Ecommerce / Retail

This article was updated on November 9, 2023. Fraud – it’s a word that comes up in conversations across every industry. While there’s a general awareness that fraud is on the rise and is constantly evolving, for many the full impact of fraud is misunderstood and underestimated. At the heart of this challenge is the tendency to lump different types of fraud together into one big problem, and then look for a single solution that addresses it. It’s as if we’re trying to figure out how to un-bake a terrible cake instead of thinking about the ingredients and the process needed to put them together in the first place. This is the first of a series of articles in which we’ll look at some of the key ingredients that create different types of fraud, including first party, third party, synthetic identity, and account takeover. We’ll talk about why they’re unique and why we need to approach each one differently. At the end of the series, we’ll get a result that’s easier to digest. I had second thoughts about the cake metaphor, but in truth it really works. Creating a good fraud risk management process is a lot like baking. We need to know the ingredients and some tried-and-true methods to get the best result. With that foundation in place, we can look for ways to improve the outcome every time. Let’s start with a look at the best known type of fraud, third party. What is third-party fraud? Third-party fraud – generally known as identity theft – occurs when a malicious actor uses another person’s identifying information to open new accounts without the knowledge of the individual whose information is being used. When you consider first-party vs third-party fraud, or synthetic identity fraud, third-party stands out because it involves an identifiable victim that’s willing to collaborate in the investigation and resolution, for the simple reason that they don’t want to be responsible for the obligation made under their name. Third-party fraud is often the only type of activity that’s classified as fraud by financial institutions. The presence of an identifiable victim creates a high level of certainty that fraud has indeed occurred. That certainty enables financial institutions to properly categorize the losses. Since there is a victim associated with it, third party fraud tends to have a shorter lifespan than other types. When victims become aware of what’s happening, they generally take steps to protect themselves and intervene where they know their identity has been potentially misused. As a result, the timeline for third-party fraud is shorter, with fraudsters acting quickly to maximize the funds they’re able to amass before busting out. How does third-party fraud impact me? As the digital transformation continues, more and more personally identifiable information (PII) is available on the dark web due to data breaches and phishing scams. Given that consumer spending is expected to increase1, we anticipate that the amount of PII readily available to criminals will only continue to grow. All of this will lead to identity theft and increase the risk of third-party fraud. More than $43 billion in total losses was reported due to identity theft and fraud in the U.S. in 2022.2 Solving the third-party fraud problem We’ve examined one part of the fraud problem, and it is a complex one. With Experian as your partner, solving for it isn’t. Continuing my cake metaphor, by following the right steps and including the right ingredients, businesses can detect and prevent fraud. Third-party fraud detection and prevention involves two distinct steps. Analytics: Driven by extensive data that captures the ways in which people present their identity—plus artificial intelligence and machine learning—good analytics can detect inconsistencies, and patterns of usage that are out of character for the person, or similar to past instances of known fraud. Verification: The advantage of dealing with third-party fraud is the availability of a victim that will confirm when fraud is happening. The verification step refers to the process of making contact with the identity owner to obtain that confirmation and may involve identity resolution. It does require some thought and discipline to make sure that the contact information used leads to the identity owner—and not to the fraudster. In a series of articles, we’ll be exploring first-party fraud, synthetic identity fraud, and account takeover fraud and how a layered fraud management solution can help keep your business and customers safe and manage third-party fraud detection, first-party fraud, synthetic identity fraud, and account takeover fraud prevention. Let us know if you’d like to learn more about how Experian is using our identity expertise, data, and analytics to create robust fraud prevention solutions. Contact us 1 Experian Ascend Sandbox 2 2023 U.S. Identity and Fraud Report, Experian.

This article was updated on October 31, 2023 In a series of articles, we talk about understanding the different types of fraud and how to solve for them. This article will explore first-party fraud and how it's similar to biting into a cookie you think is chocolate chip, only to find that it’s filled with raisins. The raisins in the cookie were hiding in plain sight, indistinguishable from chocolate chips without a closer look, much like first-party fraudsters. What is first-party fraud? First-party fraud refers to instances when an individual makes a promise of future repayments in exchange for goods or services without the intent to repay. The first-party fraudster might accomplish this by applying for a loan or credit card they won’t pay back or misrepresenting their financial situation to get a more favorable rate. First-party fraud sometimes presents via “mules” or consumers who are persuaded to use their own information to obtain credit or merchandise on behalf of a larger fraud ring. This type of fraud has become especially prevalent as more consumers are active online. Money mules constitute up to 0.3% of accounts at U.S. financial institutions, or an estimated $3 billion in fraudulent transfers. First-party fraud is often miscategorized as credit loss and written off as bad debt, which causes problems when businesses later try to determine how much they’ve lost to fraud versus credit risk, and then make future lending decisions. How does first-party fraud impact me? Firstly, there are often substantial losses associated with first-party fraud. An imperfect first-party fraud solution can also strain relationships with good customers and hinder growth. When lenders have to interpret actions and behavior to assess customers, there’s a lot of room for error and losses. Those same losses hinder growth when, as mentioned before, businesses anticipate credit losses that aren’t actually credit losses. This type of fraud isn’t a single-time event, and it doesn’t occur at just one point in the customer lifecycle. It occurs when good customers develop fraudulent intent, when new applicants who have positive history with other lenders have recently changed circumstances, or when seemingly good applicants have manipulated their identities to mask previous defaults. Finally, first-party fraud impacts how your organization categorizes and manages risk – and that’s something that touches every department. Solving the first-party fraud problem First-party fraud detection requires a change in how we think about the fraud problem. It starts with the ability to separate first- and third-party fraud to treat them differently. Because first-party fraud doesn’t have a victim, you can’t work with the person whose information was stolen to confirm the fraud. Instead, you’ll have to work implement a consistent monitoring system and make a determination internally when fraud is suspected. As we’ve already discussed, the fraud problem is complex. However with a partner like Experian, you can leverage the fraud risk management strategies required to perform a closer examination and the ability to differentiate between the types of fraud so you can determine the best course of action moving forward. Additionally, our robust fraud management solutions can be used for synthetic identity fraud and account takeover fraud prevention, which can help you minimize customer friction to improve and deepen your relationships while preventing fraud. Contact us if you’d like to learn more about how Experian is using our identity expertise, data, and analytics to improve identity resolution and detect and prevent all types of fraud. Contact us

Trust is the primary factor in any business building a long-lasting relationship, especially when a company operates globally and wants to build a loyal customer base. With the rapid acceleration of digital shopping and transactions comes a growing fraud landscape. And, given the continual increase of people wanting to transact online, marketplace companies – from ecommerce apps, ridesharing, to rental companies – need to have ideal strategies in place to protect themselves and their customers from fraudulent activities. Without ideal risk mitigation or comprehensive fraud and identity proofing strategies, marketplaces may find themselves facing the following: Card-not-present (CNP) Fraud: As online shopping increases, customers can’t provide a credit card directly to the merchant. That’s why fraudsters can use stolen credit card information to make unauthorized transactions. And in most cases, card owners are unaware of being compromised. Without an integrated view of risk, existing credit card authentication services used in isolation can result in high false positives, friction and a lack of card issuer support. Unverified Consumer Members, Vendors, Hosts & Drivers: From digital marketplace merchants like Etsy and Amazon, to peer-to-peer sharing economies like AirBnB, Uber and Lyft, the marketplace ecosystem is prone to bad actors who use false ID techniques to exploit both the platform and consumers for monetary gain. Additionally, card transaction touchpoints across the customer lifecycle increases risks of credit card authentication. This can be at account opening, account management when changes to existing account information is necessary, or at checkout. Buy Now, Pay Later (BNPL) Muling: While a convenient way for consumers to plan for their purchases, experts warn that without cautionary and security measures, BNPL can be a target for digital fraud. Fraudsters may use their own or fabricated identities or leverage account takeover to gain access to a legitimate user’s account and payment information to make purchases with no intent to repay. This leaves the BNPL provider at the risk of unrecoverable monetary losses that can impact the business’ risk tolerance. Forged Listings & Fake Accounts: Unauthorized vendors that create a fake account using falsified identities, stolen credit cards and publish fake listings and product reviews are another threat faced by ecommerce marketplaces. These types of fraud can happen without the vast data sources necessary to assess the risk of a customer and authenticate credit cards among other fraud and identity verification solutions. By not focusing on establishing trust, fraud mitigation management solutions and identity proofing strategies, businesses can often find themselves with serious monetary, reputational, and security qualms. Interested in learning more? Download Experian’s Building Trust in Digital Marketplaces e-book and discover the strategies digital marketplaces, like the gig economy and peer-to-peer markets, can take to keep their users safe, and protected from fraudulent activity. For additional information on how Experian is helping businesses mitigate fraud, explore our comprehensive suite of identity and fraud solutions. Download e-book

Experian’s eighth annual identity and fraud report found that consumers continue to express concerns with online security, and while businesses are concerned with fraud, only half fully understand its impact – a problem we previously explored in last year’s global fraud report. In our latest report, we explore today’s evolving fraud landscape and influence on identity, the consumer experience, and business strategies. We surveyed more than 2,000 U.S. consumers and 200 U.S. businesses about their concerns, priorities, and investments for our 2023 Identity and Fraud Report. This year’s report dives into: Consumer concerns around identity theft, credit card fraud, online privacy, and scams such as phishing.Business allocation to fraud management solutions across industries.Consumer expectations for both security and their experience.The benefits of a layered solution that leverages identity resolution, identity management, multifactor authentication solutions, and more. To identify and treat each fraud type appropriately, you need a layered approach that keeps up with ever-changing fraud and applies the right friction at the right time using identity verification solutions, real-time fraud risk alerts, and enterprise orchestration. This method can reduce fraud risks and help provide a more streamlined, unified experience for your consumers. To learn more about our findings and how to implement an effective solution, download Experian’s 2023 Identity and Fraud Report. Download the report

There’s an undeniable link between economic and fraud trends. During times of economic stress, fraudsters engage in activities specifically designed to target strained consumers and businesses. By layering risk management and fraud prevention tools, your organization can manage focus on growing safely. Download infographic Review your fraud strategy  

With fraud expected to surge amid uncertain economic conditions, fraudsters are preparing new deception techniques to outsmart businesses and deceive consumers. To help businesses prepare for the coming fraud threats, we created the 2023 Future of Fraud Forecast. Here are the fraud trends we expect to see over the coming year: Fake texts from the boss: Given the prevalence of remote work, there’ll be a sharp rise in employer text fraud where the “boss” texts the employee to buy gift cards, then asks the employee to email the gift card numbers and codes. Beware of fake job postings and mule schemes: With changing economic conditions, fraudsters will create fake remote job postings, specifically designed to lure consumers into applying for the job and providing private details like a social security number or date of birth on a fake employment application. Frankenstein shoppers spell trouble for retailers: Fraudsters can create online shopper profiles using synthetic identities so that the fake shopper’s legitimacy is created to outsmart retailers’ fraud controls. Social media shopping fraud: Social commerce currently has very few identity verification and fraud detection controls in place, making the retailers that sell on these platforms easy targets for fraudulent purchases. Peer-to-peer payment problems: Fraudsters love peer-to-peer payment methods because they’re an instantaneous and irreversible way to move money, enabling fraudsters to get cash with less work and more profit “As fraudsters become more sophisticated and opportunistic, businesses need to proactively integrate the latest technology, data and advanced analytics to mitigate the growing fraud risk,” said Kathleen Peters, Chief Innovation Officer at Experian Decision Analytics in North America. “Experian is committed to continually innovating and bringing solutions to market that help protect consumers and enable businesses to detect and prevent current and future fraud.” To learn more about how to protect your business and customers from rising fraud trends, download the Future of Fraud Forecast and check out Experian’s fraud prevention solutions. Future of Fraud Forecast Press Release

The preference for digital is here to stay, with consumers reporting that they are online 25% more today than a year ago. The explosive growth in remote work and e-commerce results in more transactions, and opportunities for online fraud are occurring. This new reality means that organizations of all types will face more and newer types of fraud risks. External fraud generally results from deceptive activity intended to produce financial gain that is carried out by an individual, a group of people or an entire organization. Fraudsters may prey on any organization or individual, regardless of the size or nature of their activities. The tactics used are becoming increasingly sophisticated, requiring a multilayered defense strategy. Fraud mitigation involves using tools to reduce the frequency or severity of these risks, ultimately protecting the bottom line and the future of the organization. Fraud impacts the bottom line and so much more According to the Federal Trade Commission, consumers reported losing more than $5.8 billion to fraud in 2021, a 70% increase over 2020. Another report places the losses much higher, with credit card fraud alone representing an estimated $9.3 billion. These costs extend beyond the face value of the theft to include fees and interest incurred, fines and legal fees, labor and investigation costs and external recovery expenses. Aside from dollar losses and direct costs, fraud can also pose legal risks that lead to fines and other legal actions and diminish credibility with regulators. Word of deceptive activities can also create risk for the brand and reputation. These factors can, in turn, result in a loss of market confidence, making it difficult to retain clients and engage new business. Leveraging fraud mitigation best practices As the future unfolds, three things are fairly certain: 1) The future is likely to bring more technological advances and, thereby, new ways of working and creating. 2) Fraudsters will continue to look for ways to exploit those opportunities. 3) The future is here, today. Organizations that want to remain competitive in the digital economy should make fraud mitigation and prevention an integral part of their operational strategy. Assess the risk environment While enhancing revenue opportunities, the global digital economy has increased the complexity of risk management. Be aware of situations that require people to enforce fraud risk policies. While informed, experienced people are powerful resources, it is important to automate routine decisions where you can and leverage people on the most challenging cases. It is also critical to consider that not every fraud risk aligns directly to losses. Consider touchpoints where information can be exposed that will later be used to commit fraud. Information that crooks attempt to glean from idle chatter during a customer service call can be a source of unexpected vulnerability. These activities can benefit from greater transparency and automated oversight. Create a tactical plan to prevent and handle fraud Leverage analytics wherever possible to streamline decisions and choose the right level of friction that’s appropriate for the risk, and palatable for good customers. Consumers and small businesses have come to expect a customized and frictionless experience. Employee productivity, and ultimately revenue growth, requires the ability to operate with speed and informed confidence. A viable fraud mitigation strategy should incorporate these goals seamlessly with operational objectives. If not, prevention and mitigation controls may be sidelined to get legitimate business done, creating inroads for fraudsters. Look for a partner who can apply the right friction to situations depending on your risk appetite and use existing data (including your internal data and their own data resources) to better identify individual consumers. This identification process can actually smooth the way for known consumers while providing the right protection against fraudsters and giving consumers who are new to your organization a sense of safety and security when logging in for the first time. It's equally important that everyone in your organization is working together to prevent fraud. Establish and document best practices and controls, beginning with fostering a workplace culture in which fraud mitigation is part of everyone's job. Empower and train all staff to identify and report suspicious activity and ensure they know how to raise concerns. Consider implementing ways to encourage open and swift communication, such as anonymous or confidential reporting channels. Stay vigilant and tap into resources for managing risks It is likely impossible to think of every threat your organization might face. Instead, think of fraud mitigation as an ongoing process to identify and isolate any suspected fraud fast — before the activity can develop into a major threat to the bottom line — and manage any fallout. Incorporating technology and robust data collection can fortify governance best practices. Technology can also help you perform the due diligence faster, ensuring compliance with Know Your Customer (KYC) and other regulations. As necessary, work with risk assessment consultants to get an objective, experienced view.  Learn more about fraud mitigation and fraud prevention services. Learn more  

Even as 75% of large and mid-sized U.S. e-commerce marketplace merchants predict continued double-digit online sales growth rates through the end of 2022,1 their success is hampered by unnecessary friction driven by concerns of card-not-present fraud and additional fraud risks in an online world. Compared to the 96% approval rate for point-of-sale purchases, card-not-present transactions yield a surprisingly low 81% approval rate. According to a survey conducted by Aite Novarica,1 the difference stems from reviewing up to 16% of attempted transactions for possible fraud. Even more surprising is that many of the respondents report that more than two-thirds of these reviews are later found to be unwarranted. Current transaction processing and risk capabilities are impeding growth and creating friction that damages e-commerce marketplace brands. What do we mean when we talk about online card-not-present transaction friction? Much of the success or failure of e-commerce depends on how easy merchants make it for consumers to complete a transaction. Effective identity resolution, fraud mitigation and risk solutions can lead to increased sales, while unrefined solutions and unnecessary friction will run merchants the risk of denying a legitimate customer purchase at checkout because they have been incorrectly labeled a fraudster–a ‘false positive’ or ‘false decline.’ These solutions leave room for improvement based on several key factors–the limited amount of data that passes through the authorization stream from the merchant to the issuer is a key contributor. According to Aite-Novarica Group’s The E-Commerce Fraud Enigma: The Quest to Maximize Revenue While Minimizing Fraud Report, “This reinforces the importance for merchants to augment the decisioning on their side with a wide variety of data sources that can help inform them regarding the risk profile of both the customer and the transaction.” Challenges with current transaction processing and verification tools Today, merchants leverage email address data, device information and other technologies to augment their address verification capabilities. The challenge is that these tools each judge the risk of a specific component of the transaction or the individual. Where integration is lacking, false positives are amplified and that is exactly what the data1 says is happening. Different tools working in isolation all catch the same fraud but flag different false positives—dragging down overall performance. The result is that 75% of e-commerce merchants place maximizing sales, minimizing friction and reducing false declines at the top of their to-do list. 88% say they are ready for a change to achieve these goals.1 Fast Facts 16% of all attempted online transactions experience friction for suspected fraud. 70% of this number is unnecessary, and upon manual review, are ultimately approved.1 78% of e-commerce merchants report friction driven by suspected fraud is increasing. 78% of merchants report increasing declines due to suspected fraud over the last two years. 46% indicate an increase of more than 5%.1 81% of consumers say that a positive online experience makes them think more highly of a brand.2 The longer it takes for banks and issuers to process new account, the higher the rate of abandonment, which reaches 40% when the process takes longer than 10 minutes.3 The friction that consumers encounter throughout their buying journey and the expenses associated with merchant and issuer manual reviews can be costly. It is estimated that 70% of unwarranted friction is costing businesses ~$11B in false decline losses and sales annually.1 That number is expected to increase. And, beyond profit losses incurred from the order that was declined, merchants risk damaging brand reputation because of poor customer/buying experiences, and in some cases, the loss of the customer relationship as well. Reducing friction and providing a positive shopping experience is increasingly important to business success Businesses looking to address this and limit false declines should not allow this to come at the expense completing transactions for legitimate customers. Experian can help. By leveraging our multidimensional data, technical expertise and advanced analytics capabilities, we can help businesses authenticate valid customers without unnecessary friction, thus increasing revenue by increased approval rates, without increasing fraud or operating expenses. Get started with Experian Link™ - our frictionless credit card owner verification solution. Learn more. Experian Link   1"E-Commerece Fraud Enigma: The Quest to Maximize Revenue While Minimizing Fraud Report" Aite-Novarica Group, July 2022 2"Global Insights Report: The Evolving Expectations and Experience of the New Digital Customer" Experian, April 2022 3"Capturing the Digital Identity Evolution Through a Layered Approach" Liminal, June 2021

There’s no doubt that fraudulent transactions can end up costing businesses money , which have led many to implement risk-mitigation strategies across every stage of the purchasing journey. However, this very same protection can increase false declines, and the associated friction can create high rates of cart-abandonment and negative impacts for a business’s brand. What is a false decline? A false decline is a legitimate transaction that is not completed due to suspected fraud or the friction that occurs during verification. False declines occur when a good customer is suspected of fraud and then prevented from completing a purchase. This happens when a company’s fraud prevention solution provides inadequate insight into the identity of the customer, flagging them as a potential bad actor. The result is a missed sale for the business and a frustrating transaction and experience for the customer. Are false declines costing your business money? False declines have high revenue and cost consequences for e-commerce marketplace merchants. By denying a legitimate customer purchase at checkout, businesses risk: Loss of new sales directly impacting revenue 16% of all sales are rejected by e-commerce merchants unnecessarily costing businesses ~$11B in sales annually,1 with an estimated 70% of unwarranted friction as a contributing cause. Loss in customer loyalty and lifetime value Blocked payments can leave customers with a poor impression of your business and there’s a good chance they’ll take their business elsewhere. Tarnished business reputation Today’s customers expect businesses and online services to work seamlessly. 81% of consumers say a positive experience makes them think more highly of a brand. Therefore, your brand might take a hit if unnecessary obstacles prevent them from having a good experience. High operational overhead costs The average business manually reviews 16% of transactions for fraud risk. It is estimated that 10 minutes are needed for each review. This inefficiency can be costly as it takes time away from fraud teams who can work on higher priority or strategic initiatives. Businesses can benefit from a seamless and secure payment experience that drives real-time resolution and eliminates a majority of false declines and bottlenecks, ultimately helping increase approval rates without increasing risk. Get started with Experian Link™ - our frictionless credit card owner verification solution. Learn more 1"E-Commerece Fraud Enigma: The Quest to Maximize Revenue While Minimizing Fraud Report" Aite-Novarica Group, July 2022

This post was updated in 2022. Fraud prevention can seem like a moving target. Criminals often shift from one scheme to the next, forcing organizations to play catch up to protect consumers’ identities and funds. But with the right technology, it’s possible to implement a fraud solution that provides protection and enhances the consumer journey. The pandemic fraud boom Government stimulus funds, COVID-19 testing and the loosening of business controls were a boon for criminals and levied an immense cost against businesses and consumers.   Consumer fraud losses rose to $3.3 billion in 2020, up from $1.8 billion in 2019.   The rapid increase in digital activity had two significant impacts. First, it shifted new account applications to the digital channel, where increased anonymity favors fraudsters by creating an environment where identity thieves could hide among the immense volume of applicants and monetize stolen personally identifiable information (PII). Second, it fueled account takeover (ATO) attacks by introducing digital “newbies” with unsophisticated password habits and limited ability to recognize and protect themselves from malware or social engineering, making them easy targets for credential theft. The return of old-school fraud Now that businesses and consumers are growing wise to some of the fraud schemes brought on by the COVID-19 pandemic, criminals are turning to new avenues, including tried-and-true methods like account opening and ATO fraud. New account fraud is expected to cost U.S. financial institutions $3.5 billion in 2021 alone.   Fraud organizations will take the PII available and match it with automated tools to increase their efficiency and success rates while continuing with phishing and other schemes to gain new information that can fuel further attacks. Building a fraud solution Staying ahead of fraudsters may feel like a losing proposition but equipped with the proper fraud controls, you can enhance the customer experience, increase operational efficiency and protect against developing fraud schemes. With a fraud solution that uses multiple tools in concert, it’s possible to recognize, verify and holistically risk assess most consumers that pass through your portfolio. The right platform — ideally one that can call upon different services to perform each job — will enable your organization to flag suspicious activity, increase insight into large-scale attacks, track risky users and break down traditional internal silos. By coordinating efforts and adding multiple touchpoints to run both in the foreground and background, you can ensure the right friction is applied at the right time without diminishing the end-user experience. In fact, by improving your recognition tools, you can make the experience for recognized, legitimate customers even easier. To learn more about the potential impacts of traditional fraud and how your organization can leverage a fraud prevention solution to achieve your retention and growth goals, read our latest white paper or request a call. Read white paper Schedule a call

“Businesses are managing vast and growing amounts of consumer data – all while ensuring consumers’ privacy and complying with complex government regulations.” This is one of the many reasons there’s an increasing need for innovative digital identity solutions, as explored in a in Axios in a new Experian advertorial. Experian Identity, an integrated suite of identity solutions, products, and services, solves for challenges presented by the continuing migration of consumers to the internet and the resulting growth of consumer data. Leveraging that data stemming from diverse sources and combining it with advanced technologies, is critical to better determining and understanding a company’s best marketing prospects, as well as making confident decisions that enhance and safeguard the consumer experience. How? By leveraging multidimensional data and adhering to all consumer protection laws and industry self-regulatory standards, businesses can best recognize and connect with their consumers in more personalized, meaningful and secure ways. The Axios article discusses the benefits of Experian Identity, including strengthening fraud detection, solving for identity resolution, and helping to uncover business opportunities through segmenting, targeting and engaging consumers. “While today’s consumers are intensely interested in protecting their personal data and identities, they also want to be recognized and understood by the companies they do business with,” said Kathleen Peters, Chief Innovation Officer of Experian Decision Analytics, in the article. Read more about how Experian’s identity solutions helps businesses stay relevant with audiences, create a positive consumer experience, and meet people’s desire to be recognized in Axios’ new article. AXIOS: Making identities personal Learn more about Experian Identity

Previously, the Global Identity and Fraud Report called for businesses to meet consumer expectations for online recognition and security while improving the digital experience. Organizations have answered this call with investments and new initiatives, but the fraud risk persists and consumers are relying on businesses to protect them. In our latest report, we explore the issues associated with siloed recognition processes, consumer expectations and preferences, and effective risk strategies.   We surveyed more than 6,000 consumers and 1,800 businesses worldwide about this connection for our 2022 Global Identity and Fraud Report.   This year’s report dives into:   How online security yields engagement and trust with today’s digital consumers The role of businesses in protecting online consumers, and the associated benefits The current opportunity for businesses to implement multiple identity and fraud solutions The role that orchestration and outsourcing play in helping companies prevent fraud   To earn consumer trust and loyalty, organizations need to leverage automated solutions to identify and protect consumers across their online journeys while providing seamless recognition and low-friction fraud prevention with a robust and flexible fraud platform. To learn more about our findings and how to implement an effective solution, download Experian’s 2022 Global Identity and Fraud Report. Read the report Review your fraud strategy

In the first six months of 2021, there was $590 million in ransomware-related activity, which exceeds the value of $416 million reported for the entirety of 2020 according to the S. Treasury's Financial Crimes Enforcement Network. Constant economic pressure coupled with the ever-increasing volume of data online have created an environment that’s ripe for attacks, leaving businesses and consumers vulnerable to attacks and theft. What are ransomware attacks? Ransomware is a subset of malicious software, AKA malware, that either threatens to publish or block access to data or a computer system. It often takes the form of a cyberattack where criminals take over an organization’s computer network. Once they’ve assumed control, the hackers demand a ransom to restore access to the illicitly encrypted data. Additionally, ransomware attacks and data breaches are now becoming more closely linked, with sensitive data including employees’ personal information, HR records, and more being filtered out and distributed during or after the attack. In fact, Experian has found that 7 of 10 data breaches involve ransomware. The negative impact of ransomware attacks According to the Identity Theft Resource Center, the average ransom demand in 2021 was $5.3 million, a 518% increase from the 2020 average. Experian’s latest Data Breach Response Guide found that businesses were hit with ransomware attacks every 11 seconds in 2021. These attacks also take up to 20% longer to begin breach notifications, leaving businesses even more vulnerable. In addition to the monetary loss and the time spent responding to and recovering from the attack, businesses also stand to suffer reputational damage, because consumer sentiment is that companies are responsible for protecting data. Having a plan in place makes a sizeable impact though, with 90% of consumers being more forgiving of companies that had a response plan in place prior to a breach. How to protect against ransomware attacks Experian’s 2022 Future of Fraud Forecast predicts that ransomware will be a significant fraud threat for companies as fraudsters will look for a sizeable ransom to cede control and potentially steal data from the hacked company. Preparing for the possibility of an attack includes training your staff to spot the signs of a phishing attempt, having a response plan in place, and leveraging partner solutions. To learn more about how Experian helps businesses protect against the fallout of a ransomware attack, visit us, and be sure to read about our other Future of Fraud predictions about cryptocurrency and Buy Now, Pay Later fraud. Request a call Future of Fraud Forecast

Cryptocurrency scams are on the rise as digital currencies gain popularity. The decentralized nature of these currencies makes them equally attractive to both legitimate consumers and fraudsters. Businesses may find themselves in a difficult position as they seek to prevent cryptocurrency-related fraud and help protect consumers. What are cryptocurrency scams? Cryptocurrencies are virtual currencies often based on and secured by blockchain technology. However, this does not always translate into security for the individual consumer. Many individuals fall victim to either cryptocurrency investment scams or cryptocurrency theft. Cryptocurrencies are not yet well-regulated or backed by a sovereign entity, leaving consumers open to threats when purchasing funds. The deregulated nature of the currencies makes it easy for scammers to build what appear to be legitimate cryptocurrency projects before disappearing, similar to pump-and-dump stock schemes. Additionally, scammers will perpetrate romance or other relationship-based scams and convince the victim to send them funds in cryptocurrency form. Cryptocurrency theft follows a few traditional fraud patterns: The fraudster may use phishing or social engineering to steal credentials. A crime ring might leverage malware or keystroke loggers to do the same thing. A scammer might present a “reward” to an unsuspecting consumer and require access to their wallet in order to “gift” the reward. Scammers consistently find new ways to trick unsuspecting consumers, including a recent scam relying on QR codes to steal funds converted to cryptocurrency via an ATM. Other common scams utilize imposter websites, fake mobile apps, bad tweets, or scamming emails to steal information and funds. The impact of scams on consumers According to the FTC, investment cryptocurrency scam reports have skyrocketed, with nearly 7,000 people reporting losses totaling more than $80 million from October 2020 to March 2021, with a media loss of $1,900. In 2020 the Better Business Bureau Scam Tracker Risk Report ranked cryptocurrency scams as the seventh riskiest. In 2021, they jumped to the second riskiest scam. In Michigan alone 31 cryptocurrency scams were reported from January 2020 to March 2022, with reported loses from $350 all the way to $41,000. The impact of scams on businesses While the true impact of cryptocurrency scams on businesses is hard to measure, it’s easy to identify several areas for concern. First is the opportunity for the theft of personally identifiable information (PII) during a fraudulent cryptocurrency transaction. Once fraudsters have stolen funds, they may also funnel them through a legitimate business and turn them into a regulated form of currency for easy of use. Businesses with legitimate cryptocurrency interactions may also suffer from spoofed apps or websites, causing reputational damage when consumers are taken in by a scam. Preventing the fallout from scams As companies debate accepting cryptocurrency as a form of payment, it’s important to consider that funds may be stolen or accessed by a malicious party. One way to protect your organization is to have a strong device identification strategy that can help ensure the entity accessing an account and the funds within is the true owner. By layering in this protection with other fraud defenses, businesses can be better prepared as consumer payment preferences shift. Additionally, financial institutions and other organizations should keep consumers informed about how to protect their own data and signs of scams. To learn more about how Experian is helping businesses develop and maintain effective fraud and identity solutions, visit us or request a call. And keep an eye out for additional in-depth explorations of our Future of Fraud Forecast. Request a call Future of Fraud Forecast

With consumers continuing to take a digital-first approach to everything from shopping to dating and investing, fraudsters are finding new and innovative ways to commit fraud. To help businesses anticipate and prepare for the road ahead, we created the 2022 Future of Fraud Forecast. Here are the fraud trends we expect to see over the coming year: Buy Now, Pay Never: Buy now, pay later lenders will see an uptick in identity theft and synthetic identity fraud. Beware of Cryptocurrency Scams: Fraudsters will set up cryptocurrency accounts to extract, store and funnel stolen funds, such as the billions of stimulus dollars swindled by criminals. Double the Trouble for Ransomware Attacks: Fraudsters will not only ask for a hefty ransom to cede control back to the companies they’ve hacked but also steal and leverage data from the hacked company. Love, Actually?: Romance scams will continue to see an uptick, with fraudsters asking victims for money or loans to cover fabricated travel costs, medical expenses and more. Digital Elder Abuse Will Rise: Older consumers and other vulnerable digital newbies will be hit with social engineering and account takeover fraud. “Businesses and consumers need to be aware of the creativity and agility that fraudsters are using today, especially in our digital-first world,” said Kathleen Peters, Chief Innovation Officer at Experian Decision Analytics in North America. “Experian continues to leverage data and advanced analytics to develop innovative solutions to help businesses prevent fraudulent behavior and protect consumers.” To learn more about how to protect your business and customers from rising fraud trends, download the Future of Fraud Forecast and check out Experian’s fraud prevention solutions. Future of Fraud Forecast Read Press Release