Turning on network protections for Web Fraud

Transcription

1 Turning on network protections for Web Fraud Gad Elkin Regional Sales Director, EMEA Alfredo Vistola Security Solution Architect, EMEA

2 Fraud and malware remains a challenge Malware/Fraud Statistics Phishing attacks 15% increase in malware, - MC Afee threat report Million Unique malware samples in 2013, - MC Afee threat report 2013 Mobile Malware (MM) 22,750 new modifications of malicious programs target mobile devices throughout the year 70% of malware targeting financial services companies 99% of newly discovered MM attacks target Android devices 37.3 million users around the world were subjected to phishing attacks ,758 unique phishing attacks recorded in 1 st half 2013 (WW) Data sources include Symantec, Microsoft, Kaspersky, MacAfee, DarkReading, Gartner and Cybersource F5 Agility

3 Malware Threat Landscape Growth and Targets 50 % Of malware code is logic to bypass defenses Malware 25 % Of real-world malware is caught by anti-virus 79 % 82 % Existing malware strains are Trojans Of Institutions learned about fraud incidents from their customers Data sources: Dark Reading, PandaLabs, & ISMG F5 Agility

4 Anti-fraud, Anti phishing, Anti- malware services Prevent Fraud Protect Online User On All Devices Full Transparency In Real Time Targeted malware, MITB, zero-days, MITM, phishing automated transactions Clientless solution, enabling 100% coverage Desktop, tablets & mobile devices No software or user involvement required Alerts and customizable rules F5 Agility

5 Securing against banking fraud can be complex Ownership Customers expect the banks to secure against all forms of fraud regardless of devices used or actions taken Changing threats increasing in complexity requiring full threat reconnaissance Compliance Ensuring compliance with regulations and FFEIC requirements Browser is the weakest link Trojans, MITB attack the client browser or device where the bank has no security footprint Attack visibility Is often lacking details to truly track and identify attacks and their source Endless customer devices desktop, laptop, tablet, phone, internet café, game consoles, smart TVs F5 Agility

6 F5 fraud protection services The knowledge that our online users are protected from fraudsters, wherever they are and at any time, enables our team to focus on developing new products and services. Retail Bank Executive Vice President, Leumi Bank F5 Agility

7 1 Our unique solution Offers protection to cover the gaps with most security solutions Site Visit Site Log In User Navigation Transactions Transaction Execution Device fingerprinting Generic Malware Detection Geo Location Brute force detection Credential Protection OTP / SSO Behavioral and Click Analysis Abnormal money movement Transaction integrity checks Customer Fraud Alerts Phishing Threats Credential Grabbing Malware Injections Transaction manipulation Automatic Transactions F5 Networks, Inc 7

8 Slide 7 1 Can we get the text animation on #11 consistent? some are up, others sideways, should be consistent. Scott Rossick;

9 Advanced phishing attack detection and prevention Identifies phishing threats early-on and stops attacks before s are sent Alerts upon usage of copy site on local computer Alerts upon login and testing of phishing site Phishing user names sent to SOC Shutdowns identified phishing server sites during testing 4. Test spoofed site Web Application 1. Copy website Internet 3. Upload copy spoofed site 2. Save copy to computer Alerts at each stage of phishing site development F5 Networks, Inc 8

10 Generic and targeted malware detection With real-time analysis and a variety of checks WebSafe identifies compromised sessions, malicious scripts, phishing attacks and malware including MITM/B, BOTs, fraudulent transactions Analyzes browser for traces of common malware (i.e., Zeus, citadel, Carberp, etc) Detects browser redressing Performs checks on domain and other components F5 Networks, Inc 9

11 Advanced application-layer encryption WebSafe secures credentials and other valuable data submitted on webforms. Any sensitive information can be encrypted at the message level Credential Encryption User credentials & information is encrypted then submitted Data is decrypted using WebSafe on BIG-IP hardware Intercepted information rendered useless to MiTM attacker F5 Networks, Inc 10

12 WebSafe 100% transparent anti-fraud solution Only fully transparent Anti-Fraud solution that reduces banking fraud loss Fraud Detection Detection of targeted malware, BOTs, MITM/B, Zero-day, credential grabbers, session hijacking and more Identifies extensive scans & searches Monitors/alerts when site copy is loaded to spoofed sites Transaction Protection Real-time transaction analysis Comprehensive request analysis Clientless layer 7 encryption Session initiated, one-time encryption key Security Operations Research Center 24X7 security reports and alerts Identifies and investigates attacks in real-time Researches and investigates new global fraud technology & schemes Provides detailed incident reports Optional site take-down F5 Agility

13 MobileSafe fraud protection for mobile device users Introduces 100% clientless protection for all mobile device users Fraud Detection and Protections Detection of targeted malware BOTs, MITM/B, Zero-day, SMS grabbers, key loggers and more Jail broken device detection & risk score adjustment In App Encryption User sensitive data is encrypted in the app (e.g., user name, passwords, account numbers) Renders mobile device traffic sniffing malware ineffective Security Operations Research Center 24X7 security reports and alerts Identifies and investigates attacks in real-time Researches and investigates new global fraud technology & schemes F5 Agility

14 F5 Security Operations Center (SOC) Always on the watch 24x7x365 fraud analysis team that extends your security team Researches and investigates new global fraud technology & schemes Detailed incident reports Continuous product component checks Real-time alerts activated by phone, sms and Optional site take-down: Phishing or brand-abuse sites F5 Networks, Inc 13

15 F5 SOC: Cyber intelligence Always on cyber research and analysis Sources information from a variety of resources SOC incidents 52 weeks Analyzes malware files and researches drop zones Provides quarterly dedicated reports Delivers the right information: identify attacker s, C&C, drop zones, mule accounts, compromised users, and more... SOC incidents 4 quarters Identifies social network scheming, sophisticated online fraud and brand abuse F5 Networks, Inc 14

16 F5 SOC: Phishing site take-down service Quickly identify and shut down brand abuse websites Always available F5 monitoring and response team Complete attack assessment & postpartum attack report Leverage relationships with ISPs, anti-phishing groups and key international agencies Malicious site take-down in minimal time Recommendations for counter security measures F5 Networks, Inc 15

17 DEMO

18 WebSafe benefits and differentiators Only 100% transparent anti-fraud solution Simple product rollout Protects users data in use protect all customers on all devices Combined fraud detection & protection Ensures compliance Prevents phishing attack BACKED BY WORLD-CLASS SUPPORT AND PROFESSIONAL SERVICES F5 Agility

19 F5 s security vision Offer the strongest protection for applications and data wherever they reside Provide the industry s most scalable and flexible access control to applications and data from anywhere and any device Deliver the highest value and most differentiated security solutions with best of breed management Offer unique hybrid security services that meet the specific needs for multi-layered security One Platform Network Firewall Traffic Management Application Security Access Control DDoS Protection SSL DNS Security Anti-Fraud, Anti-Malware, Anti-Phishing EAL2+ EAL4+ (in process) F5 Agility

20 Next Steps Visit us on to more about Web Fraud Protection services Take look at the following materials Data sheet: F5 WebSafe Reference architecture: Web fraud protection White paper: Protecting against online banking fraud Meet with us for further details and to discuss POC Contact your F5 rep to learn more.

21