Close
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Subscribe
Logo
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Subscribe
    Home Cybersecurity
    • Cybersecurity
    • Networking

    Cyber-Fraud Trends, Defenses Debated at Cyber-Defense Summit

    Written by

    Fahmida Y. Rashid
    Published September 15, 2011
    Share
    Facebook
    Twitter
    Linkedin

      eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

      Cyber-crime continues to flourish as perpetrators continually evolve new attacks and scams to compromise users and steal money and information, but there are certain things enterprises can do to protect themselves, security experts said at a cyber-defense summit.

      Financial cyber-fraud, insider threats to corporations, risk assessment and the costs of cyber-crime were some of the topics covered at the New York Metro InfraGard Cyber-Defense Summit in New York City on Sept. 14. The event focused on current threats facing organizations and providing information on how to prevent future occurrences.

      Some types of cyber-fraud such as identity theft, and check and payment card fraud have been declining since 2006, said David Nelson, a specialist with the Federal Deposit Insurance Corporation’s Cyber-Fraud and Financial Crimes section.

      The decline is partly a result of the improvements financial institutions have made in their security practices such as implementing new anti-fraud technology, said Nelson. Increased adoption of regulations, such as the Payment Card Industry Data Security Standards (PCI-DSS) and the guidelines from the Federal Financial Institutions Examination Council (FFIEC), have helped financial institutions secure customer accounts from theft. Organizations are also sharing more information with each other and law-enforcement agencies, making it much easier to recognize fraud and investigate incidents.

      However, criminals are innovative and flexible, so instead of giving up, they’ve switched targets, according to Nelson.

      Online account takeover attempts have been increasing each year, with estimated losses approaching $114 billion in 2010. Attackers are relying on various social-engineering tactics to trick users into clicking on a phishing or spear-phishing email, opening an attachment containing a malicious Adobe document or opening a link posted on the social networking sites, said Nelson. More than half of all wire-fraud activity tends to be initiated by attackers after compromising an online bank account, he added.

      Contrary to popular belief, the money is not going straight to China, Korea or another international destination. In fact, domestic transfer accounts for 40 percent of fraudulent wire activity, with funds being transferred to other institutions around the country, such as New York City.

      The good news is that banks are winning for the time being, said Nelson.

      Losses from online bank account takeovers in the first quarter of 2011 were nearly half the losses in the fourth quarter of 2010. Financial institutions were doing a much better job stopping fraud in the first quarter, as only 27 percent of incidents went undetected, compared with 40 percent in the fourth quarter of 2011.

      It’s not just banks that are uncovering incidents, as customers, vendors and service providers and law enforcement are also vigilant and reporting fraud.

      Many banks and credit unions have implemented multiple layers of security controls, deployed virtual browsers that cannot be easily compromised to their customers for online banking and installed anomaly-detection systems on their network, according to Nelson. Customer education and awareness programs are also having an effect.

      These are “controls that are working” and should continue to be deployed, said Nelson. However, organizations need to continue monitoring and assessing risk.

      A recent study from the Financial Services Information Sharing and Analysis Center found that financial institutions are doing a better job of stopping funds from leaving the institution even after the cyber-criminal creates the fake transaction. In 2009, financial institutions managed to stop funds from actually being transferred only 20 percent of the time. The number rose to 36 percent in the first six months of 2010, the survey found.

      Larry Ponemon, founder of the research firm Ponemon Institute, discussed his organization’s cost of cyber-crime study that was released early August. The study, found that the median cost of cyber-crime for a benchmark sample of organizations was $5.9 million per year, a 56 percent increase from the median reported in July 2010.

      All industries fall victim to cyber-crime, including malware, Web-based attacks, botnets and stolen devices, according to Ponemon. Information theft was the biggest external cost, and recovery and detection activities were the biggest internal cost, the study found.

      Organizations should be “vigilant” about new risks but should not forget about “old problems,” said James DeFalco, an examining officer with the Federal Reserve Bank of New York. Unpatched or forgotten machines are likely to be infected first and allow attackers to conduct attacks from inside the firewall, according to DeFalco.

      Fahmida Y. Rashid
      Fahmida Y. Rashid

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      MOST POPULAR ARTICLES

      Artificial Intelligence

      9 Best AI 3D Generators You Need...

      Sam Rinko - June 25, 2024 0
      AI 3D Generators are powerful tools for many different industries. Discover the best AI 3D Generators, and learn which is best for your specific use case.
      Read more
      Cloud

      RingCentral Expands Its Collaboration Platform

      Zeus Kerravala - November 22, 2023 0
      RingCentral adds AI-enabled contact center and hybrid event products to its suite of collaboration services.
      Read more
      Artificial Intelligence

      8 Best AI Data Analytics Software &...

      Aminu Abdullahi - January 18, 2024 0
      Learn the top AI data analytics software to use. Compare AI data analytics solutions & features to make the best choice for your business.
      Read more
      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Video

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2024 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.