Risk

5/23/2018
05:48 PM
50%
50%

Fraud Drops 76% for Merchants Using EMV, Says Visa

A new report from Visa says that the shift to chip cards has resulted in dramatically reduced credit card fraud levels.

Chip cards are paying off in terms of reduced fraud. That's the conclusion of a new Visa report on transactions since the shift to EMV (named after original developers Europay, MasterCard, and Visa) cards in 2015.

According to Visa, merchants that have completed the shift to EMV cards have seen their fraud level drop by 76% from December 2015 through December 2017. Of particular note, Visa says that EMV cards have been very effective in reducing counterfeit fraud, which it calls the most common type of credit card fraud committed in the US.

By March of 2018, 97% of total credit card transactions took place using EMV cards. Since the formal shift to EMV cards, the number of cards with chips has risen from 159 million in September 2015 to 483.6 million in March 2018.

Visa says that more than 2.9 million merchant locations are now accepting EMV cards.

For more, read here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
5/24/2018 | 9:10:54 AM
Positive Steps
It's good to hear that the switch to the chip was so effective. In the beginning, it seemed like non-technical individuals were resistant to the change as it was a different way to interface with the POS system. I believe that has since changed and the security efficacy is overwhelmingly positive.
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
Most Malware Arrives Via Email
Dark Reading Staff 10/11/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-18361
PUBLISHED: 2018-10-15
An issue was discovered in nc-cms through 2017-03-10. index.php?action=edit_html allows XSS via the name parameter, as demonstrated by a value beginning with home_content and containing a crafted SRC attribute of an IMG element.
CVE-2018-1744
PUBLISHED: 2018-10-15
IBM Security Key Lifecycle Manager 2.5, 2.6, 2.7, and 3.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 148423.
CVE-2018-1747
PUBLISHED: 2018-10-15
IBM Security Key Lifecycle Manager 2.5, 2.6, 2.7, and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 148428.
CVE-2018-18324
PUBLISHED: 2018-10-15
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has XSS via the admin/fileManager2.php fm_current_dir parameter, or the admin/index.php module, service_start, service_fullstatus, service_restart, service_stop, or file (within the file_editor) parameter.
CVE-2018-18322
PUBLISHED: 2018-10-15
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has Command Injection via shell metacharacters in the admin/index.php service_start, service_restart, service_fullstatus, or service_stop parameter.