Kingfisher rolls out e-fraud software

Kingfisher, which owns Superdrug, B&Q, Comet and MVC among others, is planning to install ClearCommerce's Merchant Engine payment software across all its consumer sites. The decision follows successful rollouts of the fraud prevention software at B&Q, Woolworth's, and Superdrug.

Kingfisher, which owns Superdrug, B&Q, Comet and MVC among others, is planning to install ClearCommerce's Merchant Engine payment software across all its consumer sites. The decision follows successful rollouts of the fraud prevention software at B&Q, Woolworth's, and Superdrug.

Paul Worthington, chief technology officer at the company's e-Kingfisher ebusiness arm, said it originally brought in the secure payment software as part of a complete overhaul of the Woolworth's ebusiness site.

He denied that the installation had anything to do with the Woolworth's site being shut down in August following a security glitch which exposed customer credit card details.

"The bottom line is that we decided to implement a standard platform over B&Q, Woolworth's and Superdrug, and we evaluated a number of elements of the overall infrastructure. One was the payment gateway," he said.

Worthington confirmed that the Superdrug deployment suffered from some problems. When the site introduced higher value goods online, such as designer perfumes, the number of fraudulent transactions increased.

The problem was traced to the fact that the rules determining which transactions to accept did not take the value of goods into account. When the rules were changed, fraud levels dropped.

"We are always changing the rules to improve the performance. It is a process more than a problem," said Worthington.

Fraudulent transactions are a problem for online stores because, unlike high street shops, they are liable for the cost of any goods bought with stolen or fake credit cards because the card is not present at purchase.

The ClearCommerce software checks for fraudulently-generated card numbers and allows Kingfisher to set the level of authorisation for each transaction before the secure socket layer connection to the bank is opened.

"Once the line to the bank is open, the retailer can score the probability of it being a fraudulent transaction," said ClearCommerce's European managing director Alan Scutt.