Nu Data Fraud Risk Analysis                                            Account Takeover Attacks

December 24, 2020

Attack by Customer Placement

Account takeover attacks (ATOs) at login comprise most of the high-risk traffic generated online. The size and scale of these attacks enable login credentials to be accessed cheaply and easily.  

Travel and eCommerce industries receive a larger variety of attacks, which have accounted for big fluctuations this year. Checkout attacks in travel have accounted for a 58% increase in February while login attacks for eCommerce validation pages made up 65% of attacks in March.

 

Quality of Stolen Credentials by Industry

Login attacks make use of username and password combinations, many of which are wrong. Massive-scale attacks like credential stuffing, are deployed to gain access to accounts using brute-force. The rate of successful login attempts across industries vary, but can be summarized as follows:

Digital Goods

0.02%

   eCommerce

 1.18%

          Finance         

0.40%

Travel

1.37%

Ticketing/Events

4.00%

Mobile Attacks

And while attacks are normally leveled against desktops, mobile attacks are on the rise. There has been an estimated 55% increase in these types of attacks since the beginning of the year. People from normally mobile-avoidant demographics (such as Baby Boomers) have flocked to mobile platforms to conduct pertinent, everyday activities. This is offered bad actors greater volumes of data to target.

Conlusion

The scale and sophistication of online attacks has changed significantly over the last few years.

The pandemic has further escalated these shifts. Given the increase in most people’s online presence, high-risk traffic—usually during account creation and checkout points— have led to greater instances of fraud and the necessity for heightened security protocols. Attacks across industries also offer insight into their varying needs:

0 %

of travel industry attacks happen at checkout

0 %

of eCommerce attacks happen at look-up pages (review points, purchase state, or card information)

Analyzing these patterns and responding accordingly enable greater protections for consumers and mitigates risk for companies. At AltoShield, we’re equipped to handle these and other common fraud practices that can be lobbied against your business at anytime.

Reach out today so we can build a relationship: https://altoshield.com/

For more information and the latest reports, head to NuData and view more of their content.  

UK: businesses’ compliance capabilities are worryingly below par

UK: businesses’ compliance capabilities are worryingly below par March 22, 2023 Quod Orbis,  leaders in Continuous Controls Monitoring (CCM) and cyber security services, recently released …

Read More →

American SMBs redirect $225Billion to third-party providers

American SMBs redirect $225Billion to third-party providers March 15, 2023 A recently published whitepaper from BankiFi and RedCompass Labs unveiled American small and medium businesses …

Read More →

Financial Organizations in the UK Spend £22k per Hour in the Fight Against Fraud.

Financial Organizations in the UK Spend £22k per Hour in the Fight Against Fraud. March 7, 2023 In your daily life, have you ever wondered …

Read More →
Scroll to Top