Report: Q & A – Why New York is the nation’s top online fraud center, and which transactions are riskiest

By Guest Contributor
April 23, 2012

By Connie Loizos

NEW YORK, April 23 (PeHUB) – If you’re wondering which city in the country is the epicenter of online fraud, it’s New York.

So says ThreatMetrix, a seven-year-old company that combats online fraud by “fingerprinting” the devices used to commit it. The firm has convinced roughly 700 customers – which represent more than 5,000 Websites – to employ its cybercrime-fighting services. (Thomson Reuters is among them.)Earlier this afternoon, I caught up with Alisdair Faulkner, ThreatMetrix’s chief products officer, to find out why New York is particularly attractive to hackers, and where else in the country fraud is becoming rife. Our conversation has been edited for length.

According to your report, New York is the biggest target of high-risk fraud transactions, based on roughly a billion transactions that you monitored in the first quarter by U.S.-based e-commerce merchants. First, what does “high risk” mean, as opposed to low risk?

High-risk transactions are transactions we were confident would result in a fraudulent transaction, as opposed to low-risk transactions, which look benign and like they might be good transactions, perhaps because the credit card address matches the device’s IP address and doesn’t look instead like it’s coming from behind a hidden proxy. On average, 2 to 5 percent of credit card orders are high-risk fraud attempts, based on what we’re seeing.

Any theories about why New York sees the greatest percentage of these?

Some of it is: why mark someone on the subway when you can just steal their credit card? With online theft, it’s harder to be convicted; it’s harder to be tracked down. Because [attackers] aren’t directly in touch with their victims, they might also feel less like someone is getting hurt directly. New York is also a major trading city. It’s easier to peddle goods once you’ve stolen them than in many other places.

Given how wired San Francisco is, I was surprised to see that it ranks seventh on your list.

It’s complete speculation, but I think San Francisco may be so low on the list [comparatively] because so many [residents] are Mac users. If you walk into a café in San Francisco, nearly every laptop has an Apple on it, and pretty much every other device, too. And Apples have historically enjoyed better security; it’s harder to infect them and to steal someone’s details.

Yet many of those San Franciscans are downloading apps, and many social app developers don’t employ or promote the tightest privacy controls, as we were all made very aware a couple of months ago. How tightly correlated are privacy and fraud?

It’s a fraud risk, absolutely. If your email is in the hands of a fraudster, phishing attacks follow. It’s very easy then to send you a targeted email that says, ‘I’m a friend who wants to connect with you on [XYZ recognizable service],’ Whenever data gets leaked, fraud follows. The two are absolutely correlated.

Which types of transactions are most risky?

We find that e-commerce and digital goods have higher attack rates. When I say e-commerce, I mean e-tailers versus digital goods, which tend to be music downloads or virtual goods. The latter have much higher fraud attempt rates but lower losses, because with virtual goods, you’re losing, say, a virtual cow. The attempt rate is slightly lower when it comes to online retailers because it’s [more complicated]: you not only have to secure a credit card but line up a physical address where the goods can be delivered.

What types of transactions would consumers be most surprised to discover can be dangerous?

In general, people don’t think about networks like Twitter and Facebook [creating problems for them], but we’re in a generation where we probably tend to overshare, and people are only as protected as their most weakly protected friends. The person who always clicks on links and likes to share content that, unbeknownst to them, may be infected [creates entrée for fraud]. If your Facebook friend’s account is hacked or phished, [a hacker] can get access to all your data, too.

What’s the best advice you can give consumers, especially without a corporate IT department trying to protect them?

First, make sure your machine is always up to date. If it starts running slow for any reason, take notice. Also, use at least two browsers. You can use one for Web searches. Use the other to conduct all your ecommerce transactions and lock it down; don’t install any plug-ins and only visit trusted sites.

The top 10 list of U.S. cities for fraud origination, ranked from highest to lowest:

  1. New York
  2. Atlanta
  3. Chicago
  4. Los Angeles
  5. Omaha
  6. Dallas
  7. San Francisco
  8. Houston
  9. Washington D.C.
  10. Lexington, KY

Note: Chart list courtesy of ThreatMetrix

(This article was first published by <a href=”” target=_new”>PeHUB</a>, a Thomson Reuters interactive forum for the global private equity community.)


We welcome comments that advance the story through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can flag it to our editors by using the report abuse links. Views expressed in the comments do not represent those of Reuters. For more information on our comment policy, see

We stumbled over here coming from a different page and thought I might check things out. I like what I see so now i am following you. Look forward to going over your web page yet again.|

I’ll gear this review to 2 types of people: current Zune owners who are considering an upgrade, and people trying to decide between a Zune and an iPod. (There are other players worth considering out there, like the Sony Walkman X, but I hope this gives you enough info to make an informed decision of the Zune vs players other than the iPod line as well.)

I’d like to thank you for the efforts you have put in penning this blog. I am hoping to view the same high-grade blog posts from you later on as well. In truth, your creative writing abilities has encouraged me to get my very own blog now

Saved as a favorite, I love your site!|

Good post. I learn one thing more challenging on different blogs everyday. It will at all times be stimulating to read content material from other writers and follow just a little something from their store. I’d prefer to make use of some with the content on my weblog whether or not you don’t mind. Natually I’ll offer you a hyperlink on your internet blog. Thanks for sharing.

This website really has all the information I needed about this subject and didn’t know who to ask.

I don’t even know how I stopped up right here, however I believed this put up was once good. I don’t recognise who you’re however definitely you’re going to a well-known blogger when you aren’t already. Cheers!|

I’ve been surfing online more than 3 hours as of late, but I never discovered any fascinating article like yours. It is beautiful worth sufficient for me. Personally, if all site owners and bloggers made just right content as you probably did, the internet shall be much more useful than ever before.|

That is a good tip especially to those fresh to the blogosphere. Simple but very precise information… Thank you for sharing this one. A must read article!

Thank you for your quite very good information and feedback from you. san jose used car

An very intriguing read, I may possibly not agree completely, but you do make some very valid points.

Extremely intriguing details!Perfect just what I was looking for!

This is a very good subject to talk about. Sometimes I fav stuff like this on Redit. I don’t believe this would be the most effective to submit though. I’ll take a look around your web site though and submit something else.