April 17, 2017 By Steven D'Alfonso 2 min read

Have you ever been phished? Would you know the difference between a phishing website and your bank’s legitimate website? We all hope we could identify the difference between our financial institution’s domain and a phony one. However, statistics indicate that 30 percent of phishing emails are opened. To make matters worse, more than 400,000 fraudulent sites were visited each month and more than 13,000 new phishing sites cropped up daily in 2016. Based on an internal study, IBM researchers determined that 70 percent of credentials are collected within the first hour of a phishing attack.

It is no secret that cybercriminals are dynamic in their attack methods. In the last decade, phishing has undergone a profound transformation, and fraudsters have developed sophisticated tools to gain access to unsuspecting victims’ banking information through fake emails and websites. These advanced tactics and compelling lures trick a large number of people who land on these pages. Victims often inadvertently disclose their login credentials or payment card information, making phishing a lucrative pursuit for cybercriminals.

Phishing in Troubled Waters

Financial institutions aim to keep all their customers’ information and funds safe from fraud. They often have multiple security systems, external services, and internal fraud and security teams. However, phishing attacks occur outside of online banking sessions. Most banks use phishing takedown services to try to keep pace with the growing number of attacks, but these services, while effective in taking down the threat, may take hours or days. By then, it is often too late.

Read the white paper: Adapt to new phishing threats and assess websites automatically

IBM Trusteer’s new cognitive approach, developed by IBM Trusteer Research and the IBM Cyber Security Center of Excellence at Ben-Gurion University, Israel, is incorporated in IBM Trusteer Rapport using patented machine learning and advanced analytics to monitor unstructured website data including links, images, forms, text, scripts, document object model (DOM) data, URLs and more. Sophisticated algorithms evaluate many variables, generate highly accurate threat scores that indicate which brands are under attack and separate legitimate sites from phishing traps.

Additionally, the technology learns with each interaction, giving it the ability to keep up even as phishing tactics change. When you add these new and robust features to existing analytics and other global security intelligence data, IBM Trusteer Rapport can help financial institutions protect their customers like never before.

Reel In Phishing Attacks With IBM Trusteer

But detecting a phishing site is only half the battle. When the IBM Trusteer Rapport solution identifies a suspicious site, it can rapidly notify or block the end user to help prevent the theft of credentials and payment card data.

Traditional anti-phishing takedown services are generally unable to shut a site down before it infects others, since it only takes about 82 seconds from the moment phishing attacks are launched for the first person to fall victim. Furthermore, phishing sites have a median uptime of 10 hours.

By combining machine learning and advanced phishing detection capabilities with client-based fraud protection, IBM offers a huge leap forward in the area of fraud prevention. Due to its advanced capabilities, IBM Trusteer Rapport continuously learns so it can adjust accordingly when cybercriminals change their attack methods.

There’s an easier, faster and more effective way to combat financial fraud due to phishing. To learn more about IBM Trusteer Rapport’s phishing detection solution, please contact your IBM representative or IBM Business Partner, or download the white paper, “Adapt to New Phishing Threats and Assess Websites Automatically.”

More from Fraud Protection

Virtual credit card fraud: An old scam reinvented

3 min read - In today's rapidly evolving financial landscape, as banks continue to broaden their range of services and embrace innovative technologies, they find themselves at the forefront of a dual-edged sword. While these advancements promise greater convenience and accessibility for customers, they also inadvertently expose the financial industry to an ever-shifting spectrum of emerging fraud trends. This delicate balance between new offerings and security controls is a key part of the modern banking challenges. In this blog, we explore such an example.…

Remote access detection in 2023: Unmasking invisible fraud

3 min read - In the ever-evolving fraud landscape, fraudsters have shifted their tactics from using third-party devices to on-device fraud. Now, users face the rising threat of fraud involving remote access tools (RATs), while banks and fraud detection vendors struggle with new challenges in detecting this invisible threat. Let’s examine the modus operandi of fraudsters, prevalence rates across different regions, classic detection methods and Trusteer’s innovative approach to RAT detection through behavioral analysis. A rising threat As Fraud detection methods become more and…

Gozi strikes again, targeting banks, cryptocurrency and more

3 min read - In the world of cybercrime, malware plays a prominent role. One such malware, Gozi, emerged in 2006 as Gozi CRM, also known as CRM or Papras. Initially offered as a crime-as-a-service (CaaS) platform called 76Service, Gozi quickly gained notoriety for its advanced capabilities. Over time, Gozi underwent a significant transformation and became associated with other malware strains, such as Ursnif (Snifula) and Vawtrak/Neverquest. Now, in a recent campaign, Gozi has set its sights on banks, financial services and cryptocurrency platforms,…

The rise of malicious Chrome extensions targeting Latin America

9 min read - This post was made possible through the research contributions provided by Amir Gendler and Michael  Gal. In its latest research, IBM Security Lab has observed a noticeable increase in campaigns related to malicious Chrome extensions, targeting  Latin America with a focus on financial institutions, booking sites, and instant messaging. This trend is particularly concerning considering Chrome is one of the most widely used web browsers globally, with a market share of over 80% using the Chromium engine. As such, malicious…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today