Apple Pay went live yesterday. And while there has been much talk about how its going to disrupt the payment system, and how easy it will be to used, security is once again being overlooked in the urgency for speed and convenience above all else. Read more
Every major world crisis represents a new opportunity for fraudsters to take advantage of our good faith and the Ebola virus is no different. Different advisories have been issued cautioning banks and other organizations to reemphasize their customers the necessary skepticism with opening, clicking, or answering Ebola-based notifications. Read more
Keyloggers are one of the most effective forms of malware for stealing sensitive personal information and access to financial accounts because they are so common and difficult to detect on end user devices. Victims often don’t even realize a keylogger has been installed on a device until they find out that money has been removed from their bank account. Furthermore, cybercriminals are constantly improving the deployment of keylogger attacks through new and emerging technologies and using increasingly sophisticated techniques to avoid being discovered. Read more
Unsurprisingly, Bash has been dominating countless new sites over the past week. I recently spoke to Penny Crosman with American Banker and she wrote a story on what bankers need to know about Bash – it’s a must read.
Deploying layered fraud protection is a must for financial institutions in order to protect customers, meet compliance regulations, and reduce fraud losses. It is good for the customer, good for business, and makes life a bit easier for fraud managers and executive management. Sometimes lost in the decision making process, however, is that strong fraud protection is good for marketing. Read more
The new Shellshock vulnerability that affects the bash shell is one of the kind of vulnerabilities that makes old infosec guys chuckle. The bash vulnerability and its exploitation is not a marvel of complexity. We’ll get into the specifics of how it works shortly. But first, let’s address who’s at risk. Read more
As a security provider focused solely on fraud detection and prevention, Easy Solutions has a unique perspective on fraud as it occurs around the world. Trends like the adoption of digital payment services and mobile device use vary by geography, and have a direct influence on fraud. Here are five trends we are watching as it relates to fraud in Europe, that will likely impact the landscape in both the short- and long-term.
I recently shared my thoughts with Dark Reading on why email is worth saving. In the piece, we ask ‘What if an Internet-scale, federated policy, authentication, and enforcement framework for trusted email delivery were available?’ It is, it’s called the DMARC specification, and we should be using it. Read more
We’ve rolled out some new updates to our DetectID product line, including updates to our push authentication to provide you with a more secure and streamlined two-factor experience. Read more about a few of the updates below:
QR Code Registration Option
DetectID now offers device registration using QR codes for soft token and push authentication. QR Code generation and delivery is supported on the iOS and Android platforms through an SDK or the DetectID app. The QR Code is scanned automatically, using the camera on the device, and the token is immediatelyimported and ready to use for receiving instant push authentication messages.
DMS now supports the use of the DMARC draft specification for its customer base. DMARC, which stands for “Domain-based Message Authentication, Reporting & Conformance” (http://www.dmarc.org/), is an e-mail authentication and reporting standard that provides organizations with an unmatched view of the health of their outbound e-mail channel. DMS support for this standard means that our customers can block even more fraudulent messages and stop additional attacks.