Nu Data Fraud Risk Analysis Account Takeover Attacks
December 24, 2020
Attack by Customer Placement
Account takeover attacks (ATOs) at login comprise most of the high-risk traffic generated online. The size and scale of these attacks enable login credentials to be accessed cheaply and easily.
Travel and eCommerce industries receive a larger variety of attacks, which have accounted for big fluctuations this year. Checkout attacks in travel have accounted for a 58% increase in February while login attacks for eCommerce validation pages made up 65% of attacks in March.
Quality of Stolen Credentials by Industry
Login attacks make use of username and password combinations, many of which are wrong. Massive-scale attacks like credential stuffing, are deployed to gain access to accounts using brute-force. The rate of successful login attempts across industries vary, but can be summarized as follows:
And while attacks are normally leveled against desktops, mobile attacks are on the rise. There has been an estimated 55% increase in these types of attacks since the beginning of the year. People from normally mobile-avoidant demographics (such as Baby Boomers) have flocked to mobile platforms to conduct pertinent, everyday activities. This is offered bad actors greater volumes of data to target.
The scale and sophistication of online attacks has changed significantly over the last few years.
The pandemic has further escalated these shifts. Given the increase in most people’s online presence, high-risk traffic—usually during account creation and checkout points— have led to greater instances of fraud and the necessity for heightened security protocols. Attacks across industries also offer insight into their varying needs:
of travel industry attacks happen at checkout
of eCommerce attacks happen at look-up pages (review points, purchase state, or card information)
Analyzing these patterns and responding accordingly enable greater protections for consumers and mitigates risk for companies. At AltoShield, we’re equipped to handle these and other common fraud practices that can be lobbied against your business at anytime.
Reach out today so we can build a relationship: https://altoshield.com/