Kaspersky Fraud Prevention platform: a comprehensive solution for secure payment processing



Similar documents
Kaspersky Fraud Prevention: a Comprehensive Protection Solution for Online and Mobile Banking

ONLINE AND MOBILE BANKING, YOUR RISKS COVERED

KASPERSKY FRAUD PREVENTION PLATFORM COVERING ONLINE AND MOBILE BANKING RISKS

KASPERSKY SECURITY INTELLIGENCE SERVICES. EXPERT SERVICES.

Comprehensive real-time protection against Advanced Threats and data theft

KASPERSKY ANTI-MALWARE PROTECTION SYSTEM BE READY FOR WHAT S NEXT. Kaspersky Open Space Security

Symantec Mobile Security

TRITON AP-WEB COMPREHENSIVE REAL-TIME PROTECTION AGAINST ADVANCED THREATS & DATA THEFT

Protect Your Business and Customers from Online Fraud

ENABLING FAST RESPONSES THREAT MONITORING

KASPERSKY DDOS PROTECTION. Discover how Kaspersky Lab defends businesses against DDoS attacks

Kaspersky Security for Mobile

TRITON APX. Websense TRITON APX

Five Trends to Track in E-Commerce Fraud

Global IT Security Risks

FINANCIAL FRAUD: THE IMPACT ON CORPORATE SPEND IT SECURITY RISKS SPECIAL REPORT SERIES

TrustDefender Mobile Technical Brief

Stop advanced targeted attacks, identify high risk users and control Insider Threats

IBM QRadar Security Intelligence April 2013

WEB PROTECTION. Features SECURITY OF INFORMATION TECHNOLOGIES

Internet threats: steps to security for your small business

Guideline on Safe BYOD Management

Modern Cyber Threats. how yesterday s mind set gets in the way of securing tomorrow s critical infrastructure. Axel Wirth

Digital Consumer s Online Trends and Risks

isheriff CLOUD SECURITY

Security Intelligence Services. Cybersecurity training.

KASPERSKY PRIVATE SECURITY NETWORK: REAL-TIME THREAT INTELLIGENCE INSIDE THE CORPORATE INFRASTRUCTURE

WHITEPAPER. Fraud Protection for Native Mobile Applications Benefits for Business Owners and End Users

Cyber security trends & strategy for business (digital?)

McAfee Endpoint Protection for SMB. You grow your business. We keep it secure.

WEBSENSE TRITON SOLUTIONS

Practical Threat Intelligence. with Bromium LAVA

Preparing for a Cyber Attack PROTECT YOUR PEOPLE AND INFORMATION WITH SYMANTEC SECURITY SOLUTIONS

Secure Your Mobile Workplace

Gladiator NetTeller Enterprise Security Monitoring Online Fraud Detection INFORMATION SECURITY & RISK MANAGEMENT

CONSUMER SECURITY RISKS SURVEY 2014: MULTI-DEVICE THREATS IN A MULTI-DEVICE WORLD. July, 2014

OUR MISSION IS TO PROTECT EVERYONE FROM CYBERCRIME

Malware, Phishing, and Cybercrime Dangerous Threats Facing the SMB State of Cybercrime

Microsoft s cybersecurity commitment

The Hillstone and Trend Micro Joint Solution

Online security. Defeating cybercriminals. Protecting online banking clients in a rapidly evolving online environment. The threat.


Protecting Android Mobile Devices from Known Threats

Business white paper. Missioncritical. defense. Creating a coordinated response to application security attacks

Countering Insider Threats Jeremy Ho

KASPERSKY FRAUD PREVENTION FOR ENDPOINTS

Security Intelligence Services.

RESELLER BRANDING BEST PRACTICE GUIDE TO MAIL & WEB.

The Symantec Approach to Defeating Advanced Threats

KASPERSKY DDoS PROTECTION. Protecting your business against financial and reputational losses with Kaspersky DDoS Protection

Big Data in Action: Behind the Scenes at Symantec with the World s Largest Threat Intelligence Data

Managing Web Security in an Increasingly Challenging Threat Landscape

Fraud Threat Intelligence

Global Corporate IT Security Risks: 2013

Kaspersky Security 10 for Mobile Implementation Guide

What Do You Mean My Cloud Data Isn t Secure?

A Case for Managed Security

Beyond the Hype: Advanced Persistent Threats

Anthony Minnaar Dept of Criminology & Security Science School of Criminal Justice College of Law University of South Africa

Prevent Malware attacks with F5 WebSafe and MobileSafe. Alfredo Vistola Security Solution Architect, EMEA

Fighting Advanced Threats

Top 10 Anti-fraud Tips: The Cybersecurity Breach Aftermath

Selecting the right cybercrime-prevention solution

In 2015, just under half (43%) of the world s population has an Internet connection: 3.2 billion people, compared to 2.9 billion in July 2014.

KEY STEPS FOLLOWING A DATA BREACH

Kaspersky Security Network

Speed Up Incident Response with Actionable Forensic Analytics

Cisco Advanced Malware Protection for Endpoints

How To Integrate Intelligence Based Security Into Your Organisation

How to stay safe online

FRAUD PREVENTION IN M-COMMERCE: ARE YOU FUTURE PROOFED? A Chase Paymentech Paper

Advanced Endpoint Protection Overview

Kaspersky Security for Business

NATIONAL CYBER SECURITY AWARENESS MONTH

KASPERSKY SECURITY FOR BUSINESS

Transcription:

Kaspersky Fraud Prevention platform: a comprehensive solution for secure

Today s bank customers can perform most of their financial operations online. According to a global survey of Internet users conducted by B2B International and Kaspersky Lab, 91% of respondents regularly use online banking services 1. However, 62% of them encountered at least one attempted fraud or scam during the year that meant they ran the risk of losing money from their accounts. Naturally, the popularity of e-commerce has attracted the attention of cybercriminals. According to CyberSource, a provider of and risk management services, in 2012 e-retailers in the United States and Canada lost around $3.5 billion due to online fraud 2. Most financial organisations try to protect their users from cyber-fraud by introducing multifactor authentication and transaction approval services. They also make use of encryption technologies when sharing data between an online service and a user device. Unfortunately, these measures are not always enough to prevent money being stolen cybercriminals who specialise in financial attacks have an array of tools that help them bypass the standard protective barriers used by banks. For many years Kaspersky Lab has researched and developed technologies for effective protection against all types of cyber-threats, including those targeting the financial sector. Using this experience, Kaspersky Lab has developed Kaspersky Fraud Prevention a complex security solution to counter online fraud. The platform provides multi-functional protection for all the stages of an online transaction and meets regulatory requirements for transaction security. The platform includes client applications to ensure safe online payments and a server solution that functions within the IT infrastructure of the financial organisation. Moreover, it features Kaspersky Fraud Prevention SDK a special technology framework for building secure mobile apps, reinforced with Kaspersky protection technologies. Each transaction goes through several phases of authentication, during which the security status of the user device is closely monitored and controlled. The system notifies the bank s specialists as soon any suspicious activity is detected. As well as protection technologies, Kaspersky Fraud Prevention offers several services, including training, reporting on financial threats, etc. 1 Security in а multi-device world: the customer s point of view Kaspersky Lab August 2013 2 CyberSource 2013 Online Fraud Report 1

Figure 1. Kaspersky Fraud Prevention components can work separately or in conjunction with each other, providing efficient multi-layered protection Protection for endpoints Client devices tend to be the most vulnerable part of any online transaction. Analysis of data collected by Kaspersky Lab during financial cyber-attacks shows that it is usually the customer who falls victim to malicious activity, not the bank or payment infrastructure. As a rule, users are responsible for protecting their own devices. However, they don t always install security solutions, or use generic antivirus products that have no dedicated defenses against complex financial attacks. Kaspersky Fraud Prevention for Endpoints, available within the Kaspersky Fraud Prevention platform, contains specific protection technologies that ensure users of online banking and e-payment services are safe. The solution supports Windows, Mac, Android and ios. All applications provide data protection on local devices and are able to prevent traffic being intercepted as it travels between a user and an online financial service. If a company (a bank or payment system) plans to develop its own mobile application for Android or ios devices, it can use Kaspersky Fraud Prevention SDK a set of components to help create applications based on Kaspersky Lab protection technologies. To work as effectively as possible, Kaspersky Fraud Prevention for Endpoints assumes data will be shared with the platform s server components. The system processes statistical data from the Kaspersky Fraud Prevention console and makes it available to the bank s specialists. This console also makes it possible to configure Kaspersky Fraud Prevention for Endpoints. This means that if a bank launches a new online payment service, the applications currently installed on user devices automatically get all the information needed to protect against a cyber-attack. 2

Detecting fraudulent activity In some cases criminals can still gain access to online accounts by applying social engineering methods, for example, by fraudulently obtaining access data over the phone. However, even if this happens, the operator of a financial service can detect and block fraudulent transactions via Clientless Engine a server component of Kaspersky Fraud Prevention. Clientless Engine is integrated into a company s IT infrastructure and gathers data delivered from different information sources (abnormal user behavior, transaction details). The data is sent to Risk Engine the system s central element, which carries out a risk assessment. To determine a transaction s legitimacy, Risk Engine uses the following data: Reports from the server antivirus module, which checks the web pages a user accesses while working with an online banking system. This component can detect malicious code embedded into a seemingly legitimate page to steal confidential information. User behavioral analysis during an online banking session, which can determine that operations are conducted by the account holder and not a third party. This feature generates a user profile built with a special mathematical model. Data obtained from Kaspersky Security Network 3, including information about new cyber-threats and a database of devices with a bad reputation that was designed especially for the needs of financial organisations. A device can be placed in the database for a number of reasons, for example, if it is infected with malware or used to make suspicious payments. Risk Engine receives the processed data and the system determines whether an operation is legitimate based on a flexible set of rules. If there is evidence of illegal activity, the system uses a special interface to notify the financial organisation s specialists. They can then decide whether to approve or block the transaction. Clientless Engine can enhance protection by receiving information from Kaspersky Fraud Prevention for Endpoints, although the server component is able to work independently from the other parts of the platform. This solution is useful when a financial organisation or an online store wants to protect customers without installing software on user devices. Intelligence and education services Along with the protection technologies introduced in Kaspersky Fraud Prevention, Kaspersky Lab offers a range of educational and analytical services: With Professional Services a financial organisation gets dedicated incident investigation and forensics performed by Kaspersky Lab s team of experts. Intelligence Services customised reports on changes in the financial cyber-threat landscape delivered on a regular basis. 3 Cloud-based technology in Kaspersky Security Network Kaspersky Lab 2013 3

Within the Educational Services program Kaspersky Lab experts provide training sessions for the staff of your financial organisation that focus on malware capable of stealing financial data. Management Services Security Account Manager a dedicated Kaspersky Lab expert that helps resolve issues related to online banking threats. Kaspersky Fraud Prevention benefits Kaspersky Fraud Prevention offers a wide range of advantages to any financial organisation whose activities are linked to the processing of online transactions (banks, payment systems, etc.): Advanced technology to protect transactions on computers and mobile devices; Fast and easy integration with existing solutions to counteract online fraud; Real-time access to Kaspersky Lab s extensive expertise in the field of countering financial cyber-threats. Protecting financial online services from cyber-fraud requires effective security for transactions at all levels: from their initiation by customers to their approval by the organisation. These requirements form the basis of the Kaspersky Fraud Prevention platform: the solution uses an advanced multi-layered security system where the components work in harmony with each other to deliver maximum protection. As a result, Kaspersky Lab s solution allows financial organisations to reduce the risk of cybercriminal incidents, and subsequent financial and reputational costs, to a bare minimum. 1997-2014 Kaspersky Lab ZAO. All Rights Reserved. 4

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information