SlideShare une entreprise Scribd logo

Intelligence-Driven Fraud Prevention

E
EMC

This document discusses intelligence driven fraud prevention strategies. It notes that fraud prevention has become more complex due to evolving threats from cybercriminals. An intelligence driven approach uses visibility, analytics, and risk-based authentication to balance security, user experience, and organizational risk tolerance. The approach analyzes user behavior and device data across channels to detect anomalies and take targeted action.

Technologie
1  sur  10
Télécharger pour lire hors ligne
INTELLIGENCE DRIVEN FRAUD PREVENTION RSA Whitepaper OVERVIEW If you were in business 15 years ago, the term “cybercrime” was just hitting the mainstream and cyber criminals were transitioning from showing off technical skills to using those skills to disrupt and steal from individuals and businesses. As threats from cyber criminals became more pervasive and sophisticated, so did businesses’ attempts to minimize damage from these threats. What began as the IT annoyance of protecting email and web sites from spam has transformed into battle against a global fraud-as-a-service business that is an expert at targeting company financial, product, and staff information, as well as consumer banking, healthcare and ecommerce transactions. Today cybercrime is big business with statistics to prove it: • Card-Not-Present fraud will account for $2.9 billion in fraud losses to U.S. businesses this year and is expected to more than double by 2018 (Aite Group) • In 2013, one in every seven payment cards in the U.S. was exposed to a data breach (Discover) • One million high risk and malicious android apps were detected in 2013 (Trend Micro) • This year data breaches have affected high-profile retailers, high tech companies, financial institutions, universities, healthcare providers and even the IRS • In the first half of 2014, phishing alone resulted in $2.2 billion in losses to global companies (RSA Anti-Fraud Command Center) • A targeted cybercrime attack costs an average of $214,000 per incident (Ponemon Institute) • Global losses from Corporate Account Takeover was $523M in 2013 and estimated to reach nearly $800M in 2016 (Aite Group) • A DDoS attack can cost a retailer $3.4 million in losses for 1 hour of downtime on Cyber Monday, not to mention the reputational losses associated with brand damage and reduced consumer confidence (Ponemon Institute) Add the need to deal with evolving new technologies like smart devices, cloud services, big data, and social networking sites and it’s clear that most fraud prevention models weren’t built to handle this constantly shifting landscape.
Intelligence Driven Fraud Prevention CONTENTS Overview..................................................................................................................... 1 Defining the “New Normal”.......................................................................................... 3 See More, Understand Better, Act Faster...................................................................... 3 The Balance Challenge................................................................................................ 4 Risky Business: Risk-based Authentication.................................................................. 5 Putting Intelligence into Action.................................................................................... 5 Stepping Up to the Step-up Authentication Plate..........................................................6 Running with the Big Data............................................................................................6 Conclusion.................................................................................................................. 7 Intelligence Driven Fraud Prevention Solutions from RSA.............................................. 7 RSA® FRAUDACTION™ SERVICE..................................................................................8 RSA Web Threat Detection........................................................................................9 RSA Adaptive Authentication and Transaction Monitoring.........................................9 RSA Adaptive Authentication for eCommerce.......................................................... 10 page 2
Intelligence Driven Fraud Prevention DEFINING THE “NEW NORMAL” Fraud detection, prevention and mitigation are of vital importance to companies trying to protect their digital assets because the impact of breaches can extend far beyond the immediate financial loss into crippling long-term privacy, intellectual property, company reputation, and customer losses. Customers are demanding anytime, anywhere access to products, services, and information through new digital channels. Integrating these channels has created new security problems as consumer-facing web sites are becoming the cybercriminal’s first step to launching broader enterprise attacks. The widespread adoption of Bring Your Own Device (BYOD) in the workplace adds to the security problem by increasing access points for attacks, blazing new trails for cyber criminals to target employees and partners on their personal devices so they can compromise their identities and infiltrate the enterprise. With a proliferation of new devices, an increasingly mobile consumer and tighter cross-channel integration, disconnected approaches to securing a company’s assets simply cannot provide a comprehensive solution to a fraud problem that is growing at an exponential pace. Within this landscape, there can be no division between consumer and enterprise security strategies. Organizations must aggressively rethink traditional notions about what constitutes a threat and how to intelligently defend against it. SEE MORE, UNDERSTAND BETTER, ACT FASTER This new normal creates unprecedented challenges for organizations that now need to secure their own digital assets while at the same time trying to secure external cloud and mobile based applications that aren’t under their control. Extending the scope of security measures is a business necessity, given cybercrime losses estimated in the hundreds of billions of dollars for financial fraud, the time and expense required to fix the damage, and the cost associated with downtime. A Ponemon Institute study estimates that for a retailer, the average cost of one hour of downtime is close to $500,000 in lost sales. And the cost is even higher when you factor in reputation and brand damage and the lingering consumer perception that your site might not be safe. Intelligence is defined as the ability to learn, understand, and deal with new or trying situations. The ability to adapt to and continually acquire new knowledge and skills in the face of change makes an Intelligence Driven Fraud Prevention Strategy a non-negotiable in today’s world. Intelligence Driven Fraud Prevention provides a layered security model to protect the identities and assets of your customer across multiple channels while providing three essential attributes that enable you to balance risk, costs, and end user convenience. First, Intelligence Driven Fraud Prevention provides immediate external visibility and context into cybercrime threats across all online digital channels. Second, this increased visibility extends your analysis capabilities so you can detect anomalies that indicate threats based on your unique risk profile and immediately assess which threats are most damaging. Finally, an Intelligence Driven Fraud Prevention strategy designates the right corrective action to mitigate the specific threat at hand, quickly, and efficiently. page 3
Intelligence Driven Fraud Prevention Diagram 1 A defining element of Intelligence Driven Fraud Prevention is the knowledge that cyber criminals don’t behave the same way that normal site users do; they move faster, navigate differently and leave more than one device trail behind. Consistently identifying and tracking the interactions that occur across the entire online user lifecycle – from the beginning of a web session, through login and transactions – creates typical behavior and device profiles for your organization. By collecting available data and information on what is happening in your environment, you can build a reliable baseline to quickly and effectively discover anomalies and spot advanced attacks. Intelligence Driven Fraud Prevention then instantly analyzes mobile and web traffic in large volumes, delivering a wealth of information for analysis and action against your organization’s baseline. Beyond your enterprise, tracking cybercrime developments that are global, cross industry, cross channel, and cross device requires a model that can access shared cybercrime intelligence across organizations and their customers. Today’s leading Intelligence Driven Fraud Prevention solutions allow a broader look into threats by tapping into cross-organization, cross-industry fraud profiles from a worldwide network that can share and disseminate information on cybercrime activities, enabling faster response times and limiting risk. THE BALANCE CHALLENGE Identifying fraud detection, prevention and mitigation as a top business priority is only half of the battle. Today’s users demand fast, easy access to accounts, products, and services in their digital channels and do not want their experience interrupted. Any successful Intelligence Driven Fraud Prevention strategy must balance an organization’s security requirements with the need for convenient user access and an exceptional user experience. The key to achieving this balance is a layered security approach capable of distinguishing who is a customer and who is a criminal. Gaining broader visibility into digital channels opens up the opportunity for extended analysis of the behavior of humans and devices, allowing fraud patterns to be quickly detected so only high risk activities are interrupted and the normal user’s security experience remains transparent. This provides a blueprint to align security controls with an organization’s page 4 Visibility Manage Risk Action Analytics
Intelligence Driven Fraud Prevention risk tolerance while enabling genuine end users to easily access the services that they want via digital channels. The analysis that powers Intelligence Driven Fraud Prevention is multi-faceted and spans user behavior, device fingerprints, known fraudulent entities, and threats from the underground, enabling organizations to quickly identify customers vs. criminals. RISKY BUSINESS: RISK-BASED AUTHENTICATION An Intelligence Driven Fraud Prevention strategy encompasses the ability to see everything, across the entire online consumer lifecycle from pre-login to the transaction to post-login. Most fraud prevention methods rely solely on a rules-based approach, which helps determine if the activity is a threat, but is only effective for known bad activities and does not help predict and prevent future attacks. Fraudsters are constantly changing their approach, and customers change their online behavior, which limits the ability of traditional fraud strategies to detect evolving threats and their impact. An Intelligence Driven Fraud Prevention strategy provides a comprehensive framework to combine both rules- and risk-based assessments, equipping enterprises to rapidly adapt risk policies and adjust fraud detection countermeasures based on evolving threats. Generating a unique risk score – derived from an in-depth assessment of factors such as device profiling, behavior profiling, and data from diverse sources both internal and external – allows frictionless authentication so actions can be taken that directly align with the detected threat level. The ability to use policy management in a hybrid approach translates risk policies into decisions and actions to allow tailored risk tolerances. By specifically defining risk scores, it becomes easier to determine which transactions can be reviewed at a later time and which should be prompted for additional authentication or denied where the likelihood of fraud is high. This advanced ability to gauge risks is also faster and fully transparent to the user, preserving the customer experience. PUTTING INTELLIGENCE INTO ACTION Once a business gains visibility into the type and frequency of fraudulent behaviors occurring, Intelligence Driven Fraud Prevention delivers a comprehensive portfolio of implementation options targeted toward specific threats. Prevention, detection, and mitigation should be actionable, whether online or mobile, and regardless of whether you’re facing man-in-the-browser Trojans, malicious software, DDoS attacks, site scraping or mobile session hijacking, among other threats. Intelligence Driven Fraud Prevention’s layered approach allows the use of different security controls at different points in the user lifecycle based on organizational risk tolerance, policy and user segmentation, avoiding inconveniencing legitimate users or harming the user experience challenges. page 5
Intelligence Driven Fraud Prevention Cybercrime Evolves – So Must Your Response In the wild Diagram 2 Transaction Logout STEPPING UP TO THE STEP-UP AUTHENTICATION PLATE Intelligence Driven Fraud Prevention solutions are designed to optimize prevention, detection, and mitigation of fraud and need to work seamlessly across a variety of devices and provide expanded choices for integration with new and existing services and technologies. This is particularly important in the area of step-up authentication, where risk tolerance can help determine which authentication is appropriate, i.e., OTP, out-of-band, SMS, phone call, challenge questions. If infrastructure requires support for both online and mobile transactions, fraud prevention solutions must recognize which device is being used and act accordingly by comparing the rules and risk engine tailored to either the web or mobile channel. In addition, correlating cross-channel activity for login and transactions allows certain activities to be flagged as high risk. For example, if a customer makes a transaction on their laptop and shortly after make another transaction from a mobile device in another country, the transaction would be flagged and appropriate action taken. A multifactor authentication model provides user access to diverse connection points such as web portals, mobile apps and browsers, virtual private networks (VPNs), and web access management applications. Linking a rules- and risk-based model for authentication with a series of technologies for cross-channel protection supports an organization’s unique needs for secure access without compromising user experience. Complementing technologies should be fully integrated within an Intelligence Driven Fraud prevention strategy and target key company priorities including risk tolerance, policy alignment, device and behavior profiling, and case management. RUNNING WITH THE BIG DATA To stay ahead of ongoing threats, Intelligence Driven Fraud Prevention enhances monitoring performance and enables quicker decisions by incorporating the power of Big Data cybercrime analytics. Big Data tools enable fraud and information security teams to ingest more and varied data without being limited by data formats. Most companies have thousands of event data record sources created by devices when any event occurs. These records are vital for detecting suspicious behavior, uncovering page 6 • Password Cracking/Guessing • Parameter Injection • New Account Registration Fraud • Advanced Malware • Promotion Abuse • Man in the Middle/Browser • Account Takeover • New Account Registration Fraud • Unauthorized Account Activity • Fraudulent Money Movement • Phishing • Site Scraping • Vulnerability Probing • Layer 7 DDoS Attacks Begin Session Login Web Threat Landscape
Intelligence Driven Fraud Prevention threats and vulnerabilities, preventing security incidents, and backing up forensic analyses. Leveraging Big Data adds another dimension to fraud prevention with better risk predictions and a unique and important ability to put fraud risk in an overall business context. CONCLUSION Preventing, detecting, and mitigating fraud will be a relentless and enduring challenge. An Intelligence Driven Fraud Prevention strategy delivers efficiencies and savings by prioritizing the most pressing risks, merging data sets and tools and minimizing standalone product implementations. Using intelligence to streamline fraud prevention efforts and manage digital risks frees resources to focus on high-value activities and business growth and reduces losses from fraud, undetected breaches, and other evolving threats. With Intelligence Driven Fraud Prevention, your organization will be well positioned to address the ever-changing threats of today and anticipate and get ahead of the threats of tomorrow. INTELLIGENCE DRIVEN FRAUD PREVENTION SOLUTIONS FROM RSA Adaptive Authentication Adaptive Authentication for eCommerce Transaction Monitoring FraudAction Web Threat Detection Diagram 3 With RSA Fraud and Risk Intelligence Solutions you can proactively gain visibility into the latest threats with global collective intelligence, helping you mitigate cyber attacks. You can secure interactions and transactions across the entire user online lifecycle – whether on web, e-commerce or mobile channels – by continuously monitoring and analyzing online behavior. This will allow you to put appropriate security controls in place based on your organization’s risk tolerance, policies, regulations, and user segmentation. This intelligent fraud approach is the key to balancing your organization’s risk, cost, and end-user convenience needs while dramatically reducing fraud losses, minimizing the chances of reputational damage and financial consequences from cyber-attacks. Using RSA Fraud and Risk Intelligence solutions, you will be armed to gain visibility into shared intelligence on emerging attacks and threats, analyze interactions and transactions to quickly detect anomalies indicative of threats, and take corrective action based on custom-defined threat levels. page 7 RSA Fraud & Risk Intelligence In the wild Begin Session Login Transaction Logout
Intelligence Driven Fraud Prevention RSA® FRAUDACTION™ SERVICE In the online user lifecycle, in the wild or uncontained threats in the general population affect customers’ credentials, account ids, credit card information and even health records. RSA’s FraudAction Service helps to stop fraud before it happens, reducing cyber attacks, identity theft, and account takeover. The RSA® FraudAction™ service offers helps you gain complete fraud protection against phishing, pharming, Trojan attacks as well as rogue mobile apps. Additionally, you can gain deeper insight into emerging threats with intelligence reports that provide visibility into the cybercrime underground. Offered as an outsourced, managed service, FraudAction enables you to minimize resource investment while deploying a solution quickly. FraudAction uses the industry’s broadest multi-language forensic and investigation capabilities with over 100 languages supported and 187 countries. At the core of the FraudAction service is RSA’s Anti-Fraud Command Center (AFCC ) where an experienced team of fraud analysts work 24x7 to identify and shut down sites and other communication resources hosting phishing and Trojan attacks, and conduct forensic work to recover compromised credentials. Average shut down of a phishing attack is 5 hours and we monitor over 6 billion URLs on a daily basis. PHISHING DETECTION AND SHUTDOWN The RSA FraudAction Service detects and stops phishing attacks targeting your organization. Once a suspicious URL is confirmed to be a threat, you are immediately notified and can monitor the latest threat status in real-time via the FraudAction Dashboard. TROJAN ANALYSIS The RSA FraudAction Service detects and mitigates damages caused to you by Trojan attacks. You can quickly identify, respond, and minimize malware threats by blocking end-user access to the attack’s online resources. DEFENSE AGAINST ROGUE APPS RSA FraudAction Service helps you reduce fraud losses by taking action against malicious or unauthorized ‘rogue’ mobile apps. The service monitors all major app stores, detects apps targeting your organization’s customer base and shuts down unauthorized apps – reducing threats to your reputation and potential financial losses due to mobile app fraud. You retain complete control over apps representing your organization – only apps issued and/or authorized by your organization are available in the app markets. Continuous monitoring of apps stores also helps you stay ahead of potential threats, and be aware as soon as an unauthorized app surfaces. FRAUDACTION INTELLIGENCE RSA FraudAction Service is your eyes and ears into the fraud underground – providing insight into specific attacks focused on your organization, fraud industry trends as well as in-depth investigations into fraud methods, operations, services, and other issues within the fraudster community. page 8
Intelligence Driven Fraud Prevention RSA Web Threat Detection Threats take place across the entire user lifecycle from pre-login to login and post logon transactions. When a user first enters your website, in the pre-login part of the online user lifecycle, many precursors to fraud activities occur such as DDoS attacks, site scraping, and HTML injection of site fields signaling that the potential for fraud is high and generating an intelligent alert for any business logic abuse. RSA Web Threat Detection identifies these anomalies for quick remediation. • RSA Web Threat Detection identifies all types of anomalous behavior in real time – Providing total visibility into web sessions to lead to an actionable information to stop threats quickly. • RSA Web Threat Detection provides behavioral profiles to identify anomalous behavior – Click stream data is captured and analyzed in real time, dynamically creating behavioral profiles. Behaviors that don’t conform to profiles are flagged as suspicious and RSA Web Threat Detection rules engine provides different levels of response for different types of threats. • Web session intelligence identifies broad spectrum of attacks – Targeted rules detect, alert, and communicate malicious events in real time including, DDoS, password guessing, site probing, mobile session hijacking, Man-in-the-middle, credit card fraud, HTML injection, Account Takeover, and wire transfer fraud. RSA Adaptive Authentication and Transaction Monitoring Account takeover and unauthorized account activity occur at the login and transaction points of the online user lifecycle. RSA’s Adaptive Authentication brings together information about behaviors, devices, and people to mitigate high risk transactions without compromising the user experience. RSA Adaptive Authentication is a comprehensive platform for cross-channel protection using a risk and rules based approach coupled with options for additional identity assurance for high risk transactions. • Dual rule- and risk-based approach – the RSA Risk engine uses over 100 indicators to evaluate risk in real time and reflects device and behavioral profiling, eFraudNetwork data and integrates with RSA’s policy management application. • Translate risk policies into actions – the RSA Policy Manager can adjust risk scores to target later review, prompt step-up authentication, or deny transactions with a high likelihood of fraud. • Device and behavior profiling – profiling analyzes typical behaviors and compares them to the current actions of the user or device. Device -analyzed parameters include operating system and browser version and behavior profile parameters include frequency, time of day, and attempted activity. • Step-up Authentication for high risk transactions – Provides a variety of additional procedures to validate a user’s identity including out-of-band authentication, challenge questions, and knowledge-based authentication. page 9
Intelligence Driven Identity and Access Management RSA Adaptive Authentication for eCommerce RSA® Adaptive Authentication for eCommerce provides the framework for building cardholder protection and fraud management in the online shopping environment. Based on the 3DSecure protocol and infrastructure, it enables merchants and issuers to provide a consistent, secure online shopping experience for cardholders while mitigating the risk of charge back losses. Used today by more cardholders than any other solution on the market, RSA Adaptive Authentication for eCommerce employs an architecture approved by Visa®, MasterCard®, and American Express®. Adaptive Authentication for eCommerce provides issuers a single solution to manage their growing fraud losses while creating the shopping experience merchants require to avoid transaction abandonment. ABOUT RSA RSA’s Intelligence Driven Security solutions help organizations reduce the risks of operating in a digital world. Through visibility, analysis, and action, RSA solutions give customers the ability to detect, investigate and respond to advanced threats; confirm and manage identities; and ultimately, prevent IP theft, fraud and cybercrime. For more information on RSA, please visit www.rsa.com. EMC2, EMC, the EMC logo, RSA, Archer, FraudAction, NetWitness and the RSA logo are registered trademarks or trademarks of EMC Corporation in the United States and other countries. All other products or services mentioned are trademarks of their respective companies. © Copyright 2014 EMC Corporation. All rights reserved. www.rsa.com H13704

Recommandé

ThreatMetrix Profile in March 2014 CIO Review
ThreatMetrix Profile in March 2014 CIO ReviewThreatMetrix Profile in March 2014 CIO Review
ThreatMetrix Profile in March 2014 CIO ReviewThreatMetrix
 
Accenture re-organizing-todays-cyber-threats
Accenture re-organizing-todays-cyber-threatsAccenture re-organizing-todays-cyber-threats
Accenture re-organizing-todays-cyber-threatsLapman Lee ✔
 
Why is cyber security a disruption in the digital economy
Why is cyber security a disruption in the digital economyWhy is cyber security a disruption in the digital economy
Why is cyber security a disruption in the digital economyMark Albala
 
How to reduce security risks to ensure user confidence in m-payments
How to reduce security risks to ensure user confidence in m-paymentsHow to reduce security risks to ensure user confidence in m-payments
How to reduce security risks to ensure user confidence in m-paymentsBMI Healthcare
 
idg_secops-solutions
idg_secops-solutionsidg_secops-solutions
idg_secops-solutionsJonny Nässlander
 
Analyst Report: The Digital Universe in 2020 - China
Analyst Report: The Digital Universe in 2020 - ChinaAnalyst Report: The Digital Universe in 2020 - China
Analyst Report: The Digital Universe in 2020 - ChinaEMC
 
Taking Control of the Digital and Mobile User Authentication Challenge
Taking Control of the Digital and Mobile User Authentication ChallengeTaking Control of the Digital and Mobile User Authentication Challenge
Taking Control of the Digital and Mobile User Authentication ChallengeEMC
 
Corporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameCorporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameTatainteractive1
 

Recommandé

ThreatMetrix Profile in March 2014 CIO Review
ThreatMetrix Profile in March 2014 CIO ReviewThreatMetrix Profile in March 2014 CIO Review
ThreatMetrix Profile in March 2014 CIO ReviewThreatMetrix
 
Accenture re-organizing-todays-cyber-threats
Accenture re-organizing-todays-cyber-threatsAccenture re-organizing-todays-cyber-threats
Accenture re-organizing-todays-cyber-threatsLapman Lee ✔
 
Why is cyber security a disruption in the digital economy
Why is cyber security a disruption in the digital economyWhy is cyber security a disruption in the digital economy
Why is cyber security a disruption in the digital economyMark Albala
 
How to reduce security risks to ensure user confidence in m-payments
How to reduce security risks to ensure user confidence in m-paymentsHow to reduce security risks to ensure user confidence in m-payments
How to reduce security risks to ensure user confidence in m-paymentsBMI Healthcare
 
idg_secops-solutions
idg_secops-solutionsidg_secops-solutions
idg_secops-solutionsJonny Nässlander
 
Analyst Report: The Digital Universe in 2020 - China
Analyst Report: The Digital Universe in 2020 - ChinaAnalyst Report: The Digital Universe in 2020 - China
Analyst Report: The Digital Universe in 2020 - ChinaEMC
 
Taking Control of the Digital and Mobile User Authentication Challenge
Taking Control of the Digital and Mobile User Authentication ChallengeTaking Control of the Digital and Mobile User Authentication Challenge
Taking Control of the Digital and Mobile User Authentication ChallengeEMC
 
Corporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameCorporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameTatainteractive1
 
You Are the Target
You Are the TargetYou Are the Target
You Are the TargetEMC
 
Why Passwords are not strong enough
Why Passwords are not strong enoughWhy Passwords are not strong enough
Why Passwords are not strong enoughEMC
 
Retail
Retail Retail
Retail CMR WORLD TECH
 
The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018Insights success media and technology pvt ltd
 
InformationSecurity_11141
InformationSecurity_11141InformationSecurity_11141
InformationSecurity_11141sraina2
 
Mobile malware and enterprise security v 1.2_0
Mobile malware and enterprise security v 1.2_0Mobile malware and enterprise security v 1.2_0
Mobile malware and enterprise security v 1.2_0Javier Gonzalez
 
Volume2 chapter1 security
Volume2 chapter1 securityVolume2 chapter1 security
Volume2 chapter1 securityat MicroFocus Italy ❖✔
 
Cyber security master class 2018
Cyber security master class 2018Cyber security master class 2018
Cyber security master class 2018Sanjana Khound
 
Lessons v on fraud awareness (digital forensics) [autosaved]
Lessons v on fraud awareness (digital forensics) [autosaved]Lessons v on fraud awareness (digital forensics) [autosaved]
Lessons v on fraud awareness (digital forensics) [autosaved]Kolluru N Rao
 
Symantec Security Refresh Webinar
Symantec Security Refresh WebinarSymantec Security Refresh Webinar
Symantec Security Refresh WebinarArrow ECS UK
 
CII Whitepaper India Cyber Risk & Resilience Review 2018
CII Whitepaper India Cyber Risk & Resilience Review 2018CII Whitepaper India Cyber Risk & Resilience Review 2018
CII Whitepaper India Cyber Risk & Resilience Review 2018Confederation of Indian Industry
 
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...securing-consumer-portals-consumer-access-management-as-business-driver-and-p...
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...Milos Pesic
 
5 steps-to-mobile-risk-management-whitepaper-golden-gekko
5 steps-to-mobile-risk-management-whitepaper-golden-gekko5 steps-to-mobile-risk-management-whitepaper-golden-gekko
5 steps-to-mobile-risk-management-whitepaper-golden-gekkoDMI
 
Symantec's Internet Security Threat Report for the Government Sector
Symantec's Internet Security Threat Report for the Government SectorSymantec's Internet Security Threat Report for the Government Sector
Symantec's Internet Security Threat Report for the Government SectorSymantec
 
RSA Monthly Online Fraud Report -- February 2014
RSA Monthly Online Fraud Report -- February 2014RSA Monthly Online Fraud Report -- February 2014
RSA Monthly Online Fraud Report -- February 2014EMC
 
Event Guide V8
Event Guide V8Event Guide V8
Event Guide V8ThreatMetrix
 
[Infographic] Data Loss Prevention
[Infographic] Data Loss Prevention[Infographic] Data Loss Prevention
[Infographic] Data Loss PreventionSeqrite
 
1. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol21. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol2Adela Cocic
 
American Banker Executive Summary - Digital Trust
American Banker Executive Summary - Digital TrustAmerican Banker Executive Summary - Digital Trust
American Banker Executive Summary - Digital TrustBenjamin Wyrick
 
Securité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForceSecurité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForcePatrick Bouillaud
 
How we make money?
How we make money? How we make money?
How we make money? Gram Games
 
Kohl's Mobile User Acquisition
Kohl's Mobile User AcquisitionKohl's Mobile User Acquisition
Kohl's Mobile User AcquisitionZen Cachola
 

Contenu connexe

Tendances

You Are the Target
You Are the TargetYou Are the Target
You Are the TargetEMC
 
Why Passwords are not strong enough
Why Passwords are not strong enoughWhy Passwords are not strong enough
Why Passwords are not strong enoughEMC
 
InformationSecurity_11141
InformationSecurity_11141InformationSecurity_11141
InformationSecurity_11141sraina2
 
Mobile malware and enterprise security v 1.2_0
Mobile malware and enterprise security v 1.2_0Mobile malware and enterprise security v 1.2_0
Mobile malware and enterprise security v 1.2_0Javier Gonzalez
 
Cyber security master class 2018
Cyber security master class 2018Cyber security master class 2018
Cyber security master class 2018Sanjana Khound
 
Lessons v on fraud awareness (digital forensics) [autosaved]
Lessons v on fraud awareness (digital forensics) [autosaved]Lessons v on fraud awareness (digital forensics) [autosaved]
Lessons v on fraud awareness (digital forensics) [autosaved]Kolluru N Rao
 
Symantec Security Refresh Webinar
Symantec Security Refresh WebinarSymantec Security Refresh Webinar
Symantec Security Refresh WebinarArrow ECS UK
 
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...securing-consumer-portals-consumer-access-management-as-business-driver-and-p...
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...Milos Pesic
 
5 steps-to-mobile-risk-management-whitepaper-golden-gekko
5 steps-to-mobile-risk-management-whitepaper-golden-gekko5 steps-to-mobile-risk-management-whitepaper-golden-gekko
5 steps-to-mobile-risk-management-whitepaper-golden-gekkoDMI
 
Symantec's Internet Security Threat Report for the Government Sector
Symantec's Internet Security Threat Report for the Government SectorSymantec's Internet Security Threat Report for the Government Sector
Symantec's Internet Security Threat Report for the Government SectorSymantec
 
RSA Monthly Online Fraud Report -- February 2014
RSA Monthly Online Fraud Report -- February 2014RSA Monthly Online Fraud Report -- February 2014
RSA Monthly Online Fraud Report -- February 2014EMC
 
[Infographic] Data Loss Prevention
[Infographic] Data Loss Prevention[Infographic] Data Loss Prevention
[Infographic] Data Loss PreventionSeqrite
 
1. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol21. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol2Adela Cocic
 
American Banker Executive Summary - Digital Trust
American Banker Executive Summary - Digital TrustAmerican Banker Executive Summary - Digital Trust
American Banker Executive Summary - Digital TrustBenjamin Wyrick
 
Securité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForceSecurité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForcePatrick Bouillaud
 

Tendances (20)

You Are the Target
You Are the TargetYou Are the Target
You Are the Target
 
Why Passwords are not strong enough
Why Passwords are not strong enoughWhy Passwords are not strong enough
Why Passwords are not strong enough
 
Retail
Retail Retail
Retail
 
The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018
 
InformationSecurity_11141
InformationSecurity_11141InformationSecurity_11141
InformationSecurity_11141
 
Mobile malware and enterprise security v 1.2_0
Mobile malware and enterprise security v 1.2_0Mobile malware and enterprise security v 1.2_0
Mobile malware and enterprise security v 1.2_0
 
Volume2 chapter1 security
Volume2 chapter1 securityVolume2 chapter1 security
Volume2 chapter1 security
 
Cyber security master class 2018
Cyber security master class 2018Cyber security master class 2018
Cyber security master class 2018
 
Lessons v on fraud awareness (digital forensics) [autosaved]
Lessons v on fraud awareness (digital forensics) [autosaved]Lessons v on fraud awareness (digital forensics) [autosaved]
Lessons v on fraud awareness (digital forensics) [autosaved]
 
Symantec Security Refresh Webinar
Symantec Security Refresh WebinarSymantec Security Refresh Webinar
Symantec Security Refresh Webinar
 
CII Whitepaper India Cyber Risk & Resilience Review 2018
CII Whitepaper India Cyber Risk & Resilience Review 2018CII Whitepaper India Cyber Risk & Resilience Review 2018
CII Whitepaper India Cyber Risk & Resilience Review 2018
 
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...securing-consumer-portals-consumer-access-management-as-business-driver-and-p...
securing-consumer-portals-consumer-access-management-as-business-driver-and-p...
 
5 steps-to-mobile-risk-management-whitepaper-golden-gekko
5 steps-to-mobile-risk-management-whitepaper-golden-gekko5 steps-to-mobile-risk-management-whitepaper-golden-gekko
5 steps-to-mobile-risk-management-whitepaper-golden-gekko
 
Symantec's Internet Security Threat Report for the Government Sector
Symantec's Internet Security Threat Report for the Government SectorSymantec's Internet Security Threat Report for the Government Sector
Symantec's Internet Security Threat Report for the Government Sector
 
RSA Monthly Online Fraud Report -- February 2014
RSA Monthly Online Fraud Report -- February 2014RSA Monthly Online Fraud Report -- February 2014
RSA Monthly Online Fraud Report -- February 2014
 
Event Guide V8
Event Guide V8Event Guide V8
Event Guide V8
 
[Infographic] Data Loss Prevention
[Infographic] Data Loss Prevention[Infographic] Data Loss Prevention
[Infographic] Data Loss Prevention
 
1. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol21. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol2
 
American Banker Executive Summary - Digital Trust
American Banker Executive Summary - Digital TrustAmerican Banker Executive Summary - Digital Trust
American Banker Executive Summary - Digital Trust
 
Securité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForceSecurité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-Force
 

En vedette

How we make money?
How we make money? How we make money?
How we make money? Gram Games
 
Kohl's Mobile User Acquisition
Kohl's Mobile User AcquisitionKohl's Mobile User Acquisition
Kohl's Mobile User AcquisitionZen Cachola
 
Search Marketing Theatre; Lead Generation With AdWords Display Targeting
Search Marketing Theatre; Lead Generation With AdWords Display TargetingSearch Marketing Theatre; Lead Generation With AdWords Display Targeting
Search Marketing Theatre; Lead Generation With AdWords Display TargetingTFM&A
 
Mobile user acquisition trends for 2015 by tune & tab mo
Mobile user acquisition trends for 2015 by tune & tab moMobile user acquisition trends for 2015 by tune & tab mo
Mobile user acquisition trends for 2015 by tune & tab moJean-Vincent 'JV' Chardon
 
Top Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan Einhorn
Top Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan EinhornTop Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan Einhorn
Top Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan EinhornJessica Tams
 
Mobile UA Tips from the Inside | Paivi Putsepp-Seufert
Mobile UA Tips from the Inside | Paivi Putsepp-SeufertMobile UA Tips from the Inside | Paivi Putsepp-Seufert
Mobile UA Tips from the Inside | Paivi Putsepp-SeufertJessica Tams
 
Google Adword Display Campaign Guide – Step By Step : SK SeoIdiots
Google Adword Display Campaign Guide – Step By Step : SK SeoIdiotsGoogle Adword Display Campaign Guide – Step By Step : SK SeoIdiots
Google Adword Display Campaign Guide – Step By Step : SK SeoIdiotsSujit Kumar
 
One Tough Playground | PANEL
One Tough Playground | PANELOne Tough Playground | PANEL
One Tough Playground | PANELJessica Tams
 
Growth Hacking: how to acquire users when you have zero marketing budget
Growth Hacking: how to acquire users when you have zero marketing budgetGrowth Hacking: how to acquire users when you have zero marketing budget
Growth Hacking: how to acquire users when you have zero marketing budgetstarta
 
Mobile User Acquisition Done Right
Mobile User Acquisition Done RightMobile User Acquisition Done Right
Mobile User Acquisition Done RightAlkarim Nasser
 
AdColony User Acquisition Survey - Q1 2015
AdColony User Acquisition Survey - Q1 2015AdColony User Acquisition Survey - Q1 2015
AdColony User Acquisition Survey - Q1 2015AdColony
 
Top 10 Mobile User Acquisition Trends - AdColony
Top 10 Mobile User Acquisition Trends - AdColonyTop 10 Mobile User Acquisition Trends - AdColony
Top 10 Mobile User Acquisition Trends - AdColonyAdColony
 
Mock User Acquisition Marketing Plan
Mock User Acquisition Marketing PlanMock User Acquisition Marketing Plan
Mock User Acquisition Marketing PlanVincent Barr
 
The Most Effective Mobile User Acquisition Techniques - 2014
The Most Effective Mobile User Acquisition Techniques - 2014The Most Effective Mobile User Acquisition Techniques - 2014
The Most Effective Mobile User Acquisition Techniques - 2014Sho Masuda
 
GDDR Solution Design and Implementation Techniques
GDDR Solution Design and Implementation Techniques GDDR Solution Design and Implementation Techniques
GDDR Solution Design and Implementation Techniques EMC
 
New Skills for the Service-Oriented IT Organization
New Skills for the Service-Oriented IT OrganizationNew Skills for the Service-Oriented IT Organization
New Skills for the Service-Oriented IT OrganizationEMC
 

En vedette (17)

How we make money?
How we make money? How we make money?
How we make money?
 
Kohl's Mobile User Acquisition
Kohl's Mobile User AcquisitionKohl's Mobile User Acquisition
Kohl's Mobile User Acquisition
 
Anh Nhuyen, Rovio
Anh Nhuyen, RovioAnh Nhuyen, Rovio
Anh Nhuyen, Rovio
 
Search Marketing Theatre; Lead Generation With AdWords Display Targeting
Search Marketing Theatre; Lead Generation With AdWords Display TargetingSearch Marketing Theatre; Lead Generation With AdWords Display Targeting
Search Marketing Theatre; Lead Generation With AdWords Display Targeting
 
Mobile user acquisition trends for 2015 by tune & tab mo
Mobile user acquisition trends for 2015 by tune & tab moMobile user acquisition trends for 2015 by tune & tab mo
Mobile user acquisition trends for 2015 by tune & tab mo
 
Top Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan Einhorn
Top Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan EinhornTop Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan Einhorn
Top Reasons Why Your Mobile Game Will (Likely) Fail | Chris Olson, Ethan Einhorn
 
Mobile UA Tips from the Inside | Paivi Putsepp-Seufert
Mobile UA Tips from the Inside | Paivi Putsepp-SeufertMobile UA Tips from the Inside | Paivi Putsepp-Seufert
Mobile UA Tips from the Inside | Paivi Putsepp-Seufert
 
Google Adword Display Campaign Guide – Step By Step : SK SeoIdiots
Google Adword Display Campaign Guide – Step By Step : SK SeoIdiotsGoogle Adword Display Campaign Guide – Step By Step : SK SeoIdiots
Google Adword Display Campaign Guide – Step By Step : SK SeoIdiots
 
One Tough Playground | PANEL
One Tough Playground | PANELOne Tough Playground | PANEL
One Tough Playground | PANEL
 
Growth Hacking: how to acquire users when you have zero marketing budget
Growth Hacking: how to acquire users when you have zero marketing budgetGrowth Hacking: how to acquire users when you have zero marketing budget
Growth Hacking: how to acquire users when you have zero marketing budget
 
Mobile User Acquisition Done Right
Mobile User Acquisition Done RightMobile User Acquisition Done Right
Mobile User Acquisition Done Right
 
AdColony User Acquisition Survey - Q1 2015
AdColony User Acquisition Survey - Q1 2015AdColony User Acquisition Survey - Q1 2015
AdColony User Acquisition Survey - Q1 2015
 
Top 10 Mobile User Acquisition Trends - AdColony
Top 10 Mobile User Acquisition Trends - AdColonyTop 10 Mobile User Acquisition Trends - AdColony
Top 10 Mobile User Acquisition Trends - AdColony
 
Mock User Acquisition Marketing Plan
Mock User Acquisition Marketing PlanMock User Acquisition Marketing Plan
Mock User Acquisition Marketing Plan
 
The Most Effective Mobile User Acquisition Techniques - 2014
The Most Effective Mobile User Acquisition Techniques - 2014The Most Effective Mobile User Acquisition Techniques - 2014
The Most Effective Mobile User Acquisition Techniques - 2014
 
GDDR Solution Design and Implementation Techniques
GDDR Solution Design and Implementation Techniques GDDR Solution Design and Implementation Techniques
GDDR Solution Design and Implementation Techniques
 
New Skills for the Service-Oriented IT Organization
New Skills for the Service-Oriented IT OrganizationNew Skills for the Service-Oriented IT Organization
New Skills for the Service-Oriented IT Organization
 

Similaire à Intelligence-Driven Fraud Prevention

8Cyber security courses in Bangladesh.docx
8Cyber security courses in Bangladesh.docx8Cyber security courses in Bangladesh.docx
8Cyber security courses in Bangladesh.docxArindamGhosal6
 
Best Cyber Security Courses In Bangladesh.docx
Best Cyber Security Courses In Bangladesh.docxBest Cyber Security Courses In Bangladesh.docx
Best Cyber Security Courses In Bangladesh.docxArindamGhosal6
 
For digital media companies, effective cybersecurity programs a must
For digital media companies, effective cybersecurity programs a mustFor digital media companies, effective cybersecurity programs a must
For digital media companies, effective cybersecurity programs a mustGrant Thornton LLP
 
Managed security services for financial services firms
Managed security services for financial services firmsManaged security services for financial services firms
Managed security services for financial services firmsJake Weaver
 
Cyber Security Privacy Brochure 2015
Cyber Security Privacy Brochure 2015Cyber Security Privacy Brochure 2015
Cyber Security Privacy Brochure 2015sarah kabirat
 
Before the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracksBefore the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracks- Mark - Fullbright
 
Ways To Protect Your Company From Cybercrime
Ways To Protect Your Company From CybercrimeWays To Protect Your Company From Cybercrime
Ways To Protect Your Company From Cybercrimethinkwithniche
 
Enterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference Experts
Enterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference ExpertsEnterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference Experts
Enterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference ExpertsCXO 2.0 Conference
 
Why Do We Need To Secure Web Applications.pdf
Why Do We Need To Secure Web Applications.pdfWhy Do We Need To Secure Web Applications.pdf
Why Do We Need To Secure Web Applications.pdfBytecode Security
 
Five Network Security Threats And How To Protect Your Business Wp101112
Five Network Security Threats And How To Protect Your Business Wp101112Five Network Security Threats And How To Protect Your Business Wp101112
Five Network Security Threats And How To Protect Your Business Wp101112Erik Ginalick
 
5 network-security-threats
5 network-security-threats5 network-security-threats
5 network-security-threatsReadWrite
 
White paper cyber risk appetite defining and understanding risk in the moder...
White paper cyber risk appetite defining and understanding risk in the moder...White paper cyber risk appetite defining and understanding risk in the moder...
White paper cyber risk appetite defining and understanding risk in the moder...balejandre
 
Winning the war on cybercrime keys to holistic fraud prevention
Winning the war on cybercrime keys to holistic fraud prevention Winning the war on cybercrime keys to holistic fraud prevention
Winning the war on cybercrime keys to holistic fraud prevention CMR WORLD TECH
 
Darktrace enterprise immune system whitepaper_digital
Darktrace enterprise immune system whitepaper_digitalDarktrace enterprise immune system whitepaper_digital
Darktrace enterprise immune system whitepaper_digitalCMR WORLD TECH
 
Insight2014 mitigate risk_fraud_6863
Insight2014 mitigate risk_fraud_6863Insight2014 mitigate risk_fraud_6863
Insight2014 mitigate risk_fraud_6863IBMgbsNA
 
Why Accountants Can’t Afford to Ignore Cyber Security in 2023
Why Accountants Can’t Afford to Ignore Cyber Security in 2023Why Accountants Can’t Afford to Ignore Cyber Security in 2023
Why Accountants Can’t Afford to Ignore Cyber Security in 2023incmagazineseo
 
12Cyber Research ProposalCyb
12Cyber Research ProposalCyb12Cyber Research ProposalCyb
12Cyber Research ProposalCybAnastaciaShadelb
 

Similaire à Intelligence-Driven Fraud Prevention (20)

8Cyber security courses in Bangladesh.docx
8Cyber security courses in Bangladesh.docx8Cyber security courses in Bangladesh.docx
8Cyber security courses in Bangladesh.docx
 
Best Cyber Security Courses In Bangladesh.docx
Best Cyber Security Courses In Bangladesh.docxBest Cyber Security Courses In Bangladesh.docx
Best Cyber Security Courses In Bangladesh.docx
 
For digital media companies, effective cybersecurity programs a must
For digital media companies, effective cybersecurity programs a mustFor digital media companies, effective cybersecurity programs a must
For digital media companies, effective cybersecurity programs a must
 
WeDo Technologies Blog 2014
WeDo Technologies Blog 2014WeDo Technologies Blog 2014
WeDo Technologies Blog 2014
 
Managed security services for financial services firms
Managed security services for financial services firmsManaged security services for financial services firms
Managed security services for financial services firms
 
Cyber Security Privacy Brochure 2015
Cyber Security Privacy Brochure 2015Cyber Security Privacy Brochure 2015
Cyber Security Privacy Brochure 2015
 
Before the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracksBefore the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracks
 
Ways To Protect Your Company From Cybercrime
Ways To Protect Your Company From CybercrimeWays To Protect Your Company From Cybercrime
Ways To Protect Your Company From Cybercrime
 
Enterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference Experts
Enterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference ExpertsEnterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference Experts
Enterprise Fraud Prevention & Scam Detection Tips By CXO 2.0 Conference Experts
 
Why Do We Need To Secure Web Applications.pdf
Why Do We Need To Secure Web Applications.pdfWhy Do We Need To Secure Web Applications.pdf
Why Do We Need To Secure Web Applications.pdf
 
Five Network Security Threats And How To Protect Your Business Wp101112
Five Network Security Threats And How To Protect Your Business Wp101112Five Network Security Threats And How To Protect Your Business Wp101112
Five Network Security Threats And How To Protect Your Business Wp101112
 
5 network-security-threats
5 network-security-threats5 network-security-threats
5 network-security-threats
 
White paper cyber risk appetite defining and understanding risk in the moder...
White paper cyber risk appetite defining and understanding risk in the moder...White paper cyber risk appetite defining and understanding risk in the moder...
White paper cyber risk appetite defining and understanding risk in the moder...
 
Ransomware attack
Ransomware attackRansomware attack
Ransomware attack
 
Winning the war on cybercrime keys to holistic fraud prevention
Winning the war on cybercrime keys to holistic fraud prevention Winning the war on cybercrime keys to holistic fraud prevention
Winning the war on cybercrime keys to holistic fraud prevention
 
Darktrace enterprise immune system whitepaper_digital
Darktrace enterprise immune system whitepaper_digitalDarktrace enterprise immune system whitepaper_digital
Darktrace enterprise immune system whitepaper_digital
 
IBM Security Services
IBM Security ServicesIBM Security Services
IBM Security Services
 
Insight2014 mitigate risk_fraud_6863
Insight2014 mitigate risk_fraud_6863Insight2014 mitigate risk_fraud_6863
Insight2014 mitigate risk_fraud_6863
 
Why Accountants Can’t Afford to Ignore Cyber Security in 2023
Why Accountants Can’t Afford to Ignore Cyber Security in 2023Why Accountants Can’t Afford to Ignore Cyber Security in 2023
Why Accountants Can’t Afford to Ignore Cyber Security in 2023
 
12Cyber Research ProposalCyb
12Cyber Research ProposalCyb12Cyber Research ProposalCyb
12Cyber Research ProposalCyb
 

Plus de EMC

INDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUD
INDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUDINDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUD
INDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUDEMC
 
Cloud Foundry Summit Berlin Keynote
Cloud Foundry Summit Berlin Keynote Cloud Foundry Summit Berlin Keynote
Cloud Foundry Summit Berlin Keynote EMC
 
EMC GLOBAL DATA PROTECTION INDEX
EMC GLOBAL DATA PROTECTION INDEX EMC GLOBAL DATA PROTECTION INDEX
EMC GLOBAL DATA PROTECTION INDEX EMC
 
Transforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIO
Transforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIOTransforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIO
Transforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIOEMC
 
Citrix ready-webinar-xtremio
Citrix ready-webinar-xtremioCitrix ready-webinar-xtremio
Citrix ready-webinar-xtremioEMC
 
EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES
EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES
EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES EMC
 
EMC with Mirantis Openstack
EMC with Mirantis OpenstackEMC with Mirantis Openstack
EMC with Mirantis OpenstackEMC
 
Modern infrastructure for business data lake
Modern infrastructure for business data lakeModern infrastructure for business data lake
Modern infrastructure for business data lakeEMC
 
Force Cyber Criminals to Shop Elsewhere
Force Cyber Criminals to Shop ElsewhereForce Cyber Criminals to Shop Elsewhere
Force Cyber Criminals to Shop ElsewhereEMC
 
Pivotal : Moments in Container History
Pivotal : Moments in Container History Pivotal : Moments in Container History
Pivotal : Moments in Container History EMC
 
Data Lake Protection - A Technical Review
Data Lake Protection - A Technical ReviewData Lake Protection - A Technical Review
Data Lake Protection - A Technical ReviewEMC
 
Mobile E-commerce: Friend or Foe
Mobile E-commerce: Friend or FoeMobile E-commerce: Friend or Foe
Mobile E-commerce: Friend or FoeEMC
 
Virtualization Myths Infographic
Virtualization Myths Infographic Virtualization Myths Infographic
Virtualization Myths Infographic EMC
 
Intelligence-Driven GRC for Security
Intelligence-Driven GRC for SecurityIntelligence-Driven GRC for Security
Intelligence-Driven GRC for SecurityEMC
 
The Trust Paradox: Access Management and Trust in an Insecure Age
The Trust Paradox: Access Management and Trust in an Insecure AgeThe Trust Paradox: Access Management and Trust in an Insecure Age
The Trust Paradox: Access Management and Trust in an Insecure AgeEMC
 
EMC Technology Day - SRM University 2015
EMC Technology Day - SRM University 2015EMC Technology Day - SRM University 2015
EMC Technology Day - SRM University 2015EMC
 
EMC Academic Summit 2015
EMC Academic Summit 2015EMC Academic Summit 2015
EMC Academic Summit 2015EMC
 
Data Science and Big Data Analytics Book from EMC Education Services
Data Science and Big Data Analytics Book from EMC Education ServicesData Science and Big Data Analytics Book from EMC Education Services
Data Science and Big Data Analytics Book from EMC Education ServicesEMC
 
Using EMC Symmetrix Storage in VMware vSphere Environments
Using EMC Symmetrix Storage in VMware vSphere EnvironmentsUsing EMC Symmetrix Storage in VMware vSphere Environments
Using EMC Symmetrix Storage in VMware vSphere EnvironmentsEMC
 
Using EMC VNX storage with VMware vSphereTechBook
Using EMC VNX storage with VMware vSphereTechBookUsing EMC VNX storage with VMware vSphereTechBook
Using EMC VNX storage with VMware vSphereTechBookEMC
 

Plus de EMC (20)

INDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUD
INDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUDINDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUD
INDUSTRY-LEADING TECHNOLOGY FOR LONG TERM RETENTION OF BACKUPS IN THE CLOUD
 
Cloud Foundry Summit Berlin Keynote
Cloud Foundry Summit Berlin Keynote Cloud Foundry Summit Berlin Keynote
Cloud Foundry Summit Berlin Keynote
 
EMC GLOBAL DATA PROTECTION INDEX
EMC GLOBAL DATA PROTECTION INDEX EMC GLOBAL DATA PROTECTION INDEX
EMC GLOBAL DATA PROTECTION INDEX
 
Transforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIO
Transforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIOTransforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIO
Transforming Desktop Virtualization with Citrix XenDesktop and EMC XtremIO
 
Citrix ready-webinar-xtremio
Citrix ready-webinar-xtremioCitrix ready-webinar-xtremio
Citrix ready-webinar-xtremio
 
EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES
EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES
EMC FORUM RESEARCH GLOBAL RESULTS - 10,451 RESPONSES ACROSS 33 COUNTRIES
 
EMC with Mirantis Openstack
EMC with Mirantis OpenstackEMC with Mirantis Openstack
EMC with Mirantis Openstack
 
Modern infrastructure for business data lake
Modern infrastructure for business data lakeModern infrastructure for business data lake
Modern infrastructure for business data lake
 
Force Cyber Criminals to Shop Elsewhere
Force Cyber Criminals to Shop ElsewhereForce Cyber Criminals to Shop Elsewhere
Force Cyber Criminals to Shop Elsewhere
 
Pivotal : Moments in Container History
Pivotal : Moments in Container History Pivotal : Moments in Container History
Pivotal : Moments in Container History
 
Data Lake Protection - A Technical Review
Data Lake Protection - A Technical ReviewData Lake Protection - A Technical Review
Data Lake Protection - A Technical Review
 
Mobile E-commerce: Friend or Foe
Mobile E-commerce: Friend or FoeMobile E-commerce: Friend or Foe
Mobile E-commerce: Friend or Foe
 
Virtualization Myths Infographic
Virtualization Myths Infographic Virtualization Myths Infographic
Virtualization Myths Infographic
 
Intelligence-Driven GRC for Security
Intelligence-Driven GRC for SecurityIntelligence-Driven GRC for Security
Intelligence-Driven GRC for Security
 
The Trust Paradox: Access Management and Trust in an Insecure Age
The Trust Paradox: Access Management and Trust in an Insecure AgeThe Trust Paradox: Access Management and Trust in an Insecure Age
The Trust Paradox: Access Management and Trust in an Insecure Age
 
EMC Technology Day - SRM University 2015
EMC Technology Day - SRM University 2015EMC Technology Day - SRM University 2015
EMC Technology Day - SRM University 2015
 
EMC Academic Summit 2015
EMC Academic Summit 2015EMC Academic Summit 2015
EMC Academic Summit 2015
 
Data Science and Big Data Analytics Book from EMC Education Services
Data Science and Big Data Analytics Book from EMC Education ServicesData Science and Big Data Analytics Book from EMC Education Services
Data Science and Big Data Analytics Book from EMC Education Services
 
Using EMC Symmetrix Storage in VMware vSphere Environments
Using EMC Symmetrix Storage in VMware vSphere EnvironmentsUsing EMC Symmetrix Storage in VMware vSphere Environments
Using EMC Symmetrix Storage in VMware vSphere Environments
 
Using EMC VNX storage with VMware vSphereTechBook
Using EMC VNX storage with VMware vSphereTechBookUsing EMC VNX storage with VMware vSphereTechBook
Using EMC VNX storage with VMware vSphereTechBook
 

Dernier

Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersRaghuram Pandurangan
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxLoriGlavin3
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfMounikaPolabathina
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek SchlawackFwdays
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024Lorenzo Miniero
 
unit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxunit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxBkGupta21
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Mark Simos
 
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxUse of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxLoriGlavin3
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfLoriGlavin3
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 

Dernier (20)

Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Generative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information DevelopersGenerative AI for Technical Writer or Information Developers
Generative AI for Technical Writer or Information Developers
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptxA Deep Dive on Passkeys: FIDO Paris Seminar.pptx
A Deep Dive on Passkeys: FIDO Paris Seminar.pptx
 
What is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdfWhat is DBT - The Ultimate Data Build Tool.pdf
What is DBT - The Ultimate Data Build Tool.pdf
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
"Subclassing and Composition – A Pythonic Tour of Trade-Offs", Hynek Schlawack
 
SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024SIP trunking in Janus @ Kamailio World 2024
SIP trunking in Janus @ Kamailio World 2024
 
unit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptxunit 4 immunoblotting technique complete.pptx
unit 4 immunoblotting technique complete.pptx
 
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
Tampa BSides - Chef's Tour of Microsoft Security Adoption Framework (SAF)
 
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxUse of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdf
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 

Intelligence-Driven Fraud Prevention

  • 1. INTELLIGENCE DRIVEN FRAUD PREVENTION RSA Whitepaper OVERVIEW If you were in business 15 years ago, the term “cybercrime” was just hitting the mainstream and cyber criminals were transitioning from showing off technical skills to using those skills to disrupt and steal from individuals and businesses. As threats from cyber criminals became more pervasive and sophisticated, so did businesses’ attempts to minimize damage from these threats. What began as the IT annoyance of protecting email and web sites from spam has transformed into battle against a global fraud-as-a-service business that is an expert at targeting company financial, product, and staff information, as well as consumer banking, healthcare and ecommerce transactions. Today cybercrime is big business with statistics to prove it: • Card-Not-Present fraud will account for $2.9 billion in fraud losses to U.S. businesses this year and is expected to more than double by 2018 (Aite Group) • In 2013, one in every seven payment cards in the U.S. was exposed to a data breach (Discover) • One million high risk and malicious android apps were detected in 2013 (Trend Micro) • This year data breaches have affected high-profile retailers, high tech companies, financial institutions, universities, healthcare providers and even the IRS • In the first half of 2014, phishing alone resulted in $2.2 billion in losses to global companies (RSA Anti-Fraud Command Center) • A targeted cybercrime attack costs an average of $214,000 per incident (Ponemon Institute) • Global losses from Corporate Account Takeover was $523M in 2013 and estimated to reach nearly $800M in 2016 (Aite Group) • A DDoS attack can cost a retailer $3.4 million in losses for 1 hour of downtime on Cyber Monday, not to mention the reputational losses associated with brand damage and reduced consumer confidence (Ponemon Institute) Add the need to deal with evolving new technologies like smart devices, cloud services, big data, and social networking sites and it’s clear that most fraud prevention models weren’t built to handle this constantly shifting landscape.
  • 2. Intelligence Driven Fraud Prevention CONTENTS Overview..................................................................................................................... 1 Defining the “New Normal”.......................................................................................... 3 See More, Understand Better, Act Faster...................................................................... 3 The Balance Challenge................................................................................................ 4 Risky Business: Risk-based Authentication.................................................................. 5 Putting Intelligence into Action.................................................................................... 5 Stepping Up to the Step-up Authentication Plate..........................................................6 Running with the Big Data............................................................................................6 Conclusion.................................................................................................................. 7 Intelligence Driven Fraud Prevention Solutions from RSA.............................................. 7 RSA® FRAUDACTION™ SERVICE..................................................................................8 RSA Web Threat Detection........................................................................................9 RSA Adaptive Authentication and Transaction Monitoring.........................................9 RSA Adaptive Authentication for eCommerce.......................................................... 10 page 2
  • 3. Intelligence Driven Fraud Prevention DEFINING THE “NEW NORMAL” Fraud detection, prevention and mitigation are of vital importance to companies trying to protect their digital assets because the impact of breaches can extend far beyond the immediate financial loss into crippling long-term privacy, intellectual property, company reputation, and customer losses. Customers are demanding anytime, anywhere access to products, services, and information through new digital channels. Integrating these channels has created new security problems as consumer-facing web sites are becoming the cybercriminal’s first step to launching broader enterprise attacks. The widespread adoption of Bring Your Own Device (BYOD) in the workplace adds to the security problem by increasing access points for attacks, blazing new trails for cyber criminals to target employees and partners on their personal devices so they can compromise their identities and infiltrate the enterprise. With a proliferation of new devices, an increasingly mobile consumer and tighter cross-channel integration, disconnected approaches to securing a company’s assets simply cannot provide a comprehensive solution to a fraud problem that is growing at an exponential pace. Within this landscape, there can be no division between consumer and enterprise security strategies. Organizations must aggressively rethink traditional notions about what constitutes a threat and how to intelligently defend against it. SEE MORE, UNDERSTAND BETTER, ACT FASTER This new normal creates unprecedented challenges for organizations that now need to secure their own digital assets while at the same time trying to secure external cloud and mobile based applications that aren’t under their control. Extending the scope of security measures is a business necessity, given cybercrime losses estimated in the hundreds of billions of dollars for financial fraud, the time and expense required to fix the damage, and the cost associated with downtime. A Ponemon Institute study estimates that for a retailer, the average cost of one hour of downtime is close to $500,000 in lost sales. And the cost is even higher when you factor in reputation and brand damage and the lingering consumer perception that your site might not be safe. Intelligence is defined as the ability to learn, understand, and deal with new or trying situations. The ability to adapt to and continually acquire new knowledge and skills in the face of change makes an Intelligence Driven Fraud Prevention Strategy a non-negotiable in today’s world. Intelligence Driven Fraud Prevention provides a layered security model to protect the identities and assets of your customer across multiple channels while providing three essential attributes that enable you to balance risk, costs, and end user convenience. First, Intelligence Driven Fraud Prevention provides immediate external visibility and context into cybercrime threats across all online digital channels. Second, this increased visibility extends your analysis capabilities so you can detect anomalies that indicate threats based on your unique risk profile and immediately assess which threats are most damaging. Finally, an Intelligence Driven Fraud Prevention strategy designates the right corrective action to mitigate the specific threat at hand, quickly, and efficiently. page 3
  • 4. Intelligence Driven Fraud Prevention Diagram 1 A defining element of Intelligence Driven Fraud Prevention is the knowledge that cyber criminals don’t behave the same way that normal site users do; they move faster, navigate differently and leave more than one device trail behind. Consistently identifying and tracking the interactions that occur across the entire online user lifecycle – from the beginning of a web session, through login and transactions – creates typical behavior and device profiles for your organization. By collecting available data and information on what is happening in your environment, you can build a reliable baseline to quickly and effectively discover anomalies and spot advanced attacks. Intelligence Driven Fraud Prevention then instantly analyzes mobile and web traffic in large volumes, delivering a wealth of information for analysis and action against your organization’s baseline. Beyond your enterprise, tracking cybercrime developments that are global, cross industry, cross channel, and cross device requires a model that can access shared cybercrime intelligence across organizations and their customers. Today’s leading Intelligence Driven Fraud Prevention solutions allow a broader look into threats by tapping into cross-organization, cross-industry fraud profiles from a worldwide network that can share and disseminate information on cybercrime activities, enabling faster response times and limiting risk. THE BALANCE CHALLENGE Identifying fraud detection, prevention and mitigation as a top business priority is only half of the battle. Today’s users demand fast, easy access to accounts, products, and services in their digital channels and do not want their experience interrupted. Any successful Intelligence Driven Fraud Prevention strategy must balance an organization’s security requirements with the need for convenient user access and an exceptional user experience. The key to achieving this balance is a layered security approach capable of distinguishing who is a customer and who is a criminal. Gaining broader visibility into digital channels opens up the opportunity for extended analysis of the behavior of humans and devices, allowing fraud patterns to be quickly detected so only high risk activities are interrupted and the normal user’s security experience remains transparent. This provides a blueprint to align security controls with an organization’s page 4 Visibility Manage Risk Action Analytics
  • 5. Intelligence Driven Fraud Prevention risk tolerance while enabling genuine end users to easily access the services that they want via digital channels. The analysis that powers Intelligence Driven Fraud Prevention is multi-faceted and spans user behavior, device fingerprints, known fraudulent entities, and threats from the underground, enabling organizations to quickly identify customers vs. criminals. RISKY BUSINESS: RISK-BASED AUTHENTICATION An Intelligence Driven Fraud Prevention strategy encompasses the ability to see everything, across the entire online consumer lifecycle from pre-login to the transaction to post-login. Most fraud prevention methods rely solely on a rules-based approach, which helps determine if the activity is a threat, but is only effective for known bad activities and does not help predict and prevent future attacks. Fraudsters are constantly changing their approach, and customers change their online behavior, which limits the ability of traditional fraud strategies to detect evolving threats and their impact. An Intelligence Driven Fraud Prevention strategy provides a comprehensive framework to combine both rules- and risk-based assessments, equipping enterprises to rapidly adapt risk policies and adjust fraud detection countermeasures based on evolving threats. Generating a unique risk score – derived from an in-depth assessment of factors such as device profiling, behavior profiling, and data from diverse sources both internal and external – allows frictionless authentication so actions can be taken that directly align with the detected threat level. The ability to use policy management in a hybrid approach translates risk policies into decisions and actions to allow tailored risk tolerances. By specifically defining risk scores, it becomes easier to determine which transactions can be reviewed at a later time and which should be prompted for additional authentication or denied where the likelihood of fraud is high. This advanced ability to gauge risks is also faster and fully transparent to the user, preserving the customer experience. PUTTING INTELLIGENCE INTO ACTION Once a business gains visibility into the type and frequency of fraudulent behaviors occurring, Intelligence Driven Fraud Prevention delivers a comprehensive portfolio of implementation options targeted toward specific threats. Prevention, detection, and mitigation should be actionable, whether online or mobile, and regardless of whether you’re facing man-in-the-browser Trojans, malicious software, DDoS attacks, site scraping or mobile session hijacking, among other threats. Intelligence Driven Fraud Prevention’s layered approach allows the use of different security controls at different points in the user lifecycle based on organizational risk tolerance, policy and user segmentation, avoiding inconveniencing legitimate users or harming the user experience challenges. page 5
  • 6. Intelligence Driven Fraud Prevention Cybercrime Evolves – So Must Your Response In the wild Diagram 2 Transaction Logout STEPPING UP TO THE STEP-UP AUTHENTICATION PLATE Intelligence Driven Fraud Prevention solutions are designed to optimize prevention, detection, and mitigation of fraud and need to work seamlessly across a variety of devices and provide expanded choices for integration with new and existing services and technologies. This is particularly important in the area of step-up authentication, where risk tolerance can help determine which authentication is appropriate, i.e., OTP, out-of-band, SMS, phone call, challenge questions. If infrastructure requires support for both online and mobile transactions, fraud prevention solutions must recognize which device is being used and act accordingly by comparing the rules and risk engine tailored to either the web or mobile channel. In addition, correlating cross-channel activity for login and transactions allows certain activities to be flagged as high risk. For example, if a customer makes a transaction on their laptop and shortly after make another transaction from a mobile device in another country, the transaction would be flagged and appropriate action taken. A multifactor authentication model provides user access to diverse connection points such as web portals, mobile apps and browsers, virtual private networks (VPNs), and web access management applications. Linking a rules- and risk-based model for authentication with a series of technologies for cross-channel protection supports an organization’s unique needs for secure access without compromising user experience. Complementing technologies should be fully integrated within an Intelligence Driven Fraud prevention strategy and target key company priorities including risk tolerance, policy alignment, device and behavior profiling, and case management. RUNNING WITH THE BIG DATA To stay ahead of ongoing threats, Intelligence Driven Fraud Prevention enhances monitoring performance and enables quicker decisions by incorporating the power of Big Data cybercrime analytics. Big Data tools enable fraud and information security teams to ingest more and varied data without being limited by data formats. Most companies have thousands of event data record sources created by devices when any event occurs. These records are vital for detecting suspicious behavior, uncovering page 6 • Password Cracking/Guessing • Parameter Injection • New Account Registration Fraud • Advanced Malware • Promotion Abuse • Man in the Middle/Browser • Account Takeover • New Account Registration Fraud • Unauthorized Account Activity • Fraudulent Money Movement • Phishing • Site Scraping • Vulnerability Probing • Layer 7 DDoS Attacks Begin Session Login Web Threat Landscape
  • 7. Intelligence Driven Fraud Prevention threats and vulnerabilities, preventing security incidents, and backing up forensic analyses. Leveraging Big Data adds another dimension to fraud prevention with better risk predictions and a unique and important ability to put fraud risk in an overall business context. CONCLUSION Preventing, detecting, and mitigating fraud will be a relentless and enduring challenge. An Intelligence Driven Fraud Prevention strategy delivers efficiencies and savings by prioritizing the most pressing risks, merging data sets and tools and minimizing standalone product implementations. Using intelligence to streamline fraud prevention efforts and manage digital risks frees resources to focus on high-value activities and business growth and reduces losses from fraud, undetected breaches, and other evolving threats. With Intelligence Driven Fraud Prevention, your organization will be well positioned to address the ever-changing threats of today and anticipate and get ahead of the threats of tomorrow. INTELLIGENCE DRIVEN FRAUD PREVENTION SOLUTIONS FROM RSA Adaptive Authentication Adaptive Authentication for eCommerce Transaction Monitoring FraudAction Web Threat Detection Diagram 3 With RSA Fraud and Risk Intelligence Solutions you can proactively gain visibility into the latest threats with global collective intelligence, helping you mitigate cyber attacks. You can secure interactions and transactions across the entire user online lifecycle – whether on web, e-commerce or mobile channels – by continuously monitoring and analyzing online behavior. This will allow you to put appropriate security controls in place based on your organization’s risk tolerance, policies, regulations, and user segmentation. This intelligent fraud approach is the key to balancing your organization’s risk, cost, and end-user convenience needs while dramatically reducing fraud losses, minimizing the chances of reputational damage and financial consequences from cyber-attacks. Using RSA Fraud and Risk Intelligence solutions, you will be armed to gain visibility into shared intelligence on emerging attacks and threats, analyze interactions and transactions to quickly detect anomalies indicative of threats, and take corrective action based on custom-defined threat levels. page 7 RSA Fraud & Risk Intelligence In the wild Begin Session Login Transaction Logout
  • 8. Intelligence Driven Fraud Prevention RSA® FRAUDACTION™ SERVICE In the online user lifecycle, in the wild or uncontained threats in the general population affect customers’ credentials, account ids, credit card information and even health records. RSA’s FraudAction Service helps to stop fraud before it happens, reducing cyber attacks, identity theft, and account takeover. The RSA® FraudAction™ service offers helps you gain complete fraud protection against phishing, pharming, Trojan attacks as well as rogue mobile apps. Additionally, you can gain deeper insight into emerging threats with intelligence reports that provide visibility into the cybercrime underground. Offered as an outsourced, managed service, FraudAction enables you to minimize resource investment while deploying a solution quickly. FraudAction uses the industry’s broadest multi-language forensic and investigation capabilities with over 100 languages supported and 187 countries. At the core of the FraudAction service is RSA’s Anti-Fraud Command Center (AFCC ) where an experienced team of fraud analysts work 24x7 to identify and shut down sites and other communication resources hosting phishing and Trojan attacks, and conduct forensic work to recover compromised credentials. Average shut down of a phishing attack is 5 hours and we monitor over 6 billion URLs on a daily basis. PHISHING DETECTION AND SHUTDOWN The RSA FraudAction Service detects and stops phishing attacks targeting your organization. Once a suspicious URL is confirmed to be a threat, you are immediately notified and can monitor the latest threat status in real-time via the FraudAction Dashboard. TROJAN ANALYSIS The RSA FraudAction Service detects and mitigates damages caused to you by Trojan attacks. You can quickly identify, respond, and minimize malware threats by blocking end-user access to the attack’s online resources. DEFENSE AGAINST ROGUE APPS RSA FraudAction Service helps you reduce fraud losses by taking action against malicious or unauthorized ‘rogue’ mobile apps. The service monitors all major app stores, detects apps targeting your organization’s customer base and shuts down unauthorized apps – reducing threats to your reputation and potential financial losses due to mobile app fraud. You retain complete control over apps representing your organization – only apps issued and/or authorized by your organization are available in the app markets. Continuous monitoring of apps stores also helps you stay ahead of potential threats, and be aware as soon as an unauthorized app surfaces. FRAUDACTION INTELLIGENCE RSA FraudAction Service is your eyes and ears into the fraud underground – providing insight into specific attacks focused on your organization, fraud industry trends as well as in-depth investigations into fraud methods, operations, services, and other issues within the fraudster community. page 8
  • 9. Intelligence Driven Fraud Prevention RSA Web Threat Detection Threats take place across the entire user lifecycle from pre-login to login and post logon transactions. When a user first enters your website, in the pre-login part of the online user lifecycle, many precursors to fraud activities occur such as DDoS attacks, site scraping, and HTML injection of site fields signaling that the potential for fraud is high and generating an intelligent alert for any business logic abuse. RSA Web Threat Detection identifies these anomalies for quick remediation. • RSA Web Threat Detection identifies all types of anomalous behavior in real time – Providing total visibility into web sessions to lead to an actionable information to stop threats quickly. • RSA Web Threat Detection provides behavioral profiles to identify anomalous behavior – Click stream data is captured and analyzed in real time, dynamically creating behavioral profiles. Behaviors that don’t conform to profiles are flagged as suspicious and RSA Web Threat Detection rules engine provides different levels of response for different types of threats. • Web session intelligence identifies broad spectrum of attacks – Targeted rules detect, alert, and communicate malicious events in real time including, DDoS, password guessing, site probing, mobile session hijacking, Man-in-the-middle, credit card fraud, HTML injection, Account Takeover, and wire transfer fraud. RSA Adaptive Authentication and Transaction Monitoring Account takeover and unauthorized account activity occur at the login and transaction points of the online user lifecycle. RSA’s Adaptive Authentication brings together information about behaviors, devices, and people to mitigate high risk transactions without compromising the user experience. RSA Adaptive Authentication is a comprehensive platform for cross-channel protection using a risk and rules based approach coupled with options for additional identity assurance for high risk transactions. • Dual rule- and risk-based approach – the RSA Risk engine uses over 100 indicators to evaluate risk in real time and reflects device and behavioral profiling, eFraudNetwork data and integrates with RSA’s policy management application. • Translate risk policies into actions – the RSA Policy Manager can adjust risk scores to target later review, prompt step-up authentication, or deny transactions with a high likelihood of fraud. • Device and behavior profiling – profiling analyzes typical behaviors and compares them to the current actions of the user or device. Device -analyzed parameters include operating system and browser version and behavior profile parameters include frequency, time of day, and attempted activity. • Step-up Authentication for high risk transactions – Provides a variety of additional procedures to validate a user’s identity including out-of-band authentication, challenge questions, and knowledge-based authentication. page 9
  • 10. Intelligence Driven Identity and Access Management RSA Adaptive Authentication for eCommerce RSA® Adaptive Authentication for eCommerce provides the framework for building cardholder protection and fraud management in the online shopping environment. Based on the 3DSecure protocol and infrastructure, it enables merchants and issuers to provide a consistent, secure online shopping experience for cardholders while mitigating the risk of charge back losses. Used today by more cardholders than any other solution on the market, RSA Adaptive Authentication for eCommerce employs an architecture approved by Visa®, MasterCard®, and American Express®. Adaptive Authentication for eCommerce provides issuers a single solution to manage their growing fraud losses while creating the shopping experience merchants require to avoid transaction abandonment. ABOUT RSA RSA’s Intelligence Driven Security solutions help organizations reduce the risks of operating in a digital world. Through visibility, analysis, and action, RSA solutions give customers the ability to detect, investigate and respond to advanced threats; confirm and manage identities; and ultimately, prevent IP theft, fraud and cybercrime. For more information on RSA, please visit www.rsa.com. EMC2, EMC, the EMC logo, RSA, Archer, FraudAction, NetWitness and the RSA logo are registered trademarks or trademarks of EMC Corporation in the United States and other countries. All other products or services mentioned are trademarks of their respective companies. © Copyright 2014 EMC Corporation. All rights reserved. www.rsa.com H13704