We’re not big on New Year’s resolutions here, but there are a few things e-commerce merchants might want to take under consideration, if not already, for 2017 regarding credit card fraud.
It’s going to get worse.
As a reminder, with the U.S. migrating from credit cards with the magnetic stripe to those with the microchip, it is resulting in significantly fewer cases of credit card counterfeiting — as Jim Daly astutely notes in a recent Digital Transactions article — and way more cases of card-not-present fraud.
Just over a year ago, for a contribution to The Green Sheet, we wrote about the forthcoming spike in card-not-present fraud, which is happening en masse to no one’s surprise. Our expert source for the piece was Benjamin Hosack, the co-founder of Foregenix, a digital forensics and information security firm based outside London.
What he told us was alarming:
While the outlook for U.S. merchants (and consumers) looks and sounds grim, they aren’t defenseless by any means. When we asked Mr. Hosack about what merchants can do to protect themselves, he didn’t mention 3D Secure, SSL certificates or PCI compliance (although they most certainly will help).
His first piece of advice for merchants was to outsource their payment platform to the payment service provider or acquiring bank. His reasoning was clear: Not only do the hackers need to penetrate the merchant’s website, but they must also infiltrate the transaction process. When a merchant uses a third party to host its payment processing, it’s a massive hurdle for hackers.
Here are the four remaining tips from Mr. Hosack:
When merchants sign on with Instabill, we link the website’s checkout page to the secure payment gateway of the acquiring bank with which we match your business. We also offer security solutions such as 3D Secure, SSL certificates as well as PCI compliance through one of our partners.
Discuss securing your online business with a live merchant account manager at 1-800-530-2444.