Authenticating cardholder data can help reduce e-commerce fraud

January 19, 2024

As e-commerce continues to surge, digital payment methods are being used more often and in more contexts. But fraudsters see this as an opportunity to cash in. With e-commerce fraud on the rise, cardholder data authentication is a key to protecting digital transactions.

The U.S. e-commerce market is thriving, valued at $1.137 trillion in 2023. Second only to China, the shift towards digital commerce in the United States was accelerated by the pandemic, as well as technological innovations that make these digital transactions seamless and simple.

But the exciting growth of the e-commerce market is threatened by the parallel rise of online fraud. In 2024, experts predict the total cost of e-commerce fraud to merchants will exceed $48 billion globally. Payment fraud began moving online when EMV technology was implemented back in 2015 in the U.S. for in-store purchases. EMV was so successful in decreasing card-present fraud that it pushed payment fraudsters to online transactions.

The COVID-19 pandemic further added to the rise of e-commerce fraud when, at the time, internet traffic surged 60% and more employees began working remotely with fewer security controls in place. With commerce shifting to online environments, digital card-not-present transactions also increased, and many environments were left vulnerable to fraudulent activity. 

 

Credit card chargebacks top e-commerce fraud

While fraudsters are developing sophisticated new scams like credential stuffing (mass payment authorization attempts to verify stolen accounts) and streaming potlucks (unauthorized sharing of streaming subscriptions), the most common and concerning type of online fraud is old school. Known as friendly fraud, this is when a cardholder claims a charge is fraudulent when in fact it was a legitimate transaction.

Friendly fraud accounts for approximately 61% of all chargebacks. It’s an expensive type of fraud for merchants, who are expected to pay over $100 billion in chargebacks in 2024. Friendly fraud is quickly becoming a major problem for e-commerce retailers across all industries, as merchants bear more than 75% of the financial impact.

 

Protecting digital transactions in the new normal

Research shows e-commerce sales in the U.S. rose 90% from 2019 to 2023 and the trend is only expected to continue. Fortunately, businesses can take advantage of the rise in digital sales growth while protecting themselves from all types of transaction fraud, including friendly fraud.

According to a recent IBM study, the average cost of a data breach was $4.45 million in 2023, a 15% increase over 3 years. But organizations with an incident response plan can reduce the cost of a data breach by 61%. 

When developing a security strategy for digital transactions, it’s important that any protective tools also help to reduce false declines and unnecessary friction that impede a smooth transaction for online customers. This will support a fast, easy and convenient checkout experience that keeps those customers satisfied.

Chart showing two ways to protect cardholder data and authenticate transactions

 

Data authentication key to fighting e-commerce fraud

Thanks to innovations in payment technology, there are many ways businesses can fight fraud and protect cardholder data while offering customers seamless digital payment transactions. One of the best tools available today is EMV 3-D Secure. Improving upon the older 3-D Secure (commonly known as Verified by Visa or MasterCard SecureCode, among others), the updated version offers a smoother user experience and now adapts to a wide variety of devices, including mobile. 

EMV 3-D Secure uses 10 times more assessment data points than the previous version, allowing for risk-based authentication by the card issuing bank. After the cardholder submits their information on the merchant payment page, it is sent to the issuing bank, which decides if there is adequate data to determine if the purchase is being made by the true cardholder in order to authenticate and then authorize the cardholder’s transaction. 

EMV 3-D Secure also relies on enhanced frictionless security such as biometrics, which is easy for cardholders to use and means customers don’t have to remember complicated passwords. These extra security features decrease the overall risk of fraud and friendly fraud specifically, since merchants who accept the strongly authenticated transactions are less vulnerable to losing potential chargeback disputes. 

By providing customers with simple, secure online checkouts, EMV 3-D Secure allows businesses to better protect against fraud, reduce chargeback liability, increase payment authorization rates and ultimately drive e-commerce revenue.

 

As payments continue to go digital, businesses will need to use innovative technology to protect themselves from transaction fraud. Contact your U.S. Bank relationship manager to learn more and help your organization stay ahead. 

Related content

The latest on cybersecurity: Mobile fraud and privacy concerns

Best practices on securing cardholder data

Turn risk into opportunity with supply chain finance

Hospitals face cybersecurity risks in surprising new ways

Authenticating cardholder data reduce e-commerce fraud

Post-pandemic fraud prevention lessons for local governments

Webinar: Robotic process automation

What is CSDR, and how will you be affected?

Risk management strategies for foreign exchange hedging

Proactive ways to fight vendor fraud

Webinar: CRE technology trends

5 Ways to protect your government agency from payment fraud

Avoiding the pitfalls of warehouse lending

Fight the battle against payments fraud

Fraud prevention checklist

Cybercrisis management: Are you ready to respond?

Complying with changes in fund regulations

Why Know Your Customer (KYC) — for organizations

The password: Enhancing security and usability

How to improve your business network security

Government agency credit card programs and PCI compliance

Cybersecurity – Protecting client data through industry best practices

Business risk management for owners of small companies

BEC: Recognize a scam

Evaluating interest rate risk creating risk management strategy

Increase working capital with Commercial Card Optimization

Disclosures

Start of disclosure content

Loan approval is subject to credit approval and program guidelines. Not all loan programs are available in all states for all loan amounts. Interest rate and program terms are subject to change without notice. Mortgage, Home Equity and Credit products are offered through U.S. Bank National Association. Deposit products are offered through U.S. Bank National Association. Member FDIC.