Nu Data Fraud Risk Analysis                                            Account Takeover Attacks

December 24, 2020

Attack by Customer Placement

Account takeover attacks (ATOs) at login comprise most of the high-risk traffic generated online. The size and scale of these attacks enable login credentials to be accessed cheaply and easily.  

Travel and eCommerce industries receive a larger variety of attacks, which have accounted for big fluctuations this year. Checkout attacks in travel have accounted for a 58% increase in February while login attacks for eCommerce validation pages made up 65% of attacks in March.

 

Quality of Stolen Credentials by Industry

Login attacks make use of username and password combinations, many of which are wrong. Massive-scale attacks like credential stuffing, are deployed to gain access to accounts using brute-force. The rate of successful login attempts across industries vary, but can be summarized as follows:

Digital Goods

0.02%

   eCommerce

 1.18%

          Finance         

0.40%

Travel

1.37%

Ticketing/Events

4.00%

Mobile Attacks

And while attacks are normally leveled against desktops, mobile attacks are on the rise. There has been an estimated 55% increase in these types of attacks since the beginning of the year. People from normally mobile-avoidant demographics (such as Baby Boomers) have flocked to mobile platforms to conduct pertinent, everyday activities. This is offered bad actors greater volumes of data to target.

Conlusion

The scale and sophistication of online attacks has changed significantly over the last few years.

The pandemic has further escalated these shifts. Given the increase in most people’s online presence, high-risk traffic—usually during account creation and checkout points— have led to greater instances of fraud and the necessity for heightened security protocols. Attacks across industries also offer insight into their varying needs:

0 %

of travel industry attacks happen at checkout

0 %

of eCommerce attacks happen at look-up pages (review points, purchase state, or card information)

Analyzing these patterns and responding accordingly enable greater protections for consumers and mitigates risk for companies. At AltoShield, we’re equipped to handle these and other common fraud practices that can be lobbied against your business at anytime.

Reach out today so we can build a relationship: https://altoshield.com/

For more information and the latest reports, head to NuData and view more of their content.  

Adapt and Innovate (Digital Markets during COVID-19)

Adapt & Innovate: Digital Markets during COVID-19 January 21, 2021 Increasingly, merchants have had to adapt to a digital marketplace since a swell of consumers …

Read More →

The Priceless Planet Mastercard Coalition

The Priceless Planet Mastercard Coalition January 13, 2021 Since January 2020, Mastercard has spear-headed the Priceless Planet Coalition, an assembly of partners dedicated to tree …

Read More →

New Rules, New Protections

New Rules, New Protections January 7, 2020 Strong Customer Authentication (SCA) implementation is fast approaching EU regulatory deadlines. The new regulation, that includes card-not-present and …

Read More →
Scroll to Top