Credit card fraudsters quickly exposed

May 15, 2013
With “MINTify rule” software, attempts to commit credit card fraud can quickly be exposed. Credit: Fraunhofer IAIS

Most people feel safe from fraudsters if their credit card is safely tucked away in their wallet. But they shouldn't: in most cases, thieves only need card numbers and information. A new software can provide more effective protection against credit card theft.

A look at your account balance has just given you a shock: what's going on here? While you have spent the last few weeks in the office and definitely haven't travelled abroad, your account balance shows that you bought electronics in Turkey and ate out in France. In such situations, customers just have to call their banks to get their money back. But this often means that the banks lose the money.

How can credit cards be better protected? Exercising caution with your and keeping the card in your hands when using it is no longer enough: a restaurant's card reading device can be infected with Trojans without the restaurant owner being aware of it. These Trojans then pass the customer's on to third parties. Customers are also at risk when they purchase something online. For this reason, banks have introduced if-then rules that stop purchases from other countries if a certain amount is exceeded. In such cases, the card 's display shows a note indicating that the bank has refused to make the payment. Until now, bank employees have examined fraud cases manually and applied rules accordingly. But in recent years, cases of have exploded in number, and this approach has quickly reached its limits.

Rapid texting

The "MINTify rule" software now supports bank employees and helps them apply appropriate rules. The software was developed by researchers at the Fraunhofer Institute for and IAIS in Sankt Augustin, in cooperation with their partners at PAYMINT. "Our software analyzes recent transactions that are stored in the company's database. Depending on the size of the company, there can be as many as one million data sets per month," says Dr. Stefan Rüping, group manager at IAIS. "For these transactions, the software searches all possible rules and selects the ten to one hundred best options. The best thing about this program is that it finds the most suitable rules in 30 minutes to an hour." Over time, the researchers aim to make the system even faster, with the procedure lasting just a few minutes. Once this goal has been achieved, the software will also be attractive for companies trading in equity markets.

The banks must define a ratio between the levels of security they want for specific types of cards and consequently how many customers may then not be able to use their cards. The more fraudsters are stopped, the more real customers will face the problem of not being able to make a payment. In an ideal scenario, all fraudsters would be stopped and all customers would be served, but this is not feasible. A more realistic ratio would be "four to one customer." Based on this aim, "MINTify rule" can initiate its analysis and select the best possible rules. "At some point it becomes clear whether or not a transaction was legal. The software can learn from this data," says Rüping. In addition, the rules that the security application finds are easy to understand. As a result, bank employees can either take the time to validate the rules or activate them directly.

The "MINTify rule" software is already being used at some banks as well as at a leading European payment processor, and provides protection for millions of credit cards. The software could also provide support in a number of other areas: for instance, it could help doctors at hospitals in the process of selecting medications.

Explore further: World grapples with rise in cyber crime

Related Stories

World grapples with rise in cyber crime

May 11, 2013

International law enforcement agencies say the recent $45 million dollar ATM heist is just one of many scams they're fighting in an unprecedented wave of sophisticated cyberattacks.

Bank card identifies cardholder

March 6, 2013

From the gas station to the department store – paying for something without cash is commonplace. Now such payments become more secure: The Fraunhofer Institute for Computer Graphics Research IGD engineered a solution for ...

Chip and pin terminals shown to harvest customer info

July 31, 2012

( -- For all customers, merchants and restaurant owners making use of card readers for transactions, well, this is not the best of news. Experts have found a security flaw in chip and PIN terminals that allows thieves ...

MasterCard launches new digital payment system

February 25, 2013

Credit card giant MasterCard announced Monday the launch of a new digital payment system that lets people use a wide variety of devices including smartphones to spend their money.

Software defect hits millions of German bank cards

January 5, 2010

(AP) -- Millions of German bank cards have been affected by a "millennium bug"-like problem because they contain software that can't process the number 2010, industry groups said Tuesday.

Recommended for you

Engineers use replica to pinpoint California dam repairs

June 26, 2017

Inside a cavernous northern Utah warehouse, hydraulic engineers send water rushing down a replica of a section of a dam built out of wood, concrete and steel—trying to pinpoint what repairs will work best at the tallest ...

Google to stop scanning Gmail for ad targeting

June 23, 2017

Google said Friday it would stop scanning the contents of Gmail users' inboxes for ad targeting, moving to end a practice that has fueled privacy concerns since the free email service was launched.


Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.