‘Tis the season for fraud: How businesses can stay secure during the holidays
2023-11-15 03:29:8 Author: securityboulevard.com(查看原文) 阅读量:8 收藏

As the holiday shopping season ramps up, risk teams should prepare for transaction volumes and fraud rates to skyrocket.

Although many consumers are still facing sticker shock as the price of goods and interest rates remain high, the economy is holding strong and inflation has slowed—spelling good news for merchants heading into the busy holiday season. Holiday shopping is expected to finally surpass pre-pandemic figures, with consumers spending more overall, but on fewer purchases. 

This means more competition for customers attention, costlier chargebacks, and higher stakes. In order to ensure a profitable holiday season, businesses need to consider both how they’re keeping their sites secure from heightened fraudulent activity and how they’re enabling seamless customer experiences from login to transaction to checkout. 

In this blog, we’ll cover practical strategies to prevent fraud during the holiday rush—without adding friction to the customer experience and driving up false declines. 

How businesses can stay secure during the holidays

Top holiday shopping trends this year

If you’re a merchant that’s been in business through the holidays, you’re no stranger to the flurry of seasonal spending, but there are some specific trends unique to this year that you should be prepared to plan around.

DevOps Unbound Podcast

  • Consumers will be pickier with their purchases, but willing to spend more. Consumers plan to offset higher prices by buying one fewer gift on average, but will continue to splurge on themselves. Globally, e-commerce transactions are forecast to increase 14% during the holiday season. Consumers are expected to spend an average of $1,650 on gifts and self-indulgences over the course of the holiday shopping season—up more than $150 from 2022.
  • Holiday shopping starts earlier every year. Every year, it feels like holiday deals creep up earlier and earlier in the season—long before traditional Black Friday and Cyber Monday events post-Thanksgiving. And although some consumers may balk at holiday deals advertised before Halloween, it’s becoming the new norm, with 41% planning to start shopping by the end of October to get a head start on the holiday rush. However, last minute shopping will still remain popular, with nearly 40% waiting until November and 20% holding off until December. For merchants, this means a longer holiday shopping—and fraud season—to manage. 
  • Businesses are cracking down on return policies. During the pandemic, many businesses adjusted their return policies to be more lenient in order to accommodate the influx of online orders and attract customers. Now, many are planning to tighten the reins again, as the cost of returns skyrocket for businesses, particularly those in the physical goods space dealing with the expenses of shipping. During the 2022 holiday season, the return rates reached 16%, resulting in millions in lost revenue. For every $100 in returned merchandise, retailers lost $10.40. With 88% of global retailers planning to make their return policies stricter this year, it’s an opportunity for merchants to attract more business by offering more flexible returns.
  • Alternative payments remain popular options. Nearly nine in ten (89%) consumers were using digital payments in 2022, with 62% using multiple modes, according to McKinsey. As consumer behavior shifts demand for alternative payment methods (APMs), such as buy now, pay later (BNPL), new payment service providers (PSPs), ACH, crypto, and digital wallets, grows, with volumes reaching $19 trillion in 2022. Buy now, pay later (BNPL) transactions in particular are expected to triple as consumers look to stretch their money. To stay competitive with other merchants and keep up with consumer demand, businesses should prioritize an inclusive range of payment options.

Five surging fraud vectors to prepare for this holiday season

During the holiday rush, fraud teams will likely see similar types of fraud as throughout the rest of the year, but on a larger scale. There are many forms of fraud that surge during the holidays, including: 

  1. Chargebacks and first-party fraud: Fraud attempts are expected to grow to 3% of all transactions, with first-party fraud making up 20% of all fraud threats. More consumers participate in first-party fraud during the holidays, especially if they feel financially strapped. Due to the card-not-present dispute process being more favorable to consumers over merchants, this can mean multi-level losses for many merchants, costing the price of the product, chargeback fees, and operational costs.
  1. Account takeovers: Experts predict billions in fraud losses by the end of 2023, with over $635B related to account takeover (ATO). Across the Sift global network, ATO attacks jumped a staggering 354% year-over-year in Q2 2023, and are expected to be a major concern during the busy holiday season. Leaving ATO unchecked can cause even more problems, including future customer churn and revenue loss. Over three-quarters (76%) of consumers would permanently stop shopping with a brand if they became a victim of ATO on that company’s site or app.
  1. Reseller abuse: Fraudsters frequently target limited stock and high-demand items during the holidays and sell them on secondary marketplaces for a profit. Viral TikTok videos are one major driver of these popularly trending items, including anything from shower head filters to cat treats. Cybercriminals may purchase large quantities of these items with the intent of reselling them for triple the price. This creates a negative brand experience for consumers, who are likely to be frustrated with highly sought after items being out of stock—and more susceptible to fraudulent offers or off-platform purchases.
  1. Alternate payment fraud: Providing additional payment methods means businesses must uplevel their fraud prevention capabilities to keep up with evolving fraud. Because these are new technologies, fraudsters are especially narrowed in on cracking any potential vulnerabilities. There’s evidence that fintech and alternative payments are being targeted with advanced and automated fraud schemes. Sift network data shows that attempted payment fraud in fintech jumped 13% in 2022, with BNPL struggling against a 211% increase, and crypto exchanges seeing a 45% surge. 
  1. Gift card fraud: Gift cards are already a prime target for social engineering scams, and the holidays are the busiest season for these prepaid cards. The FTC found that gift cards are the #1 payment method of choice for scammers, resulting in a reported $148 million stolen from consumers. Gift card scams are popular among fraudsters because they lack proper security features, and many consumers don’t spend the funds right away—extending the window for potential fraudulent activity. With more businesses offering gift cards as purchase rewards and as reimbursement for returned items, tracking fraudulent funds becomes even more complex. 

Ensuring your business is secure for the busy holiday season

Navigating transaction surges and anomalous behavior can make the holidays a stressful time for risk teams. Here are a few tips to help secure your business from fraudulent activity and feel confident going into the holiday shopping season. 

  • Automate risk management with workflows. Given the surge in transaction volumes, it can be difficult for risk teams to keep up with manual reviews. Many merchants lower risk thresholds to capitalize on the flood of transaction volumes, but this can make it easier for fraudsters to get through undetected. Businesses should be strategic about the adjustments they make to thresholds, depending on their risk tolerance and resources for manual review. By leveraging machine learning and automation, analysts can accurately detect anomalies in real time. And with Sift Workflows, risk teams can automatically block known fraud and improve the acceptance rate for trusted customers. 
  • Proactively shut down account takeovers. Maintaining trust with customers can be as difficult as building trust. Businesses can build better customer relationships with automatic security notifications within Sift. Risk teams can verify credentials and protect users from ATO without blocking trustworthy logins by configuring and triggering security notifications directly from the Sift Console. This is designed to ensure user trust by notifying them of any suspicious login activity, and proving that your business is committed to keeping their account safe. 
  • Prioritize offering top-notch  customer service. Many merchants are providing customers with incentives to shop with them, such as extending discounts and offering longer return windows. By focusing on how to optimize the customer experience, businesses can avoid future returns and chargebacks that will ultimately lead to greater losses.
  • Managing fraud analyst workloads and maximizing review efficiency. It’s common for risk teams of every size to become buried in manual review during the holidays. By setting up automation thresholds for blocking and accepting orders, teams can better enable smoother transactions for trusted users and flag suspicious behavior for review or automatically block known fraud. 
  • Create a clear path for escalations during busy periods. Merchants should have a strategy in place for risk thresholds and how to respond in the event of a large-scale fraud attack. Implementing a clear plan of action across departments can help speed up escalations and prevent potential losses. Businesses should also evaluate their security weaknesses before code freezes go into effect, allowing for any necessary changes to be built into the roadmap. 
  • Prepare for chargeback season now. The 2–3 months of the new year is known as chargeback season, following the holiday rush. Merchants can reduce the number of chargebacks they face in the new year by having clear cancellation and return policies in place for the holidays. The Visa CE3.0 compelling evidence update will also help merchants better defend against first-party misuse. 

Get more holiday fraud tips during our webinar with Everlane

For more insights on preventing holiday shopping fraud and preparing for the chargeback season, don’t miss our webinar with the Merchant Risk Council (MRC) on December 6, 2023. I will be co-presenting along with Sift customer TJ Stein, Customer Experience and Operations Leader at Everlane. Register now!

The post ‘Tis the season for fraud: How businesses can stay secure during the holidays appeared first on Sift Blog.

*** This is a Security Bloggers Network syndicated blog from Sift Blog authored by Rebecca Alter. Read the original post at: https://blog.sift.com/tis-the-season-for-fraud-how-businesses-can-stay-secure-during-the-holidays/?utm_source=rss&utm_medium=rss&utm_campaign=tis-the-season-for-fraud-how-businesses-can-stay-secure-during-the-holidays


文章来源: https://securityboulevard.com/2023/11/tis-the-season-for-fraud-how-businesses-can-stay-secure-during-the-holidays/
如有侵权请联系:admin#unsafe.sh