ADVERTISEMENT

The everlasting war between retailers and scammers

CyberMonday 2
Jurgita Lapienytė
Jurgita Lapienytė Chief Editor
Nov 25, 2020 Updated: 15 February 2022 4 min read

Constant war with fraudsters

Mr. Ferraz said.

What can technology offer?

ADVERTISEMENT
  1. SMS-based two-factor authentication (2FA). Mr. Ferraz says 2FA is no longer safe as fraudsters use SIM-swap attacks on customers. That way, they can take over the phone number of a user, and compromise any systems that are using SMS-based 2FA.
  1. Mobile commerce. For any retailer using mobile commerce, Mr. Ferraz suggests leveraging sensors and location information. “We are talking about the device which has way more sensors than a traditional computer. The companies are currently not leveraging those censors very well, but they are powerful to combat fraud,” he told CyberNews. For example, retailers could use geolocation to mitigate risks. With location information, a retailer is able to verify if a user is purchasing items from the same location that they provided for that transaction. “You are usually going to use a shift to address to tell the e-commerce website where they should deliver your purchase, and also go to address where they should go after you if you don’t pay,” Mr. Ferraz said. Mobile devices enable you to verify that information in real-time, and that, according to him, is something that could mitigate a lot of risks.
  1. For those retailers who are offering in-store mobile payments, he strongly recommends using location data. Mobile payments have grown significantly, and they are more secure from a healthcare perspective. In this case, location is relevant because retailers can confirm that a user is at the physical store while making a transaction. That way, retailers can verify payment information with more security.
  1. The rules should not be very strict, though, so that they don't intimidate customers. “If they are very conservative, they are probably going to leave some good customers outside. If they take too much risk, they are going to face a lot of fraud," Mr. Ferraz said.

Read more: David Hatter’s tips for safe online shopping: you are a target

ABC for e-commerce beginners

A tip for consumers: stay vigilant and do your homework

  1. Protecting email accounts. Every e-commerce website, every application is going to use your email address as your credential for authentication. If your email account is not well protected - doesn’t have a strong password, does not have 2FA enabled - and gets compromised, all of the services you use consequently would be compromised.
  1. You should beware of any communication that you receive. It could be either a phone call or a text message. As Mr. Ferraz pointed out, scams usually come in two different forms. One is a very good opportunity, a price, a promotion, a gift. If something looks too good to be true and appears out of thin air, you should be careful. Another scam format is someone trying to pass as a retailer or a financial institution saying that they’ve identified a problem with your account. “The bank is going to call you, but it’s not really the bank - it’s a scammer. They are going to say that they’ve seen a transaction on your credit card. Do you recognize it? You are not going to recognize it, and this creates a scenario which makes it very easy for the scammer to convince you,” Mr. Ferraz said.
  1. If you decide to shop online, you should verify a few things. Firstly, you should verify if they are using secure communications, so HTTPS. It is mandatory. “The second thing that people should verify is reviews. They should take a look online if that store is reputable and if the reviews are positive. There’s a lot of information online: people should do some research before buying,” said Mr. Ferraz.
ADVERTISEMENT