All Top Banking

Man-In-The-Phone Attacks -Banking Fraud

Posted by John B. Frank Tuesday, July 14, 2009

Fraudsters innovate with “man-in-the-phone” technique



Actimize this week warned of a new telephone banking fraud where fraudsters impersonate a banking representative.

The anti-money laundering specialist said the “man-in-the-phone” (MitP) fraud is becoming popular as internet banking sites become increasingly difficult to hack.

“We’ve noticed an accelerating trend in Man-in-the-Phone attacks,” said Paul Henninger, fraud specialist at Actimize.


“We hope that by publicising this new trend, we can help reduce its impact on individuals and our banking clients.”

In a typical MitP attack, the fraudster calls up a banking customer telling them their account may have been compromised.

They tell the victim that they need to verify a few details.

The fraudster then connects the call to the customer’s actual bank while secretly recording the phone call - thereby gaining full access to the security details of the victim.

Actimize advised banking customers to avoid giving out their banking details to anyone that initiates a call.

Instead, they should tell callers that they will call back the bank to verify information., Actimize said.

In related news, research firm Javelin has recorded a huge upsurge in fraudsters using telephone banking to commit ID theft.

“Access through mail and telephone transactions grew from 3 percent of ID theft in 2006 to 40 percent in 2007,” said James Van Dyke, Javelin president.

“Fraudsters are getting creative and leveraging new techniques to commit fraud, so consumers need to be as diligent as ever in protecting their personal information.”

Click here to discuss this: Security Forums

0 comments

Post a Comment

Powered by Blogger.

Blog Archive

Search This Blog

Our Manufacturing Facility

Learn More About Us

Find out how our patented technology can empower your financial institution.

Our secure two-factor online banking authentication eliminates dangerous passwords and usernames and replicates the same trusted process used to access cash at ATM's. (Insert Bank Issued Card, Enter Bank Issued PIN)

There is an R.O.I. as FI's also earn recurring revenue from each transaction conducted using our PCI 2.0 Certified PIN Entry Device. Our technology also provides a unique real-time P2P "Instant-Transfer" which allows your online banking customer to transfer cash from ANY of their bankcards to ANY other bankcard...with the Swipe of a card.

Help your bank eliminate phishing and your customers avoid identity theft by providing them with the ability to stop typing and start swiping. There is no safer way to conduct financial transactions online than by 3DES DUKPT encrypting the cardholder details, which we do at the mag-head "inside the box/outside the browser."

Total Pageviews

SLIM for PC or SmartPhone

SLIM for PC or SmartPhone
Click to Inquire

Chip and PIN eCommerce and Mobile

Chip and PIN eCommerce and Mobile
Click to Inquire

Kapersky Calls for Mass Adoption of Card Readers

Kapersky Calls for Mass Adoption of Card Readers

Translate This Blog

BobCaps

Search ePayment News (example: NFC)

About Me

My photo
Named one of the best Payment Industry News Blogs 4 Years Running

Feedjit

My Zimbio