- CyberCrime Center
August 8, 2014
PINs Replace Credit Card Signatures in Effort to Crack Down on Fraud Down Under
From August 1, 2014 on, PINs will be the primary form of authorization for cardholders as banks and card companies attempt to slash fraud which has cost Australia some $262 million between 2010 and 2012.
One million not ready
In a piece on smh.com.au (link to article), Kim Arlington quotes Nicole Pedersen-McKinnon, consumer spokesperson for the payment industry’s PINwise campaign, saying, “There are 1 million consumers who are far from ready for this move. [Either they] don’t have PINs or are not yet using their PINs.”
Across Australia, 800,000 merchant payment terminals will upload a software update that makes signatures obsolete.
What happens to people who can’t remember PINs?
Banks will issue signature-preferred cards for people who, for mental or physical reasons, struggle to remember a PIN or use a terminal keypad. The cards have a different built-in verification code which lets customers sign rather than provide a PIN.
Talk about bad advice
Ian Yates, chief executive for the Council on the Ageing Australia, said the Council had reports of bank staff advising elderly people with memory problems to write down their PIN and carry it with them. ‘‘I’m sure that’s not the official bank position … but that’s what some people will do,’’ Yates said. ‘‘The security implications are worrying.’’
And there’s the visually impaired
Greg Madson, president of Blind Citizens Australia, said older members of his organization had never navigated a terminal keypad. “We will be advocating for some sort of uniformity across the design of these [terminals] so that people who are vision impaired … [do] not have to struggle around the keyboard.”
On behalf of Australian retailers
“Retailers just do not look at these signatures,” noted Russell Zimmerman, executive director of the Australian Retailers Association, who knew of one man who regularly signed for credit card purchases as “Mickey Mouse.” Hmmm. Did the guy have big ears, white gloves and a squeaky voice?
ThreatMetrix® builds trust on the Internet by offering market-leading advanced fraud prevention and frictionless context-based security solutions. These solutions authenticate consumer and workforce access to mission critical applications using real-time identity and access analytics that leverage the world’s largest trusted identity network.
ThreatMetrix secures enterprise applications against account takeover, payment fraud, fraudulent account registrations, malware, and data breaches. Underpinning the solution is the ThreatMetrix® Global Trust Intelligence Network, which analyzes over 500 million monthly transactions and protects more than 160 million active user accounts across 2,500 customers and 10,000 websites.
The ThreatMetrix solution is deployed across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government and insurance.
For more information, visit www.threatmetrix.com or call 1-408-200-5755.
Posted by Dan Rampe
Tags: Account Takeover, Account Takeover Fraud, Bank Fraud, Botnets, Building Trust on the Internet, Chip and Pin, CNP fraud, Context-Based Authentication, Cookieless Device Identification, Cookies, Credit Card Fraud, Cyber attacks, Data Breach, Device Detection, Device Fingerprint, Device Fingerprinting, Device ID, Device Identification, Fraud Prevention, Hacking, Identity Spoofing, Identity theft, Malware, Malware Detection, Malware Protection, Man-in-the-Browser Detection, MitB, Mobile fraud, Online Fraud, Phishing, Phishing Detection, PII, PINwise, ThreatMetrix, ThreatMetrix Cybercrime Index, ThreatMetrix Global Trust Intelligence Network, ThreatMetrix Web Fraud Map, Trust Tags, TrustDefender Cybercrime Protection Platform, Web Fraud