Nu Data Fraud Risk Analysis                                            Account Takeover Attacks

December 24, 2020

Attack by Customer Placement

Account takeover attacks (ATOs) at login comprise most of the high-risk traffic generated online. The size and scale of these attacks enable login credentials to be accessed cheaply and easily.  

Travel and eCommerce industries receive a larger variety of attacks, which have accounted for big fluctuations this year. Checkout attacks in travel have accounted for a 58% increase in February while login attacks for eCommerce validation pages made up 65% of attacks in March.

 

Quality of Stolen Credentials by Industry

Login attacks make use of username and password combinations, many of which are wrong. Massive-scale attacks like credential stuffing, are deployed to gain access to accounts using brute-force. The rate of successful login attempts across industries vary, but can be summarized as follows:

Digital Goods

0.02%

   eCommerce

 1.18%

          Finance         

0.40%

Travel

1.37%

Ticketing/Events

4.00%

Mobile Attacks

And while attacks are normally leveled against desktops, mobile attacks are on the rise. There has been an estimated 55% increase in these types of attacks since the beginning of the year. People from normally mobile-avoidant demographics (such as Baby Boomers) have flocked to mobile platforms to conduct pertinent, everyday activities. This is offered bad actors greater volumes of data to target.

Conlusion

The scale and sophistication of online attacks has changed significantly over the last few years.

The pandemic has further escalated these shifts. Given the increase in most people’s online presence, high-risk traffic—usually during account creation and checkout points— have led to greater instances of fraud and the necessity for heightened security protocols. Attacks across industries also offer insight into their varying needs:

0 %

of travel industry attacks happen at checkout

0 %

of eCommerce attacks happen at look-up pages (review points, purchase state, or card information)

Analyzing these patterns and responding accordingly enable greater protections for consumers and mitigates risk for companies. At AltoShield, we’re equipped to handle these and other common fraud practices that can be lobbied against your business at anytime.

Reach out today so we can build a relationship: https://altoshield.com/

For more information and the latest reports, head to NuData and view more of their content.  

Gearing up For The Holidays

Gearing Up For The Holidays:A Report on E-commerce Trends for 2021. October 13, 2021 In preparation for the holiday season after a year affected by …

Read More →

SCA Economic Impact

Analysis by CMSPI on Strong Customer Authentication (SCA) and it’s economic impact-August 2021.  October 6, 2021 Global payments consultancy agency CMSPI has released data that …

Read More →

Gaming and fraud

Gaming and Fraud: Strategies to Monitor the Rising Market September 29, 2021 In recent years, starting in early 2006, the probability of fraud within gaming …

Read More →
Scroll to Top