Chris Elisan_browser_featured image

Browser Locked? Call This Number.

A new form of browser locker has recently surfaced.  Browser-lockers are websites or pop-ups that redirect the browser to a website that locks-up the browser.  The user is prevented from continuing any normal operation including closing the offending browser window, opening a new page, or closing the application itself. This new browser locker calls itself…

Read More

Understanding human triggers in fraudulent transactions

  Too often, discussions about fraud prevention emphasize the security controls organizations should put in place: risk engines, step-up authentication, biometrics… These are all necessary for a successful fraud prevention program, but we tend to minimize the ‘humans in the loop’ aka the end users. It’s human nature to have biases, and an effective security program should…

Read More

The On-going Threat of Social Engineering

I spoke recently at a meeting of the Dublin, Ireland chapter of ISACA about the continued (and increasing) use of social engineering in cyberattacks discussed in several recent reports, including the joint report by ISACA and RSA that documents the results of a survey of cybersecurity professionals, conducted in the first quarter of 2015. Those…

Read More

Using Transaction Monitoring to Combat Fraud

Fraud impacts organizations in a wide range of ways, from financial and operational losses to damaged reputations and loss of customer goodwill. Fraud—as well as erroneous acts such as accidental double invoicing—can be perpetrated from within an organization or by an external constituent, such as a business partner. Given the negative and sometimes far-reaching consequences,…

Read More

Oops, They Did it Again…

Another day… another credit card breach letter in the mail …and yet another card to throw away….. While talking to my mailman the other day I noticed he lost some weight. Ironically, he thanked the many credit card breaches to his improved physical fitness. (guess there is a silver lining to anything) He also expressed…

Read More

A New Liberty Reserve Emerges

The takedown of Liberty Reserve in May 2013 was a major blow to many fraudsters who used the e-currency for years to launder their illicit gains. By the time the U.S. government took action, Liberty Reserve had been around for seven years and was reportedly responsible for the laundering of billions of dollars in transactions. More recently, yet another option for fraudsters seems to be materializing in what some are now calling “The New Liberty Reserve,” an e-currency known as LessPay.

Read More

Digital Identities: I Have One For Sale

In a research study by Harris Polls (commissioned by RSA) on digital identities, the most popular online accounts for consumers are email, financial and banking, and entertainment/shopping. And on average, they access these online accounts from two different digital devices. But what does a digital identity really mean? I like to think of myself as an average consumer/online user so let’s take a look at what I consider to be my digital identity – and perhaps make you think a little more about yours.

Read More

Protecting Banking Users from Online Account Takeover – Podcast # 243

Amy Blackshaw, Sr. Product Marketing Manager for RSA’s Identity Protection and Verification business talks about the burgeoning issue of Account Takeover fraud of online bank accounts through malware and sophisticated attacks. Amy also discusses new features being introduced in the newest version of the RSA Adaptive Authentication solution to help banks and their customers protect against these threats.

Read More

Phishing: They Should Just Call It Catching

Online banking losses have increased 28% year-on-year. UK Cards offered some explanation quoting the fact that phishing attacks had increased by 199% over the past 12 months. The only reason I can think of why phishing attacks continue to rise is because fraudsters are still catching victims. Phishing is still a viable form of credential harvesting providing a meaningful return on investment for fraudsters.

Read More

The Natural Selection of Fraud

Evolution isn’t just about making things better but to adjust living creatures to their ever changing surroundings. Fraud in that sense is also adapting, but instead of searching for food like a giraffe, it adapts to obtaining as much money as possible. If money from one fraud chain depletes, it would adapt and create a different one.

Read More