Almost 75% of global fraud and data breach cases involve e-commerce - Visa

As global trade returns to pre-pandemic levels, crooks are back to exploiting the physical points of vulnerability in stores. However, nearly three-quarters of the fraud and data breach cases identified by Visa's Global Risk team involved e-commerce merchants – often social engineering and ransomware attacks. Owners of cryptocurrencies are also at risk: new malware targeting virtual wallets is being used against them in the form of browser extensions and crypto bridge services.

SAN FRANCISCO, October 14, 2022 – Visa Inc. (NYSE:V), the world leader in digital payments, today shared an updated look at how fraud has evolved since the height of the pandemic, with criminals simultaneously targeting online and offline vulnerabilities as our daily lives return to a blend of in-person and e-commerce experiences.

“As in-person commerce returns to pre-pandemic levels, crooks are back to exploiting the physical points of vulnerability in stores, while continuing to capitalize on e-commerce through malware, ransomware and phishing attacks, among others,” said Paul D. Fabara, Chief Risk Officer at Visa.

Two new pieces of global research – the latest Visa Biannual Threats Report and an MIT Technology Review Insights study “Moving Money in a Digital World” released on October 6 in partnership with Visa – highlight new and returning threats to the post-pandemic economy.


Digital commerce and crypto users are rich targets for innovative fraudsters

Still, the digital commerce environment – vastly accelerated by the pandemic – remains the richest target for cybercriminals. 

Nearly three-quarters of fraud and data breach cases investigated by Visa’s Global Risk team involved e-commerce merchants – often social engineering and ransomware attacks. Digital skimming attacks targeting e-commerce platforms and third-party code integrations are common.

These attacks shine a light on the need for stringent security controls on merchant websites and checkout pages, ensuring external code is not enabled in sensitive cardholder environments. In fact, 42% of respondents in the MIT Technology Review Insights report Moving money in a digital world | MIT Technology Review said security measures are important for their customers, with 59% acknowledging that cybersecurity threats are the biggest challenge to expanding digital payments. Many are prioritizing advanced security capabilities like digital tokens (32%), artificial intelligence and enhanced authorization (43%). 

Beyond attacks on traditional currency, threat actors are employing new tactics to defraud cryptocurrency users, including new malware focused on browser extension wallets for crypto users, as well as innovation in phishing and social engineering schemes. Crypto bridge services are also a target.  From January through February 2022, three sizable thefts exploiting vulnerabilities in various bridge services netted cyber thieves over $400 million¹. 


Protection Is Visa’s priority

While cybercrime persists, Visa has increased its efforts to mitigate fraud. Over the past five years, Visa has invested more than $9 billion on network security.

Visa employs more than a thousand dedicated specialists protecting Visa’s network from malware, zero-day attacks and insider threats 24x7x365. Visa also deploys AI-enabled capabilities and always-on experts to protect its ecosystem, proactively detecting and preventing billions of dollars of attempted fraud. In fact, Visa’s real-time monitoring with AI has blocked over $4.2 billion in fraudulent payments volume in the last 12 months, preventing many from ever knowing they were at risk of a potential fraudulent transaction.

To read more of the Payment Fraud Disruption report, visit Biannual Threats Report (  To read the full MIT Technology Review Insights Moving Money in a Digital World report, visit Moving money in a digital world | MIT Technology Review.

About Visa

Visa (NYSE: V) is a world leader in digital payments, facilitating transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories. Our mission is to connect the world through the most innovative, convenient, reliable and secure payments network, enabling individuals, businesses and economies to thrive. We believe that economies that include everyone everywhere, uplift everyone everywhere and see access as foundational to the future of money movement. Learn more at

Media Contact

Olena Gavinska,
Corporate Communications Director, Visa CISSEE
Phone: +38 044 22 00 300
[email protected]