E-commerce measures merchants should take to protect their customers from frauds
Hey, hope your well. From my end all has been well… Last week as I was making a purchase online, It occurred to me how e-commerce sites make purchasing products so easy and convenient yet they can also be a gateway to fraud.
Come to think of it, there has been a lot of public awareness and sensitization on how to protect oneself from cybercriminals. However, the question is, when it comes to online shopping, what can ecommerce merchants do to protect their customers from fraudsters? In as much as e-commerce sites have multiple security features on their sites, some of the red flags to watch out for include:
- Multiple declined transactions, especially in cases where the user keeps on entering the wrong card details or there are insufficient funds… It may be common for a customer to enter wrong card details once or twice but anything more than that should raise eyebrows.
- Multiple orders from multiple credit cards from the same user within a short period of time.
- Multiple shipping addresses. The buyer makes multiple purchases under the same billing address but ships products to multiple destinations. A merchant can seek authentication from such a shopper just to be sure that this is not a fraudulent activity.
- Large orders from a new country/ location: From your previous data you’ve never received site visits or purchases from a particular country then all of a sudden there is a string of orders from that country. Do a careful assessment before you allow the purchase process to continue.
- Multiple orders originating from multiple geographic locations and different IP addresses within a short period of time. E.g. a customer always makes a purchase from Nairobi from a specific IP address but you notice a purchase origination from Mombasa from a different IP address.
- Transaction value outside of a customer’s profile. For instance, customer who on average spends Ksh 50,000 on his purchase then all of a sudden makes a purchase order of ksh 700,000 should be considered suspicious.
- Inaccurate data: You may find the customer’s email address doesn’t match the IP address or the zip code doesn’t match the country.
- Multiple transaction over short period of time. A customer making back to back purchases in a day or two should be treated with suspicion. The merchant should contact the buyer just to ascertain that the purchases are indeed legit.
These are just but a few red flags indicative of fraud that a merchant should pay attention to. Remember that as you enhance your site’s security features, cybercrime is also evolving. Therefore, always be on the lookout for such suspicious activity and where necessary put in place mitigating controls. These may include withholding suspicious purchases and additional identity verification of customers via one-time passwords to the customer’s registered contact information.
As I conclude, fraudsters prey on loopholes to make their kill. #KaaChonjo and help protect your customers from cybercriminals.
Yours faithfully
IMBA