CyberSource

CyberSource
Name	CyberSource
Type	Subsidiary
Industry	Payment processing
Founded	1994
Products	Payment gateway, fraud management, tokenization
Owner	Visa Inc.

Contents

History
Products and Services
Technology and Security
Market Position and Partnerships
Compliance and Certifications
Criticisms and Incidents
See also

CyberSource CyberSource is a global payment management company providing online payment, fraud prevention, and payment security services for merchants, financial institutions, and technology platforms. Founded in the 1990s, the company has operated across e-commerce, retail, and financial services, integrating with major credit card networks, banking institutions, and technology vendors. CyberSource's offerings intersect with payment gateways, tokenization, compliance regimes, and enterprise risk management used by multinational corporations and service providers.

History

CyberSource was established during the expansion of internet commerce in the 1990s, contemporaneous with companies like Amazon (company), eBay, PayPal, Visa Inc. (later acquirer), and Mastercard. Early milestones involved interoperability with networks such as VisaNet and collaborations with merchant acquirers including First Data and Worldpay. During the 2000s, CyberSource expanded services paralleling developments at American Express, JPMorgan Chase, and Bank of America as online payment volume surged. In the 2010s CyberSource was acquired by Visa Inc., aligning with strategic moves by other payments firms such as Square (company) and Stripe (company). The company's evolution reflected regulatory shifts influenced by legislation and standards involving entities like Federal Trade Commission and organizations such as the Payment Card Industry Security Standards Council.

Products and Services

CyberSource offers a suite of products including payment gateways, fraud management, tokenization, recurring billing, and a hosted checkout similar in scope to services from Stripe (company), Adyen, and Braintree (company). Its fraud management tools compete with solutions from Forter, Riskified, and Kount, while its tokenization and encryption capabilities intersect with platforms used by PayPal, Apple Inc., and Google LLC in digital wallets. The company provides APIs and SDKs that integrate with e-commerce platforms such as Shopify, Magento, and WooCommerce, and with enterprise resource planning systems like SAP SE and Oracle Corporation. CyberSource also supplies services to travel and hospitality clients working with firms like Expedia Group, Booking Holdings, and Airbnb.

Technology and Security

CyberSource's technology stack incorporates payment gateway infrastructure, real-time fraud scoring engines, device fingerprinting, and tokenization technologies similar to those implemented by EMVCo and used by Mastercard and Visa Inc. in secure payments. Security measures align with standards from the Payment Card Industry Security Standards Council and practices adopted by technology companies such as Microsoft and Amazon Web Services for cloud hosting. The company employs machine learning models comparable to research from IBM Research and Google AI for anomaly detection, and leverages cryptographic techniques discussed in publications by RSA Security and academic institutions like Massachusetts Institute of Technology and Stanford University. CyberSource’s integrations with mobile platforms reflect interoperability considerations relevant to Apple Inc.'s Apple Pay and Google LLC's Google Wallet.

Market Position and Partnerships

CyberSource occupies a position among global payment processors alongside Visa Inc., Mastercard, American Express, PayPal, Adyen, and Stripe (company). Its partnerships extend to financial institutions such as JPMorgan Chase, Bank of America, and Citigroup, and technology partners including Oracle Corporation, SAP SE, and cloud providers like Amazon Web Services and Microsoft Azure. The company engages with industry consortia such as the Payment Card Industry Security Standards Council and collaborates with merchant services providers like Fiserv and Worldpay. Strategic alliances mirror arrangements seen between Visa Inc. and major retailers like Walmart and Target Corporation in payment acceptance initiatives.

Compliance and Certifications

CyberSource maintains compliance with standards and certifications relevant to card payments, including frameworks promulgated by the Payment Card Industry Security Standards Council and certification processes interfacing with networks such as Visa Inc. and Mastercard. The company’s controls are aligned with audit frameworks similar to those used by Deloitte, Ernst & Young, and KPMG for financial services clients, and with regulatory expectations from authorities like the Federal Trade Commission and financial regulators in jurisdictions such as United Kingdom and European Union. Certifications relevant to data protection reference principles found in legislation like the General Data Protection Regulation and standards adopted by organizations such as ISO.

Criticisms and Incidents

As with other payment processors, CyberSource has faced scrutiny over service outages, dispute resolution, and chargeback handling in contexts involving merchants and acquirers such as First Data and Worldpay. Incidents in the payments industry have drawn attention from regulators like the Federal Trade Commission and media outlets including The Wall Street Journal and The New York Times when service interruptions or security events impacted merchants comparable to high-profile cases involving Target Corporation and Home Depot. Critiques also arise from competitors such as Stripe (company) and Square (company) regarding feature parity, pricing, and developer experience.