Fraud Prevention and Program Security Gord Jamieson Director Risk Management & Security Visa Canada Association
|
|
- Doris Boyd
- 8 years ago
- Views:
Transcription
1 Fraud Prevention and Program Security Gord Jamieson Director Risk Management & Security Visa Canada Association
2 Evolution of Risk Management Controls Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here. Presentation text goes here.
3 Trends Shaping Risk Management In order to continue to provide the highest level of consumer and stakeholder confidence in the payment system, current risk and fraud management practices need to be continuously assessed and retooled to meet the challenges. Key Internal & External Influences Shift in the Nature of Compromise Events Growing Regulatory Scrutiny Proliferation of new Products and Technology Competitive Pressures Diversity of Stakeholders Implications to the Implications Risk to the Enterprise Risk Enterprise Redefining fraud control strategies Optimizing channel delivery and performance Providing value added services Establishing interoperability across platforms and ensure minimal impact and seamless to stakeholders Systems Priorities Re-architect Fraud Detection / Prevention and Analysis Systems Improve risk data provisioning Enhance the risk service delivery infrastructure
4 Canadian Credit Card Fraud Canada - Fraud 3 Year Trend 12 Months Ending June (CDN $ Millions) 100% 90% $223.3 $266.1 $ % % of Total Fraud 70% 60% 50% 40% 30% Misc/ID Theft/Acct Takeover Card Not Present Counterfeit Fraud Apps Non Receipt Stolen Lost 20% 10% % Source: CBA - Payment Card Partners (VISA CANADA ; MASTERCARD CANADA ; AMEX CANADA)
5 How is Data Compromised Skimming at merchant locations continues to be the dominant source of credit card compromises, however the criminals are using more sophisticated techniques such as bogus merchant terminals and overlays on POS terminals and ATMS. These devices can capture both card and PIN information without the need for a covert camera Card-Not-Present (Card Absent) Fraud Increasing use of the internet for business and personal use has created other opportunities for the criminal element to gain access to more credit card data than can be obtained at traditional bricks & mortar merchants. These schemes involve phishing, spoofing and hacking merchant databases Account Compromises / Identity Theft Hacking and Account Compromise Attacks
6 Counterfeit Growth Canadian counterfeit losses have been experiencing growth 12 Months Ending June (CDN $ Millions) $139.8 Total Fraud CDN$ Millions $86.6 $46.9 $ % +25% $88.1 $ % -1% Counterfeit Card Not Present Source: CBA - Payment Card Partners (VISA CANADA ; MASTERCARD CANADA ; AMEX CANADA)
7 Counterfeit Growth Counterfeit growth can be attributed to: Advances in applied technology Sophisticated and technologically advanced criminal element Globalization of criminal organizations Insufficient penalties
8 Counterfeit Fraud grew 25% from 2005 to 2006 and fell 7% from 2006 to 2007 (4 quarters ending March Amounts in CDN$ Millions) 100% 90% 80% 70% 60% 50% 40% 30% Visa Credit Card Fraud $161.5 $177.7 $166.8 $24.1 $23.8 $22.7 $5.0 $3.5 $4.9 $3.7 $2.9 $4.9 $3.7 $2.9 $2.5 $62.2 $77.9 $72.8 Lost/Stolen Non Received Misc Fraud Application Counterfeit CNP 20% $61.8 $65.7 $ % 0% Visa fraud data source: CDI High-Risk File Access
9 Counterfeit Growth Visa has seen a decrease in counterfeit growth in 2007 and this can be attributed to: Member s neural networks are able to identify suspicious transactions and respond in real time Credit on Fraud Alert System (CoFAS) Common Point of Purchase (CPP) management database Criminal displacement Visa s long term strategy to address counterfeit is Chip & PIN which begins this October 2007.
10 Fraud on Commercial Products Decline in Fraud-to-CSV was experienced for all products Commercial products experienced the most significant decrease in Fraudto-Sales Fraud-to-Sales % 0.140% 0.120% 0.100% 0.080% 0.060% 0.040% 0.020% 0.000% Category Product % Growth (2006 to 2007) Commercial Business 0.058% 0.058% 0.055% -5% Corporate 0.245% 0.450% 0.272% -39% Purchase 0.164% 0.205% 0.100% -51% Commercial Total 0.092% 0.111% 0.076% -32% Consumer Classic 0.114% 0.109% 0.098% -10% Gold/Premier 0.122% 0.119% 0.100% -17% Consumer Total 0.119% 0.115% 0.099% -14% All Products 0.116% 0.114% 0.096% -16% 0.119% 0.116% 0.111% 0.115% 0.114% 0.092% 0.099% 0.096% 0.076% Commercial Consumer All Products Visa fraud data source: CDI High-Risk File Access Visa sales data source: Operating Certificate
11 Fraud Growth Fraud on Commercial Products has fallen 17%, whereas, Consumer Products fell 5% Commercial Products Consumer Products 0.120% % 162 Fraud-to-Sales Ratio 0.100% 0.080% 0.060% 0.040% 0.020% 0.092% 0.111% +21% 0.076% -32% Fraud Amount CDN$ Millions Fraud-to-Sales Ratio 0.120% 0.100% 0.080% 0.060% 0.040% 0.020% 0.119% 0.115% -3% 0.099% -14% Fraud Amount CDN$ Millions 0.000% % Fraud-to-Sales % Fraud Amount Fraud-to-Sales % Fraud Amount For 4 quarters ending March Visa fraud data source: CDI High-Risk File Access Visa sales data source: Operating Certificate
12 Fraud on Commercial Products Fraud on Commercial Products account for only 9% of total fraud dollar losses 58% of fraud on Commercial products occur on Business cards Fraud-to-Sales decreased by 5% from 2006 to % of fraud on Commercial products occur on Corporate cards Fraud-to-Sales decreased by 39% from 2006 to % of fraud on Commercial products occur on Purchase cards Fraud-to-Sales decreased by 51% from 2006 to 2007 Fraud-to-Sales Fraud-to-Sales Fraud-to-Sales Ratio Ratio Ratio 0.500% 0.400% 0.300% 0.200% 0.100% 0.000% 0.500% 0.400% 0.300% 0.200% 0.100% 0.000% 0.500% 0.400% 0.300% 0.200% 0.100% 0.000% Business Products 0.058% 0% Fraud-to-Sales % Fraud Amount Corporate Products 0.450% +84% Fraud-to-Sales % Fraud Amount Purchase Products 0.055% -5% 0.272% -39% 0.205% +25% % -51% Fraud-to-Sales % Fraud Amount For 4 quarters ending March CDN$ Millions CDN$ Millions CDN$ Millions Fraud Amount Fraud Amount Fraud Amount Visa fraud data source: CDI High-Risk File Access
13 Fraud on Consumer Products Fraud on Consumer Products account for only 91% of total fraud dollar losses Fraud-to-Sales Ratio 0.130% 0.120% 0.110% 0.100% 0.090% Classic Products 0.109% -5% 0.098% -10% Fraud-to-Sales % Fraud Amount Fraud A CDN$ M m ill ount ions 40% of fraud on Consumer products occur on Classic cards Fraud-to-Sales decreased by 10% from 2006 to 2007 Fraud-to-Sales Ratio 0.150% 0.100% 0.050% 0.000% Gold/Premier Products 0.119% -2% 0.100% -17% Fraud-to-Sales % Fraud Amount Fraud Amount CDN$ Millions 60% of fraud on Consumer products occur on Gold/Premier cards Fraud-to-Sales decreased by 17% from 2006 to 2007 For 4 quarters ending March Visa fraud data source: CDI High-Risk File Access Visa sales data source: Operating Certificate
14 All Fraud Types CNP and Counterfeit account for 79% of fraud on Canadian Cards All Products 38% Commercial Products 36% 43% 42% 18% 0% 0% 2% CNP Counterfeit Fraud Application Misc Non Received Lost/Stolen 14% CNP Fraud Application Non Received 2% 3% 2% Counterfeit Misc Lost/Stolen 36% 44% 13% 2% 3% 2% Consumer Products CNP Fraud Type Distribution for 4 quarters ending March 2007 Counterfeit Fraud Application Misc Non Received Lost/Stolen Visa fraud data source: CDI High-Risk File Access
15 Fraud on Commercial Products 62% of Commercial losses is domestic (Canadian Issued Cards used in Canada) Commercial Products 40% Domestic Spend 42% CNP Fraud Application Non Received 38% 18% Counterfeit Misc Lost/Stolen 0% 0% 2% 23% 0% 1% 3% 33% CNP 10% 0% 0% 55% 35% Counterfeit Fraud Application Misc Non Received Lost/Stolen Cross Border Spend CNP Counterfeit Fraud Application Misc Non Received Lost/Stolen Fraud Type Distribution for 4 quarters ending March 2007 Visa fraud data source: CDI High-Risk File Access
16 Impact of Fraud Direct cost of Member and Merchant fraud charge-offs Indirect costs of exception management, dispute resolution and customer service Goodwill damage to Members and Merchants Reputation risk to Visa and industry: Law enforcement community Regulatory authorities Consumer advocates and ombudsman agencies Consumer confidence in electronic payment services The Media / Press
17 Visa fraud data source: CDI High-Risk File Access Top 10 Fraud Merchants for Commercial Products Top 10 MCCs for Commercial Cards MCC MCC Description Fraud Amount (CAD) % of Fraud $ to Total Fraud $ 5732 Electronic Stores 681, Grocery Stores/ Supermarkets 532, Telecommunication Equipment 504, Service Stations 468, Air Canada 468, Automated Fuel Dispensers 466, Discount Stores 409, Jewelry Stores 405, Home Supply Warehouse Stores 384, Grocery Stores/ Supermarkets 343,660 Top 10 MCC Total 4,664,121 All MCC Total 14,400,
18 Visa fraud data source: CDI High-Risk File Access Top 10 Counterfeit Merchants - Commercial Products MCC MCC Description Fraud Amount (CAD) % of Fraud $ to Total CNFT Fraud $ 5411 Grocery Stores 360, Automated Fuel Dispensers 339, Electronic Stores 336, Service Stations 267, Discount Stores 241, Home Supply Warehouse Stores 234, Department Stores 230, Jewelry Stores 220, Restaurants 175, Drug Stores & Pharmacies 143,152 Top 10 MCC Total 2,550,005 All MCC Total 5,445,
19 Visa fraud data source: CDI High-Risk File Access Top 10 CNP Merchants for Commercial Products MCC MCC Description Fraud Amount (CAD) % of Fraud $ to Total CNP Fraud $ 3009 Air Canada 366, Telecommunications Equipment 364, Other Direct Marketers 211, British Airways 193, Combination Catalog & Retail 181, Telecommunication Services 167, Computer Network/ Info Services 143, Computer Software Stores 141, Travel Agencies 138, Misc Specialty Retail 130,504 Top 10 MCC Total 2,040,029 All MCC Total 5,955,
20 General Best Security Practices Do Stay informed and follow any new security practices that may emerge over time. Protect your PIN and Passwords Memorize your PIN. Choose PIN/passwords that cannot be guessed by others and do not write them down. Don't give out your personal information freely. Destroy old and expired bank and credit cards.
21 General Best Security Practices Do Shred documents that contain personal information (i.e., bank statements). Destroy carbons and receipts that may contain account numbers and/or signatures. Tear up or shred any pre-approved credit card offers to which you do not respond. Review your credit report at least once every year. Make sure all information is up-to-date and accurate.
22 General Best Security Practices Don t Don't respond to unsolicited s that request personal information such as your banking card number, ABM PIN, online/telephone banking passwords, credit card numbers etc. Do not leave your bank and credit cards unattended. Don't confidential information such as account numbers, date of birth, etc. Don t leave personal information (bank statements) lying around.
23 Visa Uses a Multi-Layered Approach to Security Zero Liability Policy Visa E-Promise Chip and PIN Card Security Features Consumer Protection Counterfeit and Lost / Stolen Fraud Mitigation Verified by Visa Address Verification Service Card-Not-Present Fraud Mitigation Three-digit code (CVV2) Account Information Security Neural Networks Data Security & Early Warning
24 Visa Uses a Multi-Layered Approach to Security
25 Commercial Products are Exempt for CNP Risk Tools Commercial products have been exempt from the liability shift associated with the implementation of Verified by Visa (VbV) and Address Verification Service (AVS). Criminals will target the weakness link and that may turn out to be commercial cards in the CNP environment if effective cardholder authentication tools are not used. Scotiabank is certified for use of VbV, Card Verification Value 2 (CVV2), and AVS. For their Commercial products, on average, CVV2 is used in about 25% of their CNP authorization volume and AVS is used about 40% of the time. Levels of usage for Scotiabank commercial cards are well above our regional average of 15% for CVV2 and 28% for AVS.
26 CVV2 and AVS Penetration Both of these risk mitigation tools are under utilized within the Canadian acceptance environment, but where used have proved effective. CVV2 is requested in only 15% of Domestic CNP volume and has a performance match rate of 93%. AVS is requested in 28% of Domestic CNP volume and has a performance match/partial match rate of 71%. Analysis from the US Region, has proven that transactions where the results of CVV2 & AVS were No Match were 15 times more likely to be fraudulent. Further, if merchants employed both fraud mitigation tools during a CNP transaction, overall fraud would decline substantially.
27 Card-Not-Present Environment Realities Card-Not-Present is fundamentally different from Face-to-Face Transactions Fraud liability Fraud opportunity Growth rates Applying face-to-face mentality for risk mitigation may not yield the best results Merchants need to remember they are in charge of controlling fraud & risk and decide which transactions to approve or review further Deploy Know Your Customer (KYC) logic and analysis to mitigate review volumes
28 Card-Not-Present Realities The CNP environment has significant advantages to fraudsters More anonymous (don t show your face) Lower cost of entry (don t need to make cards) More efficient ( less travel time and expense) Issuer and Visa technologies have reduced face-to-face opportunity There may be more fraud than meets the eye Merchant reported fraud rates may exceed chargebacks that Visa sees and fraud reported volumes / ratios Merchants often issue credits
29 CNP Fraud Control Needs Varied Approach Visa authentication / verification (VbV, CVV2, AVS) offers several benefits for many CNP transactions Layered approach provides a better authentication/verification Transactions with stronger approach to authentication have lower risk to dispute than those with weaker authentication Issuers are often less well positioned than merchants to know when authentication is necessary or adequate No single authentication / verification method is a silver bullet CVV2 and AVS non-matches can occur on legitimate transactions Blunt instrument solutions to address high risk merchants can have negative impacts on low risk merchants, issuers, and cardholders
30 Phishing s Use caution before answering online and requests for your personal information. Scotiabank will never present you with unexpected webpages or send you unsolicited s asking for your confidential information, such as your password, PIN, Access Code, credit card, account number, etc. Scotiabank will never ask you to validate or restore your account access through unsolicited . Do not respond to unsolicited s or websites that request personal information. Report any suspicious requests to Scotiabank immediately at SCOTIA ( ).
31 Use Anti-Virus Software: Phishing s Potential risk of contracting a computer virus or the possibility of infiltration by intrusion software commonly known as "Trojan Horses". Computer viruses can modify programs, delete files and erase the contents of hard drives. "Trojan Horses" are able to capture keystrokes, including passwords or other secret information. Spyware and other deceptive software can also conduct certain activities on your computer without your knowledge or consent.
32 Best Practices to Address Phishing s Install and frequently update a proven anti-virus product. Only accept or download software from a source that you believe to be trusted. Never accept files or attachments when accessing websites, newsgroups and chat rooms unless you are very sure of their authenticity. Install and update a your personal firewall product
33 Fraud Prevention Best Practices Commercial Cards Ensure employee records are updated on a regular basis to ensure reissued cards are delivered to active employees at their current address Limit use of cards by blocking transactions originating from specific high risk merchant categories and/or limiting use of cards to specific merchant types. This will help to reduce fraud losses and unauthorized personal use of expense cards. Encourage employees to reconcile statements and expenses on a timely basis and to report suspicious or unauthorized transactions immediately Educate end users about benefits of using card verification tools i.e. CVV2 & AVS
34 Fraud Prevention Best Practices Commercial Cards Utilize real-time or near real-time fraud detection systems incorporating business patterns Know your customer and the manner and patterns in which they conduct their business Systematically flag card requests preceded by address changes for validation review. Generate referrals for high fraud risk transactions Evaluate CVV2 & AVS results in authorization risk decision
35 Visa Proposals CNP Liability Shift Proposal for CVV2 & AVS "No Match" Promote the adoption of the CNP tools by merchants and a balanced and fair approach to shift in liability. Commercial Cards Attempts Exclusion on Verified by Visa Currently, there is an exemption on liability shift for inter-regional commercial card e-commerce transactions where the merchant/acquirer has attempted authentication VbV. Proposed to extended commercial cards to the VbV framework with liability shift for intra-regional transactions. Extension of Zero Liability to Business Cards Currently, Business Credit Card products are not required to comply with Visa s Zero Liability policy. In the market, there is a lack of consistency in our brand offering, as Issuers will apply their own policies. It is proposed to extend the Zero Liability policy to Business Credit products.
36 Summary Fraud is an ongoing concern and a moving target The Canadian Payment Industry works hard on continuing to educate consumers to recognize it, report it, stop it Maintaining business and consumer confidence and growth in the payment card industry Fraud causes significant injury to consumers and harms public confidence in the payment industry The value of the BRAND and it s protection is priority
A multi-layered approach to payment card security.
A multi-layered approach to payment card security. CARD-NOT-PRESENT 1 A recent research study revealed that Visa cards are the most widely used payment method at Canadian websites, on the phone, or through
More informationUSDA: Handling Fraud and Disputes. Deanna Hanson CPS Fraud Support Analyst
USDA: Handling Fraud and Disputes Deanna Hanson CPS Fraud Support Analyst Agenda What is fraud? Fraud trends Fraud case lifecycle Fraud and dispute process Tips to prevent fraud 2 Fraud Overview and Trends
More informationYour Single Source. for credit, debit and pre-paid services. Fraud Risk and Mitigation
Your Single Source for credit, debit and pre-paid services Fraud Risk and Mitigation Agenda Types of Fraud Fraud Identification Notifications Next Steps 11/8/2013 2 Types of Fraud Lost and Stolen Cards
More informationVisa Debit processing. For ecommerce and telephone order merchants
Visa Debit processing For ecommerce and telephone order merchants Table of contents About this guide 3 General procedures 3 Authorization best practices 3 Status check transactions 4 Authorization reversals
More informationKeeping your financial and personal information secure is one of our most important responsibilities.
Security Scotiabank is committed to providing customers with a secure and protected banking and brokerage environment. Learn about what we do and how you can protect yourself. Our Online Security Commitment
More informationVisa Debit ecommerce merchant acceptance. Frequently asked questions and flowchart
Visa Debit ecommerce merchant acceptance Frequently asked questions and flowchart Table Of Contents Visa Debit. The convenience of debit. The security of Visa. 3 The value of Visa Debit for ecommerce:
More informationSecuring the Payments System. The facts about fraud prevention
Securing the Payments System The facts about fraud prevention Contents Introduction 3 Visa s Security Programme 4 Fraud Types and Threats 6 Fraud Statistics and Research 7 Visa s Security Agenda for New
More informationGuide to credit card security
Contents Click on a title below to jump straight to that section. What is credit card fraud? Types of credit card fraud Current scams Keeping your card and card details safe Banking and shopping securely
More informationMitigating Fraud Risk Through Card Data Verification
Risk Management Best Practices 11 September 2014 Mitigating Fraud Risk Through Card Data Verification AP, Canada, CEMEA, LAC, U.S. Issuers, Processors With a number of cardholder payment options (e.g.,
More informationBinBase.com REPORT: credit card fraud
BinBase.com REPORT: credit card fraud Whether you are a security specialist, an e-commerce web developer, or an online merchant, a knowledge of how credit card fraud works and what you can do to prevent
More informationTHE FIVE Ws OF EMV BY DAVE EWALD GLOBAL EMV CONSULTANT AND MANAGER DATACARD GROUP
THE FIVE Ws OF EMV BY DAVE EWALD GLOBAL EMV CONSULTANT AND MANAGER DATACARD GROUP WHERE IS THE U.S. PAYMENT CARD INDUSTRY NOW? WHERE IS IT GOING? Today, payment and identification cards of all types (credit
More informationThe need for a secure & trusted payment instrument in e-commerce. Ali AlMeshal
The need for a secure & trusted payment instrument in e-commerce Ali AlMeshal In Physical/Real World Hand over card Visual check Swipe in POS Online authorization Receipt with signature panel Sign or Pin
More informationVisa Canada Interchange Reimbursement Fees
Visa Canada The following tables set forth the interchange reimbursement fees applied on Visa financial transactions completed in Canada. 1 Visa uses interchange reimbursement fees as transfer fees between
More informationWith the Target breach on everyone s mind, you may find these Customer Service Q & A s helpful.
With the Target breach on everyone s mind, you may find these Customer Service Q & A s helpful. Breach Overview Q: Media reports are stating that Target experienced a data breach. Can you provide more
More informationPRACTICAL MONEY GUIDES DEBIT CARD BASICS. What you need to know about using your debit card
PRACTICAL MONEY GUIDES DEBIT CARD BASICS What you need to know about using your debit card MONEY IN THE BANK If credit cards mean pay later, debit cards mean pay now. These cards are issued by your bank,
More informationWhat Merchants Need to Know About EMV
Effective November 1, 2014 1. What is EMV? EMV is the global standard for card present payment processing technology and it s coming to the U.S. EMV uses an embedded chip in the card that holds all the
More informationThe Canadian Migration to EMV. Prepared By:
The Canadian Migration to EMV Prepared By: December 1993 Everyone But The USA Is Migrating The international schemes decided Smart Cards are the way forward Europay, MasterCard & Visa International Produced
More informationAcceptance to Minimize Fraud
Best Practices for Credit Card Acceptance to Minimize Fraud By implementing best practices in credit card processing, you decrease the likelihood of fraudulent transactions and chargebacks. In general,
More informationProtect Your Personal Information. Tips and tools to help safeguard you against identity theft
Protect Your Personal Information Tips and tools to help safeguard you against identity theft Trademark of Visa International Service Association; Visa Canada Association is a licensed user. What is Identity
More informationHeartland Secure. By: Michael English. A Heartland Payment Systems White Paper 2014. Executive Director, Product Development
A Heartland Payment Systems White Paper 2014 Heartland Secure. By: Michael English Executive Director, Product Development 2014 Heartland Payment Systems. All trademarks, service marks and trade names
More informationTo all GRSB debit and credit card customers:
To all GRSB debit and credit card customers: A data breach at the Target Corporation may have exposed 40 million credit/debit cards to potential fraudulent activity. If you made purchases in a Target store
More informationFrequently Asked Questions
PCI Compliance Frequently Asked Questions Table of Content GENERAL INFORMATION... 2 PAYMENT CARD INDUSTRY DATA SECURITY STANDARD (PCI DSS)...2 Are all merchants and service providers required to comply
More informationGlobal Visa Card-Not-Present Merchant Guide to Greater Fraud Control. Protect Your Business and Your Customers with Visa s Layers of Security
Global Visa Card-Not-Present Merchant Guide to Greater Fraud Control Protect Your Business and Your Customers with Visa s Layers of Security Millions of Visa cardholders worldwide make one or more purchases
More informationPowering e-commerce Globally. What Can I Do to Minimize E-Commerce Chargebacks?
Powering e-commerce Globally What Can I Do to Minimize E-Commerce Chargebacks? Chargebacks are not going away. And now there are new rules. Selling products and services online and using credit cards for
More informationHow To Protect Your Credit Card Information From Being Stolen
Visa Account Information Security Tool Kit Welcome to the Visa Account Information Security Program 2 Contents 1. Securing cardholder data is everyone s concern 4 2. Visa Account Information Security (AIS)
More informationEMV's Role in reducing Payment Risks: a Multi-Layered Approach
EMV's Role in reducing Payment Risks: a Multi-Layered Approach April 24, 2013 Agenda EMV Rationale Why is this worth the effort? Guides how we implement it EMV Vulnerability at the POS EMV Impact on CNP
More informationVisa Merchant Best Practice Guide for Cardholder Not Present Transactions
Visa Merchant Best Practice Guide for Cardholder Not Present Transactions Table of Contents Section 1 About This Guide 03 Section 2 Merchant Procedures 05 Section 3 Authorisation 07 Authorisation Procedures
More informationCool Tech Club E-commerce Fraud and Fraud Mitigation. Steve Manning August 25, 2004
Cool Tech Club E-commerce Fraud and Fraud Mitigation Steve Manning August 25, 2004 1 Overview Fundamentals of online transactions Trends in online fraud How fraud happens Protection Against Fraud 2 How
More informationCyber - Security and Investigations. Ingrid Beierly August 18, 2008
Cyber - Security and Investigations Ingrid Beierly August 18, 2008 Agenda Visa Cyber - Security and Investigations Today s Targets Recent Attack Patterns Hacking Statistics (removed) Top Merchant Vulnerabilities
More informationDEBIT and CREDIT CARDS
1. What is a credit card and how it differs from a debit card? A payment card is a piece of plastic containing essential banking information about the holder authorizing him to pay for goods and services
More informationIdentifying Security. Payment System. Federal Reserve Bank. Ellen Richey Chief Enterprise Risk Officer Visa Inc. Visa Public
Identifying Security Issues in the Retail Payment System Federal Reserve Bank Chicago Ellen Richey Chief Enterprise Risk Officer Visa Inc. June 5, 2008 Agenda 1. The Data Security Landscape 2. Recent Trends
More informationWhat is EMV? What is different?
U.S. consumers are receiving new debit and credit cards with embedded chip technology that better stores and protects cardholder information. These new chip cards are part of the new card standard, Europay,
More informationEMV and Small Merchants:
September 2014 EMV and Small Merchants: What you need to know Mike English Executive Director, Product Development Heartland Payment Systems 2014 Heartland Payment Systems, Inc. All trademarks, service
More informationGlobal Bank Achieves Significant Savings and Increased Transaction Volume with Zero-Touch Authentication
CUSTOMER SUCCESS STORY JULY 2015 Global Bank Achieves Significant Savings and Increased Transaction Volume with Zero-Touch Authentication CLIENT PROFILE Company: Global Bank Industry: Financial Services
More informationPCI DSS FAQ. The twelve requirements of the PCI DSS are defined as follows:
What is PCI DSS? PCI DSS is an acronym for Payment Card Industry Data Security Standards. PCI DSS is a global initiative intent on securing credit and banking transactions by merchants & service providers
More informationsuntrust.com 800.SUNTRUST
suntrust.com 800.SUNTRUST SunTrust Bank is an Equal Housing Lender. Member FDIC. 2010 SunTrust Banks, Inc., SunTrust, Live Solid. Bank Solid., SunTrust Rewards, and Signature Advantage Checking, are federally
More informationBusiness Identity Fraud Prevention Checklist
Business Identity Fraud Prevention Checklist 9 Critical Things Every Business Owner Should Do Business identity thieves and fraudsters are clever and determined, and can quickly take advantage of business
More informationCard Not Present Fraud Webinar Transcript
Card Not Present Fraud Webinar Transcript All right let s go ahead and get things started, and to do that, I d like to turn it over to Fae Ghormley. Fae? Thank you for giving us this opportunity to share
More informationProtect Your Personal Information. Tips and tools to help safeguard you against identity theft
Protect Your Personal Information Tips and tools to help safeguard you against identity theft Trademark of Visa International Service Association; Visa Canada Association is a licensed user. WHAT IS IDENTITY
More informationBattling Payment Fraud: The Never Ending Story. Presented by: Peter Tristani, Vice President, Payments and Remittance
Battling Payment Fraud: The Never Ending Story Presented by: Peter Tristani, Vice President, Payments and Remittance Agenda Overview Fraud: The Big Picture Evolving Fraud Impact of Fraud on Corporations
More informationPayment Card Industry Data Security Standard PCI DSS
Payment Card Industry Data Security Standard PCI DSS What is PCI DSS? Requirements developed by the five card brands: VISA, Mastercard, AMEX, JCB and Discover. Their aim was to put together a common set
More informationProtecting the POS Answers to Your Frequently Asked Questions
Protecting the POS Answers to Your Frequently Asked Questions PROTECTING THE POS What is skimming? Skimming is the transfer of electronic data from one magnetic stripe to another for fraudulent purposes.
More informationGlobal Airline Merchant Best Practices Guide
Global Airline Merchant Best Practices Guide Global Airline Merchant Best Practices Guide Table of Contents Introduction...1 Disclaimer... 1 Airline Card-Not-Present Fraud Prevention and Best Practices...
More informationFall Conference November 19 21, 2013 Merchant Card Processing Overview
Fall Conference November 19 21, 2013 Merchant Card Processing Overview Agenda Industry Definition Process Flows Processing Costs Chargeback's Payment Card Industry (PCI) Guidelines for Convenience Fees
More informationCustomer Awareness for Security and Fraud Prevention
Customer Awareness for Security and Fraud Prevention Identity theft continues to be a growing problem in our society today. All consumers must manage their personal information wisely and cautiously to
More informationHow to Help Prevent Fraud
TD Canada Trust How to Help Prevent Fraud Merchant Services tips to help protect your business Fraud Awareness All credit cards issued in Canada are designed with special security features to help deter
More informationThe Merchant. Skimming is No Laughing Matter. A hand held skimming device. These devices can easily be purchased online.
1 February 2010 Volume 2, Issue 1 The Merchant Serving Florida State University s Payment Card Community Individual Highlights: Skimming Scam 1 Skimming at Work 2 Safe at Home 3 Read your Statement 4 Useful
More informationBest safe and secure practices
Best safe and secure practices For cards transactions BANKOMAT DEF 3 MNO 6 CLEAR - CANCEL x WXY 9 ENTER O BANKOMAT Maintaining the card and PIN number Using a card is highly valuable and provides opportunities
More informationPayment Systems Department
v Note: Please follow these guidelines for your safety as you enjoy the convenience of technology. However these guidelines are general; therefore, specific precautions may be taken as warranted by the
More informationMerchant Services. How to help protect your business
Please immediately report any suspicious activity involving credit card or debit card use to TD Merchant Services at 1-800-6-116 For more information, visit www.tdmerchantservices.com Merchant Services
More informationRSA Adaptive Authentication For ecommerce
RSA Adaptive Authentication For ecommerce Risk-based 3D Secure for Credit Card Issuers SOLUTION BRIEF RSA FRAUD & RISK INTELLIGENCE The Threat of ecommerce Fraud ecommerce fraud is a threat to both issuers
More informationHow To Comply With The New Credit Card Chip And Pin Card Standards
My main responsibility as a Regional Account Manager for IMD is obtain the absolute lowest possible merchant fees for you as a business. Why? The more customers we can save money, the more volume of business
More informationHow To Protect Your Cardholder Data From Fraud
Global Visa Card-Not-Present Merchant Guide to Greater Fraud Control Protect Your Business and Your Customers with Visa s Layers of Security Millions of Visa cardholders worldwide make one or more purchases
More informationUnderstanding and Combating Online Fraud in 2014
Understanding and Combating Online Fraud in 2014 Fraud is pervasive online and high-risk merchants must be vigilant in employing a multi-layered, comprehensive approach to security and risk management.
More informationCREDIT CARD FRAUD PROTECTION. how to protect your business and your customers
CREDIT CARD FRAUD PROTECTION how to protect your business and your customers INTRODUCTION It is an unfortunate fact that many businesses will encounter a customer who presents a credit card or a credit
More informationCredit/Debit Card Processing Requirements and Best Practices. Adele Honeyman Oregon State Treasury Training Specialist
Credit/Debit Card Processing Requirements and Best Practices Adele Honeyman Oregon State Treasury Training Specialist 1 What? What do I need to know about excepting credit cards? Who s involved, how it
More informationBest Practices for Internet Merchants
Best Practices for Internet Merchants The following best practices, taken from various experts, are offered to help you avoid being victimized by Internet fraud. Experience suggests that there are certain
More informationTransaction Dispute Office
Transaction Dispute Office Help Guide SmartPay 2 Version 1.0 August 2008 Confidentiality Clause and Disclaimer This Guide contains information that is confidential and proprietary to JPMorgan Chase Bank,
More information8/13/2014. Types of Identity Theft HOW IS IDENTITY THEFT DISCOVERED? Identity Theft. Run up existing accounts. Create new accounts.
According to the Federal Trade Commission, identity theft is the fastest growing white collar crime in the United States Increasing an average nearly 40 percent per year for the past several years. The
More informationAUSTRALIAN PAYMENTS FRAUD DETAILS AND DATA
Australian Payments Clearing Association AUSTRALIAN PAYMENTS FRAUD DETAILS AND DATA 214 Australian Payments Clearing Association Limited ABN 12 55 136 519 CONTENTS OVERVIEW 1 SECTION 1 Fraud rates 4 SECTION
More informationIdentity Theft: An Introduction to the Scope of the Crime, and Its Prevention, Detection and Remediation
Identity Theft: An Introduction to the Scope of the Crime, and Its Prevention, Detection and Remediation June 2009 Cairo, Egypt Joanna P. Crane Identity Theft Program Manager Senior Attorney The views
More informationBecoming PCI Compliant
Becoming PCI Compliant Jason Brown - brownj52@michigan.gov Enterprise Security Architect Enterprise Architecture Department of Technology, Management and Budget State of Michigan @jasonbrown17 History
More informationPayments Transformation - EMV comes to the US
Accenture Payment Services Payments Transformation - EMV comes to the US In 1993 Visa, MasterCard and Europay (EMV) came together and formed EMVCo 1 to tackle the global challenge of combatting fraudulent
More informationAbout the Federal Reserve
About the Federal Reserve The Federal Reserve Bank of Philadelphia is one of 12 regional Reserve Banks in the United States that, along with the Board of Governors in Washington, D.C., make up the Federal
More informationFraud Protection, You and Your Bank
Fraud Protection, You and Your Bank Maximize your chances to minimize your losses Presentation for Missouri GFOA April 2011 By: Terry Endres, VP, Government Treasury Solutions Phone: 314-466-6774 Terry.m.endres@baml.com
More informationPhishing for Fraud: Don't Let your Company Get Hooked!
Phishing for Fraud: Don't Let your Company Get Hooked! March 2009 Approved for 1 CTP/CCM recertification credit by the Association for Financial Professionals 1 Today s Speakers: Joe Potuzak is Senior
More informationU.S. Smart Card Migration: Stripe to EMV Claudia Swendseid, Federal Reserve Bank of Minneapolis Terry Dooley, SHAZAM Kristine Oberg, Elavon
U.S. Smart Card Migration: Stripe to EMV Claudia Swendseid, Federal Reserve Bank of Minneapolis Terry Dooley, SHAZAM Kristine Oberg, Elavon UMACHA Navigating Payments 2014 October 8, 2014 Who We Are Claudia
More informationAvoiding Fraud. Learn to recognize the warning signs for fraud and follow these card acceptance guidelines to reduce your risk.
Avoiding Fraud Learn to recognize the warning signs for fraud and follow these card acceptance guidelines to reduce your risk. Intoduction Fraud comes in many forms and hurts merchants of all sizes. Whether
More informationVisa CREDIT Card General Guidelines
Visa CREDIT Card General Guidelines General Account Information Phone Numbers and Addresses It is very important to keep us up-to-date with your correct address and phone number. Card reissues/replacements
More informationCard Network Update Chip (EMV) Acceptance in the United States At-A-Glance
Card Network Update Chip (EMV) Acceptance in the United States At-A-Glance Allegiance Merchant Services is committed to assisting you in navigating through the various considerations that you may face
More informationRisk Mitigation in Travel. New Trends to Reduce Fraud and Increase Revenue
Risk Mitigation in Travel New Trends to Reduce Fraud and Increase Revenue wherever people pay What We Are Going to Discuss Today 3D Secure: Turning a conversion killer into a revenue creator. Transaction
More informationA RE T HE U.S. CHIP RULES ENOUGH?
August 2015 A RE T HE U.S. CHIP RULES ENOUGH? A longer term view of security and the payments landscape is needed. Abstract: The United States is finally modernizing its card payment systems and confronting
More informationFFIEC CONSUMER GUIDANCE
FFIEC CONSUMER GUIDANCE Important Facts About Your Account Authentication Online Banking & Multi-factor authentication and layered security are helping assure safe Internet transactions for banks and their
More informationPayment Card Acceptance Administrative Policy
Administrative Procedure Approved By: Brandon Gilliland, Associate Vice President for Finance & Controller Effective Date: October 1, 2014 History: Approval Date: September 25, 2014 Revisions: Type: Administrative
More information2014 Payments Fraud Survey
2014 Payments Fraud Survey Summary of Consolidated Results Payments Information & Outreach Office Federal Reserve Bank of Minneapolis December 2014 Topics Survey Methodology & Respondent Profile Fraud
More informationSafety& Security Tips
Safety& Security Tips 1. Security measures adopted by IDBI Bank IDBI Bank has a strong online security policy to ensure our customers have a safe and secure online experience with us. We have 256 bit Secure
More informationPayment Cardholder Data Handling Procedures (required to accept any credit card payments)
Payment Cardholder Data Handling Procedures (required to accept any credit card payments) Introduction: The Procedures that follow will allow the University to be in compliance with the Payment Card Industry
More informationFIGHTING FRAUD: IMPROVING INFORMATION SECURITY TESTIMONY OF JOHN J. BRADY VICE PRESIDENT, MERCHANT FRAUD CONTROL MASTERCARD INTERNATIONAL
FIGHTING FRAUD: IMPROVING INFORMATION SECURITY TESTIMONY OF JOHN J. BRADY VICE PRESIDENT, MERCHANT FRAUD CONTROL MASTERCARD INTERNATIONAL Before the Subcommittee on Financial Institutions and Consumer
More informationFraud Prevention Issuer s Best Practice Guide
Issuer s Best Practice Guide Rev. March 2011 www.fisglobal.com Copyright 2006 by FIS Card Services, Inc., a wholly owned subsidiary of FIS, Inc. All rights reserved. Printed in the United States of America.
More informationPrepared testimony of W. Joseph Majka Head of Fraud Control and Investigations Visa Inc.
Prepared testimony of W. Joseph Majka Head of Fraud Control and Investigations Visa Inc. Before the Subcommittee on Emerging Threats, Cybersecurity, and Science and Technology of the House Committee on
More informationPROTECT YOUR BUSINESS FROM LOSSES WHILE ACCEPTING CREDIT CARDS
PROTECT YOUR BUSINESS FROM LOSSES WHILE ACCEPTING CREDIT CARDS TABLE OF CONTENTS Introduction...1 Preventing Fraud in a Card-Present Environment...2 How to Reduce Chargebacks in a Card-Present Environment...4
More informationEMV EMV TABLE OF CONTENTS
2 TABLE OF CONTENTS Intro... 2 Are You Ready?... 3 What Is?... 4 Why?... 5 What Does Mean To Your Business?... 6 Checklist... 8 3 U.S. Merchants 60% are expected to convert to -enabled devices by 2015.
More informationMitigating Fraudulent CNP Transactions
Examination of Safeguards Electronic commerce has become a wildly successful channel for merchants and their customers. While the ability to shop online or through mail order catalogs is not new, the explosion
More informationDIAMOND NAIRA VISA DEBIT CARD. Your Bank
DIAMOND NAIRA VISA DEBIT CARD Your Bank Overview The Diamond Naira Visa Debit Card is an international payment card issued by Diamond Bank in partnership with the VISA Card Association. It is denominated
More informationSecurity Best Practices
White Paper Security Best Practices Maintaining tight security, including using both standard and advanced fraud detection and prevention tools, is crucial to maintaining a successful business. No merchant
More informationPCI Compliance Overview
PCI Compliance Overview 1 PCI DSS Payment Card Industry Data Security Standard Standard that is applied to: Merchants Service Providers (Banks, Third party vendors, gateways) Systems (Hardware, software)
More informationVisa global Compromised Account
Visa global Compromised Account RECOVERY PROGRAM WHAT EVERY MERCHANT SHOULD KNOW ABOUT GCAR WHAT EVERY MERCHANT SHOULD KNOW ABOUT GCAR WHAT The Visa Global Compromised Account Recovery (GCAR) program offers
More informationElectronic Fraud Awareness Advisory
Electronic Fraud Awareness Advisory Indiana Bankers Association Fraud Awareness Task Force February, 2012 Electronic Fraud Awareness Advisory Purpose/Summary The Indiana Bankers Association (IBA) was involved
More informationPrevention Is Better Than Cure EMV and PCI
Prevention Is Better Than Cure EMV and PCI Prevention Is Better Than Cure An independent view on the effectiveness of EMV and PCI in case of large-scale card compromise. Over the past couple of months,
More informationFranchise Data Compromise Trends and Cardholder. December, 2010
Franchise Data Compromise Trends and Cardholder Security Best Practices December, 2010 Franchise Data Security Agenda Cardholder Data Compromise Overview Breach Commonalities Hacking Techniques Franchisee
More informationHow To Protect Visa Account Information
Account Information Security Merchant Guide At Visa, protecting our cardholders is at the core of everything we do. One of the many reasons people trust our brand is that we make buying and selling safer
More informationTo p t i p s f o r s a f e o n l i n e b a n k i n g a n d s h o p p i n g
To p t i p s f o r s a f e o n l i n e b a n k i n g a n d s h o p p i n g The Internet offers the opportunity to bank and shop in safety whenever you want. More than 15 million people in the UK now use
More informationBlackbaud Merchant Services Web Portal Guide
Blackbaud Merchant Services Web Portal Guide 06/11/2015 Blackbaud Merchant Services Web Portal US 2015 Blackbaud, Inc. This publication, or any part thereof, may not be reproduced or transmitted in any
More informationFraud Detection and Prevention. Timothy P. Minahan Vice President Government Banking TD Bank
Fraud Detection and Prevention Timothy P. Minahan Vice President Government Banking TD Bank Prevention vs. Detection Prevention controls are designed to keep fraud from occurring Detection controls are
More informationFraud Prevention Guide
Fraud Prevention Guide Table of Contents Protect your Information 2 Protect your wallet or purse 3 Don t forget around the house 3 Secure your credit cards and debit cards 4 Stop the telemarketing calls
More informationRetail/Consumer Client. Internet Banking Awareness and Education Program
Retail/Consumer Client Internet Banking Awareness and Education Program Table of Contents Securing Your Environment... 3 Unsolicited Client Contact... 3 Protecting Your Identity... 3 E-mail Risk... 3 Internet
More informationSecurity Guide. for electronic transactions. UniBank is a division of Teachers Mutual Bank Limited
Security Guide for electronic transactions UniBank is a division of Teachers Mutual Bank Limited Teachers Mutual Bank Limited ABN 30 087 650 459 AFSL/Australian Credit Licence 238981 Who We Are UniBank
More informationBe Safe, Smart and Secure: Simple Ways to Protect Your Identity and Your Money
Be Safe, Smart and Secure: Simple Ways to Protect Your Identity and Your Money Cards protect you and your money Electronic payment cards are one of the safest and most secure ways to purchase goods and
More informationPayment Methods. The cost of doing business. Michelle Powell - BASYS Processing, Inc.
Payment Methods The cost of doing business Michelle Powell - BASYS Processing, Inc. You ve got to spend money, to make money Major Industry Topics Industry Process Flow PCI DSS Compliance Risks of Non-Compliance
More informationIdentity Theft, Fraud & You. Prepare. Protect. Prevent.
Prepare. Protect. Prevent. Identity Theft, Fraud & You Fraud and identity theft incidents claimed fewer victims in 2010 than in previous years. But don t get too comfortable. Average out-of-pocket consumer
More information