EMV – The story so far

EMV - The story so far
0 Shares

By Natasja Bolton, Acquirer Support Manager

Back in late October 2015, we reported how some SMB’s were stating that the “EMV transition is overwhelming”. Fast forward nearly 5 months, the question arising is: how successful has the EMV roll out been so far?

 

From a consumer perspective, the roll out has seen an estimated 70% of U.S. consumers issued with at least one chip card and 93% are aware of the transition, according to Visa. However only 37% of U.S. merchants have EMV ready terminals; furthermore, many of those may not yet be activated to process EMV chip transactions.

 

A survey of businesses in the Fig Garden Village shopping centre in Fresno, California by local publication The Fresno Bee revealed that out of around 40 businesses, half had not installed EMV card reading devices and nearly a dozen had not activated their newly installed EMV card readers. In fact, only 9 business could accept the new transaction standard.

 

It’s reasonable to assume that the businesses surveyed in Fresno are not unique; they may well be a snap shot of what the situation is like across the U.S.

 

Criminals are adapting

Though many businesses have yet to migrate over to chip and PIN devices, criminals already seem to have realised that other types of fraud are an easier option than card present counterfeit card fraud. 

 

Statistics on the impact of the transition to EMV indicate that criminals are moving away from counterfeit card fraud to new account fraud, driving an 113% increase in incidence. According to the 2016 Identity Fraud Study released by Javelin Strategy & Research, new account fraud now accounts for 20% of all U.S. fraud losses.

 

Interestingly however, chargebacks for card-present transactions have increased by 50% since the EMV liability shift started at the end of October 2015.

 

The suspected reasoning for the increase is  primarily due to issuers now raising these chargebacks with merchants; however what isn’t being seen is the usually corresponding increase in retrieval requests by cardholders seeking information about or disputing a transaction. 

 

It may be that some consumers are taking advantage of merchants unable to process EMV knowing that the liability is now on the business. It may be an increase in customers committing what is known as friendly fraud. This is where the cardholder, either deliberately or mistakenly, issues a chargeback claiming that they never made the charge.

 

Unfortunately, this has resulted in businesses being exposed to chargebacks, a process they have no past experience of.

 

For businesses that have chosen to delay updating their card terminals to chip and PIN devices, this increase in chargeback incidence could discourage some of them from using payment card terminals altogether. This is why it’s important for acquirers to encourage businesses to update their payment card terminals to EMV compliant units sooner rather than later.

 

The impact of increased chargebacks on small merchants is highlighted in a recent lawsuit. The case points out that, in some instances, the delay in businesses migrating to EMV enabled card terminals may not be entirely down to the merchant. 

 

As the Fresno example showed, many merchants have invested in EMV ready devices but these are not yet activated; some of this delay may be due to a backlog in EMV-certification for the deployed devices.

 

Webpage URL

Find out more about our PCI DSS compliance services by clicking the button below

LEARN MORE

Meanwhile in Canada

Across the border in Canada, where EMV has been in use since December 2008, losses as a result of skimming debit cards have seen a continued 6-year decline according to Interac, Canada’s PIN-based debit card network. Losses in 2015 cost financial institutions $11.8 million, this represents a 27% decrease in comparison to the previous year, setting a new record low.

 

If recent statistics of payment card fraud are to be believed then it’s clear that the faster that businesses transition to EMV-based terminals, the more likely that customers will be secure against criminals targeting them.

 

It’s important that acquirers communicate to their merchant’s customers the importance of upgrading their terminals to the new standard to avoid the liability risk.

For your clients who have still to make the move to EMV

Here at Sysnet we have prepared a check list to assist those of your clients that have not yet updated their card terminals to the new EMV standard avoid being victims of counterfeit card fraud.

 

  • Numbers  Ensure that the numbers on the card are aligned and spaced in a consistent way. Often cards that have uneven distribution have been produced on an embossing machine.
  • Magnetic Stripe & Signature – Is the magnetic stripe scratched or damaged? In some cases criminals will damage the magnetic stripe so that it won’t swipe and the account number has to be manually entered.  Additionally on fraudulent cards the signature panel is often missing or not of the correct design.  For example, Mastercard signature panel must have Mastercard printed across it at 45° in multiple colours, ‘Discover’ or ‘Discover Network’ appears on the signature panel of Discover cards, the word “VISA” is visible on a Visa card signature panel under a blacklight or ultraviolet light.
  • Brand Identifier– Does the account number and the brand name on the card match? All card brands have distinctive numbers that they use at the start of account numbers, for example Visa account numbers start with a 4, Mastercard with a 5, Discover with a 6 and American Express with a 3.
  • Hologram Sticker & UV Logo – Forged cards often feature a 2D or somewhat flat looking hologram sticker. On a Visa card look for the Visa holographic dove.  A Mastercard will include the world hologram.  Discover cards will have a holographic magnetic stripe or holographic globe on the front of the card.   Some American Express cards may have a hologram of the American Express image embedded into the magnetic stripe. Additionally if your business has a black light or ultraviolet device, then ensure to check for a UV logo; Visa features the ‘flying’ V on the Visa logo, Mastercard has ‘M’ and ‘C’ on the front of the card, ‘Discover’ or ‘Discover network’ is written across a Discover card and lastly on an Amex card, AM EX will feature on the front of the card.
  • Receipt  If a transaction is carried out then the last 4 numbers shown on the card should match the numbers printed on the transaction receipt.
  • Microprint Verification  The majority of cards also have a microprint verification number that when using a magnifying glass can be seen under the account number on the front or on back of the card. The number displayed usually reflects the first or last 4 digits of the account number, the vast majority of criminals neglect to include this detail.

 

With Sysnet’s Merchant Contact Services we can reach out to your merchants and help them become EMV compliant. We offer a wide range of services from outbound merchant contact campaigns to encourage terminal upgrades to inbound contact support services for EMV related questions. We can also run an ISO outreach campaign support to ensure your ISO-channel merchants become EMV compliant.

 

For further information or to request a call back visit Merchant Contact Services, email sales@sysnetgs.com or call 770 804 6429.

 

Like this Article?

Subscribe to receive more tips & news about Cyber Security, Compliance and a lot more!

  • Sysnet Global Solutions will use the information you provide on this form to be in touch with you regarding non-promotional as well as promotional material by email and phone. If you agree to same, then please select the ‘I consent’ box after reading the terms and conditions listed below in relation to consent. You can change your mind at any time by clicking the unsubscribe link in the footer of any email you receive from us, update your preferences for communications, content etc. by clicking on the update my preferences button in any email we send you or by contacting us at marketing@sysnetgs.com We will treat your information with respect. For more information about our privacy practices please visit our website. By clicking below, you agree that we may process your information in accordance with these terms. We use Pardot as our marketing automation platform. By clicking below to submit this form, you acknowledge or agree that the information you provide will be transferred to Pardot for processing in accordance with their Privacy Policy and Terms