Tag: Identity & Fraud

Authorised Push Payment fraud is growing, and as regulators begin to take action around the world to try to tackle it, we look at what financial institutions need to focus on now. APP fraud and social engineering scams In recent years, there has been a significant surge in reported instances of Authorized Push Payment Fraud (APP). These crimes, also known as financial scams, wire fraud scams, or social engineering scams in different parts of the world, refer to a type of fraud where criminals trick victims into authorising a payment to an account controlled by the fraud perpetrator for what the victim believes to be genuine goods or services in return for their money. Because the transactions made by the victim are usually done using a real-time payment scheme, they are often irrevocable. Once the fraudster receives the funds, they are quickly transferred through a series of mule accounts and withdrawn, often abroad. Because APP fraud often involves social engineering, it employs some of the oldest tricks in the criminal's book. These scams include tactics such as applying pressure on victims to make quick decisions, or enticing them with too-good-to-be-true schemes and tempting opportunities to make a fortune. Unfortunately, these tricks are also some of the most successful ones, and criminals have used them to their advantage more than ever in recent times. On top of that, with the widespread adoption of real-time payments, victims have the ability to transfer funds quickly and easily, making it much easier for criminals to take advantage of the process. APP Fraud and social engineering scams - cases and losses across the globe: View map Impact of AI on APP fraud Recent advancements in generative artificial intelligence (Gen AI) have accelerated the process used by fraudsters in APP fraud. Criminals use apps like Chat GPT and Bard to create more persuasive messages, or bot functionality offered by Large Language Models (LLMs) to engage their victims into romance scams and the more sophisticated pig butchering scams. Other examples include the use of face swapping apps or audio and video deepfakes that help fraudsters impersonate someone known to their victims, or create a fictitious personality that they believe to be a real person. Additionally, deepfake videos of celebrities have also been commonly used to trick victims into making an authorised transaction and lose substantial amounts of money. Unfortunately, while some of these hoaxes were really difficult to pull off a few years ago, the widespread availability of easy-to-use Gen AI technology tools has resulted in an increased number of attacks. A lot of these scams can be traced back to social media, where the initial communication between the victim and criminal takes place. According to UK Finance, 78% of APP fraud started online during the second half of 2022, and this figure was similar for the first half of 2023 at 77%. Fraudsters also use social media to research their victims which makes these attacks highly personalised due to the availability of data about potential targets. Accessible information often includes facts related to family members, things of personal significance like hobbies or spending habits, information about favourite holiday destinations, political views, or random facts like favourite foods and drink. On top of that, criminals use social media to gather photos and videos of potential targets or their family members that can later be leveraged to generate convincing deepfake content that includes audio, video, or images. These things combined contribute to a new, highly personalised approach to scams than has never been seen before. What regulators are saying around the globe APP fraud mitigation is a complex task that requires collaboration by multiple entities. The UK is by far the most advanced jurisdiction in terms of measures taken to tackle these types of fraud to help protect consumers. Some of the most important legislative changes that the UK’s Payment Systems Regulator (PSR) has proposed or introduced so far include: Mandatory reimbursement of APP scams victims: A world first mandatory reimbursement model will be introduced in 2024 to replace the previous voluntary reimbursement code which has been operational since 2019. 50/50 liability split: All payment firms will be incentivised to take action, with both sending and receiving firms splitting the costs of reimbursement 50:50. Publication of APP scams performance data: The inaugural report was released in October, showing for the first time how well banks and other payment firms performed in tackling APP scams and how they treated those who fell victim. Enhanced information sharing: Improved intelligence-sharing between PSPs so they can improve scam prevention in real time is expected to be implemented in early 2024. Because many of the scams start on social media or in fake advertisements, banks in the UK have made calls for the large tech firms (for example, Google, Facebook) and telcos to be included in the scam reimbursement process. As a first step to offer more protection for customers, in December 2022, the UK Parliament introduced a new Online Safety Bill that intends to make social media companies more responsible for their users’ safety by removing illegal content from their platforms. In November 2023, a world-first agreement to tackle online fraud was reached between the UK government and some of the leading tech companies - Amazon, eBay, Facebook, Google, Instagram, LinkedIn, Match Group, Microsoft, Snapchat, TikTok, X (Twitter) and YouTube. The intended outcome is for people across the UK to be protected from online scams, fake adverts and romance fraud thanks to an increased security measures that include better verification procedures and removal of any fraudulent content from these platforms. Outside of the UK, approaches to protect customers from APP fraud and social engineering scams are present in a few other jurisdictions. In the Netherlands, banks reimburse victims of bank impersonation scams when these are reported to the police and the victim has not been ‘grossly negligent.’ In the US, some banks provide voluntary reimbursement in cases of bank impersonation scams. As of June 2023, payment app Zelle, owned by seven US banks, has started refunding victims of impersonation scams, thus addressing earlier calls for action related to reported scams on the platform. In the EU, with the newly proposed Payment Services Directive (PSD3), issuers will also be liable when a fraudster impersonates a bank’s employee to make the user authenticate the payment (subject to filling in a police report and the payer not acting with gross negligence). In October 2023, the Monetary Authority of Singapore (MAS) proposed a new Shared Responsibility Framework that assigns financial institutions and telcos relevant duties to mitigate phishing scams and calls for payouts to be made to affected scam victims where these duties are breached. While this new proposal only includes unauthorised payments, it is unique because it is the first such official proposal that includes telcos in the reimbursement process. Earlier this year, the National Anti-Scam Centre in Australia, announced the start of an investment scam fusion cell to combat investment scams. The fusion cell includes representatives from banks, telcos, and digital platforms in a coordinated effort to identify methods for disrupting investment scams to minimise scam losses. To add to that, in November 2023, Australian banks announced the introduction of confirmation-of-payee system that is expected to help reduce scams by ensuring customers can confirm they are transferring money to the person they intend to, similarly to what has been done in the UK a few years ago. Finally, over the past few months, more jurisdictions such as Australia, Brazil, the EU and Hong Kong, have announced either proposals or the roll out of fraud data sharing schemes between banks and financial institutions. While not all of these schemes are directly tied to social engineering scams, they could be seen as a first step to tackle scams together with other types of fraud. While many jurisdictions beyond the UK are still in the early stages of the legislative process to protect consumers from scams, there is an expectation that regulatory changes that prove to be successful in the UK could be adopted elsewhere. This should help introduce better tracking of the problem, to stimulate collaboration between financial insitutions, and add visibility of financial instituitions efforts to prevent these types of fraud. As more countries introduce new regulations and more financial institutions start monitoring their systems for scams occurrences, the industry should be able to achieve greater success in protecting consumers and mitigating APP fraud and social engineering scams. How financial institutions can prevent APP fraud Changing regulations have initiated the first liability shifts towards financial institutions when it comes to APP fraud, making fraud prevention measures a greater area of concern for many leaders in the industry. Now the responsibility is spreading across both the sending and receiving payment provider, they also need to improve monitoring for incoming payments. What’s more, as these types of fraud are a global phenomenon, financial institutions from multiple jurisdictions might consider taking greater fraud prevention steps early on (before regulators impose any mandatory rules) to keep their customers safe and their reputation high. Here are five ways businesses can keep customers safe, while retaining brand reputation: Advanced analytics – advanced data analytics capabilities to create a 360° of individuals and their behaviour across all connected current accounts. This supports more sophisticated and effective fraud risk analysis that goes beyond a single transaction. Combining it with a view of fraudulent behaviours beyond the payment institution's premises by adding the ability to ingest data from multiple sources and develop models at scale allows businesses to monitor new fraud patterns and evolving threats. Behavioural biometrics – used to provide insights on indicators such as active mobile phone calls, session length, segmented typing, hesitation, and displacement to detect if the sender is receiving instructions over the phone or if they show unusual behaviour during the time of the transaction. Transaction monitoring and anomaly detection – required to monitor sudden spikes in transaction activity that are unusual for the sender of the funds as well as mule account activity on the receiving bank’s end. Fraud data sharing capabilities – sharing of fraud data across multiple organisations can help identify and stop risky transactions early, in addition to mitigation of mule activity and fraudulent new accounts opening. Monitoring of newly opened accounts – used to detect fake accounts or newly opened mule accounts. By leveraging a combination of these capabilities, financial institutions will be better prepared to cope with new regulations and support their customers in APP fraud. Identity & Fraud Report 2023 US Identity & Fraud Report 2023 UK Defeating Fraud Report 2023 EMEA & APAC

What are lenders prioritising when it comes to Gen AI? We take a look at five transformative use cases in lending, and organisational priorities for integrating Gen AI into customer lifecycle processes. Although Generative Artificial Intelligence (Gen AI) only launched publicly in the form of Chat GPT last November, adoption has been widespread and rapid. Even in typically risk-adverse industries like financial services, our research shows that there is widespread recognition that Gen AI could deliver a range of benefits across business functions. We identified five areas of focus for lenders based on our research. In a study conducted by Forrester Consulting on behalf of Experian, we surveyed 660 and interviewed 60 decision makers for technology purchases that support the credit lifecycle at their financial services organisation. The study included businesses across North America, UK and Ireland, and Brazil. The qualitative research showed that lenders are already using a type of Gen AI, Large Language Models (LLMs), in their operations, with a focus on testing across areas such as customer service and internal processes before deploying to credit operations. We look at the potential use cases, and how businesses are using Gen AI now. 1. Personalised customer experience Customers today expect a personalised lending experience that is tailored to their unique needs and preferences. GenAI can leverage customer data to generate personalised loan offers, recommendations, and repayment plans. This helps lenders improve customer satisfaction and loyalty, leading to increased customer retention and revenue growth. This is an area that is front of mind for the companies in our research – nearly half of businesses surveyed are planning to implement or expand technology capabilities to either upsell or retain customers in the next 12 months. Furthermore, 50% of companies believe that offering more tailored underwriting and pricing is a top priority in their credit operations, followed by 44% who also aim to increase personalisation in marketing, products, and services to their customers. According to the research, some organisations have formed alliances with technology providers like OpenAI and Microsoft to investigate and further explore the use of LLMs. These partnerships involve analysing customer data to identify opportunities for cross-selling. 2. Enhancing models with new data sources With new data sources emerging all the time, Gen AI is one of the technologies that will most likely accelerate the opportunity for businesses to incorporate them into models. Lenders could include sources such as social network data into their models by using LLMs. This unstructured data, including customer emotions and behaviours on social networks, would be treated as an additional variable in the models. According to the research social media data and psychometric data is already used across financial services, to varying degrees. It showed that 35% of retail companies use social media data, while 29% of FinTechs use psychometric data. Auto finance companies sit at lower end of the adoption scale, with only 12% using social media data and 15% psychometric data. 3. Operational efficiencies Gen AI can help bring operational efficiencies to customerjourneys across the entire lifecycle, offering lenders theability to automate and streamline various processes,resulting in improved productivity, cost savings, andenhanced customer experiences. One of the top challenges for businesses surveyed isimproving customer journeys during onboarding, and thiswas particularly significant for credit unions / buildingsocieties (53%). 4. Detecting and preventing fraud Gen AI can play a crucial role in fraud detection by analysing patterns and anomalies in vast datasets. By leveraging machine learning techniques, Gen AI models can proactively identify potentially fraudulent activities and mitigate risks. The ability to detect fraud in real-time improves the overall security of lending operations and helps protect lenders and borrowers from financial losses. Detecting and preventing fraud is a constant challenge for lenders. 51% of retailers and 47% of credit unions/ building societies surveyed said that reducing fraud losses is a key challenge for them. 5. Customer service Driven by advances in the machine learning and AI space, the world of customer service has benefited hugely from the adoption of virtual assistants and chatbots in recent years. This looks to continue, with businesses saying that LLMs are being tested for customer service purposes, allowing lenders to identify customer issues and automate actions. What's next for lenders? The research found that lenders are utilising various machine learning techniques like regression, decision trees, neural networks, and random forest, along with LLMs. Businesses are in the early stages of exploring how they can use LLMs in credit risk models, but it will undoubtedly involve a blend of existing and new capabilities. As with any emerging technology, it’s important to look at potential risk. The research indicated that organisations see challenges and concerns when it comes to the use of LLMs in their models. It is crucial to ensure the models are trusted, validated, and properly understood to avoid reliance on outsourced solutions and maintain control and visibility over the models’ functions. The ability to explain decisions in Gen AI to avoid bias can be difficult, and businesses will be watching the regulators to understand how best to proceed. There is no doubt, however, that Gen AI will optimise the credit customer lifecycle, creating vast opportunities for lenders. Download PDF More on Gen AI

In a study conducted by Forrester Consulting on behalf of Experian, we surveyed 660 and interviewed 60 decision makers for technology purchases that support the credit lifecycle at their financial services organisation. The study included businesses across North America, UK and Ireland, and Brazil. More on Gen AI

Fraud prevention is a critical concern for businesses today. To help combat this ever-present threat, the consortium approach has emerged as a powerful tool in the fight against fraud. By pooling resources, expertise, and creating visibility, consortium members can be more effective in detecting and preventing fraudulent activities. con-sor-tium noun: A group of people, countries, companies, etc., who are working together on a particular project. What is a consortium? Within business, consortiums are a global concept and can operate under multiple categories, including finance, marketing, and tech. A well-known, successful example is Star Alliance. They are a group of airlines, whose agreement enables their members to share and benefit from flights, airport lounges, and frequent flyer programs. All Star Alliance members are working towards the same goal, which is to offer their customers a seamless travel experience. Key benefits of the consortium approach Resource sharing: Pooling resources like funding, expertise, and infrastructure can lead to cost savings and efficient resource utilisation. Risk mitigation: Shared risks make it easier for organisations to tackle ambitious projects or ventures with reduced individual exposure. Access to expertise: Members can tap into the collective knowledge and skills of the consortium, enhancing their capabilities. Market influence: Consortiums often have more influence in negotiations, regulations, and standards-setting, benefiting all members. Innovation: Collaboration can foster innovation through cross-pollination of ideas and technologies among members. Economies of scale: Consortiums can negotiate better deals on purchases or services due to their combined purchasing power. Reduced competition: In some cases, members can reduce direct competition among themselves by coordinating efforts. Market entry: Consortiums can facilitate market entry, especially in foreign markets, by leveraging each other's networks and knowledge. Shared infrastructure: Access to shared facilities or infrastructure can save costs and accelerate projects. Brand recognition: Being part of a reputable consortium can enhance an organisation's credibility and market presence. However, consortiums also come with challenges such as coordination issues, conflicts of interest, and shared decision-making. Successful consortiums require effective governance structures and clear agreements among members. Consortiums in fraud detection and prevention The success of a consortium relies on the collective commitment of its members to a shared goal. In the context of fraud prevention, this means maintaining consistent and high-quality insights across all members. To achieve this, consortium members adhere to an agreement that covers elements such as data quality and data frequency. These agreements ensure that all participants contribute their best insights and information. By fostering a culture of cooperation and sharing, consortiums create an environment where valuable insights can be harnessed to combat fraud effectively. However, it's crucial to emphasise that the success of consortiums ultimately depends on the active participation and contribution of all its members. Consortiums can only thrive when every member is dedicated to making their quality insights accessible to the group. Read more about how consortiums can revolutionise fraud detection and prevention by sharing data on fraudsters across different product types and industry sectors with Hunter.

With heightened consumer demand for an improved customer experience online, and the increasing threat of fraud, how can organizations ensure secure and efficient customer onboarding in today's digital landscape? Onboarding the highest number of customers while maintaining compliance and security Digital account opening is in demand. Businesses are competing to create the most effective onboarding experience, while managing the need to draw on multiple sources during account opening. The onboarding stage of the customer lifecycle plays a pivotal role in establishing trust between the customer and the business. Friction during the digital account opening process can lead to customer dropouts, resulting in lower growth for organizations. Moreover, the ever-present threat of fraud necessitates organizations to be vigilant and enhance customer journey with an added layer of verification and protection. Liminal, a leading market intelligence firm specializing in digital identity, cybersecurity, and fintech markets, recently recognized Experian as a market leader for compliance and fraud prevention capabilities and execution in its Liminal Link Index on Account Opening in Financial Services. Download report The report highlights that solution providers in financial services are focused on delivering high levels of assurance while maintaining regulatory compliance and minimizing user friction. Access to real-time verification data, risk analytics and decision-making strategies make it possible for clients to verify identities, detect and prevent fraud, and ensure regulatory compliance. Experian’s identity verification and fraud prevention solutions, including CrossCore® and Precise ID®, received the highest Link Score out of the 32 companies highlighted in the report. It found that Experian was recognized by 94% of buyers and 89% identified Experian as a market leader. “We’re thrilled to be named the top market leader in compliance and fraud prevention capabilities and execution by Liminal’s Link Index Report. We’re continually innovating to deliver the most effective identity verification and fraud prevention solutions to our clients so they can grow their business, mitigate risk and provide a seamless customer experience.”Kathleen Peters, Chief Innovation Officer for Experian’s Decision Analytics business in North America The report offers valuable insights into the market overview, demands, challenges, purchasing criteria, vendor landscape, landscape analysis, and buyer opportunities. Access full report

As economic uncertainty continues to loom, the threat of fraud continues to grow and is becoming more sophisticated. It’s only going to get worse. Due to intensifying inflationary pressures, prices and costs have been increasing which has led to financial hardship impacting individuals and businesses. This provides an opportunity and motive for bad actors to figure out new ways to commit fraud. Federal Trade Commission data shows that consumers reported losing nearly $8.8 billion to fraud in 2022, an increase of more than 30 percent over the previous year. PwC’s Global Economic Crime and Fraud Survey 2022 shows 51% of surveyed organisations say they experienced fraud in the past two years, the highest level in their 20 years of research. Additional investments in fraud prevention technology are a priority for businesses to combat these evolving threats, according to Experian's Sept. 2022 Global Insights report, which states that 94% of businesses report it as the top priority. Since fraud is becoming more sophisticated, part of the challenge that businesses face is to constantly evaluate multiple solutions so that they can continuously improve their fraud detection and prevention capabilities. Investments that can deliver the highest ROI are the solutions that are integrated and orchestrated in a comprehensive fraud reduction intelligence platform. This gives businesses the flexibility to manage evolving strategies and mitigate threats with real-time decisioning. Experian’s CrossCore is an integrated digital identity and fraud risk platform. It offers global solutions to help protect businesses from fraud and maintain compliance with regulatory requirements, using real-time risk analytics and decision-making strategies. The platform aggregates various fraud and identity verification sources to consolidate risk and trust decisions for Experian clients throughout the consumer journey.   Experian’s CrossCore has been recognized as an Overall Leader, Innovation Leader, Product Leader, and Market Leader in KuppingerCole’s Fraud Reduction Intelligence Platform Leadership Compass 2023. This recognition highlights Experian's comprehensive approach to combating fraud. It validates that CrossCore offers best-in-class capabilities by augmenting Experian’s industry-leading identity and fraud offerings with a highly curated ecosystem of partners which enables further optionality for our clients based on their specific needs.  Read the report CrossCore's Capabilities

Our latest Global Identity and Fraud Report reveals that fraud has been of high concern for consumers over the past year. In fact, more than half of consumers report that they are worried about online transactions, and 40% say that their concern has increased over this period. Data breaches, well-publicised scams, and direct first-hand experience with fraud have all contributed to these higher levels of concern. Our study shows that 77% of consumers had increased concern after experiencing online fraud, with more than half of consumers surveyed having had a close encounter with fraud: 58% of consumers say they have been a victim of online fraud, know someone who has been a victim, or both 57% of consumers say they have been a victim of identity theft, know someone who has been a victim, or both 53% of consumers say they have been a victim of account takeover, know someone who has been a victim, or both As a consequence, it makes sense that consumers rank security and privacy above convenience and personalisation when evaluating their online experience and expect businesses to take the necessary security steps to protect them online. We look at the main factors that play a role in the high levels of fraud concern among consumers and what businesses should do to address challenges in their fraud strategies. Three contributing factors to increased fraud concern among consumers Identity fraud has increased  Our research also unveils that identity theft has overtaken credit card theft as consumers’ biggest security worry across all age groups. Furthermore, a recent report from the UK showed that recorded cases of identity fraud have grown by 22% over the past year. Fraud prevention and security professionals have been trying to educate consumers for a long time on this topic. Stealing identity data and using it in multiple fraud schemes can be significantly more harmful than criminals having access to someone's credit card numbers, where transactions can be traced quickly and revoked or charged back. While many factors contributed to an increase in concern about identity theft, the most impactful over the past two years were the numerous cases of unemployment and benefits fraud. Multiple countries reported cases where criminals applied for loans in the name of genuine consumers or through synthetic identities, created by combining real stolen information with fake data. The cost of these scams is yet to be discovered, and it could take years to see their full effect, with fraud losses well into the billions (if not trillions) of dollars worldwide. Criminals can access stolen data and fraud tutorials beyond the dark web To commit many types of fraud, criminals need Personal Identifiable Information (PII) that is stolen through techniques such as hacking attacks, credential harvesting, credential stuffing, phishing, or other types of social engineering. For years the knowledge of how to do that, along with the stolen data available after a successful attack, was available mainly on cybercriminal forums accessed through the dark web. However, over the past year, it has become easier than ever to obtain not only PII data but also valuable information on how to bypass some of the security and fraud features in place for a certain institution. Criminals no longer need to go to the dark web to do that - it's available on platforms like Telegram, just a few clicks away, where other fraudsters are selling tutorials (often called 'Sauce') on how to commit fraud, as well as PII data (called 'Fullz') to achieve it. As a result, the entry level for those that want to commit fraud has been set lower than ever before - both in terms of skillset and accessibility. Phishing and scams are at all-time high Another contributing factor to the increase in consumer concern is the number of scams resulting in authorised push payment fraud, which totalled £583.2 million in the UK alone during 2021. Criminals continue to seek out consumer vulnerabilities and use a variety of tactics to apply pressure on their victims and convince them to transfer money out of their bank accounts. This could take many forms - from various types of impersonation scams, romance scams, and investment (fraud) opportunities, to scams related to utility bills and easy loan offers among other types. This wouldn't be possible without numerous phishing/smishing/vishing attempts and the amount of data available through data breaches. One other factor that helps criminals is the direct access to potential victims given by social media and the sheer volume of personal information available in the public domain. These types of scams sometimes get high publicity (and rightly so) which can also contribute to the increased level of concern among the public while also applying additional pressure on financial institutions to improve their fraud screening and transaction monitoring capabilities to protect consumers. How businesses can improve fraud screening capabilities and increase consumer trust To restore consumer trust, businesses need to look for ways to improve their capabilities both at account opening and login to prevent criminals from gaining easy access to their services. There are multiple ways to do that, from introducing online identity document verification or phone-centric identity verification capabilities at the account opening stage, to adding behavioural biometrics, device intelligence, or fraud data sharing capabilities during different stages of the customer journey. By introducing some of these capabilities businesses also can improve the digital customer journey for genuine consumers and increase trust. Online identity document verification and phone-centric identity verification solutions both offer pre-fill capabilities. These tools can streamline registration processes and thus contribute greatly to a positive consumer outlook of the company that offers them. While behavioural biometrics, device intelligence, and fraud data sharing tools are invisible to both fraudsters and genuine consumers creating a more frictionless experience. Businesses should look carefully at the fraud they are experiencing along with fraud trends shared by similar businesses. This should help inform whether to introduce new capabilities as part of the existing strategy. It's common that companies might need a mix of capabilities to mitigate fraud issues, with additional support from machine learning models to blend them into one cohesive output while limiting the number of false positives and building consumer trust. Stay in the know with our latest research and insights:

We surveyed 6,000 consumers and 2,000 businesses from 20 countries worldwide as part of our ongoing efforts to learn more about how, why, and where consumers interact with businesses online.

Did you miss these December business headlines? We’ve compiled the top global news stories that you need to stay in-the-know on the latest hot topics and insights from our experts. How are companies responding to consumer behavior? Nasdaq Trade Talk's Jill Maladrino talks to Steve Wagner, Global Managing Director of Decision Analytics, about the increase in online activity over the course of the pandemic, how inflation can impact brand loyalty, and why businesses need to respond to consumer demand with better customer experience and fraud prevention. Q&A: Why the increased use of digital transactions is here to stay David Bernard, SVP of Strategy, Marketing and Digital, talks to Digital Journal about how businesses should be approaching the increase in digital transactions using advanced analytics and decisioning technologies to improve the digital customer experience and grow their businesses. How criminals are using synthetic identities for fraud Dark Reading's The Edge talks to David Britton, VP of Industry Solutions, about why businesses must improve their fraud detection and prevention protocols to detect synthetic identities and ensure that they are protecting their consumers' personal information. Latest retail trends: AI is on the up, consumer loyalty is heading down Digital Journal looks at Experian's latest research that uncovers how businesses are incorporating machine learning and artificial intelligence into everyday operations and investments in response to an upward trend in online activity and a downward trend in customer loyalty. Stay in the know with our latest research and insights:

As holiday shoppers flood online to finish up last-minute gift-buying, there's a high chance that they're paying attention to not just product prices or shipping times but also the security of their transactions. In 2020, with many stores still closed down due to the pandemic, digital sales over the holidays increased by 20%. Though we're still awaiting figures from this year, all signs point toward an increase in digital transactions that's here to stay. But as online transactions have ramped up, so have consumer concerns about the safety of their online activities. The recent Global Insights Report showed that 42% of consumers are more worried now about online safety than they were last year. The concern is understandable—as more people head online, we've seen a record number of breaches. However, now more than ever, businesses need to integrate security into their customer experience, taking a layered approach that provides added protection without additional hassle. Heading into the new year, those that can show they prioritize security as part of the customer experience—and not adjacent to it—will earn the trust and business of a rapidly expanding online customer base. More activity, more risk We've been tracking consumer and business activity online over the course of the pandemic. Our most recent research, drawn from surveys done in October, reveals a 25% increase in digital transactions worldwide since the beginning of the pandemic. It's a figure that's remained constant, even as covid-related restrictions wane and people venture back out to physical stores and banks. This massive digital shift happened in response to a crisis. Businesses such as financial services, restaurants, medical organizations, and retailers suddenly experienced a flood of online business and digital demand. Their option: Respond or be left behind. But as the dust settles, the enormity of the shift and how fast consumers normalized digital behavior is quite astounding. Someone who may have never considered online grocery delivery now uses it regularly. People who habitually visited their bank branch may now bank on their mobile devices. The examples are infinite. Consumers that made the online shift did so initially for physical safety reasons. They didn't want to be close to crowds or strangers because of the virus. Online felt safer. But now that digital transactions are part of many people's daily activities, consumers are awakening to the risks of online transactions. Many may have already experienced a breached account or received a notice that their data was compromised. Indeed, we saw a significant increase in attacks over the year across industries. Ransomware attacks alone are on track to reach 700 million by the end of 2021, a 1,300% increase from the year before. Best practices for better online security in 2022 More consumers are transacting digitally, and that's good news—businesses can expand their reach, grow their revenues, and introduce new digital products. But the question is: How can you leverage the growth while still keeping customers safe—and importantly, not impeding, their online experience? The answer rests part in mentality and part in action. Let's start with the first. Understandably, security guidance in the past often split the onus of safety between the business and customer. Who hasn't reminded customers that they need good password hygiene, device security, and personal data practices, or they may put themselves at risk. Indeed, customers paid attention; they ranked security as their number one priority. But the days of relying on customer actions are over. Businesses that gain customer trust in the future will be those that empower customers to improve their security while actively working to ensure that even if customers fail—their systems do not. You can achieve this by: 1. Beginning everything with a security mindset Businesses need to make security part of their growth strategy. That way, when they do experience planned — or unplanned — surges in activity, their security systems scale to meet them. Coordinating security across functional teams in the event of anticipated demand increases is another smart way to keep customers safe as your business grows. For instance, if marketing is planning a major campaign to spur online purchases, then IT and security need to know about it ahead of time. 2. Developing a multi-layered security strategy There is no magic bullet for preventing cyberattacks, account takeovers, or data breaches. But you can create hurdles for bad actors at every single turn. Combining device recognition, document and identify verification, and behavioral identification makes it that much harder for cybercriminals to impersonate your customers. Our research shows that customers are increasingly willing to provide more personal information to businesses if it means increasing their online security. They're eager to double-down if you are. 3. Utilizing vendors that keep you competitive The security space is evolving rapidly, and it's difficult for individual businesses to mind their own digital operations and keep pace with cybersecurity trends. Fortunately, high-quality vendors can do that for you, providing updated systems, education on new threats, and access to emerging technologies that keep your company and customers safe. The added benefit of these best practices is that they improve the customer experience along the way. Our research shows that customer loyalty to specific online brands is dipping—61% say they're interacting with the same companies online, which is a decrease of 6 percentage points from the previous year. Add in supply chains issues that are impacting inventory, and consumers are primed to find alternatives to their favorite online businesses. But the problems we’ve faced during the pandemic don’t have to define our digital future. Combine security with a quality experience in 2022, and you can attract and retain online customers that come for your product or service and stay because they feel safe. Stay in the know with our latest research and insights:

Historically, identity graphs were used to drive marketing for businesses, allowing marketers to understand and target their audience with relevant content. But in recent years, identity graphs have emerged as a useful tactic to help businesses detect and prevent fraud due to the magnitude of data they collate and analyse. As fraud continues to evolve, businesses need to get creative and resourceful when it comes to fighting online fraud to keep pace with the fraudsters. Identity graphs allow businesses to map multiple data points to create individual customer profiles while highlighting connections across all customer profiles in their current portfolio. Download our latest Global Identity and Fraud Report How do identity graphs work? Identity graphs are databases that create a consolidated unique customer profile. Information is collected from different platforms, both online and offline, and merged into a single view. This process of gathering and merging information is known as identity resolution. The primary goal of identity resolution is to create a real-time, holistic view of an individual. How identity graphs can be used across different types of fraud Account Takeover: Identity graphs make it simple to tell when the same individual is logging into multiple accounts or when all data associated with a particular user account suddenly changes. Identity graphs can screen customer accounts that are suspected of having been compromised by takeover attacks. Credit Card Fraud: Identity graphs collate data from both online and offline means. Having access to this data can be hugely beneficial in preventing counterfeit credit card transactions. Identity graphs will map common links between cardholders and data such as point of sale locations or historic transactional behaviour. Understanding these behaviours means identity graphs can uncover suspicious transactions, helping to expose compromised credit cards and prevent fraud. Referral Fraud: Many businesses offer reward incentives to their customers to help drive engagement. While good intended, businesses that offer referral rewards may expose vulnerabilities to referral fraud. In referral fraud attacks, fraudsters will take advantage of the offered rewards without ever meeting the conditional requirements. Identity graphs make it possible to uncover referral fraud, for example, highlighting multiple referrals from one household. Gaming Fraud: Fraudsters will make multiple online gambling accounts to take advantage of any sign-up offers the vendor may offer. Likewise, fraudsters will often use multiple accounts to bet against themselves, ensuring they always win. Identity graphs can help track and highlight these instances flagging relationships between the multiple accounts. Synthetic ID Theft: Recently fraudsters have been turning to synthetic IDs to commit fraud, as opposed to sourcing legitimate IDs as per traditional identity theft. Fraudsters will combine personal data from multiple victims to create a new, non-existent identity that they can then use during online transactions. These new personas, and the inconsistencies they contain, can be easier spotted when identity graphs are applied. Anti-Money Laundering (AML): When fraudsters illegally obtain funds, they will recruit individuals to pass these funds from one source to another, making their origin hard to trace. Identity graphs can help organisations track financial transactions, providing a clear image of the journey the funds have taken, all the way from origin to destination. Innovative ways identity graphs are helping to detect and prevent fraud Cross-device Identification: Identifying customers through PII and digital data, through both deterministic and probabilistic matching, allows organisations to better identify the same user across multiple devices. This allows them to be treated as a single entity, highlighting suspicious anomalies in behaviours. Real-time: Our digital world is notoriously fast paced, and not known for standing still. Identity graphs operate by collating data and updating the associated customer profiles in real-time. Ensuring we always make decisions on accurate and up-to-date customer information is crucial for both regulatory and risk reasons. Fraud Rings: Identity graphs collect and link a vast magnitude of data. Examining each data point in tabular form can be a laborious task for investigators and spotting suspicious connections can prove difficult. When connections are presented within a graph, they can easily present powerful insights that can uncover fraud rings that could otherwise be missed. Stay in the know with our latest research and insights:

Did you miss these November business headlines? We’ve compiled the top global news stories that you need to stay in-the-know on the latest hot topics and insights from our experts. Online retailers work to turn pandemic buyers into loyal customers Digital Commerce 360 cites that only 73% of U.S. consumers say they're loyal to the brands they shopped with before the pandemic, down from 79% last year, according to Experian's latest wave of Global Insights research. So what does this mean for businesses? Donna DePasquale on Using Tech to Modernize Financial Services In this podcast, Donna DePasquale, EVP Global Decisioning Software, talks to eWeek about how the use of data analytics has evolved in the financial sector, the challenges involved, where we are at now, and what the future might look like. Was that for real? Delving into the deepfake reality Digital Journal spoke to David Britton, VP of Industry Solutions, on deepfake learning benefits and risks, focusing on how bad actors can deceive or manipulate consumers and businesses - and what they can both do to mitigate the dangers. Experian Finds 25 Percent Increase in Online Activity Since Covid-19 Business Information Industry Association looks at Experian's latest research and why the pandemic-accelerated increase in digital transactions is here to stay and how businesses must continue to transform their operations as they head into 2022. Stay in the know with our latest research and insights: