Monthly Archives : June 2016

I sometimes hear surprised reactions when I tell people that our product focus is on desktop e-commerce.

Many people are convinced that mobile e-commerce accounts for more than desktop and that desktop is rapidly dropping to zero.

Actually, almost 80% of e-commerce transactions are made from the desktop and it’s growing by $10 billion / year.

If you’ve ever tried to type in your credit card on a mobile device it’s not hard to see why.

Didn’t I hear that mobile is 60% of all commerce?

There were a lot of headlines around the rapid growth of mobile commerce during the 2015 holiday season.

Most of the buzz came from a comScore report for the 2015 Nov-Dec holiday season that showed mobile commerce growing by 60% from the previous holiday to a total of $12.6 billion. 

Desktop e-commerce only grew by 6% to $56.4 billion in the same period.

The percentage growth is a bit misleading (but makes good headlines) because mobile started from a much smaller number.

If you look at the raw dollar amounts for the period,  desktop grew by $3.1 billion and mobile grew by $4.7 billion.  Still good, but doesn’t seem quite as impressive looking at the raw numbers.

Mobile Retail or E-commerce?

This news that mobile grew 60% got a lot of people to draw hockey stick graphs and jump to the conclusion that mobile e-commerce would overtake desktop in a few years’ time.

But, one thing that can be misleading about mobile commerce is that it is comprised of both e-commerce (buying goods/services online) and in-store retail like the Starbucks app being used to buy an overpriced latte.

In the same 2 month holiday period last year, about $1.2 billion of “mobile commerce” was from the Starbucks app, and another $1.3 billion was from Apple Pay at places like McDonalds and Whole Foods.

Should we be Excited about the Starbucks app?

Not that I have anything against Starbucks, but I wonder if we should really be including the Starbucks app when we look at the growth of mobile commerce, and using it to make predictions about the future of commerce.

If we didn’t use their app, we would probably still buy the same coffee, at the same store.  Maybe people buy a couple percent more coffee than they used to, but how much has commerce really grown or changed because of it?

Breaking down Mobile Retail and Mobile E-commerce.

A recent survey of Apple Pay users from Phoenix Marketing International showed that 62% of Apple Pay transactions happen in a retail store and the other 38% were for e-commerce.

It’s hard to get an accurate breakdown of the types of mobile commerce, but my best estimate is that only half of the $12.6 billion reported for mobile commerce last holiday season was actually e-commerce.

If desktop e-commerce was $56.4 billion, and mobile e-commerce is closer to $6.3 billion, 80% of e-commerce is still coming from the desktop.

Mobile will catch up some day, but I think we are at least 10 years from mobile breaking even with desktop for e-commerce.

Maybe using Chip Shield to enter payment details into your favorite mobile apps will help to speed up the process!

With the launch of Apple Pay in 2014, banks and merchants were told they were getting a system that would help prevent fraud by requiring fingerprint authentication and providing better security than plastic credit cards.

Apple used this promise to elicit revenue sharing from merchants and banks that supported their system.

What actually happened?

Within 6 months of Apple Pay’s release, rampant fraud had been reported from banks and retail stores supporting Apple Pay, and for some banks, the fraud rates reached 60 times higher than traditional plastic cards.

Ironically, one of the hardest hit retailers were Apple stores themselves.

http://www.theguardian.com/technology/2015/mar/02/apple-pay-mobile-payment-system-scammers

Too Easy to Add Stolen Cards

The problem wasn’t with the encryption or fingerprint security, but the fact that adding stolen cards into Apple Pay was too easy.

Banks want to make it easy to add their cards to the system and Apple prides itself on easy to use products and services.

Apple added neat features like being able to take a picture of your credit card.  So, fraudsters used paint programs to create images of stolen cards and took pictures of the print-outs.

Apple wanted to make it easier for customers who already had their credit card on file with iTunes.  So, fraudsters added stolen cards to iTunes, ran a couple small transactions that wouldn’t be noticed, and then bypassed most of the security checks when adding the cards to Apple Pay.

Banks wanted friendly support groups to help with the process of on-boarding cards.  The support people were so friendly; they even helped activate stolen cards.

Who’s to Blame?

Apple has pointed at the banks for any problems approving stolen cards, but in the end, they created a system with a major security hole and left the banks to pay millions of dollars to cover fraud losses.

I’d love to be a fly on the wall while Apple tries to get reimbursed for losses at their own stores for accepting Apple Pay.

One thing that Apple Pay fraud has shined a light on is the fact that bank’s security verification questions are often woefully inadequate for determining who actually owns a credit card.

The “gold standard” for some banks to verify cardholder identity was to ask for the last 4 digits of your social security number.  Unfortunately, criminals have access to huge databases of security information stolen from previous data breaches.

For a criminal, searching for the last 4 digits of your SSN is about as difficult as finding a bad picture of you on Facebook.

Apple Pay vs. Chip Cards

If you’re a merchant, accepting Apple Pay might sound cool, but it doesn’t look like its promise of reducing fraud will ever be as strong as chip based cards.

Chip cards were specifically designed to prevent counterfeiting, whereas Apple Pay looks to be a counterfeiter’s dream.

Banks have been forced to put up higher and higher walls to prevent stolen cards being added.  It’s still fairly easy too add a card if your phone is already linked to your bank account, but adding cards to tablets and phones with new numbers requires extra verification steps.

One way to streamline the process is to verify the customer’s card with a product like Chip Shield.  It reads the payment information directly from the chip card and validates that the card is legitimate.  If a card was added to a mobile wallet using Chip Shield the risk of fraud at merchants would be greatly reduced. 

Maybe Apple Pay + Chip Shield could live up to the promise of reducing fraud for merchants.