IIA Fraud Seminar, Thursday 22 nd January 2009 Card Fraud Update Presented by: Úna Dillon, Head of Card Services, Irish Payment Services Organisation.

Slides:

Advertisements

Similar presentations

Fraud Resolution Revamp MOTO FRAUD July 17 th, 2011.

Advertisements

Combating Fraud Risk in Payment Systems. 2 Defining Fraud..a deliberate act of omission or commission by any person, carried out in the course of a banking.

1 Credit and Risk. 2 Explain the components of the credit approval process Utilize the Risk Acceptance Grid to identify necessary paperwork for approval.

Cross Border E-commerce: Challenges and Opportunities

Zenith Visa Web Acquiring A quick over view. Web Acquiring Allows merchants to receive payments for goods and services through the Internet Allows customers.

ETA UNIVERSITY MARCH 19, 2015 Deana Rich R ICH C ONSULTING, I NC. Edward A. Marshall A RNALL G OLDEN G REGORY LLP Payments 101: Overview of the Payments.

Accepting Credit Cards and PCI Compliance

1 U.S. EMV Migration Update and Best Practices Hap Huynh, Senior Director Risk Products April 2015.

The Third International Forum on Financial Consumer Protection & Education “Fostering Greater Consumer Protection & Education” Preventing Identity Theft.

© 2009, SHAZAM, Inc. 1 Debit Card Exceptions Diana Kern, AAP, Senior Trainer SHAZAM, Inc Treasury Management Conference.

Visa Account Updater & Stop Service Direct Response Forum Europe 25 April 2006.

1 Credit card operation and the recent CardSystems incident HONG KONG MONETARY AUTHORITY 4 July 2005.

Payment Systems The Credit Card System. Basic Concepts.

S T R I C T L Y P R I V A T E A N D C O N F I D E N T I A LS T R I C T L Y P R I V A T E A N D C O N F I D E N T I A L © 2008 JPMorgan Chase & Co. All.

EMV chip and pin the business case. What is EMV? New Standard in “Chip Card” Technologies Replacing Magnetic Strip Cards New Standard in “Chip Card” Technologies.

How to do Business Online - Securely Presented by: Michael Gulliver First Data Regional Credit and Risk Director.

Credit Card Fraud PRESENTED BY THE VIRGINIA OFFICE OF THE ATTORNEY GENERAL June 2013.

Why Comply with PCI Security Standards?

PAYMENT WITH A DEBIT-CARD Merchant swipes debit card Debit rather than credit transaction like credit card.

Travillon Consultants

Ecommerce Applications 2009/10 Session 31 E-Commerce Applications E-payment.

Accepting Credit Cards on your Website. If you are building an online shop, you will need to address the question of taking payments for orders. You can,

Netaxept Introduction International service which enables you to receive and process payments with variety of payment methods and currencies in.

Darren Muise Head of Commercial Partnerships State and Local Government Fraud Awareness and Prevention.

Central Michigan University Payroll and Travel Services 3.

Web Payments via Christopher Woods Aaron Buma. Agenda  Introduction  About it  Why to use it  Services they Provide  Seller Protection  Ebay Aspect.

An Introduction to PCI Compliance. Data Breach Trends About PCI-SSC 12 Requirements of PCI-DSS Establishing Your Validation Level PCI Basics Benefits.

May 28, 2002Mårten Trolin1 Protocols for e-commerce Traditional credit cards SET SPA/UCAF 3D-Secure Temporary card numbers Direct Payments.

PCI requirements in business language What can happen with the cardholder data?

Ecommerce Applications 2007/8 Session 61 E-commerce Applications Process views.

Traditional and Electronic Payment Methods Chapter 3.

Controlling Fraud Risk Exposure and Loss Sherri Goodman Director of Fraud Operations September 22, 2005.

Security and Fraud Solutions Initiatives: Turning the Threat into an Opportunity.

Technology Supervision Branch Interagency Identity Theft Red Flags Regulation Bank Compliance Association of CT Bristol, CT September 3, 2008.

Customer Interface for wuw.com 1.Context. Customer Interface for wuw.com 2. Content Our web-site can be classified as an service-dominant website. 3.

e-Learning Module Credit/Debit Payment Card Acceptance and Security

The Payment Card Industry (PCI) Data Security Standard (DSS) was developed to encourage and enhance cardholder data security and facilitate the broad.

Heartland Payment Systems Hospitality Solutions Group

Do you know who you’re dealing with? Social Engineering: Minimise the risk of becoming a victim.

T O S H I B AT O S H I B A Fraud & Disputes – Know Who You Are Trading With.

Standards in Use. EMV June 16Caribbean Electronic Payments LLC2.

Payment gateway is the service to process credit card transactions for the online customers, these gateway transactions are offered by different banks.

CREDIT CARD PAYMENT SYSTEM System involves Several major participants Purchaser that is cardholder Card Issuer that issues credit card Merchant that makes.

How to Manage Risk. This is the process involves the process for any application from a: Individual Cardholder Company or Corporate cards Merchants Any.

Summary of Changes. General These are changes that have come up in many EMV migrations that I have assessed and been involved in. The changes are broken.

Enforcement via Policies and Procedures. Processes and Procedures These are boring, tedious, time consuming…… BUT THEY ARE ESSENTIAL They must be written.

Confidential and Proprietary - NOT TO BE DISTRIBUTED WITHOUT THE EXPRESS WRITTEN PERMISSION OF BANK OF AMERICA MERCHANT SERVICES. ASTRA EMV Review/Best.

Trusted source for all your payment processing needs.

CNP Fraud. Occurs when a fraudster falsifies an application to acquire a credit card using an individual’s personal information. (Eg: postal intercept)

Chapter 11 Business and Technology Objective 2.04.

Mastercard® Automatic Billing Updater

ELECTRONIC PAYMENT SYSTEM

PCI DSS Improve the Security of Your Ecommerce Environment

Presented by: Assistant Superintendent Debra Thompson

Chargebacks and Retrievals - General Overview

Regular Payments First and Subsequent Payments

Fraud Prevention Solutions Make it secure, keep it simple!

Internet Payment.

By Chargebacks911™.

Pre-Arbitration Overview – August 4, 2016

EMV® 3-D Secure - High Level Overview

Switchover from Teledeposit to VIRTUAL TERMINAL Moneris Solutions

Third-party Payment options, PayPal Implementation

Chapter 11 Business and Technology

WorldWidePIN Corporation

Youth Entrepreneurs Teacher P-Card Training

New Jersey Gasoline C-Store Automotive Association

Mastercard® Automatic Billing Updater

Presentation transcript:

IIA Fraud Seminar, Thursday 22 nd January 2009 Card Fraud Update Presented by: Úna Dillon, Head of Card Services, Irish Payment Services Organisation

Agenda Introduction to IPSO Overview of Irish Payment Card Market CNP Card Fraud Overview Fraud Prevention Initiatives + Chargeback Handling

IIA Fraud Seminar, Thursday 22 nd January 2009 Introduction to IPSO

The Irish Payment Services Organisation Limited (IPSO) is the representative body of the payments industry, the voice and guardian of the payments industry and the strategic interface with all payments stakeholders The IPSO umbrella body is made up of the following: –IRECC –IRIS (to Feb 2009) –IPCC –Direct Debit Scheme –Laser Card Services Ltd –IPSO Card Services

IPSO Card Services Members: _____________________________________ Contributors:

IIA Fraud Seminar, Thursday 22 nd January 2009 Current Card Market

Overview of Irish Card Market Card Base Debit (Laser) cards2.9m Maestro + Visa Debit(non-disclosable) Credit cards2.4m Issuers Credit Card Issuers12 Debit card Issuers9 Acquirers Acquirers4+ Transactions Laser Card:€9.1bn (’08) Credit Card:€12.6bn (to Nov’08)

IIA Fraud Seminar, Thursday 22 nd January 2009 Card Fraud Overview and Trends

Card Fraud

CNP Fraud Overview CNP or Card Not Present Fraud includes:- – fraud conducted over the internet, – by telephone or; – via mail order Criminals obtain card details by stealing data, using discarded receipts or copying details during a transaction Biggest fraud problem in Europe (up to 50% increase ‘06 to ‘07)

Card Fraud Types

E-commerce There are over 10,000 ecommerce stores in Ireland (source Realex) E-commerce has enabled businesses to become more efficient and reliable It is essential for businesses - to be able to market their products and services on a global market Unfortunately – they are the latest crime target –Data hacking –Phishing –Staff abuse (collecting details during transactions)

IIA Fraud Seminar, Thursday 22 nd January 2009 Fraud Prevention

Card Fraud Prevention - Banks Industry Solutions: Industry specialist groups (IPSO CFF, IBF HTCF) Market Intelligence (MI) Training – SafeCard Task Force (IPSO) –Conferences, seminars, localised training (industry representative bodies) Card Security Code (CSC) Proactive awareness campaigns (e.g. PIN usage) Intelligent computer systems (e.g. Hunter, Falcon) International Representation (IPSO) Counterfeit card fraud prevention Liaison with Gardaí (GBFI) Lower floor limits Hot Card Files PCI DSS 3D Secure

Card Fraud Prevention - You No one solution – need to combine many 1.Ensure all of the cardholder’s details are captured 2.Ensure contact phone numbers are landline rather than mobile (can be untraceable) 3.Obtain fixed addresses (no free ones) 4.Use Card Security Code (no retention) 5.Use 3D Secure solutions (fraud liability shift) 6.Comply with PCI DSS (encryption) 7.Be aware of card scheme dispute resolution rules (Chargebacks)

IIA Fraud Seminar, Thursday 22 nd January 2009 Chargebacks

In a CNP environment, the onus is on you to provide proof that the bona fide cardholder performed a given transaction –The cardholder could have made a mistake, or –they may be a criminal Chargeback Cycle: Customer Dispute → Issuer investigation → Chargeback → Representment → 2 nd Chargeback →Arbitration

Chargebacks Chargeback Reasons: Retrieval Request Processing error Cardholder dispute Authorisation Fraud CNP - Where there are suspicions of fraud Merchant fraud or collusion Implication circumstances surrounding the transaction were improper or possibly fraudulent Not authorised (approved) Not sent to cardholder address Expired/not yet valid card Split sale (floor limit) Not cardholder name

Chargebacks Specific Time limits provided for the process and resolution (card scheme rules) For example: –Retrieval Request acquirer to respond within 45 days –First Chargeback acquirer to respond within 60 days –Second Presentment Issuer to respond within 45 days When you receive a chargeback notification from your bank or acquiring processor: –You have an opportunity to dispute the chargeback –Be mindful of the time limits which are imposed on your acquirer –Gather information on the transaction and cardholder and send a copy in response to the notice.

Finally…… Keep informed of industry fraud trends: Liaise regularly with your acquirer Refer to reputable websites for new information: – – –

Contact Details Úna Dillon IPSO 14 Cumberland St Dun Laoghaire Co. Dublin Website: Website: