searchtwitterarrow rightmail strokearrow leftmail solidfacebooklinkedinplusangle upmagazine plus
Help Net Security - Daily information security news with a focus on enterprise security.
Help Net Security - Daily information security news with a focus on enterprise security.
  • News
  • Features
  • Expert analysis
  • Videos
  • Reviews
  • Events
  • Whitepapers
  • Industry news
  • Product showcase
  • Newsletters
Help Net Security
Help Net Security
March 26, 2020
Share

As consumers turn online for purchases, many are targeted by pandemic-related digital fraud

There has been a spike in digital commerce since social distancing became widespread globally, according to a TransUnion research.

The research found a 23% increase in global e-commerce transactions in the week following the World Health Organization declaring the novel coronavirus outbreak a pandemic on March 11th compared to the average weekly volume in 2020.

“It is clear that social distancing has changed consumer shopping behaviors globally and will continue to do so for the foreseeable future,” said Greg Pierson, senior vice president of business planning and development at TransUnion. “No doubt fraudsters will continue to follow the trends of good consumers and adjust their schemes accordingly.”

Increase in account takeover

In a recent survey of 1068 Americans 18 and older, 22% said they have been targeted by digital fraud related to COVID-19. The survey reported a 347% increase in account takeover and 391% rise in shipping fraud attempts globally against its online retail customers from 2018 to 2019.

“With so many reported data breaches, it’s not just about if your account will be hijacked, it’s about when,” said Melissa Gaddis, senior director of customer success for TransUnion Fraud & Identity Solutions.

“Once a fraudster breaks into an account, they have access to everything imaginable resulting in stolen credit card numbers and reward points, fraudulent purchases, and redirecting shipments to other addresses.”

E-commerce fraud and transaction methods

Typical methods used to take over an account include buying login details on the dark web, credential stuffing, hacking, phishing, romance scams and social engineering.

Shipping fraud is when criminals take over a customer account but don’t change the shipping address in order to avoid detection. Once the package has shipped, they intercept it at the carrier site and change the shipping address.

Besides account takeover and shipping fraud, there were also other significant e-commerce fraud and transaction trends:

  • 42% decrease in promotion abuse from 2018 to 2019. Cybercriminals access accounts to drain loyalty points or create multiple new accounts to use the same promotion over and over, often against website and app terms. TransUnion believes this decrease can be attributed to fraudsters turning to more lucrative schemes such as account takeover.
  • 78% of all e-commerce transactions came from mobile devices in 2019. That’s a 33% increase from 2018. E-commerce companies are scrambling to ensure a mobile-first experience for consumers not just to browse but to buy.
  • 118% increase in risky transactions from mobile devices in 2019. Fraudsters have taken notice that more e-commerce transactions are coming from mobile devices and are trying to replicate that consumer behavior in order to avoid detection.

“Although the death of brick and mortar has been well documented, there is still plenty of room for e-commerce growth with one report claiming online retail only makes up 14% of all global retail sales,” said Gaddis.

“With so much room left for growth, it’s important that retailers stay ahead of the emerging transaction and retail trends to provide a friction-right experience for consumers and a fraudster-proof barrier.”

More about
  • account hijacking
  • coronavirus
  • credentials
  • cybersecurity
  • e-commerce
  • fraud
  • mobile devices
  • online payment
  • scams
  • survey
  • TransUnion
Share this

Featured news

  • Google triples reward for Chrome full chain exploits
  • MOVEit Transfer zero-day attacks: The latest info
  • Qakbot: The trojan that just won’t go away
Spin Up A CIS Hardened Image

Sponsored

The best defense against cyber threats for lean security teams

Webinar: Tips from MSSPs to MSSPs – starting a vCISO practice

Security in the cloud with more automation

CISOs struggle with stress and limited resources

Don't miss

Google triples reward for Chrome full chain exploits

MOVEit Transfer zero-day attacks: The latest info

Qakbot: The trojan that just won’t go away

How defense contractors can move from cybersecurity to cyber resilience

Introducing the book: Cybersecurity First Principles

Cybersecurity news
Help Net Security - Daily information security news with a focus on enterprise security.
© Copyright 1998-2023 by Help Net Security
Read our privacy policy | About us | Advertise
Follow us