Nu Data Fraud Risk Analysis                                            Account Takeover Attacks

December 24, 2020

Attack by Customer Placement

Account takeover attacks (ATOs) at login comprise most of the high-risk traffic generated online. The size and scale of these attacks enable login credentials to be accessed cheaply and easily.  

Travel and eCommerce industries receive a larger variety of attacks, which have accounted for big fluctuations this year. Checkout attacks in travel have accounted for a 58% increase in February while login attacks for eCommerce validation pages made up 65% of attacks in March.

 

Quality of Stolen Credentials by Industry

Login attacks make use of username and password combinations, many of which are wrong. Massive-scale attacks like credential stuffing, are deployed to gain access to accounts using brute-force. The rate of successful login attempts across industries vary, but can be summarized as follows:

Digital Goods

0.02%

   eCommerce

 1.18%

          Finance         

0.40%

Travel

1.37%

Ticketing/Events

4.00%

Mobile Attacks

And while attacks are normally leveled against desktops, mobile attacks are on the rise. There has been an estimated 55% increase in these types of attacks since the beginning of the year. People from normally mobile-avoidant demographics (such as Baby Boomers) have flocked to mobile platforms to conduct pertinent, everyday activities. This is offered bad actors greater volumes of data to target.

Conlusion

The scale and sophistication of online attacks has changed significantly over the last few years.

The pandemic has further escalated these shifts. Given the increase in most people’s online presence, high-risk traffic—usually during account creation and checkout points— have led to greater instances of fraud and the necessity for heightened security protocols. Attacks across industries also offer insight into their varying needs:

0 %

of travel industry attacks happen at checkout

0 %

of eCommerce attacks happen at look-up pages (review points, purchase state, or card information)

Analyzing these patterns and responding accordingly enable greater protections for consumers and mitigates risk for companies. At AltoShield, we’re equipped to handle these and other common fraud practices that can be lobbied against your business at anytime.

Reach out today so we can build a relationship: https://altoshield.com/

For more information and the latest reports, head to NuData and view more of their content.  

Fraud Uptick Given Adaption During COVID-19

Fraud Uptick Given Adaptation During COVID-19 April 15, 2021 COVID-19’s glaring impact on the way we work, socialize and consume prompted major changes in the …

Read More →

Visa Raises Interchange Fees for UK Card Holders Beginning October 2021

Visa Raises Interchange Fees for UK Card Holders Beginning October 2021 April 9, 2021 Following Mastercard’s lead, Visa is currently on track to increase interchange …

Read More →

Multi-Acquiring and the Pursuit of Resilience and Flexibility

Multi-Acquiring and the Pursuit of Resilience and Flexibility April 1, 2021 There was a time when merchants understood payment as a simple means of conducting …

Read More →
Scroll to Top