Friday, May 15, 2009

How SpiceJet Nipped Online Fraud in the Bud

Low-cost airlines have turned the airline industry on its head, with every major operator cutting costs to woo customers. But with increased volumes, come increased risks. SpiceJet, which handles more than 2,000 online credit card transactions every day, was in such a situation, when it discovered that it was losing almost Rs 50-60 lakh per month, due to online frauds. Operating in an industry which survived on razor thin margins, Virender Pal, CTO, SpiceJet, knew that he had to quickly find a way to reduce fraudulent transactions.


Explaining the challenge of reducing fraudulent transactions, Pal says, “We used to screen transactions round the clock, but the fraud rates increased every day resulting in a loss of revenue to our company. The number of incidents of fraud we faced as a percentage of total transactions was 1.5 percent. That’s a huge number when you look at our volumes.” Pal says that though the firm had a process to verify online transactions in the form of a Fraud Control Unit, they relied on screening transactions manually, which increased the chances of fraud.


The most common method used by fraudsters is to use stolen credit card information to buy tickets. By the time the true credit card owner reports the fraudulent transaction, the flight usually has been taken. While no India-specific figures are available, a Cybersource study estimates online fraud to be about 1.3 percent of worldwide airline revenue.


Alarmed by the increase in online fraud, SpiceJet enhanced customer experience with real-time verification of credit card transactions to alleviate security fears. The thrust was on making SpiceJet.com a secure place for credit card transactions. Accordingly, Pal’s team faced the task of finding an automated and flexible online risk management solution that could screen online transactions efficiently. As the solution chosen would screen transactions accounting for over 90 percent of the company’s business, the firm undertook a careful study of the market, before choosing a solution. After three weeks of deliberation, the firm finally opted for CyberSource’s Decision Manager, an automated online risk management solution. SpiceJet was impressed by the fact that it could get access to a real-time database of credit cards, which was used by nearly 20,000 organizations across the world.


Post deployment, the percentage of fraudulent transactions has come down significantly. Explains a jubilant Pal, “We are now able to almost single-handedly estimate whether an online purchase should be accepted, rejected, or reviewed. We did not want to reject any transactions because this would impact customer experience. If a transaction seems suspicious, we review it. All this happens within two seconds ensuring that customer experience is not impacted.”


Due to the solution, SpiceJet can automatically evaluate credit card transactions in real time. Based on a combination of rules framed by the airline and a set of over 150 parameters, the system decides whether a transaction should be processed further or sent for a review. The firm formulated these rules after analyzing its experience of fraudulent credit card transactions. It studied the various strategies employed by fraudsters and mapped out its own security requirements accordingly. One such rule was that they would review every transaction made for booking a ticket five hours before the departure of a flight. Today, thanks to these automated rules, SpiceJet has created an environment that ensures safe transactions for customers, while boosting profitability.


Source: www.networkcomputing.in

No comments:

Post a Comment