Signifyd research: Coronavirus ushers in “golden age of e-commerce fraud”

Online retailers across Europe face a new era of malicious attacks spurred by a Covid-19 inspired transformation in e-commerce and a 350% increase in fraudulent orders, according to research by Signifyd.

This is thanks in part to the growing sophistication and diversification of organised fraud rings.

The research also flags a doubling of consumer abuse in the first half of 2021, including false claims that an online order never arrived or that an order that did arrive was in unsatisfactory condition.

There has also been a dramatic increase in fraud rings’ use of bots. Automated fraud attacks were up by 146% in 2020.

Is it the Nightmare before Christmas for #retail? Our data shows that holiday shopping season is already in full force. In fact, #Ecommerce in the first week of October was up 23% over the same week a year ago. What does this mean? Check out the new blog: https://t.co/War40IHGQI
— Signifyd (@signifyd) October 26, 2021

“Between the acceleration of e-commerce, changes in consumer behaviour and the arrival of SCA, few would argue that commerce is not in a state of great transformation,” says Signifyd Managing Director, EMEA Ed Whitehead.

“Our report lays out in detail how these changes came about and offers merchants actionable strategies and solutions to keep up in a dynamic industry at an historic time.”

The pandemic ushered in a “golden age of e-commerce fraud” fuelled by several factors, the report says.

These include: a dramatic wave of first time online shoppers; and the need for fraud rings to move from protected segments of the buying journey to more vulnerable ones.

“Fraud is a moving target,” says Ollie Marshall, MD at Maplin, and one of several retailer leaders quoted in the report. “As fraud protection becomes more sophisticated, fraud rings find new vulnerabilities to attack. We shut them down and they move on. I have no doubt they’ll be back.”

European retailers are facing historic fraud pressure at a time when the payments landscape is undergoing upheaval due to the enforcement of PSD2’s Strong Customer Authentication (SCA) requirement.

The addition of SCA’s robust two-factor authentication process has been rolled out across much of Europe and will be enforced in the UK beginning in March.

SCA was instituted to protect retailers and consumers from online fraud. The beginning of enforcement across Europe has resulted in an average transaction failure rate of 26% post-SCA enforcement, according to payment services consultancy CMSPI.

The Signifyd report explores the conversion issue and reviews some of the strategies retailers are embracing to enjoy the benefit of added protection without introducing added friction to their customers’ buying experiences.

“Overall, the solutions which have been put in place have the potential to work well. A key factor for success is that all aspects of the payment ecosystem are ready and that there is effective communication and interoperability amongst the players,” Andrew Cregan, Head of Finance Policy for the British Retail Consortium (BRC), says in the report.

“The experience for the customer must be straightforward, but also it must be communicated well beforehand, so that it's fully understood.”

The report also explores how several types of fraud attacks, including account takeover, automated card testing, synthetic identities, return fraud, mule fraud and unauthorised reselling, have morphed and are likely to remain prevalent.

“In our recent research, the majority of merchants surveyed reported increases in synthetic and account takeover fraud over the previous year,” John Winstel, Global Head of Fraud Product at FIS, comments in the report.

“As these and other new fraud trends emerge, the safeguarding of a merchant’s revenue requires smart, dynamic protection against fraud throughout the payment lifecycle.”

Featured