Online Transactions in the Digital Age
Digital and mobile wallets are currently the most utilized payment methods, constituting 49 percent of global payments. Credit and debit cards follow, accounting for 32 percent of payments. However, in the next ten years, the card industry is anticipated to incur over $400 billion in losses.
The rise in online transactions worldwide will be accompanied by a notable increase in financial crimes and advanced cyberattacks, with a substantial portion fueled by unauthorized access and exploitation of consumer information. Coupling these factors with increasingly sophisticated approaches to fraud means protecting your business and customers with an adaptable, real-time fraud detection solution is more important than ever.
Industries Most Affected by Online Payment Fraud in 2023
With the rise of digital payments, it is critical to note that each industry faces distinct challenges in combating fraudulent activities. In the aftermath of a data breach, each compromise results in differing victim counts and can pose a significant financial burden to your business and customers. In the graph below, the number of victims of fraud is dramatically larger than the number of compromises per industry – signaling that a large-scale breach and the resultant data theft can stem from a single compromise.
Trends in Compromised Data
Financial services was the most attacked industry in 2023, looking at year-over-year totals, surpassing healthcare. While the total number of victims has decreased, data breaches are at an all-time high. When left unmanaged, these risks can pose an “existential threat” to your business.
| Year | ||||||
| Q3 2023 | Q3 2022 | Q3 2021 | ||||
| Compromises | Victims | Compromises | Victims | Compromises | Victims | |
| Education | 42 | 1,905,778 | 22 | 1,097,582 | 25 | 1,259,723 |
| Financial Services | 204 | 10,455,000 | 66 | 3,152,906 | 69 | 1,732,946 |
| Government | 26 | 2,869,273 | 19 | 219,441 | 21 | 1,927,008 |
| Healthcare | 113 | 16,753,924 | 93 | 5,059,364 | 78 | 11,150,980 |
| Hospitality | 10 | 132,184 | 10 | 69,027,431 | 5 | 31,069 |
| HR/Staffing | 2 | 134,469 | – | – | – | – |
| Manufacturing | 65 | 2,958,947 | 64 | 23,089,103 | 48 | 48,306,467 |
| Construction | 20 | 37,595 | – | – | – | – |
| Non-Profit | 22 | 7,136,737 | 16 | 65,161 | 21 | 143,457 |
| Professional Services | 81 | 16,467,396 | 69 | 1,705,652 | 48 | 1,534,208 |
| Retail | 30 | 1,256,276 | 20 | 363,880 | 21 | 520,028 |
| Social Services | 3 | 17,349 | – | – | – | – |
| Technology | 40 | 4,883,245 | 21 | 2,969,682 | 12 | 406,007 |
| Transportation | 25 | 18,471 | 6 | 2,517,830 | 8 | 329,171 |
| Utilities | 10 | 12,857 | – | – | – | – |
| Wholesale Trade | 13 | 21,063 | – | – | – | – |
| Other | 27 | 1,598,200 | 64 | 691,134 | 88 | 63,908,379 |
| Unknown | – | – | – | – | 1 | 35,000,000 |
| Totals | 733 | 66,658,764 | 471 | 109,959,056 | 445 | 166,249,443 |
Targeted Information: What Do Fraudulent Users Want
The type of information compromised in each data breach determines the quality of resources a fraudulent user can steal and the extent of damage that can be done with it. Personally identifiable information (PII), such as bank accounts, social security numbers, and driver’s license numbers, enable fraudsters to access online accounts and payments. Other data, like names and dates of birth, are more readily leveraged in phishing and smishing scams. On an annual basis, social security numbers are the most frequently compromised piece of PII.
Most Common Fraud Attacks
Cyberattacks and human and system errors are the two main ways fraudsters steal data. While some compromised data is inconsequential, most information, in the wrong hands, can be damaging. For example, if cyber-attackers access an individual’s background information, they can use that data and other collected details to bypass anti-fraud checks more efficiently.
Four Key Payment Fraud Vectors and How SEON Solves Them
Account Takeover (ATO)
Colloquially known as hacked accounts, ATO is a form of payment fraud in which fraudsters gain access to a victim’s account, typically an online banking, an ecommerce account or a digital wallet. Using stolen or phished credentials to log in, the fraudster changes account details to seize control. Once in, they can make unauthorized transactions, transfer funds, and purchase using stored payment methods.
SEON’s solution: With device fingerprinting, IP modules, and user behavior analysis, SEON detects irregular logins and other suspicious user behaviors and flags them in real-time, giving your business the tools to stop ATO in its tracks.
Chargeback Fraud
Frequently referred to as friendly fraud, chargeback fraud occurs when a cardholder makes an online purchase and then requests a chargeback from the issuing bank after receiving purchased goods or services. Legitimate chargebacks are meant for unauthorized use or defective products, while chargeback fraud is committed when the request is made despite no actual issue with the transaction.
SEON’s solution: Using transaction monitoring and behavioral analysis, SEON identifies suspicious chargeback requests and prevents fraud.
Stolen Card Fraud
From physical theft of card information or a card’s skimmed details from illegal devices, stolen card fraud involves the unauthorized use of credit or debit card information. Fraudsters use card details to make unauthorized transactions or cash withdrawals, leading to financial loss for legitimate cardholders and the financial institutions involved.
SEON’s solution: SEON’s device fingerprinting, IP module, BIN module and velocity rules catch card testing behavior or stolen cards used across several transactions.
Money Laundering
Money laundering is a complex financial crime involving concealing the origins of illegally obtained money. Typically, it involves three steps: placement, layering, and integration. Placement involves introducing illicit funds into the financial system, layering conceals the source through a series of transactions and bookkeeping tricks, and integration provides legitimacy to the funds through additional transactions and investments. This process makes it difficult to trace the illegal money back to the crime.
SEON’s solution: With transaction monitoring and an anti-money laundering (AML) module, SEON enables payment companies to detect and report potential money laundering activities.
| Q3 2023 | Q3 2022 | Q3 2021 | |
| Cyberattacks | 614 | 414 | 388 |
| Phishing/Smishing/BEC | 80 | 131 | 124 |
| Ransomware | 64 | 78 | 93 |
| Malware | 17 | 15 | 33 |
| Non-Secured Cloud Environment | 5 | 1 | 6 |
| Credential Stuffing | 4 | – | 4 |
| Unpatched Software Flaw | – | – | 2 |
| Zero Data Attack | 69 | 2 | 1 |
| Other | 7 | 2 | 123 |
| NA – Not Specified | 368 | 177 | 2 |
| System & Human Error | 94 | 42 | 43 |
| Failure to Configure Cloud Security | 6 | 3 | 20 |
| Correspondence (Email/Letter) | 40 | 15 | 10 |
| Misconfigured Firewall | 7 | 7 | 4 |
| Lost Device or Document | 9 | 3 | 2 |
| Other | 26 | 10 | 7 |
| NA – Not Specified | 6 | 4 | – |
| Physical Attacks | 14 | 12 | 6 |
| Document Theft | 1 | 2 | 2 |
| Device Theft | 7 | 4 | 1 |
| Improper Disposal | 1 | 1 | – |
| Skimming Device | 2 | 2 | – |
| Other | – | 2 | 3 |
| NA – Not Specified | 3 | 1 | – |
| Data Leak | 2 | – | 1 |
| Unknown | 9 | 3 | 7 |
How to Avoid Fraud
Given the widespread occurrence of fraud and the increased risk of financial crime, enhancing your fraud prevention strategies with proactive measures is imperative. Fraudsters in the payments space can steal PII, but obtaining or replicating a person’s digital footprint is much more difficult. A digital footprint is the trail of data created by an individual’s online activities as they engage with digital platforms, online accounts, social media and other online services. By looking at the unique signals that comprise an online identity in combination with device intelligence – examining the extensive proprietary device, IP, software and hardware configurations – atop of a user’s advanced digital footprint, you can protect against fraud with a multi-layered approach.
As an end-to-end fraud prevention and AML solution, we combine advanced digital footprinting, proprietary device intelligence and machine learning to ensure real-time payment fraud detection and prevention.
Speak with an expert
Methodology
Data on the split of global online payment methods is proprietary to SEON. Unless cited otherwise, all other data was retrieved from the Identity Threat Research Center’s Data Breach Annual Report.
- Global Payments, 2024 Commerce and Payment Trends Report – www.globalpayments.com/commerce-payment-trends
- Gartner, Top Trends in Alternative Payments and Digital Identity Management- https://www.gartner.com/document/4485099
- Identity Theft Resource Center, Q3 2023 Data Breach Analysis – https://www.idtheftcenter.org/wp-content/uploads/2023/10/20231011_Q3-2023-Data-Breach-Analysis.pdf
- McKinsey, Managing financial crime risk in digital payments – www.mckinsey.com/capabilities/risk-and-resilience/our-insights/managing-financial-crime-risk-in-digital-payments
