Getting Started with Fraud Alert
When credit card fraud is detected, card-issuing banks send the transaction details to the Fraud Alert service. Then Fraud Alert sends an email notification to you if your organization is affected by any of the reportedly fraudulent transactions. You can use this information to stop shipments, intercept already-shipped orders, or cancel orders of digital goods. You can also refund the order to avoid chargeback fees and update CyberSource Decision Manager with the alert data to prevent future fraudulent transactions.
Account Security
Creating a Password
After CyberSource sets up your account, you receive a welcome email message that contains your username and a link.
To set your password:
Step 1
Click the link in the welcome email message. The set password window appears:
Step 2
Enter your new password, and then re-enter it in the Verify New Password field.
Step 3
Click Submit. You are logged in to the Fraud Alert portal and can view your active alerts:
 
Resetting a Password
To reset your password:
Step 1
Navigate to www.cybersource.com/fraudalert.
Step 2
Click Forgot your username or password.
Step 3
Enter your username, which is usually your email address.
Step 4
Click Submit. When a valid username is entered, an email with reset instructions is sent to the email account associated with the username.
 
Re-authenticating to the Fraud Alert Portal
The Fraud Alert portal uses IP address, operating system, and browser information in combination with the username and password to authenticate users. If any of this identifying information has changed since the last time you logged in, the Activation Required window appears when you navigate to the portal:
To re-authenticate to the portal:
When you are redirected to the Activation Required window, an activation code is sent to the email address that is registered with your account.
Step 1
Open the email from the Fraud Alert service.
Step 2
Copy the 6-digit Activation Code and paste it into the Activation Code field in the Activation Required window. You can also click the Activation Link in the email to re-authenticate to the portal.
Step 3
Click Submit. The Fraud Alert portal appears.
 
* 
Each activation code can be used only once.
If you enter the wrong activation code, a new code is sent to you because the initial code expires after a failed attempt to re-authenticate to the portal.
The activation link in the email is associated with the activation code. If you enter the wrong activation code, both the code and the email link expire after a failed attempt to re-authenticate to the portal.
Activation codes expire within 15 minutes.
Activation links in emails are valid for 24 hours.
 
Using the Fraud Alert Service
Fraud Alert Email Notifications
Email notifications are sent for each transaction that affects your organization. Notifications can be sent to individuals or email distribution lists.
The fraud alert email notification contains your merchant account name (descriptor), the transaction amount, and the authorization date of the transaction:
Responding to Fraud Alerts
To respond to fraud alerts:
Step 1
In the fraud alert email notification, click LOGIN://www.cybersource.ethoca.com/. The Fraud Alert portal login page appears.
Step 2
Enter your username and password, and then click Login.
Step 3
In the Fraud Alert portal, adjust the filters at the top of the window to ensure that you are capturing all alerts. Outcome: Not Provided appears the first time that you log in. It ensures that all alerts that require a response are displayed:
Step 4
Click the plus sign in the More column of Search Results to expand the alert and review additional transaction information:
Step 5
Choose an outcome from the drop-down list.
 
* 
Providing the Outcome enables the card-issuing bank to identify additional fraud and send additional alerts to you.
Step 6
Check Yes if your organization is processing a refund or is not settling the transaction. Check No if your organization is disputing the chargeback.
Step 7
Under Additional Information, you may choose to enter an email address, IP address, or contact and shipping information.
Step 8
Click Submit to upload the information to the Fraud Alert service.
 
Using the Fraud Alert Service with Decision Manager
When you receive fraud alert email notifications, you can log in to the Fraud Alert portal, copy the card account number, and search for it in the Decision Manager Case Search window. Then you can update CyberSource Decision Manager with the alert data to prevent future fraudulent transactions. For more information about logging in to the Fraud Alert portal, see Responding to Fraud Alerts.
To use the fraud alert service with Decision Manager:
Step 1
Log in to the Fraud Alert portal.
Step 2
In the Fraud Alert portal, adjust the filters at the top of the window to ensure that you are capturing all alerts.
Step 3
Click the plus sign in the More column of Search Results to expand the alert and view the card account number:
Step 4
In the expanded Search Results pane, copy the card account number:
 
* 
The credit card number has been blocked in the preceding illustration, but the full account number appears on the Fraud Alert portal.
Step 5
Log in to the Business Center.
Step 6
From the Business Center home page, choose Decision Manager > Case Search.
Step 7
In the Decision Manager Case Search window, go to the Search Parameters pane and choose the Field and value tab:
Step 8
Choose Account Number from the Field drop-down list.
Step 9
Paste the card account number that you copied in Step 4 into the Value field.
Step 10
Choose a transaction date from the drop-down list.
Step 11
Click Search.
 
When you find transactions associated with the card number, you can review them to determine which transaction matches the date and amount specified by the Fraud Alert portal. Then examine any other transactions involving the credit card to ensure they are not fraudulent. To ensure that additional transactions involving the compromised card are not processed, you can add the card number information to your negative customer list.
For more information about using Decision Manager, see the CyberSource Decision Manager User Guide in the Business Center.
Downloading Reports
You can download monthly transaction reports for three-month, six-month, or one-year time periods. For more information about logging in to the Fraud Alert portal, see Responding to Fraud Alerts.
To download monthly transaction reports:
Step 1
Log in to the Fraud Alert portal.
Step 2
Click Reports:
Step 3
Choose a report time period from the Report Timeframe drop-down list, and click Refresh. You can choose from Past 3 Months, Past 6 Months, or Past Year.
Step 4
Check boxes in the left-most column to choose reports to download.
Step 5
Click Download Selected Files. To download only one file, click Download File.
Use Microsoft Excel to open the report file.