NuData Security
  • Solutions
    • NuDetect for Continuous Validation
    • NuDetect for Good User Validation
    • NuDetect for Account Takeover
    • NuDetect for Card Testing
    • NuDetect for OAO
    • Smart Interface 3DS 2.0
    • Trusted Device
  • How It Works
    • Layers
      • Device Intelligence
      • Behavioral Analytics
      • Passive Biometrics
      • Trust Consortium
    • Interdictions
    • Integration
    • Connected Intelligence
  • Use Cases
    • Account Takeover
    • Good User Validation
    • Card Testing
    • Automated Attacks
    • New Account Fraud
    • Loyalty Fraud
    • Success Stories
  • Industries
    • Banking & Financial
    • eCommerce
    • Digital Goods
    • Healthcare
  • Resources
    • Articles
    • Blog
    • Brochures & Datasheets
    • Case Studies
    • Infographics
    • Videos
    • Webinars
    • White Papers & Reports
    • COVID Resources
    • FAQ
  • Company
    • Privacy by Design
    • Awards & Accolades
    • Careers
    • Events
    • News
    • Partners
    • Press Releases
  • Contact Us
  • Demo
  • Search
  • Menu
  • Twitter
  • Linkedin
  • Youtube
Fraud kitten waiting to enter and attack

Fraudsters don’t take holidays – They wait to take advantage of them

While fraud and security pros were packing shades and sunscreen for some 4th of July holiday fun, fraudsters were quietly preparing and waiting for an entirely different kind of burn.

Leading up to this year’s July 4th festivities, bad actors were ready and waiting to target U.S. banks, eCommerce entities, major retailers, and others with massive fraud attacks.

While people were off and partying, commencing at 3 pm Eastern on July 3rd, NuData Security experts observed, tracked, and thwarted a critical uptick in attack volume against some of the major retailers, eCommerce entities and banking and finance institutions it protects.

NuData found that one U.S. bank was hit nearly 1,900 times per second at their login (~7M logins per hour), an onslaught that continued steadily for nearly 48 hours.

Fortunately, the bank had aggressively shored up their fraud prevention defenses by implementing NuData technologies and were more than ready for the flood of fraud attempts. While these bad actors may have been hoping for a lapse in security to set off some fraud fireworks of their own, NuData’s solution was actively at work; effortlessly scaling, identifying, and mitigating the massive flood of fraudulent transactions in real-time – without impacting legitimate customers who needed to make holiday transactions of their own.

This shows why banks, eCommerce, and other organizations transacting online increasingly rely on behavioral analytics and passive biometrics to immediately identify and serve their genuine customers and reject fraudulent activities – whether or not their fraud department is on holiday.

Some things to keep in mind before a holiday

Go mobile or go home: The world transacts on the go – tune your defenses to identify mobile-specific attacks. Fraudsters use sophisticated ploys to target iOS and Android software that go unnoticed by consumers and companies need to step up the game to protect their customers. Be sure your organization has layered, preventative measures in place to differentiate between good and fraudulent activity coming from the mobile channel.

Prepare for the unexpected: Know what your system can handle as well as what it can’t handle. Be prepared for unexpected events and contingencies; they will happen and having a contingency plan will save your company additional costs and headaches. Ensure that your website security is in place, and test for security loopholes and account protection gaps regularly.

You will be attacked: Given the breaches and leaks of the last two years, virtually anyone’s stolen credentials are available on the dark web, so if you haven’t been attacked yet it’s just a matter of time. As tempting as it seems during high-traffic periods, don’t lower your user’s authentication barriers to increase conversions – this is exactly what fraudsters expect. Continuously look for anomalous traffic such as unusually high purchasing volumes or dollar amounts. Keep an eye out for multiple failed login attempts on the same account, for new accounts with immediate high-ticket item purchases, and for high volumes of account testing across multiple IPs and device ID’s.

The key takeaway for every organization: don’t get complacent. Tune and tighten your defenses because fraudsters never take a holiday.

—

Related to this post: How to enjoy Amazon Prime Day without the fraud Demogorgon

 

Tags: 4th of july, account testing, credential testing, holiday fraud, mass-scale attack, mobila fraud
Share this entry
  • Share on Facebook
  • Share on Twitter
  • Share on Google+
  • Share on Pinterest
  • Share on Linkedin
  • Share on Tumblr
  • Share on Reddit
  • Share by Mail
https://nudatasecurity.com/wp-content/uploads/2018/07/fraudster-kitten-waiting-to-enter-and-attack-1000X550.png 550 1000 Magali Vander Vorst https://nudatasecurity.com/wp-content/uploads/2017/12/Nudata_logo-300x112.png Magali Vander Vorst2018-07-25 15:45:292018-07-30 14:55:57Fraudsters don’t take holidays – They wait to take advantage of them
16h

Read here: March is #FraudPreventionMonth and the best way to …

2 Mar

Read here: How many unique passwords do your users have? …

2 Mar

Read here: The economic instability, social unrest and operational disruptions …

25 Feb

Read here: How does designing accessible security relate to a …

24 Feb

Read here: Physical limitations, economic barriers, and low digital literacy …

Solutions

  • Solutions
  • NuDetect for Continuous Validation
  • NuDetect for Account Takeover
  • Success Stories

Company

  • Company
  • News
  • Press Releases
  • Events
  • Awards & Accolades
  • Partners
  • Careers

Use Cases

  • Use Cases
  • Account Takeover
  • Good User Validation
  • Automated Attacks
  • New Account Fraud
  • Loyalty Fraud

Industries

  • Industries
  • Banking & Financial
  • eCommerce
  • Digital Goods

Resources

  • Resources
  • Articles
  • Blog
  • Brochures & Datasheets
  • Infographics
  • Videos
  • Webinars

Contact us

Still have questions?

Call: +1 (604) 800-3711
Twitter Linkedin Newsletter Youtube
© Mastercard Technologies Canada ULC 2021 - Terms of Service - Privacy Policy
Scroll to top