Recently, the Federal Financial Institutions Examinations Council (FFIEC) provided a new joint statement notifying financial institutions of the increasing frequency Read more
A few months ago, when the OPM breach first hit, and the OPM said it would leverage a third-party to send out notification emails to affected individuals about the compromise, we warned of the dangers of this approach. Read more
Earlier this month, we published a post on how scammers tried to impersonate our CEO’s email, to convince our CFO to make fraudulent payments to a compromised account. Now, the FBI has released updated statistics, showing that we are definitely not alone. As Krebs on Security reports: Read more
Fortune Magazine penned an article recently, on how banks are putting hacked credit cards on ‘watch lists’, rather than canceling them immediately, thereby helping banks (and therefore their end users), reduce the overall cost of fraud to an organization. As our CEO, Ricardo Villadiego, notes in the article, ‘”Fraud is a numbers game.” Read more
For the greater part of 2015, both the FBI and the U.S. Secret Service have issued warnings that 2015 could be the year of Spear Phishing. Recently, the U.S. Secret Service issued a new bulletin, warning again that they are seeing a “significant increase in the frequency, sophistication, and fraud losses” associated with these new attacks. Read more
Last week, millions of government employees were probably quite nervous to hear that their personal data had been stolen by hackers (likely from China), who gained access to a trove of data from the Office of Personnel Management. This week, the same office is opening up even more government employees to more risk, based on their response to the breach. The OPM announced that they will notify all impacted individuals by email, which makes not only the affected individuals, but also anyone else who is worried that they might be affected, now a ripe target for a phishing attack.
Over the past six months, there have been a number of changes in the way the big payment and mobile technology players have approached security for payment apps.
It had been widely anticipated that the launch of Apple Pay in October 2014 would have a big impact, in part due to the technical aspects of the service. Expectations that the launch would disrupt Read more
Phishing costs businesses over $2 Billion in losses every year, but email remains a critical communication channel. DMARC (Domain Message Authentication Reporting and Conformance) is a free standard that stands to change all that by providing visibility into email flows, telling email receivers to delete spoofed messages, and ensuring that only legitimate emails are delivered to inboxes from protected domains.
In this session, our CTO Dan Ingevaldson will cover: Read more
We often hear fraud managers being dissatisfied with their current anti-fraud posture and believing that comprehensive protection is overly complicated and overly expensive. Not only is integrating separate solutions from a variety of vendors difficult, costly and time consuming, but oftentimes different services from the same vendor are nearly Read more