HOME

TheInfoList



Click Here for Items Related To - card not present transaction
OR:
card not present transaction on:   [Wikipedia]   [Google]   [Amazon]

A card-not-present transaction (CNP, mail order / telephone order, MO/TO) is a
payment card Payment cards are part of a payment system issued by financial institutions, such as a bank, to a customer that enables its owner (the cardholder) to access the funds in the customer's designated bank accounts, or through a credit account and ...
transaction made where the cardholder does not or cannot physically present the card for a merchant's visual examination at the time that an order is given and payment effected. It is most commonly used for payments made over the
Internet The Internet (or internet) is the Global network, global system of interconnected computer networks that uses the Internet protocol suite (TCP/IP) to communicate between networks and devices. It is a internetworking, network of networks ...
, but can also be used with mail-order transactions by mail or fax, or over the
telephone A telephone, colloquially referred to as a phone, is a telecommunications device that enables two or more users to conduct a conversation when they are too far apart to be easily heard directly. A telephone converts sound, typically and most ...
. Card-not-present transactions are a major route for credit card fraud, because it is difficult for a merchant to verify that the actual cardholder is indeed authorizing a purchase. If a fraudulent CNP transaction is reported, the acquiring bank hosting the merchant account that received the money from the fraudulent transaction must make restitution to the cardholder, which is called a
chargeback A chargeback is a return of money to a Payment, payer of a transaction, especially a credit card transaction. Most commonly the payer is a consumer. The chargeback reverses a Electronic funds transfer, money transfer from the consumer's bank acc ...
. In addition, the merchant account would be assessed a chargeback fee by the acquiring bank. This is the opposite of a card present transaction, when the issuer of the card is liable for restitution. Because of the greater risk, some card issuers charge a greater transaction fee to merchants who routinely handle card-not-present transactions. The card security code (in this case, CVV2) system has been set up to reduce the incidence of credit card fraud arising from CNP.


Mail-order fraud

If a card is not physically present when a customer makes a purchase, the merchant must rely on the cardholder, or someone purporting to be so, presenting card information indirectly, whether by mail, telephone or over the Internet.
Shipping Freight transport, also referred to as freight forwarding, is the physical process of transporting commodities and merchandise goods and cargo. The term shipping originally referred to transport by sea but in American English, it has been ...
companies may guarantee delivery of goods to a location, but they are normally not required to check identification and they are usually not involved in processing payments for the merchandise. A common preventive measure for merchants is to allow shipment only to an address approved by the cardholder, and merchant banking systems offer simple methods of verifying this information. Before this and similar countermeasures were introduced, mail order carding was rampant as early as 1992. A ''carder'' would obtain the credit card information for a local resident and then intercept delivery of the illegitimately purchased merchandise at the shipping address, often by staking out the porch of the residence. Small transactions generally undergo less scrutiny, and are less likely to be investigated by either the card issuer or the merchant. CNP merchants must take extra precaution against fraud exposure and associated losses, and they pay higher rates for the privilege of accepting cards. Fraudsters bet on the fact that many fraud prevention features are not used for small transactions. Merchant associations have developed some prevention measures, such as single-use card numbers, but these have not met with much success. Customers expect to be able to use their credit card without any hassles, and have little incentive to pursue additional security due to laws limiting customer liability in the event of fraud. Merchants can implement these prevention measures but risk losing business if the customer chooses not to use the measures.


Fraud

The United States
Federal Trade Commission The Federal Trade Commission (FTC) is an independent agency of the United States government whose principal mission is the enforcement of civil (non-criminal) United States antitrust law, antitrust law and the promotion of consumer protection. It ...
uncovered an operation running from 2006 to 2010 that netted more than $10 million in fraudulent charges on credit and debit cards. The perpetrators used more than 100 merchant accounts that they had created to do the billing. Each merchant account was attached to an Employer Identification Number belonging to a real merchant with a similar-sounding name. Each merchant account was tied to an 800-number from CallMe800. Each account was also tied to a website they had created. They also rented physical addresses from companies which rent virtual offices, such as Regus (now IWG), for each merchant account. These virtual office companies, which did not know of and were otherwise not involved in the
scam A scam, or a confidence trick, is an attempt to defraud a person or group after first gaining their Trust (emotion), trust. Confidence tricks exploit victims using a combination of the victim's credulity, naivety, compassion, vanity, confidence ...
, would then forward any mail received at the virtual office to Earth Class Mail, a digital mailroom service that scanned mail from the physical address of the merchant account and forwarded it as a PDF to
email Electronic mail (usually shortened to email; alternatively hyphenated e-mail) is a method of transmitting and receiving Digital media, digital messages using electronics, electronic devices over a computer network. It was conceived in the ...
accounts that the scammers had established. The scammers also ensured that when they checked their online merchant accounts, that they used an
IP address An Internet Protocol address (IP address) is a numerical label such as that is assigned to a device connected to a computer network that uses the Internet Protocol for communication. IP addresses serve two main functions: network interface i ...
located near the billing address so as not to arouse suspicion. A charge of $9 was processed on about one million credit cards over the four-year period. Each card was billed a single time. Credit card companies only investigate if the charge is more than $10 because it costs about that much to run an investigation. Then the money was moved to bank accounts in Lithuania, Estonia, Latvia, Bulgaria, Cyprus, and Kyrgyzstan where the money could not be traced or recovered. The perpetrators experimented with a 20-cent charge and that generated more suspicion than the $9 charge. Only about 10 percent of the fraudulent charges were ever reported or contested by the card owner that was billed.


References

{{DEFAULTSORT:Card Not Present Transaction Credit card terminology Fraud