Online retail: What are the risks really?

Merchants selling virtual goods like airtime or vouchers are the most vulnerable. I've quite literally seen people start up a website selling airtime and go bang within a fortnight. The more quickly your product is delivered, and the easier it is to resell, the more careful you have to be about your payment security.

Different kinds of business may attract different kinds of online threats, but nobody is completely safe. Even if you're selling a physical product, somebody may buy goods with a stolen card, have them shipped to a temporary address and then to resell them before anybody's worked out what's going on.

This is not particularly hard. Even if a card holder blocks their card the moment they know it's stolen, there still remains that initial window period. It is almost impossible for a database to keep up with the millions of cards and millions of transactions happening around the world every second.


Websites that use affiliates to drive traffic are susceptible to their own set of scams, as are accommodation establishments. Even if you don't sell anything more valuable than cupcakes, you may find your site targeted by criminals who run through lists of stolen credit cards to make sure they're working before selling them on. The financial loss may not be that big, but it can take a lot of time and resource that small business don't have to sort things out.

Know your customers
The first step to take in protecting your online business is to know your customers and their buying habits if possible. A simple welcome call once they've registered, if your volumes allow it, can tell you a lot. And obviously the longer a customer has been with you and the more often they've made purchases, the more you can trust them. Don't automatically relax the rules for accounts over a certain age, though – fraudsters are wise to that one.

Limiting your exposure by imposing a transaction limit for new customers, or waiting a day or two before shipping, can also help, he adds. The art to managing your online risk is ensuring you are not over exposed, but at the same time gaining maximum return from your valid customers.

Then there is the 3D Secure system from Visa and Mastercard, he says – but it is not right for everyone, and can't be used as the only security measure. Some customers hate it and will abandon transaction when the 3D Secure page comes up, so you may need to do some education. And it doesn't apply to US credit cards or even to commercial Mastercards, so you need other protection as well.

Reputation
Reputable payment gateway providers should offer extra levels of fraud protection, he says. It's essential to have a conversation with your supplier about what they offer, what risks they can protect you against and whether they can give you access to more specialised third-party protection services if your need warrants it.

Whatever you do, don't just set up a website with a shopping cart and assume all will be well. Fraudsters are smart, brazen individuals – they're not be underestimated.

Reputable payment gateway providers should offer extra levels of fraud protection, he says. It's essential to have a conversation with your supplier about what they offer, what risks they can protect you against and whether they can give you access to more specialised third-party protection services if your need warrants it. – Gadget.co.za

Brendon Williamson is a general manager of business development at payment services provider PayGate.

Follow Gadget on Twitter on @GadgetZA

Subscribe to the M&G

These are unprecedented times, and the role of media to tell and record the story of South Africa as it develops is more important than ever.

The Mail & Guardian is a proud news publisher with roots stretching back 35 years, and we’ve survived right from day one thanks to the support of readers who value fiercely independent journalism that is beholden to no-one. To help us continue for another 35 future years with the same proud values, please consider taking out a subscription.

Related stories

Advertising

Subscribers only

The South African connection: How mercenaries aided Trump ally in...

The UN found that Trump ally Erik Prince violated the Libyan arms embargo. Here are the South Africans the report says helped him to do so

Q&A Sessions: African court ‘will be a tough job’ — Dumisa...

Lawyer, author and political activist Dumisa Ntsebeza talks to Nicolene de Wee about his appointment as judge of the African Court on Human and...

More top stories

In a bizarre twist VBS liquidators sue KPMG for R863mn

In filed court documents, the VBS liquidators are blaming auditing firm KPMG’s negligence for the alleged looting of the bank

Snip, snip: Mboweni eyes wage bill, other future spending cuts

Last year, the finance minister noted that increased government spending has failed to promote growth over the past decade

Budget: Mboweni pegs recovery hopes on vaccine efficacy, lower public...

The treasury forecasts 3.3% growth, but warns this will fall to 1.6% if the fledgeling vaccination programme fails to stem successive Covid waves

READ IT IN FULL: Mboweni’s 2021 budget speech

Read the finance minister's address on the budget for 2021
Advertising

press releases

Loading latest Press Releases…