Card fraud grows four times faster than transactions
Card fraud grows four times faster than transactions
Credit card fraud is growing at an exponential rate, last year alone accounting for
more than $120 million in bogus transactions.
ADELAIDE: Australian credit card fraud rates grew at four times the rate of the num
ber of card transactions during 2008, according to figures contained in a new white
paper by information security specialist CQR Consulting.
In the whitepaper, Credit Card Fraud – What You Need to Know, analysis shows
that common forms of card fraud accounted for more than $120 million in fraudu
lent transactions last year. Fraud caused by counterfeit cards or skimming leapt by
more than 50 per cent. The analysis is based on payment fraud statistics published
by the Australian Payments Clearing Association.
Australians face two main ways to be cheated by credit card thieves.
The first, counterfeit cards or skimming, occurs when a device is used to scan a
card and obtain information hidden in the magnetic stripe. This stripe is then repli
cated and used fraudulently. In 2007 the cost of fraud due to counterfeiting/skimming
cards was $32.8 million. In 2008 this rose by more than 51 per cent to $49.7 million.
The second, Card Not Present (CNP) fraud, describes transactions where neither
the card nor the cardholder is present at the time of transaction. This can include
orders by mail, telephone, fax or internet and involves using fraudulently obtained
card details to make a purchase. Such details are often gathered through electronic
means. The total cost of CNP fraud in 2007 was $53.7 million, rising 33 per cent in
2008 to in excess of $71.5 million.
CQR’s Steve Darrall said the growth in card fraud rates was leading to increased
efforts by banks and card brands to reduce their exposure to the activity.
“We’re currently seeing a strong push across the banking industry for merchants
that accept card payments to improve their defences,” he said. “This involves min
imising the need for them to hold sensitive cardholder information and securing
essential information storage.”
Two key initiatives to improve the security of card transactions and cardholder
information are:
• Payment Card Industry Data Security Standard (PCI-DSS) – Developed by the big cred
it card brands, the standard applies to all organisations that store, process or transmit
cardholder payment data, regardless of their size or transaction numbers; and
• Payment Application Data Security Standard (PA-DSS) – This standard applies to soft
ware applications designed to store, process or transmit payment card information.
News