October 2, 2018
There is no shortage of special occasions, such as Mothers Day, Fathers Day, and perhaps a loved one’s birthday or graduation. However, you may be at a loss for the perfect gift. In our busy schedules, consumers often find that the easiest approach is to grab a gift card—or an even more convenient e-gift card. Blackhawk Network’s State of Consumer Gift Card Preferences reports that for 2018, 67% of those surveyed are interested in receiving a digital gift card.
The bad news? Fraudsters are equally eager to take a bite out of the growing $127 billion gift card industry. To make matters worse, CNP fraud against e-gift cards is virtually untraceable when they’re resold for cash on gift card resale marketplaces.
The perfect e-gift card may come with hidden risks. While there are many ways fraudsters target physical gift cards (like those that you see at the grocery check-out aisle), e-gift cards are a growing sector targeted for fraudulent activity. Merchants should be aware of these e-gift card vulnerabilities:
- Brute Force lives up to its name, and means an attacker can guess activation codes without having to steal user credentials. This is typically caused by weak back end security processes and should be guarded against to minimize fraud losses.
- Multiple Account Creation. To confuse fraud prevention and tracking systems, fraudsters will create hundreds of accounts using synthetic or stolen identities to buy large quantities of e-gift cards without being detected! Having a solid fraud mitigation strategy in place that utilizes machine learning can help merchants discover patterns of multiple stolen or synthetic identities where one fraud prevention officer would be rendered helpless.
- Device/Carrier Switching takes advantage of the fact that the majority of fraud takes place on mobile, by overriding simple antifraud tools like device detection. This way one fraudster can appear to be many different legitimate consumers instead of a fraudster—until it’s too late.
- Bots and Botnets are the consequence of increasingly sophisticated fraud networks. By leveraging automated technologies, fraudsters can exponentially increase the number of attacks, increasing the overall success rate of e-gift card attacks.
- Phishing is when fraudsters trick users into revealing vital account information via a legitimate-looking email seeking information, like account data or passwords. This tactic is not just used for e-gift card fraud, but in fact is employed by fraudsters for all types of insidious means. A good rule of thumb is just to never enter your password because you are prompted by an email.
Merchants should be aware of the hidden impacts and costs of eGift card fraud.
To learn more, download the eBook “E-gift Card Fraud: The Gift That Keeps On Taking” for tips and actionable advice on how to guard against e-gift card fraud while boosting sales in the process.