Light Dark
December 13, 2017 By Derek Brink 3 min read
Fraud Protection
Retail

This is the second installment in a two-part series about e-commerce fraud during the holiday shopping season. Be sure to read part 1 for the full story.

The holiday season means major booms for retail sales, especially for e-commerce merchants who have to deal with the Santa Claus problem of figuring out whether a given online transaction is naughty or nice (e.g., fraudulent or legitimate) quickly and effectively.

Recent research from Aberdeen revealed that while e-commerce merchants are generally doing a good job at minimizing the impact of the naughty (e.g., fraudulent transactions that should not have been accepted, which lead to chargebacks), they are missing out on too much of the nice (e.g., legitimate transactions that are not accepted, which lead to false declines).

Altogether, e-commerce fraud costs retailers between 45 and 60 cents for every dollar in overall industry profitability. These figures include not only the cost of fraud, such as declines and chargebacks, but also the cost of making decisions about fraud (e.g., people, tools and data).

Making Faster, Better Decisions About E-Commerce Fraud

As everyone knows, Santa Claus himself keeps track of naughty and nice by making a list and checking it twice — but even he can’t take too long to make these decisions and still meet the expectations of his recipients for on-time delivery. The same is true for e-commerce merchants: Just a few seconds of delay in the buyer’s online experience or unacceptably slow delivery of purchased goods and services can lead online buyers to take their business elsewhere.

Capabilities for making better, more cost-effective and faster decisions about e-commerce fraud can help online merchants:

  • Minimize the negative impact of fraudulent transactions (e.g., manage the costs of chargebacks to an acceptable level).
  • Maximize the positive impact of legitimate transactions (e.g., increase top-line revenue by cutting down on false declines).
  • Reduce the likelihood of abandoned transactions (e.g., improve the buyer’s online experience by making approval decisions that don’t affect buyer expectations for web performance).
  • Increase the likelihood of repeat business (e.g., improve the buyer’s overall satisfaction by making approval decisions that don’t affect buyer expectations for physical delivery).
  • Manage the total cost of e-commerce fraud (e.g., achieve a balance of all of the above to reflect strategic business objectives).

Slow Decision-Making Leads to Late Deliveries

To illustrate the impact of how long it takes to make business decisions about e-commerce fraud, consider the following empirical findings from the Aberdeen report for online merchants in the consumer electronics market segment. For research purposes, consumer electronics includes items as varied as televisions, laptop computers, digital cameras, flash drives, drones, electric scooters, hoverboards and wireless earbuds. If it’s powered by batteries — with the exception of vehicles — it likely falls into this category.


Source: Aberdeen

As shown in the chart above, the time to make business decisions about e-commerce fraud is currently chewing up a significant portion of the typical order-to-shipment targets.

  • For an order-to-shipment target of 72 hours, the impact of making business decisions about e-commerce fraud ranges from 11 percent to 67 percent, with a median of 33 percent.
  • For an order-to-shipment target of 48 hours, the impact of making business decisions about e-commerce fraud ranges from 17 percent to 100 percent, with a median of 49 percent.
  • For an order-to-shipment target of 24 hours, the impact of making business decisions about e-commerce fraud ranges from 33 percent to 200 percent, with a median of 99 percent.

In other words, although the current level of performance for making decisions generally fits within an order-to-shipment target of 72 hours, this is a problem that will only grow worse under market pressure for faster delivery. In fact, it eventually becomes untenable: For an order-to-shipment target of 24 hours, the empirical data shows that online merchants will miss their target and ship late literally half of the time.

These numbers highlight the importance of implementing robust fraud protection solutions to safeguard both retailers and consumers, and to ensure that fraudsters find nothing but coal in their stockings this holiday season.

Do Faster Payments Mean Faster Fraud? Read the white paper

 |  |  |  |  |  |  | 
Derek Brink
VP & Research Fellow, IT Security and IT GRC, Aberdeen Group

More from Fraud Protection
October 30, 2023

Virtual credit card fraud: An old scam reinvented

3 min read - In today's rapidly evolving financial landscape, as banks continue to broaden their range of services and embrace innovative technologies, they find themselves at the forefront of a dual-edged sword. While these advancements promise greater convenience and accessibility for customers, they also inadvertently expose the financial industry to an ever-shifting spectrum of emerging fraud trends. This delicate balance between new offerings and security controls is a key part of the modern banking challenges. In this blog, we explore such an example.…

August 23, 2023

Remote access detection in 2023: Unmasking invisible fraud

3 min read - In the ever-evolving fraud landscape, fraudsters have shifted their tactics from using third-party devices to on-device fraud. Now, users face the rising threat of fraud involving remote access tools (RATs), while banks and fraud detection vendors struggle with new challenges in detecting this invisible threat. Let’s examine the modus operandi of fraudsters, prevalence rates across different regions, classic detection methods and Trusteer’s innovative approach to RAT detection through behavioral analysis. A rising threat As Fraud detection methods become more and…

August 17, 2023

Gozi strikes again, targeting banks, cryptocurrency and more

3 min read - In the world of cybercrime, malware plays a prominent role. One such malware, Gozi, emerged in 2006 as Gozi CRM, also known as CRM or Papras. Initially offered as a crime-as-a-service (CaaS) platform called 76Service, Gozi quickly gained notoriety for its advanced capabilities. Over time, Gozi underwent a significant transformation and became associated with other malware strains, such as Ursnif (Snifula) and Vawtrak/Neverquest. Now, in a recent campaign, Gozi has set its sights on banks, financial services and cryptocurrency platforms,…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature