VeriSign Survey Finds Nearly Ten Times as Many Consumers Feel Trust Is More Important Than Cost When Transacting Online
Even in Trying Times, Consumers Seek Safety Over Savings; Eighty Five Percent of Consumers Said Trusting a Site Is Most Important When Transacting Online
MOUNTAIN VIEW, CA--(Marketwire - December 11, 2008) - The findings of a recent consumer survey conducted by Synovate and commissioned by VeriSign (NASDAQ: VRSN), the trusted provider of Internet infrastructure services for the networked world, suggest that consumers may be willing to forgo gimmicks and spend a little more online if they know their identities are protected. The survey results reveal that 85 percent of consumers state that trusting the site is most important when interacting on a Web site and sharing confidential information. In contrast, nine percent said competitive pricing was most important and five percent said ease of use was most important. Additionally, 93 percent of respondents said they would stop transacting on a site that's not secure.
Findings also concluded that 76 percent of consumers claimed that identity theft is a "major" concern for them. When asked how they felt about brands that did not protect their online identity, 56 percent felt "distrustful," 17 percent felt "disappointed," 13 percent felt "betrayed," six percent felt "indifferent," and four percent felt "let down." Finally, one in five engage in fewer online activities due to security concerns.
The survey uncovered other key findings on how consumers protect their identities today when conducting transactions online:
-- 86 percent use a simple user name and password to enter accounts
-- 62 percent look for the lock icon in the address bar
-- 55 percent look for a logo or seal from the firm providing Internet security
-- 52 percent look for https:// in the address bar
-- 26 percent look for a green address bar
When asked how much savings they'd expect before considering shopping on an unprotected site, one in three consumers said they would expect at least a 30 percent discount. This finding suggests that businesses that don't provide security measures to gain consumer trust cannot anticipate getting the same value for their goods.
"The best security for consumers is education and using the latest tools and technologies that are out there to help counter fraud," said Craig Spiezle, chairman and founder of the Authentication and Online Trust Alliance (AOTA). "As we move more and more of our lives online -- for example, banking, shopping, paying bills, communicating, registering, renewing, etc. -- fraud threats follow closely behind. The key is to keep one step ahead by knowing how to protect yourself online, embracing best practices and using the latest technologies. Today more than ever users need to update their browsers with integrated security and privacy features to help stay ahead of the criminals."
About the Survey
The survey, which polled 919 U.S. adults 18+ who spend at least three non-work hours per week online, explores the degree to which consumers are concerned about online security, seeks to understand the role that security plays in consumer perceptions of online brands, and gauges consumers' interest and familiarity with authentication services on the market today.
Results of the tenth annual CyberSource Corporation survey of eCommerce fraud, released today, show merchants expect to lose a record $4 billion to online fraud in 2008. All the news today is pointing towards how pragmatic it would be to bring PIN based transactions online.
Fraudsters Filch $4 Billion Online in 2008
Record fraud losses for U.S. eCommerce; 10th annual CyberSource survey shows merchants shift priorities in down economy
They go on to report on the key take-aways from this year's survey which included:
Projected dollar losses to U.S. eCommerce will hit a record $4 billion in 2008 (up from $3.7 billion in 2007).
Merchants expect to lose 1.4% of their online revenue to fraud--this rate has held constant for the last 3 years.
This year merchants accepted a higher percentage of orders--working more aggressively to boost top line sales.
Though eCommerce sales are still increasing, 87% of merchants say they must fight fraud with the same or less staff in 2009.
Merchants showed a dramatically increased interest in more sophisticated automation tools.
Contrary to popular view, eCommerce is hardly hands-off. For each of the past 6 years, approximately 1 out of 4 online orders have been manually reviewed.
International orders continue to have over 3 times the fraud risk of orders from the U.S. and Canada.
The graphic on the left suggests that a paradigm shift is occurring when it comes to where US Internet users choose to shop. Retail or e-tail. See: "Paradigm Shift - Retails 70%-22% Lead Evaporates."
To further underscore this viewpoint, new numbers from Goldman Sachs indicate that e-tail sales volume packs a mean punch as it has left a huge dent in chain store sales compared to the same period last year.
Apply the numbers released Monday from comScore and it translates as follows:
Online sales volume growth enjoys 22.5 times the growth rate of sales at comparative chain stores.
That sounds like some heavy shifting. Here's further e-vidence, as reported by Internet Retailer: Sales at chain stores last week were virtually unchanged from the corresponding week a year ago, rising a minuscule 0.4%, reports the Goldman Sachs weekly sales index.
By contrast, online sales last week were up 9% over the same week a year earlier,comScore Inc. reported Monday.
For the week that included the Friday after Thanksgiving, the traditional start of the holiday shopping season, sales were up 1.3% over the year-earlier week. Sales fell 0.8% from Thanksgiving week to the following week, according to the Shopping Center Council/Goldman Sachs index.
The tough economic and retail environment, which continued into early December, is likely to dominate the full month`s sales performance as well, says 'Michael P. Niemira, the shopping center council's chief economist. Given this, ICSC Research expects monthly comparable-store sales will be flat to up 1% for December with late holiday shopping driving the month`s overall performance.
After reading articles like this, which basically state what everyone already knows... signature debit is much less secure than PIN debit, I wrestle with the idea that there must be forces in play who want to keep online debit (PIN debit) offline... It makes absolutely no sense.
Think about it...offline debit for online shopping is oxymoronic. "Online debit for Online shopping" is about as pragmatic as it gets.
Again, PIN debit is preferred by merchants and consumers alike, and, because it's more secure, interchange fees are 50% lower. Combine those facts with the global movement against Visa/MC to lower interchange and "online debit" for "online shopping" appears to be a no-brainer. Obviously, Avivah Litan is correct in her analysis that it all comes down to the fact that the forces that be, want the fees they derive from pushing (and rewarding the use of) a less secure "signature" product. It's nuts to me. Why fight high interchange when you can switch to PIN Debit and cut interchange in half? Are retailers, thus their online counterparts fighting the wrong fight?
VISA Australia plans to replace signatures with electronic identification for credit card transactions in an attempt to combat fraud.
The use of personal identification numbers (PINs) is part of a seven-pronged initiative to tighten the security of payment systems within the next five years, the company said.
In mid-year some merchants began accepting PINs as an alternative authorization method.
According to Chris Clark, Visa Australia general manager, the introduction of PIN as the cardholder verification method will add another layer of security for card present transactions.In addition, all online merchants in Australia will be required to check the three-digit security code on the back of the card, Visa said.
Data security protection for merchants processing less than 20,000 Visa e-commerce transactions annually will also be strengthened. Visa will also ensure all automated teller machines are chip-enabled and activated by 2013.
"The initiatives planned for the next five years will help to combat further all types of fraud and make the system quicker and easier to use," Mr Clark said."While these initiatives are being implemented, consumers can continue to use the system, as they have done for years, with confidence."
He said the introduction of PIN as the cardholder verification method will add another layer of security for card present transactions.
Editor's Note: Thus, also introducing it for "card not present" transactions, (for which there's exponentially more fraud) also seems to be nothing short of simply a pragmatic move.
Visa plans to have discussions with the financial and merchant communities to set deadlines for the implementation of its security initiatives. According to the Australian Payments Clearing Association, fraud on locally issued credit cards jumped to $111.5 million last year, up from $85 million in 2006. Fraud involving credit cards used on the internet or in phone or mail transactions, known as card not present, hit $53.5 million, up from $32 million during the same period.
'Mega Monday' turned out to be just that for online retailers as consumers flocked to buy their Christmas presents.
With sales volumes up 18% to £320m it was the biggest online shopping day of the year so far. But it was not the busiest, according to electronic retail industry body IMRG.
Research from IMRG member Hitwise showed traffic to retail sites amounted to 12.32% of all UK online visits. That made Monday December 8 the third busiest day in the sector, despite the high sales volumes.
Analysts say this suggests consumers have been busy at weekends researching gifts both in stores and online before purchasing the items on the internet the day after.
James Roper CEO of IMRG said: "Online sales are holding up well, considering the economic conditions, with both volumes and values significantly higher than last year.
"The ratio of researching to buying is also much greater, and researching started earlier this year, as Christmas shoppers work hard to track down the best deals."
But Jon Prideaux of payments service provider SecureTrading said it was a day of mixed fortunes for traders.
"The averages conceal that a significant number of retailers are facing a bleak Christmas with sales below last year - for others it's a bonanza with sales up very sharply.
"It is the first time that anyone can really say that about the e-commerce space where things generally just seem to get better and better for everyone. This Christmas is sorting out the wheat from the chaff."
'Mega Monday' followed the busiest weekend of the year on the high street with retailers offering huge discounts.
An estimated 1.5 million people flocked to London's Oxford Street and Regent Street on Saturday after the area was closed to traffic for the day.
Obviously this is relevant to the blog as I've posted many times about skimming, but, in all honesty, there are underlying reasons for this post...not the least being that it gave me my first opportunity to post a picture of Jessica Alba... :)
LAS VEGAS – State and federal authorities said Tuesday they arrested nearly two dozen people, many with ties to Eastern Europe, in a credit card fraud and identity theft scheme that cost Las Vegas businesses and consumers about $1.5 million.
Greg Brower, U.S. attorney for Nevada, said 13 people were arrested on federal charges Monday in southern Nevada and Los Angeles. Las Vegas police said 10 were arrested on state charges, including forgery, credit card fraud and weapons and drug possession.
The arrests were the first for a Eurasian organized crime task force based in Las Vegas. The task force was formed two years ago in response to "the influx and influence and activity of Eurasian-based gang-type criminals" in southern Nevada, Brower said.
In five indictments unsealed Tuesday, prosecutors describe an operation using "skimming equipment" at restaurants, smoke shops and convenience stores to obtain credit card numbers and personal identification numbers. Cashiers involved in the scam would use the device, known as a "wedge," to scan the card and capture information in the magnetic strip. (not the Las Vegas strip) The information would then be used to create counterfeit credit cards, the indictment said.
Authorities said they were uncertain of the defendants' immigration statuses and could not name their nationalities. Authorities said no businesses were implicated in the scheme. More than 1,000 credit and debit cards were compromised. The indictments handed down last month accuse 13 people of charges including producing, using and trafficking counterfeit credit cards, identity theft and criminal forfeiture.
Pago Retail Report 2008 - published by Deutsche Card Services - reveals large-scale changes in purchasing and payment behavior
Women predominate in European online retail for the first time. 53.40% of all transactions were initiated by women, 46.60% by men.
This is the result revealed by the Pago Retail Report 2008, which was just published by Deutsche Card Services, a member of Deutsche Bank Group. In the preceding year men still had a lead of more than 11%. In contrast to other research, this report of "Purchasing and Payment Behaviour in Online Retail" is based on real-life purchase transactions and not on the analysis of polls and surveys. The Pago Retail Report is based on the evaluation of about 7.5 million retail purchase transactions processed through the Pago platform between October 2006 and September 2007. The data analysis of purchasing and payment behaviour and non-payment risk was supported by experts from the University of Karlsruhe.
Weekend has caught up in overall European retailing
German female online customers have increased their lead more than their counterparts in Europe as a whole. They dominate retail at a rate of 55% versus 45%. For comparison: Men lead in the UK (52% versus 48%) and the rest of Europe (64% versus 36%). There is also a gender imbalance in terms of the preferred days for online retail purchasing. Women prefer Wednesdays with 17.41% of their retail transactions while Mondays are men's favourite days (17.15%). This purchasing day has replaced Wednesday as number one in overall e-commerce. By the way, Saturdays are least attractive for both women and men, with a share of only 10% according to the Pago Retail Report 2008. Generally, however, the weekend has caught up in European retail. In fact, consumers buy more in German shops on Saturdays than on Fridays (13.37% versus 13.29% of all weekly transactions).
German consumers prefer working hours for online shopping
What is the favorite time of the day for shopping? German consumers accomplish most of their transactions (e.g. 59.74%) during working hours between 8am and 6pm - not only in retail but also in overall e-commerce. This figure beats its counterpart for overall e-commerce (53.10%), which also covers segments such as gambling (gambling and sport bets), services (telecommunications and internet) and travel & entertainment. In the UK the preference for office hours is even more obvious (64.48%). This was to be expected, as this period was also top in overall e-commerce according to the Pago Report 2008.
"Erika Mustermann vs. John Smith"
German consumers' purchasing behaviour in online shops considerably differs from UK consumers as the comparison of "the typical German" with "the typical Brit" demonstrates. For example, "Erika Mustermann" prefers ordering her new winter boots for about EUR 70 in a popular German online shop on a cold December Monday during her lunch time between noon and 2pm. Whereas "John Smith from Sheffield" searches an online shop for home entertainment on a Tuesday a few days before Christmas just between 2pm and 4pm and buys at least a portable music player for the equivalent of about EUR 135.
Dutch consumers surprisingly active in European retail
According to the Pago Retail Report 2008 Dutch people are most active in retail purchases as far as the rest of Europe is concerned, just behind German and UK consumers. They achieve a rate of 27.33% and rank ahead of the Austrian and French consumers, who are placed third in overall European e-commerce. A look at the infrastructural basis in the Netherlands shows that their good ranking is not astonishing: According to the ComScore analysis 2008, 82% of the Dutch aged above 15 are online - the highest proportion in all of Europe, 32.8% use DSL - the highest proportion all over the world. Pago Retail Report 2008 is extending the results of the Pago Report 2008 The Pago Retail Report 2008 differentiates between consumers from Germany, the UK, the rest of Europe and countries outside Europe. Due to Deutsche Card Services' licensing area the merchants come only from European countries. That is why the first interpretation of newer payment methods such as giropay and Maestro becomes even more obvious. They achieve remarkable rates outside of Germany. Only retail shops which offer certain goods and resemble traditional mail-order businesses are included into the evaluation. So the Pago Retail Report is extending the Pago Report 2008, which deals with the overall e-commerce and was published earlier in 2008.
The Pago Retail Report 2008 is available at a price of EUR 250 (plus VAT). For more information please visit www.ecommerce-report.de.
The Payment Card Industry (PCI) compliance regulation affects almost all merchants that accept credit and debit card payments, with the goal of securing cardholders against vulnerabilities to card data theft, misuse or loss. The driving forces behind PCI compliance policies are the major credit card payment processors -- Visa, MasterCard, American Express, Discover Card and JCB International -- which formed the PCI Security Standards Council to define how retailers should protect transactional data and monitor their data security performance.
Each PCI Council member has defined categories of merchants based on the number of transactions submitted per year, along with PCI audit and reporting requirements pertaining to each category. The precise definition of each category varies between the credit card companies, but we will use Visa's categories to illustrate the scale (MasterCard and American Express generally have lower thresholds for each category):
Tier 1: The highest volume merchants, which submit 6 million or more transactions per year.
Tier 2: Merchants that submit 1-6 million transactions per year.
Tier 3: Merchants that submit 20,000 to 1 million e-commerce transactions per year.
Level 4: Merchants submitting less than 20,000 e-commerce transactions per year, and all other merchants up to 1 million transactions per year
Rightfully, merchants submitting higher volumes of transactions face the most stringent PCI compliance standards and penalties, due to the risks associated with the quantity of data they possess. However, Visa reports that cardholder data is compromised more frequently among Level 4 merchants than by Tier 1, 2 and 3 combined -- small wonder, because 99% of the merchants that accept Visa cards are Level 4 merchants.
When we talk about PCI compliance, organizations are often misled by five common myths about becoming compliant with the Data Security Standard (DSS) as outlined by the Payment Card Industry (PCI). Here, we break some of these common myths related to the PCI DSS.
Myth 1: Varying degrees of compliance are required.
The most common misconception is that there are varying degrees of compliance required, depending upon a merchant’s particular level which is determined by their annual number of transactions. The reality is quite the opposite. All merchants, regardless of whether they are a Level 4 with less than 20,000 transactions per year, or a Level 1 merchant with over 6 Million transactions per year, are all ultimately required to be compliant with the PCI Data Security Standard, (PCI DSS) as established by the PCI Security Standards Council. However, it is true that the timing of when compliance is required can vary depending upon a particular merchant level. Regardless of the actual deadline for a merchant, the PCI DSS outlines a comprehensive set of requirements that are focused on the following areas:
• Build and maintain a secure network. • Protect cardholder data. • Maintain a Vulnerability Management Program. • Implement strong access control measures. • Regularly monitor and test networks. • Maintain an Information Security Policy.
Myth 2: Only Level 1 Merchants are targeted for attacks or security breaches.
According to Visa, “Large (Level 1) merchants and processor breaches account for the majority of compromised accounts, yet small (Level 4) merchants account for over 85 percent of compromise events.”
Myth 3: PCI Compliance is something that only the IT Department needs to worry about.
Requirement 12 states that an Information Security Policy must be maintained, which can impact every level and function within an organization.
Myth 4: All PCI Data needs to be retained.
Not all PCI data may need to be retained. All too often, access to sensitive credit card data is restricted within an organization, but the retention of that data is not well-defined based upon a true business need. Organizations routinely do restrict access, but still allow a few individuals complete access to all unencrypted PCI data, which opens a wide door for a security breach or potential for data theft.
Myth 5: Executives may view PCI Compliance as done after an annual audit or after the completion of the annual self-assessment questionnaire.
Adherence to the PCI DSS needs to be embraced as part of the ongoing monitoring processes within an organization. Organizations that acknowledge the fact that security must be incorporated into every process recognize that it’s much more than an annual exercise.
Once, NFC (Near Field Communication) was the leading contender among technologies that could enable mobile payments. But NFC has developed more slowly than anticipated, and will not offer viable large-scale mobile payment solutions for at least six years. In the mean time three existing technologies - SMS, mobile Internet and downloadable mobile applications - have the potential to deliver what NFC (so far) cannot.
"About half of all purchases made by consumers last year were made with cash," notes ABI Research senior analyst Mark Beccue. "Consumers would in many cases prefer cashless transactions when away from home. So around the world solutions providers have leveraged SMS, mobile Internet and downloadable mobile applications to enable mobile commerce and payments. ABI Research calculates the potential revenue in 2013 from mobile transactions using these methods at about $18 billion: a significant opportunity for payment processors."
A new ABI Research study examines the potential for mobile payments in four key vertical markets that will drive adoption: taxis, parking, movies, and Internet shopping. While the latter is usually done using credit cards anyway, the first three are areas in which mobile payments could replace cash transactions. The research found that Internet shopping would account for almost three quarters of this mobile commerce revenue in 2013. A further 15% would come from parking, with the balance split about evenly between taxi fares and movie tickets.
Beccue concludes, "Companies already seizing this mobile payment opportunity include parking solutions provider Verrus, Bharti Airtel and movie theater operators in India, and notably eBay and Amazon - the world's largest e-commerce merchants - which have enthusiastically embraced mobile transactions with very comprehensive offerings."
The new ABI Research study "Mobile Commerce and Payments" http://www.abiresearch.com/products/RR/MPAT examines several emerging markets in which consumers are or will be using their mobile devices to purchase goods or services using SMS and mobile Internet. I
t highlights important players within the space, suggests who should play and who will benefit, and outlines what MNOs, merchants, and financial services providers can do to take advantage of these opportunities.
ABI Research is a leading market research firm focused on the impact of emerging technologies on global consumer and business markets. Utilizing a unique blend of market intelligence, primary research, and expert assessment from its worldwide team of industry analysts, ABI Research assists hundreds of clients each year with their strategic growth initiatives.
For information, visit www.abiresearch.com , or call +1.516.624.2500.
Motorola, CIECC to Set Up M-Commerce Laboratory in China
Motorola has opened China's first M-Commerce Laboratory in Beijing by joining hands with China International Electronic Commerce Center (CIECC), an agency under China's Ministry of Commerce. The objective is to accelerate mobile commerce development in China.
The M-Commerce Laboratory, according to Motorola, is designed to bridge the gap among industry, government and academia to facilitate certain aspects in the M-Commerce environment such as research and commercialization of mobile applications, mobile payment and security, and enterprise mobile commerce application. By providing an environment to study, develop and promote projects in the mobile commerce domain, the laboratory can help to enhance end-to-end innovation capabilities, believes Motorola.
"M-Commerce will play an important role in China's economic growth, specifically when the country is focusing on driving domestic demand," said Liu Junsheng, general director of CIECC. "Our goal is to develop key enablers, nurture the M-Commerce practice and business environment, and provide services to help enterprises mobilize their business. The establishment of M-Commerce Laboratory will play a vital role in facilitating mobile commerce development in China."
The laboratory will create a platform for the industry players to communicate and cooperate with each other. In addition to regular workshops and forums, the laboratory will also help members to screen out and identify projects for further commercial operation, speeding up the transition process from theory to commercial applications with the help of industry experts and academic institutions.
These efforts, says Motorola, will not only cultivate the mobile commerce environments, but also create real business opportunities for all companies who want to leverage M-Commerce.
Boston, Dec. 9, 2008 -- With close to 800 million credit and debit cards in circulation at the end of 2007, Japan is one of the countries with the highest payment card penetration. Japanese residents on average have 6.2 credit or debit cards per person, higher than their peers in most card markets around the world including the United States where an average resident has 3.6 cards. However, the usage of these payment cards is quite low compared to their large numbers. An average Japanese resident spent just about $30 (US) on their credit and debit cards in 2007 while the number was close to $180 (US) in the US. As a result, Japan remains a cash-centric society and the payment market opportunities remain largely untapped by electronic payments.
The relatively low card usage in Japan can be attributed to a variety of factors, including but not limited to culture, industry infrastructure, card acceptance, and regulatory environment, among many others. For Japanese consumers, however, the reason could be as simple as that: it just doesn't provide enough value in terms of service quality, convenience, and flexibility for consumers to change their preference of cash.
As a result, despite credit card's relatively healthy growth in the past 5 years, it still has a long way to go in terms of becoming Japanese consumer's preferred payment method at POS. The industry has been undergoing a series of major restructuring and consolidation to adapt to changes in the market, competitive landscape and regulatory environment. As for debit cards, the market struggled in the past three years after the initial high-speed growth in the first several years after it was officially introduced in 2000.
However, the emergence of electronic money, namely payment cards and devices powered by a contactless chip, could bring a fundamental change to the way Japanese consumers make payments. Backed by prepaid card accounts as well as credit card accounts, e-Money services, have quickly become the most popular payment method at POS (besides cash of course, at least for now).
Terry Xie, Director of Mercator Advisory Group's International Advisory Service and principal analyst on the report, comments,"The e-Money services will be key to tomorrow's Japan payment card market. Its impact on the increasing use of prepaid cards are well known. But its implications are much more far-reaching than many have realized. For the first time in the history of Japan payment card market, electronic payment methods have become a really viable alternative to cash for payment at POS with its un-precedent level of convenience and flexibility. This will fundamentally change Japanese consumers' perception of electronic payments and its importance cannot be over-estimated. It is the critical market for not just prepaid cards but also credit and debit card industries in Japan. Especially for debit cards, unless the debit card industry figures out a way to get a piece of the fast growing e-Money market, their current struggles will continue."
The most recent report from Mercator's Credit Advisory Service provides an update of the Japan credit card market since 2002, which is the last year discussed in our previous Japan report. Key issues discussed in the report include market growth, profitability, changes in regulation, competitive landscape, recent restructuring, and consolidation activities, plus increasingly active international players. Key market stats, key strategic issues, and their implications on the overall market development are also discussed.
Highlights from this report include:
* Cash remains king in Japan, but this situation could change if Japan's payment card industry could find a way to offer the value proposition of cash replacements in different scenarios.
* Credit cards enjoy the highest usage rate among electronic payment products in Japan, but profit margins remain relatively thin despite high merchant fees. Japanese consumers have been using credit cards like charge cards, thus limiting the interest income potentials. Recent changes in consumer lending law do not help the cause.
* Debit card usage rates have remained low in Japan despite initial rapid growth immediately after the J-Debit scheme was introduced. Unless the industry could improve services and offer more convenience, it could face significant challenges going forward.
* E-Money emerged as the fastest growing market segment and its implications are far reaching. At the same time, there are critical issues that still need to be addressed.
* Restructuring and consolidation in the industry, and the increasing roles of non-bank and international players will significantly alter the competitive landscape in the Japanese payment card industry.
Merchant Risk Council Unveils Agenda for 2009 e-Commerce Conference
(Seattle, WA—December 9, 2008) The Merchant Risk Council (MRC) is pleased to announce the agenda for its 7th Annual e-Commerce Payments and Risk Conference at the Wynn Las Vegas Resort on March 10-12, 2009. The conference unites the world’s top multi-channel and Internet merchants, alternative payment providers, credit card companies, risk management providers, law enforcement agencies and various consultants and educators.
The primary themes of the 2009 conference are: Fighting New Patterns of Fraud and Cybercrime; Emerging Risk Management Trends; and Global Online Payment Strategies.
“We have assembled an all-star group of speakers and the most comprehensive agenda in addressing the pressing concerns for online merchants,” said MRC Board Chairman, Tom Sullivan, Expedia, Inc. “This conference lineup expands well beyond the traditional topics of fraud and lost revenue.” Sullivan adds, “As the issues of global electronic commerce are becoming more complex, the MRC Annual Conference is evolving to address these emerging issues.”
The general conference, sponsored by Chase Paymentech, contains 26 unique sessions, including:
- A Community-based Approach to Fraud Management
- Criminal Diversification: A Look at the Emerging Strategies of Cybercrime
- Geolocation as a Risk Management Tool
- Global Risk Management Trends and Solutions
- Internet Bank Payments Coming of Age
- Managing Risk to Maximize Revenue
- Optimizing Automation to Increase Fraud Team Productivity
- Payments as a Business Strategy
- PCI Security Standards Council
- Understanding the Dynamics of Chinese and Asian Markets
- The Value of Social Media: Becoming the Conversation Architects
- A Window into Fraud: Visualizing Evolving and Emerging Patterns
Travelocity.com founder Terry Jones will be delivering the opening keynote speech focusing on the business of innovation. Terry will share his unique perspectives on how companies can cultivate new ideals, as well as nurture the organizational structures, funding policies and team members required for success.
The conference’s closing keynote will be delivered by Dateline NBC correspondent Chris Hansen. The award-winning investigative reporter and host of the long-running ‘To Catch a Predator’ series will share his findings on the rapidly maturing underworld of cybercrime.
For the full conference agenda, registration or exhibition information, please visit the MRC website at www.merchantriskcouncil.org. About the Merchant Risk Council
The Merchant Risk Council (MRC) is a merchant-led trade association focused on electronic commerce risk and payments globally. The MRC leads industry networking, education and advocacy programs to make electronic commerce more efficient, safe and profitable.
Today, with over 7,500 members, the MRC is the leading trade association for managing payments, preventing online fraud and promoting secure e-Commerce. The MRC is dedicated to working with e-Commerce and multi-channel merchants, credit card issuers, credit card companies, risk management providers, and law enforcement to make the Internet a safer and more profitable place to do business.
The MRC Board of Directors and Advisors includes: Expedia, Inc., Adobe Systems, Inc., Neiman Marcus Direct, Apple, BestBuy.com, Bill Me Later, Blizzard Entertainment, Chase Paymentech, CyberSource Corporation, Dell, Inc., Discover Network, 41st Parameter, Gap, Inc. Direct, iovation, Microsoft, Trustwave, and Visa, Inc.
Digital Transaction News posted an interesting article regarding Payment Application data-security standard or PA-DSS and it's affect on software vendors in the payments industry. Sure, it can cost a lot to get PCI certified, but money is secondary, the primary focus is on the security of the application. It will be interesting to watch the effect PA-DSS has on the payments industry over the course of the next 7 months...
"The steady march toward more secure payment-processing software is likely to force many—possibly thousands—of small software vendors out of the market of serving merchants and card processors. These vendors will find it too expensive to upgrade their existing point-of-sale and related applications to meet specifications set forth in the new Payment Application data-security standard, or PA-DSS, according David Taylor, founder of the Stamford, Conn.-based PCI Knowledge Base consulting firm.
Taylor held a Webinar on Wednesday about the impact of PA-DSS on vendors, merchants, and the payments market in general. PA-DSS is the name of Visa Inc.’s former Payment Application Best Practices (PABP), a set of guidelines for protecting data that flow through software in POS terminals and other card-processing settings. The PCI Security Standards Council adopted PABP in October, renaming the guidelines PA-DSS and applying them to the other major card networks—MasterCard Inc., Discover Financial Services, American Express Co., and JCB. The Wakefield, Mass.-based PCI Council administers the Payment Card Industry data-security standard, or PCI, the overarching set of rules for securing credit and debit card data.
Merchant acquirers must ensure by July 1, 2010 that their merchants and third-party processors are using only applications that meet PA-DSS pecifications. That deadline is one reason vendors are furiously developing new applications or trying to fortify existing versions." continue reading at Digital Transaction News
Last week I featured an article from Brian Krebs of the Washington Post regarding Fiserv's CheckFree website being hacked or at the very least "webjacked". "CheckFree Not HackFree!"
Yesterday, Mr. Krebs took a closer look at the attack which experts are saying will become "more common" in 2009, Here's a snippet...
The hijacking of the nation's largest e-bill payment system this week offers a glimpse of an attack that experts say is likely to become more common in 2009.
Atlanta based CheckFree acknowledged Wednesday that hackers had, for several hours, redirected visitors to its customer login page to a Web site in Ukraine that tried to install password-stealing software.
While this attack garnered few headlines, there are clues that suggest it may have affected a large number of people. CheckFree claims that more than 24 million people use its services. Avivah Litan, a fraud analyst with Gartner Inc., said CheckFree controls between 70 to 80 percent of the U.S. online bill pay market. Among the 330 kinds of bills consumers can pay through CheckFree are military credit accounts, utility bills, insurance payments, mortgage and loan payments. (continue reading)
In an article written by Linda McGlasson, the Managing Editor of Bank Info Security, she takes a look at the 10 Greatest Risks to Banks in 2009.
1. ATM Network Fraud
According to Paul Kocher, president and chief scientist of Cryptography Research Institute, the number one area that institutions will see fraud growing over the next year is in ATM networks.
"When the criminal gets access to magnetic stripe data and associated PIN values, they are then able to create cards, and basically then it's a license to print money," Kocher explains.
Another problem for institutions is that their ability to perform risk management is significantly less on an ATM network than online transactions. "This is because the ATM delivers the goods to the consumer immediately to them, which is exactly what the fraudsters want -- the cash, rather than a large ticket item they have to then fence or resell," he concludes.
Kocher predicts that until U.S. financial institutions and credit card companies roll out either a contact or contactless-based smart card infrastructure, there won't be a great reduction in the amount of fraud being perpetrated against U.S. consumers. "Once they decide to do this, it will cause a great reduction in the amount of fraud, because we've seen it happen in Europe," says Kocher. (continue reading)
Sales Since Cyber Monday Up 9 Percent Versus Year Ago
RESTON, Va., comScore (Nasdaq: SCOR), a leader in measuring the digital world, today reported its tracking of holiday season retail e-commerce spending for the first 35 days of the November - December 2008 holiday season. For the holiday season through December 5, $14.92 billion has been spent online, essentially the same level compared to the corresponding days last year.
For the five days beginning with December 1 (Cyber Monday), the kick-off to the heaviest part of the online shopping season, sales totaled $3.74 billion, up 9 percent versus year ago. Two individual days in the past week achieved more than $800 million in online spending: Monday, December 1 ("Cyber Monday") with $846 million, and Tuesday, December 2 with $823 million.
For more details, including figures and top performing retail categories click here.
Trustwave announces the release of its updated forensics white paper, which examines 443 cases of cardholder data compromise investigated by Trustwave since 2001. In the seven years Trustwave has been conducting credit card compromise investigations, it’s found businesses have made progress in protecting cardholder data, due to the very prescriptive and holistic Payment Card Industry Data Security Standard (PCI DSS). While fewer and fewer compromise investigations by Trustwave find the storage of cardholder data, theft of credit card data continues to make headlines every week.
This white paper outlines a new technique –parsing data in transit— that Trustwave has found during its investigations of credit card compromise.
What’s most unsettling about this trend is that a merchant can use a payment application or Point-of-Sale (POS) terminal that is compliant with the Payment Application Data Security Standard (PA-DSS) or Visa’s Payment Application Best Practice (PABP) but if they are not 100% compliant with the PCI DSS, they can still fall victim to this technique.
Additionally, Trustwave has found that smaller merchants continue to make up the largest group of merchants that get compromised. Most of these smaller merchants don’t have an in-house IT staff and therefore rely on third parties to make sure they’re compliant. These third parties often don’t have skilled security experts that can confidently and accurately secure a merchant environment to be in compliance with the PCI DSS. While these smaller merchants don’t make the media headlines, they compromise nearly 99% of all global merchants.
A new report from Aite Group, LLC provides insight into the demographics and attitudes of consumers who choose credit cards based on rewards programs, and sheds light on the other factors that drive consumers to select one card over another. It also outlines ways in which card issuers can best compete for the use of their card above others in rewards card users' wallets.
According to Visa, rewards cards now account for more than half of all credit cards, and, even more importantly, roughly eight of every 10 dollars spent on a credit card. Consumers rank rewards as the number two reason for applying for a specific card, behind no annual fees and ahead of low interest rates, according to Aite Group's January 2008 survey of 422 cardholders. As the number of cards in a consumer's wallet grows, so does the importance of rewards programs in influencing the cardholder's choice of cards; consumers don't stop using their other cards after getting a new rewards card. Among the ways to increase the use of a specific rewards card, issuers should consider expanding the range of goods and services that earn premium rewards.
"It is clear that most rewards cardholders possess multiple rewards cards," says Ron Shevlin, senior analyst with Aite Group and author of this report. "As issuers look to one-up each other with ever-expanding rewards, Aite Group believes that there's an opportunity for issuers to differentiate themselves by creating a rewards hub that enables cardholders to aggregate and integrate programs."
This 14-page Impact Note contains 15 figures. Clients of Aite Group's Retail Banking service can download the report by clicking on the icon to the right.
According to the recent survey of eCommerce Observatory B2c Netcomm – School of Management at the Politecnico di Milano Italian e-commerce has grown this year by 20%, which should surpass earnings of 6 billion euros by the end of the year. The main profit comes from tourism, clothing with its famous brand names such as Armani, Valentino, Gucci, Prada and others. Sale of food and wines has also brought some income.
Overall, though, e-commerce in Italy makes up less than 1% of all sales, much lower than other countries that register 3–10%. The data on what products are sold also highlights a big contradiction: though in traditional channels for products (wine & food, products for the home, electronics, music, and books) present about 80% of all acquisitions, on-line they don’t even reach 30%, with food products and household items making up barely 1% of on-line sales. It is a trend that is very different from that of other countries, where the rate of on-line food and wine sales vary from 7-14%. Without counting, however, the fact that they already begin with higher absolute numbers, in respect to great Britain, which is the European country that is most familiar with this mode of commerce, Italy has less than a quarter of the users, and with an average spending of 900 euros per person, less than one third of that spent by British citizens, reports WineNews.
According to various news accounts, Vodafone is now giving its prepaid mobile customers the ability to recharge their credit from their handsets using PayPal. The service provider claims it’s a first for Australia. Vodafone customers can register for a PayPal account online and select from either direct debit or credit card payment.
Once the PayPal account is activated, they can recharge their prepaid cap or extras pack directly from their handset via the Vodafone live! mobile content portal, according to Vodafone.
The PayPal payment engine authenticates the customer’s identity with a unique user name and password.
At the completion of the transaction, the customer receives a recharge PIN via SMS or email, with the prepaid credit redeemed with a free call to 1555, the carrier said.
VeriSign Survey Finds Nearly Ten Times as Many Consumers Feel Trust Is More Important Than Cost When Transacting Online
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uDcDmlSMn4IcWLjzr9ctgqWIwAsc6fszQaSNvtxjxyZn7e88ouTFWggGc-vT2xiaRs5FemAWpq3gSE8IgGJxlQq5T7IYdqkcx19VvDvUrqMT0Bd8fo_xpgCk9Djv1vngCguFwtQmZ-fuQKFrOXg6oI=s0-d)
Results of the tenth annual ![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t1Rp_SfcVBBq1WUKl_tn4vVgwfOUYU7Hq5x4Chy2bmgDDK7hikplZSOyEssTFSMDL41Wp7eJj6_UrLbpDUxrYsLStZsd4cRncJFqbTLwSju7-I96NZGbsq2fekBzDl8MN-Aq3PaUOUtLv5j40GohNd=s0-d)
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sK9nMIQCkauUX3Dl5YO9X5Thf075RBStvycLcM01OnsxuFYB6HESv2mkhWfk4O74kjiqH_EsQqmLmSGkn--bKjEhJkYyIn6d2HLZc-_x3Tt7bQ180bHTxCJ0JhscSWITeBEDNzlm7CpgiGj5D-5Abh=s0-d)
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uBPn_uEFCrKqwOhFcYK7POFs3l0R_U2LZxsuHRHh_Da4E_j_IBnri1kkdpehfJfGKvTuD4BHFXCUU-4w3rFO2jq9wVrdosDijYXDHTmotc_r-USCYJeMPhr_rSzFMSc0T4McfET0MLz0yBc-1hp88=s0-d)
Obviously this is relevant to the blog as I've posted many times about skimming, but, in all honesty, there are underlying reasons for this post...not the least being that it gave me my first opportunity to post a picture of 
Pago Retail Report 2008 - published by Deutsche Card Services - reveals large-scale changes in purchasing and payment behavior![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uJeIvUpVHlOZxhZEB8YM3aDhHBjKi2_fgbagRtCTrN31hb1bcjx4akI-45h7AjoYc8lUEMqCanWEspcSpVz4kVwlCevfMbbpUPo0yMAdTwk5S-ei0Nd8FTzA9gaZ_TN8lPyXn6Ma7vttt89TtbkI1d=s0-d)
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tx6HT_rEdMN4094PGIVZ5YXDHVQXTSSPDGDZ37TF9KPz-7AuE0tU13F7qTxXYiv3TiNEF7b_weQPOZU-5E1fzFabwJBsDG3pgpXt6VQvHIx7Z2z8FeEWz98gezwzEvymG9fr_-H1GoKBN-9fI1yr0z=s0-d)
A new ABI Research study examines the potential for mobile payments in four key vertical markets that will drive adoption: taxis, parking, movies, and Internet shopping. While the latter is usually done using credit cards anyway, the first three are areas in which mobile payments could replace cash transactions. The research found that Internet shopping would account for almost three quarters of this mobile commerce revenue in 2013. A further 15% would come from parking, with the balance split about evenly between taxi fares and movie tickets.![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_s7j2kC-PAOKVRCBQoMMRQWDBZ3VE5XCHNXub2itDkpNdKWsQOzUgG2fnM0z2Z9GCYrkMt_YzbGKw2imrCesH6RsPk3j67-fQlli1pPuX_k8rxTTR19gIMb4fXkMnT5ibRmuvvIJAsx00tIapNwLEvP=s0-d)
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_u-GfUgizb8pUiSgFh2ubw1PRSNmSntLR6nPste3ZEnbVA2mLR5vpXbQm_eIGsi0d7MzR4NpO9wADhVRMxH4WtG7SjRVWd-5v97r4Qkv0AgPINTrzdxcamVm3SwwLTgLxiEhbbZKad_Bf_IVkn2lKLL=s0-d)
Mercator maps 2008 Japanese payment card market![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t86fjanOwqwm2ENpIcwSpQSRFMp0WvluuAPdkgZ71QASr8nmDcQqKFxQ4Q4mYJTegimRwZmIZ1DIdewzJrnVvDJ0vPpAANbgkVCcuSNmf4s22F_rLSRB4I0HOegyjttoxDuOcdoR_HalraWytTZ6Wl=s0-d)
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_ut3yz7VPK2b9NFEpj3czmOO1jtDnJThe0Ac8-1zNk6L3jD2bn4dRvlO_i5bG71jsXPElkOF1mOlFewW1EaUp-9wvzix4_78QrGgFtqO0-hEuFp7eYUxwznKsBuWs-e9C65HwB5oQKCpt9Qc6n-iXyv=s0-d)
Digital Transaction News posted an interesting article regarding Payment Application data-security standard or PA-DSS and it's affect on software vendors in the payments industry. Sure, it can cost a lot to get PCI certified, but money is secondary, the primary focus is on the security of the application. It will be interesting to watch the effect PA-DSS has on the payments industry over the course of the next 7 months...![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sVk8-OOSQw7u5C0SYGB0lvuoN-lWgcEJIAGAX4BUd0YebwLkdXvK_UClK8mOPCcRmhw9lPPXsP6oZoZIFwuSlkzT6qiNXW-23_JKeHNhL6kVs2XwDRci-kXdv5Oc7-5NLff6NFy9hkToiKWI5bXYG4=s0-d)
Digging Deeper Into the CheckFree Attack![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vt2v7Q3EaUHlLmjRgdX7vApfVLwu60Eu8aP0rGdxgK-UdHF-XslYM6bSzFvr5XJZHWC8jKCTpQdCvw5hZLv4nsBkrO2Vgx4Gv6fiXvC78ij9o48n6XdBGP2IsjjomznrN-DeNiTlt9XsZkvGJLFFgw=s0-d)
In an article written by Linda McGlasson, the Managing Editor of Bank Info Security, she takes a look at the 10 Greatest Risks to Banks in 2009. ![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_trNYCogJsEDeCccnO9r-IbTFaY8wEJbmd-YhH6NuAVNE6jpP2Q3qAjE8VNsehJ9_ivFNKOR5WfOvk_OB19nJr0Nw7vKIlOY2kHPRsS6l5zKEillzsVVoS-dHhF1rEpZSxH7fJkJ-aE7nKFRpUNlTY=s0-d)
RESTON, Va., comScore (Nasdaq: SCOR), a leader in measuring the digital world, today reported its tracking of holiday season retail e-commerce spending for the first 35 days of the November - December 2008 holiday season. For the holiday season through December 5, $14.92 billion has been spent online, essentially the same level compared to the corresponding days last year. ![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_u3JJ3-0uiELbD7UJYqQNSa-lWapypxA4saUplgLC4ktzhjte6YDgiRvKKmOngi7VKUWdcJdcb_seykDD_p4aGaE9aYnHWJ6ZM5fYpUHdAR_bSAPZhpRaMtxTKkN2LPIKAl0dpo0Df7EsVcGO3LTTbU=s0-d)
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_ss4BTqvIj94E-qSfl79iVZaFID8YfXwwSCL-V85Gdlx5TnkK5-MFAJZ_PgKVtZ61ilP2CkxLUxDWdo0Y9509Im_HD9KldirPgsfryiSP0ZIGOui3sXyUWuUGK1rv8oTdIazu3i4xnXT10Qbol3RU0r=s0-d)
![Reblog this post [with Zemanta]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tHvdeMgtyLyGwRMV1wp3GDzMkU4Rbf1jyku-st-Xs0ZcdEKJrLGOcPjfAGZvWVOMN-F18N4WO5jzpMGVBhZcgFSAM8Dsipd_fGYwIznYwXX9P2epTxw9Og-aoSujxc0sGgbOtAJYt2AG-t6Zi_YpM=s0-d)
According to the recent survey of eCommerce Observatory B2c Netcomm – School of Management at the Politecnico di Milano Italian e-commerce has grown this year by 20%, which should surpass earnings of 6 billion euros by the end of the year. The main profit comes from tourism, clothing with its famous brand names such as Armani, Valentino, Gucci, Prada and others. Sale of food and wines has also brought some income. 
According to various news accounts, Vodafone is now giving its prepaid mobile customers the ability to recharge their credit from their handsets using PayPal. The service provider claims it’s a first for Australia. Vodafone customers can register for a PayPal account online and select from either direct debit or credit card payment.