While online merchants made significant progress in fighting fraud in 2011, one thing is abundantly clear when breaking down the recently released 2012 CyberSource Online Fraud Report: Online fraud continues to become more difficult to detect.

As fraud managers work tirelessly to identify stealthier forms of online fraud and abuse, they are including detection tools like device fingerprinting and IP geolocation as part of their automatic screening solution to instantly analyze incoming transactions and assess their risk in real-time.

The encouraging news is the fraud rate by order dropped 33% to 0.6% in 2011. This has many merchants feeling confident about the changes they’ve implemented to detect fraud. But while the fraud order rate was lower, the report also found that average fraud losses increased to 1% of the surveyed merchants’ total online revenue from 0.9% in 2010. This increase in fraud order value is something that concerns Andrew Naumann, CyberSource Senior Business Leader, Fraud Management Solutions. (more…)

As we approach the biggest day of love, millions of romantics will be courting their soul mates in person, and in cyberspace. The once awkward stigma of looking for love over the Internet has been shaken. With Internet dating now the second most common way to meet a potential mate in the U.S., online dating has officially gone mainstream.

While some scientists say the “science-based” matchmaking methods that online dating sites use cannot be trusted, and certainly can’t beat an old-fashioned courtship, at iovation we look at trust on romance sites in an entirely different light.

Unlike most anti-fraud measures, iovation looks at the devices (such as computers, tablets and smartphones) connecting to online dating sites. We help dating businesses know who to trust in real-time so that they can shut down troublemakers before they have a chance to strike. And we do this without using any personally identifiable information.

Over the past 12 months, iovation has seen a significant spike in online fraud attempts in the online dating industry. Mashable reports in the article, “Love-Seekers Beware: Online Dating Fraud Rose 150 Percent Last Year,” that 3.8% of the total transactions iovation processed in 2011 for Internet dating companies were fraudulent. That’s quite an increase over the 1.4% we saw in 2010. (more…)

iovation is continually developing new features to meet customer business challenges, keep pace with the constantly changing Internet environment, respond to great customer ideas, and meet our own internal strategic goals.

It’s been a busy year with a ton of new features and enhancements ranging from big to small. We thought we’d take a moment to share with you some of the highlights from 2011.

As with any technology, there are many, many things that go into a new feature including design, development, testing, documentation, integration and other operational requirements. We won’t go into that amount of detail here, but instead will focus on the primary achievements within each of the four principle areas of specialization at iovation, which include:

Getting to know someone on an Internet dating site requires the exchange of personal information. Things like where you grew up, your hobbies, pet’s name and favorite shopping destinations provide personal data that is essential to building an online relationship. Unfortunately, it’s also the same information that fraudsters use to steal peoples’ identities and commit ID fraud and a host of other unwanted activities.

In the recent article, “How to steal an identity in seven easy steps,” software developer, Herbert Thompson, shows us just how easy it is to collect personal information that allows fraudsters to gain access to somebody’s personal and financial online accounts. This is disturbing news, especially when you consider that roughly 40% of web users are ‘likely’ or ‘very likely’ to provide their personal information in one of six online scams, like the Ponemon Institute, commissioned by PC Tools, recently discovered after interviewing over 1,000 UK web users.   (more…)

A few week’s back, I wrote how iovation’s fraud prevention service had been named as a finalist for the 2011 Red Herring 100 Global Award. This week we are proud to announce that iovation was named a Top 100 Global Company.

It’s truly an honor to follow in the footsteps of some of the most recognizable technology companies in the world such as Google, YouTube, Skype and eBay, who have all been previously selected to Red Herring’s prestigious Top 100 Global list.

This recognition is a direct result of years of hard work evolving our fraud protection service into a full spectrum device reputation solution that supports native and web integrations for mobile and desktop devices, tagged and tagless device recognition, real-time transparent risk scoring, and on-demand and scheduled reporting. Our remarkable growth is attributed to the collaborative work and effectiveness of our global device intelligence network, which today protects billions of transactions for our clients representing multiple industries around the globe. (more…)

Every online user, including fraudsters, were granted a free pass by the Justice Department earlier this week for lying on the Internet. Okay, I know what you’re thinking: “How can we prosecute somebody for lying?” Fibbing is an age-old human behavior that even the DoJ says it doesn’t have the time or resources to bring cases against everyone who lies on dating websites.

According to the Politico article, “Free pass for dating site liars,” people can take comfort in knowing that they don’t have to worry about being prosecuted or hauled off to jail for telling a little white lie over the Internet. While this certainly makes sense, at the same time we’re still walking on shaky ground when it comes to online lies, falsifications, profile misinterpretations, or whatever you want to label it. The fact is, when it comes to identity fraud, fake accounts or other crimes on romance sites, lying is typically the basis for the crime. It sets the stage for deeper criminal activity that can cost victims both emotional and financial hardships, not to mention damage to the dating site’s reputation.  (more…)

When it comes to victims of online dating fraud, we’ve heard the stories of how unsuspecting lonely hearts have lost tens of thousands of dollars. The emotional hardships and financial setbacks that victims of online romance scams go through can be devastating. This week, we saw another story that left one victim with no money, homeless, hungry, and eventually hospitalized with pneumonia in a foreign land thousands of miles from home.

In the article, “American Stranded in Ukraine in Online Dating Scam,” former write-in candidate for governor of Arizona, Cary Dolego, traveled to the city of Chernivti, Ukraine, eager to meet up with the woman he fell in love with online and one day hoped to marry. She never showed.

Turns out, Dolego was a victim of an online dating scam that stemmed from account takeover. Apparently, someone or some group hacked into a woman’s account on an international dating website and was communicating with Dolego on behalf of a woman named Yulia. While the woman later said the account on the dating site that Dolego had been corresponding with was hers, she claims she was not part of the scam. (more…)

Online dating websites are aware that scammers use their platforms to defraud men and women looking for love. With the holidays around the corner, many unsuspecting people will be used and abused by scammers, who will break their hearts, their bank accounts, or both.

Many of the stories of heartbreak and fraud look like this:

“After chatting via email, they arranged to meet, but their plans ‘collapsed’ when he told her that he had been held by tax authorities over an issue while he was attempting to fly out on business.

The so-called ‘Mr. Fields’ then asked the nurse for financial help, using emails from his fake solicitor to convince the nurse that this was merely an oversight and that his client would pay her back.”

No matter who someone is, what they say, or how they look, don’t automatically trust them.

Discussion of money or loans in any capacity is a red flag.

Don’t let your heart get in the way of basic common sense.

Sometimes loneliness trumps our ability to see the truth. Keep your head up and be attentive to people’s intentions. In context of the “Color Code of Mental Awareness” this would mean operating in the yellow zone (not in the white zone) while interacting with others on dating and social networking sites. (more…)

“It seems to me that if there was any logic to our language, trust would be a four-letter word.”

This clever, yet pertinent quote from the film, “Risky Business,” has always stuck with me. Today, it’s more relevant than ever when it comes to trusting someone in an online social environment.

As much as we would like to believe what other people say over the Internet, the bottom line is that most separate our real-life persona from our online persona to a certain degree. For some, it’s an outdated photo. For others, it’s embellishing the truth or telling a little white lie. When it comes to online trust, however, the most dangerous kind if personal misrepresentation are those who make a living at deceiving others for profit or personal gain. That’s right. I’m referring to online fraudsters. (more…)

As mobile transactions become part of our everyday lives, online businesses that allow users to access their websites from mobile devices and provide mobile payment options need to consider the security challenges and new risks that emerging mobile platforms create for both consumers and businesses.

iovation has seen first-hand mobile transactions increase by more than 300% annually. With merchants expecting more fraud as a percentage of sales from their mobile channel, I look forward to participating alongside with other leading mobile security authorities in the panel, “Mobile Security: Improving Systems to Mitigate Fraud,” at the Mobile Contactless Payment Innovations Summit in Chicago.

I will be joining Marc Washawsky, SVP Mobile Channel Executive at Bank of America, Kevin Gillick, Executive Director at GlobalPlatform, Jack Jania, SVP GM Secure Transactions at Gemalto, and moderator, James Wester, Editor of Mobile Payments Today, as we share with executives from retailers, banks, card issuers and payment networks insights on assessing risk and detecting fraudulent behavior from mobile devices, including smart phones and tablets. Some of the topics we will cover include:  (more…)

While the term “online abuse” often conjures up thoughts of cyber bullying, predatory behavior and customer harassment, Internet-based businesses that experience abusive activity within their social communities have to immediately address customer trust and confidence issues. Otherwise, they risk unwanted conduct between subscribers, which can ultimately lead to financial implications for the organization.

We all know that the top priority for any IT fraud team is to ensure their good customers can safely and easily communicate and do business within their online environment. However, because many business websites have networking communities that bring likeminded individuals together to socialize, the potential for users or criminals to act inappropriately towards others can create problems that can impact the user experience. (more…)

When it comes to online fraud, most people have a zero tolerance policy. Common sense tells us that nobody wants to be conned out of their money, let alone their emotional state of being. While they say love is blind, online lonely hearts may also be turning the other cheek to potential fraud for the sake of a little companionship.

According to the article, “Online dating scams harm ‘thousands’ in Lee County,” Stacey Payne of the Lee County Sheriff’s Office community relations department says oftentimes those seeking love online either don’t want to believe it, are embarrassed, or simply don’t mind that the person they are in love with is a scammer. (more…)

We’ve heard this story before, but unfortunately it happens over and over again. Social media and dating sites are overrun with criminals who pose as legitimate, upstanding individuals, but are really wolves in sheep’s clothing.

In Florida, a man named Martin Kahl met a 51-year-old woman and they developed an online romance. A quick search for the name “Martin Kahl” turns up many men with the same name and no obvious signs of trouble.

This particular Martin Kahl told his online girlfriend that he would soon be working in Nigeria (red flag) on a construction project, but a short time later he informed her that the job had fallen through. He cried poverty and asked her to send him money, which she did.

(If there are people in your life who might be prone to falling for a scam like this, please reel them in immediately. Any of their financial transactions ought to require a cosignatory.)

Anyway, during their affair, Kahl claimed he had been arrested (red flag) on some bogus charge, and requested that the woman bail him out to the tune of $4,000, which she most likely paid via money wire transfer (red flag). (more…)

It has been a while since my last blog post as the infrastructure team at iovation has been hard at work building out our latest data center in the Westin Building located in Seattle. This new data center is situated in a brand new state-of-the-art facility within the Westin Building which I am going to walk you through here today. We find that in the SaaS industry the quality of provider’s facilities varies widely (and is very opaque) and so we are going to do our best to be transparent here by using photos liberally.

The Westin Building is easily the best connected facility in the Northwest United States. Via our patch panel in the meet-me-room we can rapidly connect to dozens of global telecommunications carriers serving the US, Asia, Canada, Europe, and the rest of the world with a simple fiber optic jumper cable. This facility is also home to the Seattle Internet Exchange on which we are a member.

If you are an iovation customer and would like to directly connect to us within this facility or across the SIX please contact me.

From an infrastructure point of view, keeping the iovation service online at all times and keeping the “bad guys” from harming our customers is always Job #1. To do this, we employ many levels of redundancy, both within a given facility, and between multiple facilities. As with any data center, this starts with the electrical power feeding the facility. Every piece of iovation equipment is fed from dual power sources which are completely redundant all the way back to the power utility. It should also be noted that power failures in Seattle are nearly nonexistent as the grid is extremely robust (fed largely by hydro-power).   (more…)

All my life, I’ve been waiting for someone to give me a million dollars in diamonds, which have been willed to me by my long-lost Somalian stepfather, who’s supposedly the third generation dictator under the humble Mr. George Kinneus the Third. Or something like that.

If you receive an offer resembling that one, run for the hills.

This is what happened to the 55-year-old grandmother in New Zealand, who was simply looking for love online. She was checking out her prospects on Match.com, the most popular dating site. The grandmother got a “wink,” which is like a “poke” on Facebook, from “kiwibloke25.” According to his profile, “kiwibloke25” was a 55-year-old man seeking a serious relationship with a woman between 49 and 68 years old. (more…)