Loyalty programmes are a fantastic way to drive customer engagement, particularly in the travel industry. The irony is that loyalty schemes can also be reputationally risky and drive customers away from a brand if their account does not appear secure. Imagine a consumers reaction to finding out that a stranger was enjoying their hard-earned free hotel stays.
In recent years we’ve seen well known travel operators and hotel companies suffer data breaches that targeted awards programmes. These cases were widely reported and are likely to have dented consumer confidence in the brands and had a negative impact on commercial performance.
It’s estimated that by 2020, travel fraud is expected to cost travel intermediaries $25 billion a year worldwide ($21 billion in 2017) as the volume and sophistication of fraudsters is on the rise. Fraudsters will be aware of the opportunity that thousands of loyalty points, including air miles, held in accounts present for account takeovers. Estimates put global unredeemed points at 48 trillion, which equates to $160 billion in the US market alone.
In our experience, travel retailers are unlikely to have online security that is comparable to financial services organisations who set the benchmark in areas such as identity and verification. This means travel retailers are more vulnerable to activities such as Account takeover (ATO) fraud, where accounts are accessed and travel points transferred and spent. Instances of ATO fraud often go unnoticed as most consumers don’t check or use their accounts on a regular basis. Indeed, for successful ATO, a fraudster need only gain access to a customer’s online account via either information garnered from one of many data breaches over recent years (email login details perhaps) or the bolder ones will opt to call the contact centre to reset the account or amend details to transfer points.
According to TransUnion’s Managing Director of Fraud & ID, John Cannon, opportunistic fraudsters have become particularly interested in loyalty programmes: “In the hugely competitive travel sector, driving customer loyalty and frequency, without impacting customer experience, is paramount for our clients.
“Fraudsters know this and will take advantage of poor online security to rob from loyalty schemes – there’s been a noticeable uptick in attempted fraud, such as ATO, that we’re identifying and blocking for our clients.”
While discussing ATO fraud, it’s important not to forget the issue of promotional abuse. This occurs when a benefit is offered to new sign-ups. Companies we work with have seen and blocked individual fraudsters using bot technology to attempt to sign-up to offers and new customer benefits thousands of times.
The good news is that there are some relatively simple measures that you can take to protect your brand and, most importantly, your customers.
Travel companies aren’t the only ones to be hit by loyalty and promotional abuse – there are consistent pain points across sectors. Those in the online gaming and food and beverage (coffee shop) sectors tell us that they are frequently targeted for ATO fraud such as the attempted theft of points or cash.
In gaming, despite the regulation-driven crack down on free spins and offers, many operators still attract new customers by advertising promotions. A leading European game tech company was manually checking new customer details to ensure that the same customer wasn’t signing up multiple times – this meant that honest customers were waiting minutes before being approved and fraudsters were slipping through the net; in many cases individuals were setting up dozens of new accounts to reap the rewards. The tech company implemented an automated device risk platform to recognise users’ devices instantly, and persistently, and can now uncover otherwise invisible connections.
The TransUnion Fraud & ID team works with leading travel retailers to stop account takeover fraud and promotional fraud through solutions such as device, email and mobile risk. The device risk platform, for example, covers over 6 billion devices globally and can rapidly detect and direct the customer journey accordingly, through a combination of machine learning and human interaction.
Contact us to find out more regarding TransUnion’s Fraud & ID solutions and how we can help you with your business challenges.