There was a time when spam wasn’t considered dangerous; it was merely obnoxious. Unfortunately, it seems that time is quickly coming to an end. For example, take the recent article on CNN.com: “Cyber crime poses threat to e-commerce.” The article—about increasing trends in online spam and related fraud—cites a statistic from antivirus-software provider Symantec which claims that the percentage of spam that contains malicious software has increased 900% over last year.
Additionally, as perpetrators of online crime get smarter and savvier, it’s becoming increasingly difficult to distinguish between legitimate email and spam. Especially during the holidays—a busy time for fraudsters, as we’ve already discussed—there are plenty of opportunities to take advantage of the upswing in online shopping for Christmas. For example, take a look at the top 10 subject lines for seasonal spam, as reported in the December issue of Symantec’s monthly report, State of Spam: Read the rest of this entry »
If you’re curious to know what’s topping people’s wish lists this holiday season, just take a look at online sales. No big surprise, electronics are where it’s at. Based on information provided by fraud prevention experts (and iovation partner) Retail Decisions (ReD), the top-ten list of products sold online during Black Friday was dominated by GPS systems, televisions, digital cameras and video game consoles.
Besides providing statistics on what online purchases people were spending their hard-earned money on during Black Friday, ReD also noted that online criminals were out in force, busy spending other people’s money. “Whilst online retailers witnessed a huge upturn in sales this Black Friday, fraudsters are also ’spending’ more, with an average value of $248 per transaction online, 23% more than the average genuine customer,” said ReD’s CEO, Carl Clump. Read the rest of this entry »
According to ComScore, a Virginia-based firm that tracks online shopping, consumers have already purchased over $19 billion worth of products online this holiday season. That’s an increase of 3% over last year. While that’s good news for online merchants, Mike Cronin points out in his article, ’Tis the season to be wary of online scams, that it also provides new opportunities for online scammers.
Much like online businesses, cyber criminals are working around the clock this time of year. But instead of sending out legitimate emails promoting online sales, fraudsters are sending out emails containing bogus links that closely resemble real retail websites. While their intent is to steal credit card information from unsuspecting online shoppers, the real victims in this crime will end up being online merchants. Read the rest of this entry »
There was a blog post recently on Wallet Pop titled “Online theft not the main cause for identity fraud.” In it, author Josh Smith does a good job calling out the differences between identity theft and identity fraud. In short, identity theft is when someone’s personal identity information has been stolen; identity fraud is when that stolen information is used to commit financial fraud or some other kind of crime. While the two are inevitably related to one another, they are not the same thing.
In the case of identity theft, it’s a common myth that malware, botnets, and other internet scams are to blame; however, Smith cites a study done by Travelers Insurance that actually shows that the majority (78%) of incidents of identity theft actually occur offline. This indicates that peoples’ fears may have been, at least in part, misplaced. Individuals would benefit from an increased awareness and vigilance in all aspects of their life, not just online.
This being said, there still remains the question of identity fraud: what happens once someone’s personal information has been compromised? This is where online businesses still need to be on high alert, because online sites (and not physical stores) will likely remain the No. 1 target of identity fraud. Here’s why: Read the rest of this entry »
This week the U.S. House of Representatives is debating over whether online gambling should be regulated or simply prohibited. At the same time, the recent release of a study, commissioned by WiredSafety and conducted by Harvard professor Malcolm Sparrow, asserts that regulation, and not prohibition, would best mitigate the risks posed by online gambling. This line of thinking may be in part why implementation of the Unlawful Internet Gambling Enforcement Act (UIGEA) has been delayed, and why many are now discussing a separate bill, H.R. 2267, the Internet Gambling Regulation, Consumer Protection, and Enforcement Act.
We have exciting news to share! Now that the nomination phase of the first annual 2010 Internet Dating Industry Awards is complete, iovation has been named a finalist for the Best New Technology. This award recognizes the best individual technology created by a vendor for dating or matchmaking sites. The award will be announced at the 7th Annual Internet Dating Conference. Read the rest of this entry »
Good news for online retailers came this weekend as reports showed that this year’s online sales during Black Friday were up 11% from last year, with U.S. shoppers ringing up $595 million worth of orders throughout the day. The bulk of the increases, not surprisingly, went to the largest stores. As the blog on the Wall Street Journal reports:
The retail sites for Amazon.com, Apple, Best Buy, Target and Wal-Mart each saw more than 4 million unique visits Friday, comScore said, with Amazon receiving the most traffic (up 28% from 2008). Apple, Best Buy and Wal-Mart sites also experienced double-digit traffic gains. According to Experian Hitwise, another Web monitoring firm, other e-commerce standouts included Sears, Staples and Dell.
I wanted to take a moment this Thanksgiving week to offer up my own personal thanks to everyone involved in making iovation a success and to all those who work with us to combat online fraud and abuse. Our customers, partners and employees have all played an important role helping us finish the year strong. We’re poised for an amazing year in 2010 and looking forward to all that we will accomplish together.
It is amazing to me to look back and see how much we have accomplished in just a few years. Through collective hard work and the loyal support of our customers, we have become leaders in device reputation and device fingerprinting solutions. We now protect over 300 websites and have profiled over 180 million computers. We perform over 4.0 million device reputation checks and stop over 30,000 fraudulent transactions every single day.
Thanks to everyone who is working together to protect online commerce and fight online fraud. We couldn’t have done it without you.
As iovation continues to expand its subscriber-base across multiple industries, the number of shared devices (meaning those devices seen at multiple sites) continues to rise. As we see this cross-over between subscribers rise, new and existing subscribers have a greater chance of encountering devices that already have a reputation. This increases the proactive value of device reputation and directly supports the significance of having a shared device database.
The increase in the number of shared devices can in part be understood by analyzing the population of “reactivated” devices. Reactivated devices are devices that iovation re-identifies after having not seen the device for more than 90 days. By studying these devices in contrast to the device population as a whole, it is clear that iovation’s expanding customer base is a significant contributor to this trend as a vast majority of reactivated devices have been seen in multiple customer networks. Read the rest of this entry »
The BBC News has posted a report that the Serious Organized Crime Agency (SOCA), based in the UK, is warning individuals to avoid online money-making schemes that turn them into unsuspecting “money mules.” The article explains:
Fraudsters are using a variety of bogus and legitimate recruitment channels to con job-hunters into thinking they have found genuine employment. But in each case the job comes down to asking the victim to receive relatively small amounts of money into their own account and then move them onwards to another bank.
The result is that unsuspecting individuals can become liable for stolen money being funneled through their accounts and end up suffering the consequences. As an essential component of many types of fraud, money laundering is a big problem because it enables criminals to move money around without being traced to the initial theft. This not only affects online banking, but it is also a problem anywhere money changes hands—like online casinos or auction sites. Read the rest of this entry »
When I talk with fraud managers, they often express concern that the benefits of a reputation-based system won’t be instantly apparent. While a reputation service inherently becomes more valuable over time as companies log their fraud experiences into the system, it’s worth pointing out that device recognition and device reputation provide a number of benefits that can have an immediate effect, such as the following:
Expose relationships between transactions –Device recognition gives fraud management teams instant visibility into the relationships between all online transactions (fraudulent or not). This provides immediate value in assisting with investigations and resolving issues.
Receive velocity alerts –The number of purchases, applications, account creations, etc. that originate from one user in a given period of time is highly indicative of fraudulent behavior. For example, wouldn’t it be valuable to know that in the span of one hour, ten credit card applications were all submitted by one person? Unfortunately, since most fraudsters use fake or stolen identities, this can be incredibly hard to detect—unless you focus on the device. With device recognition, you can monitor the velocity of transactions coming from a single device, regardless of the identities provided.
Darin Glatt, application architect with iovation, was interviewed by the Chroma Coders Game Development Club at Casual Connect Seattle. Darin shares information on iovation’s online fraud protection service used by many leading MMOs.
Interviewer: I’m here at Casual Connect and with me today is a special guest. Would you please introduce yourself?
Darin: Hi, I’m Darin Glatt. I’m the application architect for iovation.
Interviewer: What is iovation?
Darin: iovation provides a service for games and websites to help them fight fraud and abuse.
Interviewer: Is this credit card checks or what exactly is it? And how would a game use this service?
Darin: Well, actually it’s not credit card checks. We consider fraud just another kind of abuse on a website. We handle it all the same way. We do that with device recognition and device reputation. We provide a global database of devices, and we track their reputations so we can tell you, when you send us a transaction, what that device has been up to. Read the rest of this entry »
“As we head into Q4 and the busiest season for online shopping and Internet use by those considered inexperienced users, click fraud will likely run rampant as scammers seek to tap into the increased attention, experts warned.”
Click fraud (which is when affiliate sites dishonestly increase online ad traffic in order to gain unearned revenue) is one of many types of fraud becoming more common with the use of botnets. In addition to click fraud, many other types of fraud—including spam, phishing attacks, and identity theft—are gaining in prevalence with the use of botnets. The result is that consumer PCs are under siege and individuals and businesses alike bear the cost. Read the rest of this entry »
Holiday shopping season is upon us; combine that with the current unemployment rate, and online fraud is likely to reach an all-time high this year. This correlation may not immediately make sense, since many people think Internet crime is only perpetrated by organized fraud rings and overseas master criminals, using botnets and committing identity theft.
But while that kind of fraud certainly does exist, there is another type of fraud that can be equally troublesome and, to some extent, even harder to combat: fraud committed by individuals using their own legitimate information. A very common example of this kind of crime is shipping fraud and it takes several different forms. Here are a few examples and tips on how companies can address this problem. Read the rest of this entry »
U.S. President Barak Obama has officially declared October as National Cyber Security Awareness Month and has addressed the Nation detailing the importance of our national infrastructure.
President Obama makes some important points indicating that our networks and IT infrastructure are important national assets and it is imperative to protect them. Acknowledging the growing strength of online spending, President Obama says, “The Internet and e-commerce are keys to our economic competitiveness.”
Cyber thieves are costing the U.S. and other countries billions of dollars in fraud losses every year; this is in addition to the significant impact that individuals suffer as a result of identity theft and the propagation of malware on personal computers. Obama calls on a public/private partnership to address this threat and secure our networks.
Regardless of your political leanings, providing a safe environment for online business is an important goal for our country and the rest of the world. There is no doubt that our online activities are under siege and jeopardized by an increasing cyber threat. Thwarting this threat and providing a safe environment for online businesses and individuals is a key mission for iovation and our customers.
There was a blog post recently on Wallet Pop titled 
Good news for online retailers came this weekend as reports showed that this year’s online sales during Black Friday were up 11% from last year, with 
I wanted to take a moment this Thanksgiving week to offer up my own personal thanks to everyone involved in making iovation a success and to all those who work with us to combat online fraud and abuse. Our customers, partners and employees have all played an important role helping us finish the year strong. We’re poised for an amazing year in 2010 and looking forward to all that we will accomplish together.
The 
Darin Glatt, application architect with iovation, was interviewed by the Chroma Coders Game Development Club at 
On the heels of our previous post about increased shipping fraud during the holidays, eWeek has just reported that 
Holiday shopping season is upon us; combine that with the current unemployment rate, and online fraud is likely to reach an all-time high this year. This correlation may not immediately make sense, since many people think Internet crime is only perpetrated by organized fraud rings and overseas master criminals, using botnets and committing identity theft.
