Risk and Fraud Monitoring

Fraud and fraud-related chargebacks can undermine the profitability of any business.  Left untreated, fraud can be a devastating problem. Before your business is affected by serious fraud problems, it is critical that you identify all fraud-prevention options and find a cost-effective solution that is relevant to your needs.

NDMS is committed to providing the most secure electronic payments transactions. We continuously monitor processing activity to help our merchants reduce risk and prevent fraud. Our risk department is here to help our merchants understand and use best practices for electronic card acceptance. We provide information to help merchants understand the credit card authorization process and become informed about averting fraud, avoiding costly errors and more.

NDMS takes fraud prevention seriously; we demonstrate our commitment every day by collaborating with industry leaders to protect our merchants and their customers from fraud and abuse.

What you need to know

Credit Card Fraud

As a consumer and cardholder, you have surely heard the stories of identity theft and credit card fraud that have showered the news. As society moves further away from cash to credit, these security issues are becoming a major concern to law enforcement and a major headache for merchants. Merchants need to be well educated on the common types of fraud and how to counteract fraud in their organizations.

Economic Impact

Each year, merchant and financial institutions lose BILLIONS of dollars to credit card fraudsters and identity thieves, according to the Federal Trade Commission Survey of Identity Theft study. The advances of technology and the Internet have provided additional tools and methods for these criminals to commit their crimes. These criminals have become more sophisticated and now operate in groups rather than as individuals. They can select a specific merchant, attack it by using a security flaw that the merchant may be unaware of, steal the money or goods that they are after and be long gone before the merchant finds out that anything has happened. These attacks can create a huge loss for the merchant, create distrust between the Merchant and its customers, create bad publicity for the merchant, and, in some cases, put the merchant out of business.

Trusted Employee

In the brick-and-mortar world of business, trusted employee fraud is one of the most costly losses a merchant experiences. Most of the time these are just disgruntled employees or employees that are low on income and need some cash quickly. Other cases involve criminals and even groups gaining employment with the sole intent of committing fraud. They may just be collecting your customers' credit card information so they can make their own fake cards, purchases on the Internet or they may be sharing/selling the card information to other criminals. They may also be issuing credits to their own credit cards through your merchant account, putting small amounts into their bank account that you may never realize until it is too late. They may even be voiding transactions after a sale to put money in their pocket from the register or to provide goods/services to friends without actually having them pay for it.

Skimming

Technology advances have created cheap, easily configurable devices that allow an individual to swipe a credit card into a device such as a PDA or cell phone. Once swiped, the thief has all of the magnetic track information for the card and can easily create a new card based on that track information, or use the card number contained in the track information for transactions over the Internet. skimming devices allow a thief to swipe and maintain thousands of card numbers.

Spoofing/Phishing

Spoofing and spoof shops primarily exist on the Internet. Spoofing is the practice of setting up a website that will make a cardholder believe it to be a legitimate business they normally conduct business with, or a new business that they would want to do business with. In some cases, the spoof shop has no intention of running a transaction, they just collect a cardholder’s information and card number. They store this information and use it for their own purchases. Many of the purchases they make for themselves are turned around for quick resale so they can pocket the cash. Some of these shops share the cardholder’s information with other fraudsters so they can use it as much as possible before the cardholder knows that something is happening to their account, let alone had a chance of stopping it.

Cardholder Fraud

Cardholder fraud is very hard to identify and prevent. This type of fraud occurs when a legitimate cardholder purchases a good or service and then files a dispute claiming they never received the goods or services for the transaction. They may even make the purchase and then immediately report the card as stolen. Other cases involve friends or family of the cardholder “borrowing” the card without permission to make a purchase and then returning it to the cardholder without them knowing it left their possession.

Number Generators

Readily available software can provide online thieves with thousands of payment card numbers. Once the thief has these numbers, they simply have to figure out which ones are “real” or active. This is done with simple software that will run a small dollar transaction with each of the cards. When an approval is received, they know they have a “real” card and can use it to make large purchases on the Internet.

Stolen, Altered and Fake Cards

Stolen credit cards are when actual credits cards are removed from the possession of their owners without their permission. Thieves steal the cards from the card manufacturers, mail, purses, wallets, etc. Once in the thieves’ possession, they will use them as quickly as they can to make as many purchases as they can before the card is reported stolen.

An altered card refers to a regular issued credit card that has had identifying parts of it altered. This could be anything from changing the expiration date, signature panel or even re-encoding the magnetic stripe with another card number.

Fake cards are harder to identify than counterfeit currency. Technology has made it so that criminals can produce very legitimate looking cards and then emboss and encode the card with a stolen credit card’s information.

Identity Theft

Everyone has heard about identity theft today. Once an individual’s identifying information has been compromised, a thief can use it to set up new accounts in that person’s name or they can take over an existing account of that person. There are many ways people can track down your identity. Whether it is finding crucial financial information in a merchant’s dumpster or an individual cardholder’s files, thieves will rummage through garbage bins or filing cabinets to look for any information that they can use. Whether it is a credit card number, social security number, address information or birth date, all of these simple things can mean big money to a thief and big headaches to the individual whose information is stolen.

For those that don’t want to get dirty going through trash, it has proven very simple to look over a person’s shoulder and gain a lot of information about them. A lot of information comes out of an individual’s wallet or purse when making a transaction. Driver’s licenses, ID cards, checkbooks and credit cards all see frequent time at the cash register. Some of these criminals have taken it a step further. With the advent of cameras in cell phones, they can click a quick image of the crucial information and not worry about having to remember it.

Once this information is retrieved, from the garbage or over the shoulder, the thief can use it to make purchases or setup new accounts to make purchases with.

Hackers

No matter how you spin it, shopping on the Internet continues to grow. Having a presence on the Internet is a big benefit to many merchants. But the growth of online shopping will only continue as long as consumers feel safe and comfortable making their purchases on the Internet. Hackers spend a great deal of time focusing on individual websites searching for “a way in.” There is always the chance that a loophole exists for them to get into a site and they have plenty of time to look for it. Once they find a way into a site, they begin searching for sensitive information that they can steal for their own personal gain, or they can setup software that will send them information as the website receives it. In any case, they have the ability to quietly collect large amounts of information.

International

The vast majority of fraud with credit cards in the United States originates from overseas. Many eCommerce merchants will not even conduct business with those who use foreign-issued credit cards. There are huge criminal organizations in some countries that have ties to the banks in those countries and can access a lot of information that can then be used to do business with U.S. merchants over the Internet.

Things to watch for

There are a few things to look out for to make certain that your payment transactions and important information is not compromised.

  • Watch for customers who make major purchases without asking any questions. “Major purchases” have to be defined by you, the merchant. You know what your typical customer is like; if you think it is great that someone is buying the most expensive item in your store without asking you the kinds of questions you would normally get for that item, you may have a problem.
  • Watch for customers who purchase large quantities of merchandise that just don’t make common sense, such as a variety of items, different sizes of the same thing, or similar items with big price differences. If it looks like they didn’t put a lot of thought into their shopping, chances are they didn’t and you could have a problem.
  • Watch for a customer who is being pushy or rushing the clerk during the cash out process. They may be trying to throw them off guard and use a fake payment card or a card that doesn’t belong to them. Make sure that your staff knows to take their time going through the sales transaction process.
  • Also, if a customer makes a purchase, leaves the store, and then returns shortly afterward for another larger purchase, this would be a good sign of a potential problem.
  • Watch for customers who come in early in the morning as soon as you open or late in the evening just before closing to make a large purchase are typically trying to get employees that may have other things on their minds and may miss something on the transaction. Again, proper education of your staff is crucial in preventing fraudulent activity.
  • And finally, if a customer is purchasing a large item and you offer free delivery of the item, you should thoroughly question them if they do not want the free delivery. If at all possible, you should insist that delivery is the only option. If they don’t want you knowing where they live, there is a reason and you should be concerned about the transaction.