Identifying potential fraud
There are external indicators that indicate a payment might be fraud, such as Early Fraud Warnings, but fraud activity also has many implicit indicators that by themselves don’t unambiguously signal fraud. However, the existence of several of these indicators at the same time can more clearly suggest a payment is fraudulent.
Common types of fraud indicators
There are many types of fraud indicators, some of which are easy to identify such as false numbers or email addresses, other types may be more intuitive and nuanced, such as a conversation with a customer that seems off. Having an understanding of the various ways fraudsters use false information to make fraudulent transactions will better help you to protect against them. Some of the most common types of fraud indicators are:
●Use of likely false information (for example, fake phone numbers and email addresses like asdkf12495@freemail.example.com).
●Inconsistencies in customer details across multiple purchases (for example, using the same e-mail address but a different name for another payment).
●Communication that doesn’t sounds quite right. Fraudsters often use a canned response that is sent to multiple sellers using common phrases. If any communication appears scripted, use a search engine (putting the short phrase in quotes) to see if it’s been used elsewhere (for example, this particular phrase has been used many times).
●Unusually large orders (for example, multiples of the same item, only your most expensive merchandise, expensive items or total order amount that seems inconsistent with normal customer behavior).
●Many payments (including those that have been declined) made with:
▪The same card but different shipping addresses.
▪Many cards that use the same shipping address.
▪The same card from the same IP address.
▪The same customer name/email address.
▪If each failed attempt is associated with a different credit card, any successful payment carries a much greater risk for fraud.
▪Similar or the same card numbers, especially over a short duration and for smaller amount. This is especially true for crowdfunding/fundraising sites.
●Any requests to:
▪Split a large order into multiple payments across different cards that don’t share the same verified billing address information.
▪Process a payment manually, either through the Dashboard or your store. Fraudsters may make this request in order to have the charge run with your local IP address instead of their own.
▪Charge a card more than the required amount (known as an “overcharge”) and pay out a third-party (for example, driver, shipper or freight company) using a different payment method (for example, cash, money order).
▪Charge a card and then provide a refund outside the card network (for example, check, wire transfer).
Declined payments can provide valuable information and should also be regularly reviewed.
Shipping physical goods
Fraudsters can take advantage of various shipping methods to steal physical goods. When shipping products be sure to:
●Check whether the shipping and billing addresses match. Although a difference in address by itself doesn’t indicate fraud (for example, the customer might have purchased a gift), it indicates that the charge should be looked at more carefully. If the addresses do match and the customer is using a credit card from the US, Canada, or UK, check to see if the postal code and street address verifications passed.
●Watch for customers who ask to change the shipping address after the order is placed. Fraudsters may use a legitimate address to obtain a successful charge but later ask that products be shipped elsewhere.
●Evaluate rush orders or requests for overnight delivery (which would allow fraudsters to take advantage of timing).
●Review the credit card’s country of origin (the country in which it was issued) in a charge’s payment detail in the Uqpay Dashboard. The billing address provided should match this country. Where the shipping country that doesn’t match the card’s origin or is a country typically not shipped to, it’s important to take extra steps to verify the legitimacy of the charge.
●Ensure that shipping methods are appropriate, especially for overnight shipping at a high cost. People using stolen credit cards don’t usually worry about how expensive the shipping is and want goods right away, before the card number is reported as stolen or compromised. Never agree to use a customer’s “preferred shipper” or agree to pay a third party shipping company on your customer’s behalf; these are usually a second front for fraud.
●Consider instituting a 24-48 hour shipping delay for high-value orders or shipments to non-verified addresses or first-time customers.
●If you have a verified billing postal code, make sure the shipping label generated by your shipper displays this postal code after you enter the address. Some fraudsters provide a valid billing postal code, but the rest of the address (street, city, and state) is fraudulent, and automated systems such as USPS self-service often autocorrect the postal code you enter—effectively changing it from the verified billing postal code to the fraudster’s.
●Use of international cards or orders with international shipping addresses.
●Be aware of high-risk shipping destinations.
●Take extra care when shipping to a freight forwarder.
Digital goods or services
Customers that misuse digital goods or services are more likely to be using stolen credit cards. It is very important to collect and verify as many card details as possible, including CVC, street address, and postal code. Consider rejecting charges that fail the CVC and postal code checks. As a general rule when selling digital goods or services, be sure to:
●Be aware of customers sending spam using a product for messaging or making many purchases in a short period of time for downloadable content or “in-game” items.
●Watch for multiple accounts using similar email addresses or the same credit card. You can include this in your review queue through a review rule.
●Watch for multiple charges to the same email address in rapid succession. You can include this in your review queue through a review rule.
●Watch for unexpected or significant changes in account activity. If the purchase frequency or dollar amount of payments for an account increases significantly, it may be an indication of fraudulent activity.
●View evidence about the payments, including IP address, email logs, usage logs (that is, did they log in and actually use the service?), and so on. Pass this information to us, so that you can view it as you review a charge.
Protect yourself from card testing
Monitor your declined payments. Many of them that used different cards in rapid succession indicate a fraudster is testing stolen card numbers. If it does look like someone is testing cards on your website, consider adding a delay or implementing a CAPTCHA during checkout to slow them down. This usually encourages a card tester to move on.
Be clear and transparent with your customers
●Require ToS Agreement
●Show complete policy
●Track shipping
●Use clear statement descriptors
●Separate your business accounts
Consider proactively refunding suspicious payments
You should immediately refund any payment you’re sure is fraud (unless you’re covered by some form of liability shift, as with 3D Secure). If you know you’re going to receive a fraud dispute on it, you can save yourself the dispute fee, the increase to your dispute rate, and the potential loss of product by fully refunding the fraudulent payment.
Tips:While fully refunded payments can’t be disputed by the customer, partially refunded payments still can be. Card network rules even allow for a payment that has been partially refunded to be disputed for the full payment amount.
Comments
0 comments
Please sign in to leave a comment.