Spotting Fake Merchant Profiles Before Onboarding

Merchant onboarding is a critical process for payment service providers (PSPs) and payment gateways. It establishes trust between the PSP and the merchant, ensuring that the merchant’s business is legitimate and compliant. However, scammers have increasingly found ways to exploit this process through merchant application fraud, creating fake profiles to commit illegal activities such as money laundering, transaction laundering, or other fraudulent schemes.

This article explores the tactics used by fraudsters, the consequences of merchant application fraud, and how PSPs can identify and prevent it effectively.

Understanding Merchant Application Fraud

Merchant application fraud occurs when individuals or groups submit falsified or misleading information to PSPs during the onboarding process. These fraudulent merchants may pose as legitimate businesses but operate for illegal purposes, including:

• Transaction Laundering: Using legitimate-looking accounts to process payments for prohibited products or services.
• Money Laundering: Disguising illegal funds as legitimate transactions.
• Synthetic Identity Fraud: Combining real and fake information to create a fraudulent merchant profile.

Common Tactics Used by Fraudulent Merchants

1. Fake Business Registration Documents: Scammers forge or manipulate business licenses, tax IDs, and incorporation certificates.
2. Stolen Identities: Fraudsters use stolen identities to register as merchants.
3. Misleading Business Descriptions: Claiming to sell legal products while secretly offering prohibited items.
4. Shell Companies: Creating a facade of legitimacy by registering fake businesses.
5. High-Risk Business Masking: Presenting themselves as low-risk merchants to secure approval and lower fees.

Red Flags During the Merchant Application Process

To identify potential fraud, PSPs should look for these warning signs:

1. Inconsistent Information: Mismatched details in the application, such as discrepancies between the merchant’s business name, address, and banking details.
2. Unverifiable References: False supplier or client references provided during the due diligence process.
3. High-Risk Locations: Businesses registered in regions notorious for fraud or lacking robust regulatory oversight.
4. Rushed Applications: Merchants pushing for expedited onboarding without providing complete documentation.
5. Unusual Website Activity: Websites with placeholder content, no SSL certificate, or non-functioning checkout systems.

Consequences of Onboarding Fraudulent Merchants

Failing to detect fraudulent merchants can have significant consequences for PSPs, including:

1. Chargeback Losses: High volumes of disputed transactions from fraudulent merchants damage the PSP’s reputation and financial stability.
2. Regulatory Fines: Non-compliance with anti-money laundering (AML) regulations can result in hefty penalties.
3. Reputational Damage: Associating with fraudulent merchants tarnishes the PSP’s brand and reduces trust among legitimate clients.
4. Operational Disruptions: Investigating and removing fraudulent merchants consumes resources and diverts attention from legitimate business growth.

How PSPs Can Prevent Merchant Application Fraud

1. Implement Robust KYC (Know Your Customer) Policies

Effective KYC measures are essential for verifying merchant identities and ensuring compliance.

• Request original copies of identification and business registration documents.
• Use third-party services to validate the authenticity of documents.
• Conduct video verification to confirm the applicant’s identity.

2. Leverage Advanced Fraud Detection Tools

Technology plays a crucial role in identifying suspicious applications.

• AI-Powered Solutions: Use AI to analyze patterns in applications and flag anomalies.
• Global Watchlists: Screen applicants against databases of known fraudsters and sanctioned entities.
• IP Address Verification: Identify inconsistencies between the applicant’s IP location and business address.

3. Perform Background Checks

Dig deeper into the applicant’s history and business operations.

• Verify ownership details to ensure there are no undisclosed stakeholders.
• Analyze previous transaction histories for unusual patterns.
• Conduct site visits for physical verification of the business location.

4. Establish Risk-Based Onboarding Tiers

Not all merchants pose the same level of risk. PSPs can categorize merchants based on their risk profile and adjust their onboarding procedures accordingly.

• Low-Risk Merchants: Streamlined onboarding with basic checks.
• High-Risk Merchants: Comprehensive due diligence, including enhanced KYC and ongoing monitoring.

5. Conduct Ongoing Monitoring

Fraudulent merchants may initially pass checks but engage in illicit activities later.

• Transaction Monitoring: Identify spikes in transaction volume or unusual patterns.
• Recurrent KYC Reviews: Periodically request updated documents to verify continued compliance.
• Customer Feedback Analysis: Monitor complaints and reviews to detect potential fraud.

Case Study: How a PSP Detected Merchant Application Fraud

A PSP onboarded a merchant claiming to sell health supplements. During the first month, the merchant processed a high volume of transactions but faced an equally high number of chargebacks. Upon investigation, the PSP discovered that the merchant was selling counterfeit products and using stolen card details for fake transactions.

The fraud could have been prevented if the PSP had:

1. Verified the merchant’s product inventory during onboarding.
2. Analyzed the merchant’s initial transaction patterns more closely.
3. Used enhanced KYC measures to confirm the merchant’s identity.

Educating PSP Teams on Fraud Prevention

Preventing merchant application fraud requires continuous education and training:

• Regular Workshops: Train employees to recognize the latest fraud tactics.
• Fraud Alerts: Share updates on emerging fraud trends within the payment industry.
• Simulated Scenarios: Use mock applications to test the team’s ability to identify red flags.

The Role of Collaboration in Fighting Fraud

Collaboration between PSPs, regulators, and industry peers is essential to combat fraud effectively.

• Industry Databases: Participate in shared databases of fraudulent merchants.
• Regulatory Guidance: Work closely with regulators to ensure compliance with AML and KYC standards.
• Information Sharing: Exchange insights and best practices with other PSPs.

Conclusion

Merchant application fraud poses significant risks to PSPs, from financial losses to regulatory penalties. By implementing robust KYC measures, leveraging advanced technology, and fostering collaboration within the industry, PSPs can minimize these risks and protect their businesses. Proactive vigilance and education are the keys to staying ahead of fraudsters and ensuring a secure payment ecosystem.

Anti-Money LaunderingKYC ComplianceMerchant OnboardingPayment FraudPSP scamstransaction laundering