The eCommerce Action 2017, a joint law enforcement operation which took place in 26 countries from 6 to 16 June 2017, resulted in the arrest of 76 professional fraudsters and members of internet based criminal networks suspected of online fraud activities. The suspects were responsible for more than 20 000 fraudulent transactions with compromised credit cards, with an estimated value exceeding EUR 5 million.
The eCommerce Action 2017 (eComm 2017) targeted the criminal networks involved in this crime and the locations where illegally purchased goods had been delivered. Law enforcement and private sector formed teams for practical cooperation. The participating countries are: Austria, Belgium, Bulgaria, Colombia, Croatia, Denmark, Estonia, Finland, France, Greece, Ireland, Italy, Hungary, Latvia, the Netherlands, Poland, Portugal, Romania, Slovakia, Spain, Sweden, and the United Kingdom. They received support and operational information from Canada, USA, Iceland and Georgia.
Europol's European Cybercrime Centre (EC3) coordinated this operation from its headquarters in The Hague, with direct assistance from payment card schemes, banks, logistic companies and e-merchants. EC3 also supported national authorities on-the-spot by providing analytical services to the Member States.
Hundreds of packages from online shops were intercepted and more than 100 locations were searched, using information that had been previously submitted by e-merchants, payment industry and logistics companies. The house searches led to the seizures of high-value goods, including electronic appliances, smartphones, tablets, watches and clothing. The joint analysis method revealed criminal hotspots and organised criminal groups that attempted to bypass the various security measures of merchants and financial institutions.
The investigative measures also revealed that some of the suspects have been involved in other forms of crime, such as identity fraud, phishing, cyber-attacks, romance fraud, illegal use of stolen passports, illegal immigration, online child sexual exploitation, drugs trafficking and money laundering.
Around 200 websites and social media accounts were used to broker fraudulently purchased electronic goods. The requests to have them taken down were sent to the hosting companies. Some of these criminally used social media platforms had more than 10 000 followers each. It is suspected that the followers formed potential customer bases for these organised crime groups. Taking down these accounts has a significant collaborative impact on the industry.
In one EU Member State, the police had found an organised crime group during the previous eComm Action in October 2016, and had conducted investigations into the group´s activities over the past eight months. This resulted in the arrests of the key individuals of this group last week.
High profit, low risk
The eComm 2017 is an operation created as a part of EMPACT Payment Card Fraud (PCF) led by Austria. This operation is a practical continuation of the work of the E-Commerce Working Group, a private-public partnership network established in 2014 with the key stakeholders, including the Merchant Risk Council (MRC), a network of 490 e-merchants worldwide. This task force, created to combat CNP fraud, was established to ensure a safe online environment for world customers by sharing information and developing best practice between law enforcement and the private sector.
In the planning phase of the eComm 2017 earlier this year, Europol and MRC agreed to coordinate the law enforcement and merchant cooperation, respectively. Each participating law enforcement agency teamed up with their selected private sector partners to find organised crime groups of fraudsters by exchange of information and joint analytics.
Payment card fraud against online shops is considered as a high profit and low risk criminal activity with losses for the European sector exceeding EUR 1 billion annually. Investigative measures are very complex due to the virtual and international dimension of this crime. Cyber fraud is a top priority for Europol and law enforcement agencies across the European Union.
Steven Wilson, head of Europol’s EC3, highlighted: “With the exchange of information and joint analysis work before the eComm 2017, law enforcement was able to find organised crime groups that have a significant negative impact on the security of Europe. By disrupting the activities of these groups, Europol and its partners are creating a more secure Europe for its citizens and businesses.”
Una Dillon, Managing Director of the MRC stated: “It is critical for private sector companies, such as the MRC’s merchant members, to work together with public sector law enforcement bodies to counteract the continuing growth in retail payment fraud. The cooperation and collaboration between Europol’s EC3 and ecommerce merchants from all over Europe has shown how working together and sharing relevant intelligence can make a huge difference and can stop crime. The number of relevant arrests on this occasion is exceptional and a credit to those involved. The MRC will continue to support Europol on this important initiative.”
The eComm 2017 is the second one, following the eComm 2016 conducted by 10 European countries in October 2016. The working model of cooperation, which has been was developed by the eCommerce Working Group and the European Commission funded research project, OP Skynet, by the Dedicated Card and Payment Crime Unit, a specialized police unit in the UK, and has laid the foundation of practical Private-Public-Partnership in Europe.
Using a card to shop online can be as safe as shopping offline. There are a number of safety rules that can be followed in order to avoid becoming a victim of fraud. Should this happen, the fraud is to be reported to the national police, and if the purchase involved the use of a credit or debit card, the fraud should be reported to the bank as well.
Read more about safe online shopping on our dedicated page: E-Commerce: Tips And Advice To Avoid Becoming A Fraud Victim.