COVID-19 changed lives in many ways – some hopefully never to be known again, but one element which existed before and grew exponentially during the pandemic was online shopping. What also grew alongside of this was an increase in online fraud techniques.
As Accomplish (formerly Accomplish Financial) is a leading payments technology company, we believe it’s crucially important to share our knowledge and expertise to make sure consumers and reputable online retailers enjoy safe and secure online transactions.
According to Guy Raymond El Khoury, CEO of Accomplish there are some golden rules to follow when purchasing goods online.
“We want people to feel safe and not fear online shopping so here are a few red flags to watch out for:”
- Always make sure the website you’re looking at is legitimate.
- Does the website accept payment cards or a trusted payment method that allows you to dispute a transaction in case of a problem? (Hint: good card issuers should allow you to do this!)
- Make sure the website uses SSL (usually designated with a padlock icon in the address bar).
- Click on the padlock at the drop-down menu to check if the site has a valid certification.
- Look out for small differences in the site’s URL (web address). It might just have an added letter or a slight spelling change. For example, Guccii instead of Gucci
- Have a good look at the e-commerce site to see whether it’s professionally produced or ‘thrown together’. Again, whether there are typos, grammatical mistakes and poor-quality images should give you a clue to its authenticity. Another essential check is whether they are easily contactable and want to tell their ‘about us’ story.
- You can always look on a search engine for reviews of the company – what you find might instantly confirm that it’s genuine or prove it’s a scam.
- Always work with reputable merchants.
- Look for a certificate of authentication with a ‘trust mark’ on the footer, header or checkout pages of the website that actually links to a certificate (i.e. is not just a picture).
- Some copycat websites do deliver your goods – but these are inferior quality knock-offs not even worth the discounted rate you’ve paid. Many European countries consider the purchase of such goods illegal and impose heavy fines on the recipients.
- Fake reviews – do the reviews look suspiciously similar or badly worded, yet all giving the highest rating?
- Unusual payment methods (wire transfer/cash, etc.)
- Too much detailed personal info is required that has nothing to do with what you are buying or its delivery.
Three examples of fake sites from Christmas 2021
“The bottom line,” adds El Khoury, “is that if the offering is too good to be true then it inevitably is. There’s no such thing as merchants practically giving things away or special offers at a fraction of the price everywhere else.”
Layers of security
“As an issuer, we are always trying to implement the latest technology to protect account holders. We were one of the first companies to implement 3D Secure Version 2 which card schemes such as Mastercard and Visa adhere to and recommend. This adds an extra layer of protection to online shopping as with 3DS enabled cards you have a two-step authentication process for every online purchase. No payments will go through unless you authorise them yourself.”
“Most people by now have experienced some form of SCA (Secure Customer Authentication) where you receive an SMS or email with a one-time code to enter in order to complete your purchase.”
The new evolution is biometric authentication, where you can confirm your identity by you looking at your phone (face recognition) or using your finger-print. These evolutions in technology increasingly make it difficult for fraudsters, particularly if your payment card is stolen. “It is important to note that whilst in the UK advanced standards are implemented, there are some websites in different parts of the world that may not adhere to these standards, so once again check security and make sure you are making purchases with legitimate merchants” adds Guy El Khoury.
Virtual cards and tokenised cards
What makes card and purchasing security even stronger are virtual cards with no plastic involved. “A virtual card is essentially card details without the plastic card. Virtual cards can be issued quickly, used and the credentials discarded, even just for a single purchase,” explains Guy Raymond El Khoury. That means that although this ‘card’ works in the same way as normal for online transactions, if you wish the card number can never be issued again. You can also use virtual cards to manage expenses, budgets or even spending at specific merchants by assigning each one a different virtual card.
“To take security to a whole new level, using many of the existing concepts, where we want to end up next is tokenisation. Your transaction is linked to a token rather than a card number. The token is randomly generated at the moment of use and identifies you, the network, and financial institution to the merchant for a single purchase, and then once the purchase is done, the token immediately becomes redundant. This doesn’t even have to be in a traditional 16-digit card form, it is more like an encoded layer to the transaction without you having to give your card details or credentials.”
A form of this concept can be found in the digital payment technology being used by Apple Pay and Google Pay, for example.
Biometric authentication means you identify yourself with something unique to yourself. “Biometric authentication has to be a human right for anyone wishing to be able to have this level of security,” points out Guy Raymond El Khoury. “The traditional way is to use a device such as a laptop or a phone enabled for this. However great strides are being made in the field of biometric cards and the technology’s cost nowadays has come down significantly which is something we will see coming into the market more frequently in the future. This technology means that in the future, you will not necessarily even need a smart phone to make a biometrically secure transaction.”
According to Guy Raymond El Khoury, The UK and European consumer’s rights are currently well-protected. “Financial institutions have enforced regulatory requirements in place, looking out for your rights. If your phone is stolen or compromised there’s an extremely good chance that you’re covered. Even if you already have that cover this is an additional safety net. If fraud is suspected through a transaction, you know nothing about, then they may still investigate, but with the consumer’s protection in mind.”
So, know the rules, spend a little extra time checking out websites before buying items and make sure your security isn’t compromised or that your heart’s desire of a purchase will actually arrive.
If you have a question or concern that we’ve not covered, please don’t hesitate to get in touch with us here.