Cybersecurity Expert Pegs AI as Online Shopping’s Biggest Threat

 


artificial intelligence in e-commerce

Artificial intelligence is everywhere and is gathering a growing list of consumer concerns about its security and potential for skewed uses.

This fearmongering is at an all-time high. Knowing the public’s concerns around AI has made it easy for bad actors to cater their attacks to the specific habits of online shoppers.

According to Kumar Dasani, CISO at Digital River, uncertainty tends to drive fear. In this case, AI’s seemingly boundless potential has spurred concern. The pace of its evolution has suggested capabilities that may be difficult to fathom for some, but it’s also important to stay rooted in reality.

Dasani advocates best practices to stay ahead of online shopping threats as businesses implement new technological advances. He sees this approach as necessary, given that many people are unsettled by the fact that AI cannot be completely trusted.

Despite the benefits that AI offers to shoppers, such as convenience, personalization, and instant purchasing, research shows that data security and privacy remain a top concern. He warned that hesitancy has only grown with the widespread adoption of AI, and digital fraudsters are leveraging these fears to their advantage.

“Knowing that the public is having difficulty keeping up with the rapid transformation and uses of AI, evasion of detection has never been easier,” Dasani told the E-Commerce Times.

Shopper Awareness Critical Tool Against Attack Scenarios

Online shoppers can no longer be ignorant of the dangerous threats of fraud and account theft that the illicit use of AI poses, according to Dasani.

Kumar Dasani, CISO at Digital River
Kumar Dasani
CISO at Digital River

Automated scams — such as sending out mass emails or texts — can easily trick people into giving out sensitive information. AI can also generate misleading information.

“If shoppers are not eager to understand the ins and outs of AI, there is a higher chance they will fall into the malicious hands of online thieves. Everyone should engage and experience the AI tools at some level to gain basic understanding,” he urged.

One of the bigger fallacies today is that AI can bolster improved security; that, in essence, AI may become a powerful countermeasure in preventing other AI-powered threats, such as deepfakes.

Realities of AI in Cybersecurity

Maybe yes, and maybe no. But probably not anytime soon. Building effective AI-generated digital defenses is still in the early stages of generative AI’s big-picture development.

“It’s difficult to say just how effective it will be in spotting deepfakes and other advanced threats. Can you really trust AI to detect AI? It’s reasonable to believe that models can be trained to spot manipulated images, videos, or other AI-generated threats,” offered Dasani.

However, the likely reality is that there will always be a human element to threat mitigation, he countered. He has seen AI prove fallible in many instances, and keeping human intuition in the mix to fact-check AI and vice versa will prove most effective.

“But I think the opportunity is there for sure, and AI needs to be leveraged where it makes sense and can be trusted and understood from a capability perspective to solve a known problem,” Dasani said.

Take Layered Action Now While the Wait Continues

E-commerce merchants and shoppers alike should adopt a layered approach to online security. Dasani preaches that security is “everybody’s responsibility,” and it is up to sellers to protect consumers and vice versa. Not getting scared by AI’s big reputation and falling for seemingly sophisticated threats like deepfakes is a great first step in strengthening cyber defenses.

“It’s entirely possible that worst-case scenarios never materialize. On a practical level, security teams need to be cognizant of these possibilities and continue strengthening their defenses while understanding and limiting the attack surface,” Dasani advised.

They also have to be very careful not to rely on AI all the time. The information it presents may not be accurate and could be based on biased data.

Simple measures like two-step verification for customer accounts can be incredibly useful in providing shoppers with an extra layer of protection. This layered approach also needs to be holistic, Dasani added.

Actions Differ for Merchants and Shoppers

While merchants are responsible for providing secure shopping carts and reliable safeguards, consumers must use them properly. An outsized share of that accountability falls on the vendor side.

For vendors, it is their first line of defense. The actions must constantly adapt to give customers the tools and education to stay secure.

In other words, merchants must proactively counter emerging threats with appropriate technology. Customers need to be reactive. For them, it means listening to direction from merchants on proper protocols, Dasani said.

“The key on the vendor side is defense and depth. This includes strong authentication and authorization practices, data privacy, secure encrypted connections, secure shopping cart, limited data retention, and data loss prevention capabilities,” he offered.

For shoppers, layered security is about attentiveness. They can easily do a few simple things to thwart bad actors and protect personal information:

“Shoppers should set up different accounts for different purposes. For example, a Gmail account for financial transactions and Hotmail for shopping sites, or something similar,” he added.

Best Practices Maybe Better Than New Regulations

Regulation is often difficult to predict, noted Dasani. Security will be a focus area as governments move closer toward defining AI guardrails.

“A globalized world brings significant complexity. In an e-commerce context, each new market that a brand sells in introduces new considerations. This makes regulation not only beneficial but necessary in a security context as brands look to protect and capitalize on growth opportunities while still protecting themselves and their customers,” he observed.

However, regulation and compliance do not always equal security. Therefore, merchants and sellers need to ensure robust security measures and security/privacy by designing concepts and baking them into their products and applications as a foundational step, he urged.

A strong foundation will be the best defense against emerging risks. Instilling the right approach to threat intelligence promotes proactive monitoring and alerting on the merchant side, as well as deploying solid incident response strategies. For consumers, a different kind of awareness and education is vital as bad actors more elaborately disguise threats.

“AI lowers the barriers to more elaborate phishing or brand imitation schemes, and customers need to recognize subtle warning signs or red flags as they navigate the e-commerce landscape. No matter how important a text message, email, or phone call may be, always verify directly with the source yourself to get assurance on the validity of the issue,” concluded Dasani.

Comments

Popular posts from this blog

Standing down from Falcon 9’s launch of Ax-4: SpaceX

‘London is back:’ Mayor — and Trump critic — Sadiq Khan looks to lure businesses from the U.S.

Booming Cross-Border E-Commerce Activity in Asia Presents Opportunities for European Merchants VARIOUS Booming Cross-Border E-Commerce Activity in Asia Presents Opportunities for European Merchants by Fintechnews Switzerland September 12, 2023 International e-commerce spending by JCB cardholders based in Asia increased by 52% between 2021 and 2022, presenting a significant opportunity for merchants in Europe as shoppers across the region show increasing willingness to purchase goods online from foreign businesses, a new paper by the Japanese credit card company shows. The report, titled “Click into Place: Unpacking Card Abandonment”, provides insights on online spending from Asia, sharing the latest research and data on e-commerce trends to help businesses boost e-commerce sales and stand out from the crowd. According to the report, cross-border e-commerce activity increased substantially last year, with India leading the region with a staggering five-fold growth, followed by Indonesia and Vietnam, where cross-border e-commerce more than doubled between 2021 and 2023. In Hong Kong and the Philippines, global e-commerce spending grew by around 80%, while China, Taiwan and Thailand saw growth of about 50%. Further growth is expected in the future as the cart abandonment rate in Asia’s e-commerce industry is currently the highest in the world, standing at over 84% as of March 2023 compared with about 70% for customers globally. High cart abandonment in Asia suggests that there is potential for more expansion in the region if merchants are able to solve customers’ friction points and improve experience, the report says. cross border e-commerce image via freepik Addressing cart abandonment Cart abandonment is the act of a shopper adding an item to an online shopping cart but leaving the website without completing the purchase. It represents a significant amount of lost revenue for merchants in the online space. According to JCB, there are several cause of cart abandonment, with the first common one being the payment journey. In Asia, complicated checkouts and unexpected payment processes are cited as a reason for abandoning carts, with 55% of online shoppers in the region identifying long login and sign-up forms as a key source of frustrated. To address this paint point and boost sales, merchants must enhance customer experience by streamlining their checkout process with a well-designed website. They should also leverage advanced technology and design practices to balance security with user experience, using for example pre-fill information and tokenization to speed up the checkout process, as well as technology like 3DS authentication to increase consumer trust. Such improvements not only increase immediate sales and conversion rates but also foster long-term brand loyalty, the report says. The second cause of cart abandonment outlined in the JCB report is unmet customer expectations around how they can pay, and how easy it is to do so. Understanding customer psychology is vital to reduce cart abandonment in e-commerce, the report says. To cater to local preferences, merchants should offer multiple languages and payment currencies, provide a personalized customer journey, and ensure that payment processes are seamless across both mobile and desktop platforms. This is critical become mobile purchases are on the rise, representing 43% of e-commerce sales globally in 2023. In Asia-Pacific (APAC), that share is even higher, with mobile commerce constituting 75.8% of sales in 2022. Finally, the third and final cause of cart abandonment outlined in the report is the failure to react to external factors, such as market trends and changes in consumer behaviour. During the COVID-19 pandemic, e-commerce surged, especially in Asia, due to increased internet and mobile device access, the report says. However, the global economic downturn has somewhat hindered e-commerce growth and altered customer behaviors. This has led many consumers to start using online carts as a modern form of window shopping, adding items for future consideration or price comparisons. This behavior, which may lead to cart abandonment, is likely to rise with economic concerns and decreased impulse buying, it warns. To counter this, merchants should offer competitive pricing and employ strategies like remarketing and non-intrusive exit-intent pop-ups. They should also bolster customer confidence with reviews and security guarantees. e-commerce cart abondon image via Unsplash Cross-border e-commerce on the rise Over the past couple of years, cross-border e-commerce has witnessed significant growth, driven by the proliferation of the Internet and mobile devices, improved logistics, payment innovations and the rise of global e-commerce platforms such as Amazon, Alibaba and eBay. With disposable income rising in developing markets, e-commerce merchants and marketplaces will continue pivoting towards them, pushing cross-border online shopping to new heights. According to Juniper Research, cross-border e-commerce transaction values will reach US$1.6 trillion this year. Through 2028, that number is projected to grow by more than twofold to US$3.4 trillion. In comparison, domestic e-commerce transaction values are set to grow by 48% over the same period, implying that much of the growth in the e-commerce payments market will in the cross-border area. In 2022, around 168 million Chinese customers had engaged in cross-border import e-commerce, growing from 155 million the previous year, data from market research and analytics platform Statista show. The trade value of cross-border import business reached approximately 34 trillion yuan (US$4.6 billion) that year. In Southeast Asia, about a quarter (23%) of consumers said they are shopping more at merchants based in other countries in the region since the start of the pandemic, while a similar number (22%) are shopping more in stores outside of Southeast Asia, a 2021 study by ACI Worldwide and YouGov reveals. Featured image credit: Edited from freepik Get the hottest Fintech Switzerland News once a month in your Inbox email address ASIA CROSS-BORDER E-COMMERCE ABOUT AUTHOR MORE INFO ABOUT AUTHOR Fintechnews Switzerland Fintechnews Switzerland More by Fintechnews Switzerland