The National Payment Card System (NSPK - the operator of Mir cards) is introducing a new standard to combat illegal transactions on November 1: banks that issue and accept Mir for payment will be sanctioned if the transaction limit is exceeded without the consent of customers.
The measures will be applied if more than a million rubles or more than 0.5% of the amount of all transactions is stolen from customer accounts monthly from customer accounts (0.2% from acquiring banks (which accept payments) and 0.07% from card issuers) ,
As explained in the NSPK, the new standard is a typical document that all payment systems have, which allows you to determine benchmarks for market participants and set the boundaries of acceptable values. Even a remote approximation to these indicators implies more careful monitoring and control of operations.
The current indicators of banks participating in the Mir payment system are several times lower than the maximum permissible values established by the standard, - noted in the NSPK.
It is noted that illegal transactions include not only fraudulent write-offs, but also other transactions made against the wishes of the cardholder, including the renewal of subscriptions to various services and other operations that the client has forgotten about. In addition, charges were taken into account as a result of unlawful actions, for example, if the card is stolen and the attacker pays it in stores or withdraws cash from an ATM.
If we take ten thousand rubles for the average amount of fraudulent write-off, then the volume of theft from a hundred people per month fits into a million, which can be considered a massive deception, experts estimated. Then the payment system starts an audit and helps the bank close the cybersecurity flaw.
According to the Center for Monitoring and Responding to Computer Attacks (FinCERT) of the Bank of Russia, in 2019 the volume of transactions without the consent and knowledge of customers amounted to 6.5 billion rubles, and the average amount of theft was exactly ten thousand rubles.
As chernayakobra.ru wrote earlier, the Bank of Russia reported a fourfold increase in cases of telephone fraud for the period from January to August 2020 compared to last year's figures, the attackers are taking aim at not the account balance, but the deposits of citizens.