January 27, 2011, 2:23 PM

Criminals don’t stop at one web merchant when using stolen credit cards

At least 10% of the time purchases are made with multiple merchants, says Ethoca.

Don Davis

Editor in Chief

Lead Photo

A criminal armed with a stolen credit card is likely to use it to make fraudulent purchases at more than one web merchant, according to a new study by Ethoca, a provider of a service that shares data among merchants and credit card issuers.

In at least 10% of the cases studied, a stolen card was used to commit fraud at more than one e-commerce site according to the study. And that’s a conservative estimate, Ethoca says, because the study only tracked 95 e-retailers that were enrolled in Ethoca’s Issuer Confirmed Alerts Service during the study period, June to October 2010. “It is likely that merchants not participating in Ethoca’s program also experienced attacks from the same fraudsters, which would increase the estimates,” the report says.

The study also found that in 86% of the cases the criminal stopped using the stolen card within 24 hours of making the first fraudulent purchase. In some cases that was because the bank that issued the card canceled it during that time period, the report says.

The report also found that criminals did not limit themselves to particular merchandise categories when using a stolen card, but used the cards at the web sites of merchants of many types.

“Our research shows not only the importance of sharing data, but how quickly it needs to be shared in order to be effective, and what kind of difference it makes to share it across industries,” says Daniele Micci-Barreca, co-author of the report and a principal at consulting firm Elite Analytics, “Merchants who share data should do so in real-time or near real-time. With speed, digital goods and services can be shut down before the thief is able to get or use them.” Julie Fergerson, vice president of emerging technologies at Ethoca, was the other author of the report.

The report, “Fraud Attacks Cross Industries,” is based on an analysis of 25,188 instances of fraud confirmed by card issuers. The 95 merchants studied account for 61% of the revenue of the 500 online retailers listed in the current edition of the Internet Retailer Top 500 Guide, Ethoca says.

Comments | 1 Response

  • This is a great summary Don. And, it looks like you got the scoop. For those who want the study link (and if it's ok with forum rules to put it in a comment here) it's http://www.ethoca.com/crosstalk

Sign In to Make a Comment

Comments are moderated by Internet Retailer and can be removed.

Not a member? Signup for free today!

Advertisement

Advertisement

Advertisement

Relevant Commentary

FPO

Seth Barnes / BLOG_ROOT

Commissions are for closers

A Savings.com executive responds to an Internet Retailer article describing a web merchant’s decision to ...

FPO

Jason Squardo / Mobile Commerce

Five tips for achieving high mobile search rankings

Searches on mobile devices will soon exceed those on computers, Google says. Retailers that keep ...

Advertisement