Security News

Supreme Court narrows Computer Fraud and Abuse Act: Misusing access not quite the same as breaking in
2021-06-03 20:45

The US Supreme Court on Thursday limited the scope of the 1986 Computer Fraud and Abuse Act in a ruling that found a former sergeant did not violate the law by misusing his access to a police database. The CFAA prohibits accessing a protected computer "Without authorization" and accessing a protected computer in a way that "Exceeds authorized access." The problem with these ill-defined terms is that there's been disagreement in different courts over whether the law imposes criminal liability for violating Terms of Service agreements.

Mitek acquires ID R&D to provide protection against identity theft and dangerous fraud techniques
2021-06-01 23:30

ID R&D's pioneering facial and voice biometric capabilities provide increased protection against today's most sophisticated identity theft and increasingly dangerous fraud techniques, such as deepfakes and synthetic voice augmentation. To defend against the rise and growing sophistication of these fraud attacks, the identity verification market is expected to reach $15.8 billion in the US by 2025, according to a report by Markets and Markets.

How Mobile Ad Fraud has Evolved in the Year of the Pandemic
2021-06-01 13:00

Mobile ad fraud has always been a challenge for network operators in all parts of the globe, but the pandemic has made users more vulnerable than ever before due to the sheer amount of time they now spend with their devices. Perhaps that's why, according to a new report published by Upstream, they seem to be the epicenter of a new mobile malware pandemic.

How data manipulation could be used to trick fraud detection algorithms on e-commerce sites
2021-05-24 05:00

A data poisoning attack aims to modify a model's training set by inserting incorrectly labelled data with the goal of tricking it into making incorrect predictions. We decided to study data poisoning attacks against example scenarios similar to those that might be used in a fraud detection system on an e-commerce website.

BehavioSec’s new features boost enrollment speed, performance, and mobile fraud detection capabilities
2021-05-20 01:20

BehavioSec announced new features added in its upcoming release of the BehavioSec behavioral biometrics platform - BehavioSense. "These features add to our platform's existing anti-fraud capabilities and are designed to solve the COVID-19 era challenge of accelerated digital transformation, online security, and privacy regulation compliance."

Do consumers now feel more exposed than ever to the risk of fraud?
2021-05-18 03:00

The company surveyed 2,000 consumers across the United States and United Kingdom about their experiences and attitudes toward payment fraud and how they felt about the threat of fraud in the aftermath of COVID-19. The results show that worry about fraud has risen to extreme levels and consumers feel their increasingly digital lives are putting them more at risk.

Shifting Threats in a Changed World: Edge, IoT and Vaccine Fraud
2021-05-11 16:08

As the world begins to open up and we crawl toward a brighter future, people are going to be looking for things to do and places to go - so we also expect to see social-engineering attacks start using things like travel and vacation deals to hook people. With many companies continuing to allow at least some of their employees to work remotely with no stipulated end date, security leaders have to stay abreast of the latest threats regarding edge access and browsers.

Defeating typosquatters: Staying ahead of phishing and digital fraud
2021-05-05 05:00

These domains are like the real thing and are often visited by users who have mistyped the genuine domain URL. Unfortunately, criminals are good at finding new ways to trick unsuspecting visitors to your website. Many domain registration companies now offer value-added services that can help protect against criminals seeking to exploit established domains.

The Anti-Fraud Lifecycle
2021-05-03 11:06

This would result in the services improving their fraud prevention capabilities, leading to an arms race between the fraudsters and the fraud teams. Eventually, fraudsters will determine who to target within the industry based on each service's fraud prevention policies and maturity, rather than generally targeting the industry.

eCommerce fraud losses to surpass $20 billion this year
2021-05-03 03:00

The value of losses due to eCommerce fraud will rise this year, from $17.5 billion in 2020 to over $20 billion by 2021; a growth of 18% over a single year, according to a study from Juniper Research. The research found that fraudsters have targeted consumers as they have increased their eCommerce use; exposing insecure fraud mitigation processes from merchants who are unfamiliar and unprepared for the continuing fraud challenges in this market.