The report, released Friday by Meridien Research, warns that as more transactions are conducted over the Internet, online payment fraud will rise in tandem, increasing from US$1.6 billion worldwide in 2000 to $15.5 billion in 2005.
Although anti-fraud technology is not foolproof, the biggest factor in the projected increase is that only an estimated 30 percent of merchants use anti-fraud technology, Meridien analyst Jeanne Capachin said.
Last month, a hacker broke into Egghead.com's customer database, potentially exposing more than 3 million credit cards. The company later said the intruder did not gain access to any of the credit card numbers it had on file, but the incident raised fears about the security of using credit cards online and the potential for fraud.
Moriah Campbell-Holt, a financial services analyst with Gomez, agrees that merchants can expect online fraud to rise as online transactions increase in volume, especially as those committing fraud become more sophisticated in their methods. And because online merchants are liable for most fraudulent charges, they have an incentive to try to deter fraud, she said.
Disposable numbers, smart cards
Late last year, a number of credit card issuers, including American Express, MBNA and Discover, introduced "disposable" credit card numbers that can only be used once. And credit card issuers have been pushing smart cards, or cards that have a microchip embedded in them containing customers' personal information, for years.
Neither smart cards nor disposable cards have seen widespread adoption rates in the United States, but either technology could help prevent fraud in the future, Campbell-Holt said.
"As rates of adoption of (these) technologies increase, there will be less live numbers out there and less opportunity to commit fraud," she said.
Software solutions
Some companies make software that combats online payment fraud. Their technology ranges from applications that recognize patterns of questionable transactions to systems that look for certain fraud-linked scenarios. One scenario could be a shopper buying something from a Web site for the first time that buys an expensive item and has it shipped to an address that is different from the billing address.
The technology is not perfect, Capachin said. Like antivirus software, most anti-fraud systems are designed for today's threats, she said.
"Something that works great now isn't necessarily going to work as well in six months," she said.
Still, if merchants widely adopted the technology, online payment fraud could amount to just $5.7 billion worldwide in 2005, Meridien says.
Among the leaders in the anti-fraud market are HNC Software and CyberSource, which counts e-tailers Amazon.com and Buy.com among its customers
I am a Merchent on the net and are fed-up by the way no one seems to protect us from credit card fraud. Some time ago the card peole introduced a new number to be asked for as protection. It is a three digit number on the back of the card. Do they reeally think the fraudsters can't turn the card over?
If it is to be a fraud protection, it would have to be a PIN Num. which is not with the card. This is used successfuly in EFTPOS transactions, so why not on the internet.
I would like to see a Pass.word, or number that has to be quoted by the card holder. This would protect both the consumer and the merchent and would make the payment gateway work more efficiently. Vise has introduced an insurance, which only costs more for the merchents amd makes more money for Visa and the payment gateway. I the mean time we are going bankrupt. Thank you, Mary Sygall for www.rigall.com.au