More than $700 million in online sales were lost to fraud in 2001, representing 1.14 percent of total annual online sales of $61.8 billion, according to GartnerG2.
Online fraud losses for 2001 were 19 times as high, dollar for dollar, as fraud losses resulting from offline sales. But the good news is that the survey found that adult consumers in the United
States are beginning to adopt credit card company solutions designed to protect against online fraud.
A Gartner Internet survey of more than 1,000 adult U.S. online consumers conducted in January 2002, showed that 5.2 percent of respondents were victimized by credit card fraud in 2001 and 1.9 percent were victimized by identity theft (although respondents do not know whether the theft occurred online or offline).
More than 18 percent of respondents are attempting to fight fraud by embracing two new credit card protection systems: Visa’s Verified by Visa and MasterCard’s Universal Cardholder Authentication Field (UCAF) standard and Secure Payment Application (SPA).
“After years of missteps, the credit card companies have finally got it right with their consumer authentication technology. Consumers are willing to adopt the easy-to-use password-based applications,” said Avivah Litan, vice president and research director at GartnerG2. “Other security schemes, including public key infrastructure (PKI, definition), smart cards (that the credit card firms also support) and disposable card numbers, receive far less consumer support.”
Litan also said that most consumers are unwilling to take the extra steps required to use PKI, as the failure of the previous MasterCard/VISA sponsored PKI-based Secure Electronic Transactions (SET) standard showed. Consumers also appear to trust the Visa and MasterCard brands, believing their new systems offer better protection than PKI or smart cards.
The credit card companies do not yet appear willing to take the next major step: inciting merchant adoption by universally lowering merchant fees. MasterCard does plan to partially incite U.S. merchants by making issuers, rather than merchants, liable for UCAF-protected transactions beginning in November 2002. Visa plans a similar shift in liability rules in mid-2003. U.S. merchants will, however, continue to pay higher fees for Internet transactions, which average approximately 2.5 percent compared to 1.5 percent for in-store sales.
“Consumers are interested in using these new security systems, which can significantly reduce online fraud. The credit card companies should, however, back up their belief in these systems by lowering fees for all merchants who support them,” Litan said. “This would guarantee even more widespread adoption.”
The third annual CyberSource Fraud Survey, which was commissioned by CyberSource Corp. and conducted in late September 2001, found that merchants expected fraud rates to increase during the holidays to more than three times the average fraud rate they experience experience the rest of the year. More than half (54 percent) of respondents viewed online credit card fraud as “very serious”, and 65 percent took more precautions during the 2001 holiday season in the previous year.
The survey respondents indicated their highest concerns about managing fraud continue to be accurately detecting it and rejecting valid orders, their fastest growing concern is having enough resources to effectively combat it. Fifty percent of respondents rated this problem as one of their highest concerns, representing the most significant change – a 61 percent increase from 31 percent in 2000.
The CyberSource Fraud survey was conducted by Mindwave Research. Respondents invited to participate in this study were drawn from a combination of sample sources, including retail businesses and consumer product manufacturers.