Four ways the financial industry could have fought Carbanak

It sounds like something out of a movie script — robbing a bank over the Internet — but that’s essentially what happened recently with the Carbanak malware. If you hadn’t heard about it, this was a campaign which ran over the course of 24 months and is believed to have netted thieves about US$1 billion.…

Read More

Understanding & Detecting Backoff POS Malware

Point of Sale (POS) malware has had its share of headlines this year. Now with the holiday shopping season underway POS systems will certainly be an enticing target for hackers to explore due to the payoff of thousands of fresh credit card numbers that will be run through these devices. “Backoff” is part of a…

Read More

Digital Identities: I Have One For Sale

In a research study by Harris Polls (commissioned by RSA) on digital identities, the most popular online accounts for consumers are email, financial and banking, and entertainment/shopping. And on average, they access these online accounts from two different digital devices. But what does a digital identity really mean? I like to think of myself as an average consumer/online user so let’s take a look at what I consider to be my digital identity – and perhaps make you think a little more about yours.

Read More

’Tis the Season for Online Shopping: Why You Should Give Your Debit Card a Break

There are people out there who are going to try to commit fraud with your payment details while you are shopping online. You know; the bad-guys, the cyber criminals and fraudsters. No you can’t see them, but trust me they are present and doing their best to get at your card information. Aite Group’s October 2012 report shows that over the past 5 years 42% of people in the US have experienced card fraud (debit, credit, or prepaid).

Read More

The eDead Trojan: A Synopsis of Geo-Targeted Spyware

While RSA FraudAction Research Labs does not usually focus on pure-play spyware, over the past year, the Lab has repeatedly detected and handled strains of malware called the eDead Trojan. This highly-targeted spyware code was developed for the sole purpose of collecting keyword search combinations entered by infected victims who visit online banking, retail, webmail and web portal websites, primarily in Japan and Korea.

Read More