With the launch of Spectre AI in the SecurityMetrics Partner+ portal, you can scan the e-commerce websites of non-compliant and unenrolled merchants within your portfolio to identify those at the greatest risk of a security breach.
For acquiring banks and payment service providers (PSPs), the stakes have never been higher. Did you know that less than 50% of merchants remain PCI compliant year after year?
Luckily, understanding what merchants want from their acquirers is clear: consistent outreach and communication, an easy-to-use portfolio, and a simplified compliance process. Yet, many banks and PSPs still struggle to identify which merchants are close to compromise and attrition.
This exact scenario is why the experts at SecurityMetrics worked together to create Spectre AI to help acquiring banks and payment service providers identify e-commerce merchants with known vulnerabilities.
Already a SecurityMetrics PCI Program customer? Speak with Sales to add Spectre AI to your Partner+ portal.
As a PCI program manager, you juggle the responsibility of enforcing PCI compliance across your portfolio while also trying to reduce merchant attrition. Many PCI programs offer a broad, one-size-fits-all approach that frustrates merchants and makes your job harder.
But what if you could target your efforts where they matter most, by focusing on the merchants who actually pose the greatest risk?
With the launch of Spectre AI in the SecurityMetrics Partner+ portal, you can scan the e-commerce websites of non-compliant and unenrolled merchants within your portfolio to identify those at the greatest risk of a security breach (see image below).
Spectre AI helps you reduce merchant attrition by identifying risky merchants so you can give them the direct help they need to become compliant.
In the threat landscape, waiting for a merchant to report a breach is a recipe for disaster (think fines and compromises). The true advantage is knowing who is at risk before a compromise occurs.
Spectre AI makes this easy for you by automatically running every month to discover and identify which merchants are most likely to cause a compromise.
By assessing your entire merchant portfolio, you will gain the critical data needed to act before a compromise occurs.
How Spectre AI Works: SecurityMetrics has extensive experience as one of the first Authorized Scan Vendor (ASV) companies ever tested, conducting ASV scans, penetration tests, and forensic analysis. We leverage all of this breadth of experience to create Spectre AI.
This proprietary tool is designed to detect only the most critical security flaws: vulnerabilities that allow a remote compromise. This allows you to see which merchant e-commerce websites are extremely vulnerable or already compromised.
Spectre AI uses a very light scanning method, collecting information like a threat actor does; looking for easy targets, and periodically scanning over 70 million e-commerce websites around the world—all without being burdensome on merchant sites. Spectre AI is also capable of expanding your view of security beyond the boundaries of standard PCI compliance.
PCI Program managers understand that the more merchant portfolio data they have access to, the more successful their program is likely to be.
How Spectre AI Works: Spectre AI collects data, which is then statistically analyzed, grouping it into communities for analysis. A risk score is then generated based on the collected security data and the financial data you provide (such as annual transaction volume, chargebacks, BRAM, etc.).
This score shows you precisely which merchants are generating your highest risk. Once you understand where your risk lies, you can contact SecurityMetrics for premium services to help your high-risk merchants resolve their specific security challenges (see image below).
The traditional approach to compliance typically looks like tagging your entire portfolio with the same security warnings and educational materials. This can create friction with merchants who aren’t getting a personalized approach to their PCI compliance.
How Spectre AI Works: Because Spectre AI specifically identifies the highest-risk merchants, it helps you segment your portfolio based on granular risk levels. This lets you personalize your messaging so you don’t have to treat all merchants as though they are at the same risk level. The compliant merchants in your portfolio can get the educational materials they need to maintain their compliance, while the more risky merchants can get the information they need to tackle individual requirements they are failing in.
Paired with SecurityMetrics’ award-winning customer service, your merchants will have everything they need to feel confident in their compliance efforts.
Did you know that high-risk merchants may also experience higher-than-average chargeback rates, spikes in transaction volume, and other issues? Understanding the risk of your entire portfolio can help you grasp the big picture of overall merchant compliance.
How Spectre AI Works: Spectre AI is more than just a security prediction tool; it's a unified risk-assessment dashboard. It allows you to input additional fraud vectors (such as BRAM, chargebacks, transaction volume, known vulnerabilities, and more) to view the holistic risk of your entire portfolio.
When you stop wasting resources (time, attention, etc.) on low-risk merchants and focus your budget on helping the riskiest merchants, you make a strategic investment that pays dividends in retained merchants, reduced fines, and an objectively more valuable merchant portfolio.
Spectre AI is the smarter way to manage merchant risk. Your monthly Spectre AI report presents the findings of the portfolio scan and risk rankings to empower you to take action where it is needed the most.
Ready to see how Spectre AI can secure your riskiest merchants and boost your portfolio's value? Request a personalized demo.
.svg)
