Cybercrime fraud methods: Why 2020 became a turning point for ecommerce fraud
Today I am talking about cybercrime fraud methods and why 2020 became such a turning point for ecommerce fraud. Because that is really the issue here. When fraud teams start seeing steep increases in fraud chargebacks, account takeovers, and customer reports of stolen cards, that usually means something bigger is happening underneath the surface. It means the systems and processes many companies have relied on for years are no longer catching everything they were built to catch.
In this episode of Fraudology, I am joined by Eli Dominitz, CEO of Q6 Cyber, to talk through what organized cybercrime is doing to get around the fraud prevention guardrails that had become standard for identifying suspicious purchases and bad behavior over the last few years. We dig into the technology, processes, and methods fraudsters are using, and we also talk about some of what companies can do to identify these patterns going forward. Not everything should be shared publicly, obviously, but there is a lot here that fraud teams need to understand.
We also get into account takeover fraud, reshipping fraud, stolen card fraud, and the difficult-to-detect fraud patterns that were growing rapidly in 2020 and expanding beyond large enterprise merchants. And this matters. Because cybercrime fraud methods do not stay contained to one segment for long. If large merchants are already feeling the pain, smaller companies are usually next. That is exactly why fraud teams need better visibility into how online fraud methods are changing and what those shifts reveal about fraud process gaps, prevention strategy, and the role of cyber threat intelligence.
Here is what that fraud lens means in practice:
- Cybercrime fraud methods often become visible first through fraud chargeback increase, account takeovers, and stolen card reports
- Organized cybercrime adapts quickly when fraud prevention guardrails become predictable
- Difficult-to-detect fraud usually signals deeper fraud process gaps, not just temporary fraud spikes
- Ecommerce fraud prevention works better when teams understand not just outcomes, but the tactics behind them
What you’ll hear in this episode:
- Why 2020 created such a sharp shift in cybercrime fraud methods for ecommerce companies
- How account takeover fraud, reshipping fraud, and stolen card fraud were evolving at the time
- What Eli Dominitz and Q6 Cyber were seeing from organized cybercrime and emerging fraud behaviors
- Why fraud prevention guardrails that once worked well were starting to miss new attack patterns
- How cyber threat intelligence and stronger fraud prevention strategy can help teams respond more effectively
You should listen to this episode if you:
- Work in fraud, ecommerce, payments, or risk and want to better understand cybercrime fraud methods
- Need practical insight into account takeover fraud, reshipping fraud, and difficult-to-detect fraud
- Want a clearer view of organized cybercrime, cybercrime tactics, and online fraud methods
- Are reviewing fraud process gaps, fraud prevention guardrails, or broader ecommerce fraud prevention strategy
- Care about fraud chargeback increase, new fraud behaviors, and how cyber threat intelligence can improve decision-making
If you liked this episode, be sure to subscribe and review the podcast on iTunes, Spotify, YouTube, or wherever you listen to podcasts. It really helps with getting the word out.
Episode notes & key takeaways
Rising chargebacks and account takeovers usually mean the fraud is already ahead of the controls
Let’s break this down. One of the clearest warning signs in this episode is that when fraud teams start seeing major increases in chargebacks, customer complaints, and account takeovers, the fraud is usually not new anymore. It has already made it through the systems.
That matters because fraud chargeback increase is often treated like the problem itself, when it is really the downstream signal. The more important question is why the fraud made it through in the first place. In 2020, that question became much harder to ignore because the usual defenses were not catching as much as teams expected.
This is exactly why cybercrime fraud methods deserve closer attention. If the fraud is reaching customers and chargeback queues at scale, then something in the prevention model has already shifted.
- Fraud chargeback increase is often a lagging signal of deeper fraud issues
- Account takeover fraud shows up more visibly once upstream controls start failing
- Difficult-to-detect fraud can create customer pain long before teams understand the full pattern
- Fraud process gaps become clearer when downstream loss signals rise sharply
Organized cybercrime keeps adapting to the guardrails merchants rely on
This is where things get especially important. Eli explains how organized cybercrime is using technology, processes, and methods designed specifically to get around the fraud prevention guardrails merchants had come to trust.
Here’s what is actually happening. Once a fraud control becomes common across enough merchants, attackers study it, test it, and adapt around it. That is part of what made 2020 feel like such a turning point. The fraud was no longer just opportunistic. It was increasingly structured, intentional, and built to bypass standard defenses.
This is why organized cybercrime cannot be treated like a static threat. The more predictable the defense becomes, the more valuable adaptation becomes for the attacker.
- Organized cybercrime evolves in response to widely used fraud prevention controls
- Fraud prevention guardrails lose effectiveness when attackers learn how to work around them
- Cybercrime tactics become more dangerous when they are built on repeated testing and refinement
- Ecommerce fraud prevention needs to evolve faster than the attack patterns it is trying to stop
Reshipping and account takeover fraud are strong examples of how fraud was shifting
Another major part of this episode is the focus on reshipping fraud and account takeover fraud, both of which were becoming more common and more difficult for many teams to catch cleanly.
That matters because these fraud types often rely on layered deception. With account takeover fraud, the attacker is stepping into an existing trusted relationship. With reshipping fraud, the criminal model depends on moving stolen goods through intermediaries and obscuring where the value is actually going. Neither one is especially easy to solve if your systems are mostly optimized for older fraud patterns.
This is one of the reasons these online fraud methods were spreading so effectively. They exploited the gap between what companies expected fraud to look like and what it actually looked like in practice.
- Account takeover fraud exploits trust that already exists inside the customer relationship
- Reshipping fraud adds operational distance that makes stolen goods harder to trace
- Online fraud methods become more dangerous when they no longer match old fraud assumptions
- New fraud behaviors often scale fastest when teams are looking for the wrong pattern
Hard-to-detect fraud usually means the team needs better intelligence, not just more rules
One of the most useful themes in this episode is that difficult-to-detect fraud cannot be solved just by stacking more generic rules on top of the existing system. If the attackers are adapting intelligently, then the response needs to become more informed too.
That is where Q6 Cyber and the conversation around cyber threat intelligence become especially valuable. Teams need more than transaction signals. They need better context on how fraudsters are operating, what tactics are spreading, and which methods are gaining traction across the ecosystem.
This is exactly why cyber threat intelligence matters. The goal is not just to react faster to losses. It is to understand the attacker environment well enough to recognize the method before it fully scales inside your business.
- Difficult-to-detect fraud requires more context, not just more reactive rules
- Cyber threat intelligence helps teams understand how fraud methods are evolving outside their own environment
- Fraud prevention strategy improves when teams combine internal signals with external threat knowledge
- Ecommerce fraud prevention gets stronger when teams learn the method, not just the symptom
The bigger lesson is that 2020 exposed how quickly the fraud landscape can change
The broader takeaway from this episode is that 2020 was not just a bad year for fraud volume. It was a revealing year for fraud evolution. It showed how quickly cybercrime fraud methods could shift, how much organized cybercrime had matured, and how exposed merchants were when their controls were built for an earlier version of the threat.
That is why this conversation matters beyond that specific moment. The lesson is not only historical. It is structural. Fraud environments keep changing, and teams that only measure losses without understanding the methods behind them will always be a step behind.
That is really the point Eli and I are making here. If you want better fraud outcomes, you have to understand how the fraud is changing before the losses make the shift impossible to ignore.
- Cybercrime fraud methods can evolve faster than many fraud programs are built to handle
- Fraud prevention strategy should be updated based on changing attacker behavior, not just past loss trends
- Organized cybercrime forces teams to think in terms of adaptation, not static controls
- New fraud behaviors are easiest to stop when teams recognize the shift early
The bigger theme in this episode is that 2020 became a wake-up call for ecommerce fraud teams. I talk with Eli not just about what was happening, but about why it was happening and what it revealed about organized cybercrime, account takeovers, reshipping fraud, and the limits of standard fraud controls. And that is the real takeaway. When fraud starts changing faster than your guardrails, the answer is not just more monitoring. It is better understanding of the methods behind the fraud.
