is the importance of making the proper adjustments to their fraud strategy going into peak shopping season.
However, the adjustments they make can vary based on the KPI, or based on the model they follow. For instance, Merchant A may want a review rate (manually screening transactions/total number of transactions) below 2%, whereas for Merchant B a review rate anywhere below 5% would be acceptable. It may depend upon the additional staff they have, their volume anticipation, and their products. Many merchants follow a Pass/Fail model that makes it quick to action the orders, without the analyst team having to manually screen thousands of orders. Transactions are denied or accepted based on the strategic rules put in place. Creating diverse and customized rule strategies is essential for merchants when it comes to preparing for peak.
According to the National Retail Federation's (NRF) Consumer Holiday Spending Survey, U.S. celebrations extend from Valentine’s Day to Christmas — with milestones along the way including graduation, “back to school,” Mother’s Day, Father’s Day, Black Friday and Cyber Monday. In other words, ‘peak’ season may be at various times throughout the year for different merchants. For the merchants in the gaming sector, it could be a launch of hot new game. The following factors can help determine and influence the peak season for various industries:
- Location: The different countries in which a merchant’s business operates.
- Sector: The industry or the sector in which the vendor sells their products.
- Product offering: Range of products a merchant offers and how these merchants entice different age groups. For instance, the gaming sector may attract people across all age groups for a certain title, whereas an educational merchant may target a highly-specific age demographic.
- Seasonality: This plays a vital role, and may vary depending on the area. Planning goes into actions based on the trend and seasonality.
- Marketing strategies: Not only what a merchant sells, but how many people know about it. Marketing strategy creates awareness.
- Promotional events: Upcoming offers or sale events, and related inventory.
Crucial fraud strategy considerations before diving into peak
One of the steps that organizations must take when planning strategies for the peak season is deciding on whether to add additional staff to review orders, to rely more heavily on automated processes and tools to auto-decision orders, or utilize third-party vendors for manual reviews.
Though manual reviews may potentially be more accurate, the time and money spent on them is very high compared to that of automated jobs. It may take an analyst several hours to perform manual reviews, whereas the same tasks can be automated and performed in seconds. It goes without saying that automated jobs are faster, more efficient and cheaper than hiring additional resources, yet one shouldn’t ignore that the strategies created for the jobs must be well sorted and created in advance to avoid last minute hassles.
Peak season is not only about decisioning orders or maintaining the review rate when transaction volumes start to spike; every organization needs to ensure that certain checks are performed well before peak begins. Here are some of the parameters that should be considered, in some cases many months before peak season:
- System capabilities for increased traffic: During peak processing, volumes are expected to spike. It is imperative that the system (hardware and software) functions as anticipated. For instance, in India, during a big online sale event in 2016, a renowned retailer experienced a surge of eCommerce traffic on its biggest day for online sales. The unprecedented influx of visitors on the website was a wonderful opportunity to build customer faith, but instead led to a less-than-stellar shopping experience. Ensuring the services are working properly – through testing – is a key factor.
- Learning from the past mistakes: Going back retrospectively and determining what worked during prior peak period (versus what didn’t), ensuring steps are taken to overcome previous shortcoming and then taking appropriate actions.
- Keeping an eye on traffic and customer behavior: Proactively monitoring incoming traffic to identify changes in consumer behaviors is essential, and strategies should be tweaked accordingly.
- Prepare for fraudsters: It is important to understand that major sales events will not only lead to an increase in sales conversion, but also the fraud attempts that come along with it.
- Focus on specific products and targeted strategies around high fraud areas: Making a list of high fraud products based on high dollar value or high resale, and creating strategies focused on mitigating risks.
Setting fraud strategies for success
This is an area which requires the utmost care and foresight, as fraudsters are getting more professional, organized and persistent.
When planning to fight fraud it’s crucial to take into consideration these factors:
- Maintaining positive/negative lists: One of the foremost strategies should be creating a negative list to outright deny consumers that have been associated with multiple fraudulent chargebacks in the past. To avoid consumer insults, equal priority should be given to create a positive list to bypass consumers with good history.
- Positive profiling: This is about looking at certain data fields like email, phone and card; analyzing them to determine the spending patterns of the user, and creating profiles based on behaviors, time on file, and other attributes associated with a good consumer. The feature, when utilized efficiently, greatly helps to capture fraud and minimize disruption and potential insult to consumers. The difference between profiling and positive/negative list is that a list is created in a database, which needs to be manually updated from time to time, whereas positive profiling is a feature that once enabled generates history and updates itself.
- Combining distinctive features: There are a lot of distinctive features that are best utilized when combined with other features, rather than used individually. For instance, AVS response alone would not be a good basis for decisioning orders; however, when it is combined with the field values like CVV, or bill shipping address match, it is a much stronger field. Similarly, features like address manipulation and email manipulation are the features where fraudsters make slight changes to the field values so they can place multiple orders. By creating manipulation strategies, combined with features like IP geolocation, device ID further augments these strategies.
It goes without saying that these strategies vary widely depending on industry. In the travel industry, for example, the most important feature would be to calculate the distance from where the ticket is booked. If a concert is in New Jersey and the person booking it is from Los Angeles (on the same day as the event), there is a high likelihood this could end up being fraudulent. Similarly, for virtual gift card, it is important to ensure elements such as email address both for sender as well as the recipient, the history associated around both email domains, gift message, as well as the dollar amount.
All in all, based on the industry and data analysis, utilizing different elements and technologies such as IP geolocation, positive profiling, lists maintenance, device intelligence, 3D Secure, biometric analysis, manipulation strategies, AVS, IP, and device ID are imperative to ensure that customer friction is minimized.
After peak is before peak
Planning for the next peak season starts now. Fraudsters are becoming more educated on fraud prevention models and fraud attempts are becoming more sophisticated. Fraudsters look forward to peak season just as merchants do. Without proper preparation, and without the right tools in place, fraudsters can more easily disguise their activity on peak days – so merchants need to ensure that they take all the necessary precautions to ensure that they are ready for peak. Having a robust fraud solution in place to help ensure customer satisfaction, minimize customer friction, reduce fraud losses, and increase good sales is essential.
Merchants must opt for enhanced and streamlined fraud detection and prevention technology to stop peak season fraud. A multi-layered approach is one of the best ways merchants can be prepared to resist fraud attacks.
Can you tell good customers from fraudsters? Register for our webinar "The Power of Positive Profiling" on Tuesday, February 12, 2019 to find out how to use consortium data intelligently in the fight against fraud.
Related Blog Posts
The Race to Real-Time Payments in Europe
Instant payments have quickly morphed into the new norm, and as individual European nations forge a real-time, digital-first payments environment, they raise the bar for all financial institutions conducting business in the Eurozone. It’s no longer a question of “what’s the business case?” but a matter of how instant payments players can take advantage of the opportunities now being created.
Local Perspectives: Real-Time Realities Across Asia-Pacific in 2019
Money20/20 Asia returns to Singapore this week, attracting payments professionals from around the vast APAC region – and beyond. The real-time and open imperative is one of the reasons why all eyes are on Asia-Pacific when it comes to payments, so I caught up with ACI payments experts representing three of the key countries within the region, to take the pulse of real-time schemes that are in varying stages of maturity.
Instant and Open Payments for Consumer Purchases – Lessons Learned From India and Beyond
Did you know that 65% of merchants want to accept instant payments? That’s because they know the customer experience (CX) benefits will drive growth for their business, and they recognize that this payment type will save their business money.
What it Means for a Bank to be Real-Time Ready – It’s More Than Just Payments
Banks are quickly learning that real-time enablement of the business is more than just a technological upgrade – there is a wider challenge of transforming services and customer experience. Although the banking world faces this challenge with some trepidation, there are success stories from other industries that have overcome legacy technologies and transformed frustrating and opaque customer experiences.
Putting Malaysia on the Path to Payments Innovation
The public launch of the DuitNow instant credit transfer service, in December 2018, provides just a taste of what lies ahead as Malaysia’s Real-time Retail Payments Platform (RPP) is progressively rolled out. Fueled by Bank Negara’s (BNM) increasing support for e-payment platform development, there has been a steady increase in mobile wallet and digital payment usage, setting the stage for 2019 to be a year of transformation for the payments industry in Malaysia.
The Potential of 'Request to Pay' to Revolutionize Payments
How often have you been in a situation where you realize in the middle of the month that you’re late paying an important bill? And then hit with a wave of dread as you check your bank account with trepidation to see if you can pay? Many of us are lucky to not be in that situation regularly, but most of us have been there at some point, and likely know others who are regularly confronted by this situation.
Monetizing Real Time and Open Payments A Global View from Leading Banks
Payments experts from Bank of Montreal, Lloyds Bank and Rabobank lead a discussion on #NewPayments use cases.
During Sibos 2018, I was lucky enough to moderate a panel of payments experts from around the globe, including banking leaders representing three key phases of the real-time evolution; early adoption, go-live and ‘wave 2.’ Here, I’d like to share insights from these experts, outlining the challenges and rewards for banks in the new real-time and open payments ecosystem.
All I Want For Christmas (Or Any Holiday) Is… Instant Payments Gratification
Mark, some of us are fast approaching the end of the holiday shopping season, some of us are fast approaching that time of year when we consume too much egg nog, and some of us are fast approaching too many viewings of Die Hard or It’s a Wonderful Life or Love Actually or Christmas in Connecticut (I’ve disclosed too much about myself). To segue slightly more than slightly, I was at Target over the weekend, braving the holiday shopping crowds, to buy toilet paper, paper towels and tissues… and I took advantage of the 5% off that I get from using my Red Card. I surveyed the throngs of other consumers in the nearby checkout lines and not once did I see another store card. During this, the biggest shopping season of the year, why wouldn’t consumers use loyalty/rewards cards when making purchases?
Instant Payments in Italy – And Beyond: Lessons from Il Salone dei Pagamenti
ACI was invited back to Il Salone dei Pagamenti – Italy’s premier payments event organized by the Italian Banking Association (ABI) – to participate in a panel, “SEPA Inst – the Future.” As expected, the session was packed with stats and advice for a more efficient roll out of instant payments – in Italy and beyond.
Request for Pay – What Does It Mean For Financial Institutions?
What do banks – one with $60B+ in assets, one a mid-size regional bank, and one, a small innovative credit union – have in common with payment networks and the ‘Big 4’ consulting firms? They were all part of the first ACI #PaymentsForBreakfast event in North America! The theme was real-time payments, but the focus was more specifically on Request for Pay.