In-app purchases (IAPs) are a cornerstone of revenue generation for games, enabling developers to monetize virtual goods such as skins, badges, power-ups, and in-game currency. Here is some data that highlights the importance of IAP ecosystems and why its imperative to secure this ecosystem from damaging effects of fraud and collusion.
- Projected Revenue from IAPs: In-app purchases are estimated to generate $200 billion globally in 2024, with mobile gaming leading the sector.
- Revenue Breakdown (Ads vs. IAPs): Ads contribute around 38% of mobile gaming revenue, while IAPs dominate with 55%.
- Mobile vs. Desktop IAPs: Mobile games vastly outperform desktop games in IAP revenue, making up over 70% of the total.
Methods of in-app purchases in gaming
In-app purchases (IAPs) in gaming are implemented through various methods tailored to enhance player engagement and revenue generation:
- Microtransactions: Small, frequent purchases are seamlessly integrated into the game experience, allowing players to buy specific items or upgrades.
- Targeted Purchase Points: Contextual prompts within the game encourage players to make purchases during critical gameplay moments, improving conversion rates.
- Virtual Wallets: Players store in-game currency, often purchased using fiat money, for easier and frequent spending.
- Currency Conversion: Fiat money is converted into virtual coins, simplifying larger transactions.
- Account Transfers: Allows transferring balances between accounts, often as gifts or trades.
- P2P Transfers: Players exchange inventory or currency directly, enhancing social gameplay dynamics.
Payment Ecosystem Control
These transactions are typically processed through the Apple App Store and Google Play Store payment systems, which rely on the user's saved payment methods. Apple and Google exercise strict control over these transactions, regulating policies, commissions, and security measures. This centralized approach ensures seamless transactions but limits flexibility for developers.
How do leakages happen in this process?
Account Takeover by Minors
Minors often gain access to accounts through weak parental controls or by hacking email and password combinations. Once inside, they can accumulate significant charges before their guardians realize. Parental negligence or lack of robust safeguards on devices exacerbates this issue.
Related read: Account Takeover (ATO): The Means to a Dangerous End
Off-Market Sale of Accounts or Currency
- Gifting or Transfers: Experienced players leverage gifting systems to trade currency or accounts via unofficial platforms, including forums or Patreon, often bypassing in-game restrictions.
- Arranged Gameplay: Players may intentionally lose to lower-ranked gamers, helping them gain rewards at a lower cost. Such commercial arrangements are often made out-of-game.
- Fake Websites: Fraudsters create phishing sites pretending to sell virtual goods, deceiving users with no intent to deliver.
Stolen Payment Methods
Fraudsters exploit stolen cards, bypassing security like 2FA, to load accounts or disrupt in-game economies. These accounts are often sold for profit or abused to manipulate inventory dynamics.
Friendly Fraud Chargebacks
Gamers may make impulsive purchases and later regret or deny them, seeking refunds through Apple/Google, claiming unauthorized transactions.
Willful Exploitative Chargebacks
- Fraudsters may exploit refund policies by making large purchases and later disputing them through banks with lenient chargeback terms.
- They sometimes identify loopholes in ambiguous UI/UX design or unclear terms to file fraudulent claims, often leaving the game developer at a loss.
External tools that help skip purchases
Multiple external apps help users skip in-app purchases, letting them bypass these and move on to much more advanced levels even though they do not have the required assets.
This hurts the company's long term revenue, customer retention and also gives unfair advantages to players who do not engage honourably with the game.
Collusion between players
Collusion occurs when players conspire to manipulate game outcomes or currency for mutual benefit, often involving external arrangements, like:
- High-ranked players intentionally lose to boost lower-ranked players based on out-of-game agreements.
- Gamers exchange in-game currency or items through off-market platforms, bypassing legitimate channels.
- Groups coordinate to monopolize rewards, disrupting fairness.
Related read: Un-Gaming the System: Tackling Collusion and Tax Increases in India's Gaming Industry
How are gaming companies directly affected?
1. Monetary Loss
Fraud leads to direct financial losses, particularly through chargebacks and refunds. High chargeback rates may result in penalties, settlement holds, or account freezes by payment platforms like Apple, Google, or banks, which maintain strict thresholds for fraud and refund claims.
2. Operational Burden
Teams must invest significant time gathering data from various sources to dispute chargebacks. These efforts pull resources away from core game development, delaying new features or updates. This opportunity cost affects innovation and player retention.
3. Gameplay Disruption
Fraud inflates in-game currency or inventory, disrupting balance. Players who exploit fraudulent means may advance unfairly, causing issues in level progression and eroding the integrity of gameplay. Over time, this diminishes the competitive experience, as “everyone shouldn’t be a winner.”
4. Reputation and Compliance Risks
Fraudulent activity involving stolen cards can entangle games in money laundering schemes, particularly when mules exploit games with lax controls around monetary transactions. Such incidents damage brand reputation, alienate genuine players, and could attract regulatory scrutiny.
5. Broader Ecosystem Challenges
When fraud increases, financial institutions, app stores, and regulators impose stricter standards on chargebacks and refunds, raising compliance requirements for game developers. Failure to adhere can restrict liquidity, increase operational costs, and potentially drive players to safer alternatives.
Protect your gaming in-app purchase ecosystem with Bureau
Combatting these issues requires fraud prevention tools like advanced payment monitoring, behavioral analytics, and device fingerprinting to protect revenue while maintaining fair gameplay.
- Prevent Repeat Abuse: Leverage device IDs to limit repetitive chargebacks or claims from the same device/account.
- Identify Risky Users: Detect willful fraudsters using alternate data such as throwaway emails, proxy networks, or disposable numbers.
- Stop Account Takeovers (ATO): Behavioral Biometrics (BB) and Device Intelligence (DI) disallow suspicious sharing or inconsistent user behavior.
- Payment Profiling: Identify high-risk payment methods prone to chargebacks and add extra authentication factors.
- Monitor Currency Transfers: Use graph analysis to spot coordinated transfer rings and enforce 2FA.
- Fence Payment Journeys: Limit high-risk payments based on device trustworthiness, with stricter controls for high-value transactions.
- Amplify Purchase Clarity: Design UI/UX to make terms of purchase transparent, minimizing ambiguities and chargeback opportunities.
With Bureau, create a gaming ecosystem where users can transact with trust.