Security Experts:

RSA Targets Fraud, Account Take Over Attacks With Authentication Solution

Risk-based Authentication Solution Combats Fraud with Trojan Detection, Mobile Defense, and ATM Transaction Protections

RSA has announced updates to its Adaptive Authentication solution, a product geared towards helping organizations in the financial world find a balance between security and user experience. Yet, while Adaptive Authentication has a clear benefits for the financial industry, organizations in all verticals can take advantage of it.

RSA LogoThe changes to RSA’s Adaptive Authentication include protection from more than 30 million malware variants, in addition to Trojan detection and – for financial firms – ATM channel protection. It’s all powered by the RSA Risk Engine, which uses more than 100 risk indicators, including device identification and behavior profiling, to validate user activity.

With an estimated 30 million pieces of malware targeting end users for account take over, the company explained in a statement, the latest changes to Adaptive Authentication addresses changing customer requirements for convenience and ease of use while providing effective security against cybercriminal threats.

The new features include HTML Injection protection, which detects and flags changes to the user’s browser display; Man vs. Machine protection, where automated attacks via Trojans are detected (script-based attacks from other malware are included here too); and Proxy Attack defenses, for cases when a criminal attempts to hijack via a user’s known IP address. Further, the new features include mobile defenses, such as location awareness and enhanced mobile device identification to identify anomalous locations that are new to the user to block transactions that originate from a known high risk location.

Finally, Adaptive Authentication will protect against account takeover fraud in the ATM channel by assessing ATM-specific activity, including date and time of access, transaction amount, frequency of withdrawal, ATM owner and ID and location of ATM in order to assess risk.

“Account takeover is currently the single most important issue for our customers. As sophisticated malware continues to proliferate and cybercriminals evolve their methods, it’s our responsibility to quickly adapt to help customers mitigate the threat,” said RSA’s Manoj Nair, the General Manager of the RSA Identity & Data Protection Group.

Additional information is available online.

view counter
Steve Ragan is a security reporter and contributor for SecurityWeek. Prior to joining the journalism world in 2005, he spent 15 years as a freelance IT contractor focused on endpoint security and security training.