So after I just had to close ANOTHER card thanks to unauthorized purchases, I am wondering why it is the credit card companies just can't require a pin to make a purchase? I mean we can go to the moon, fly faster than the speed of sound, and make Adam Levine's voice sound good but we can't fooking make a pin number for a cc?
What gives?
added security
A lot of fraud has shifted from in store to e-commerce so best to only use your credit cards at sites that have additional security controls. Apple Pay and Android Pay have two step biometric authentication so even though they work by just tapping against a terminal, there is an additional layer of security
That's why so many don't require you to change your passwords on online accounts more frequently, and why there was such a reluctance to move to a chip based credit card despite the success it was elsewhere.
I've worked in banks for the last 20 years, and every single time there was a security measure bypassed that was client facing, it was always 'customer experience'. I've never seen the surveys myself, and have always wondered why people wouldn't put up with some inconvenience up front to avoid having their shit compromised every time a big retailer or a point of sale system gets hit.
What I know is in the past, they wanted to hold onto the higher fees they collect from merchants on credit transactions compared to debit ones. Part of a big lawsuit way back when involved Wal-Mart, who tried to get fees lowered. Arguments made by the card associations was that they had high costs related to fraud, debit transactions were then ruled to be lower cost to the associations and banks due to the pin requirement.
The higher fees collected more than offset the fraud charges and (I expect) have continued to do so. To that end, they would rather keep the risk and higher fees than require pin transactions and lower their fees.
So when you have fraudulent transactions the issuer still gets paid the Interchange and the issuer collects a chargeback from the merchant where the fraudulent transaction occurred.