SecurityBrief New Zealand logo
New Zealand's leading source of cybersecurity and cyber-attack news
Story image

Interview: RSA Security decodes digital fraud and its effects on APAC

By Sara Barker
Tue 5 Jun 2018
FYI, this story is more than a year old

The internet is a minefield of malware and fraud, with some fraud-based websites lasting only hours in order to commit crimes and then vanish into thin air.  I quizzed RSA Security’s business lead for Fraud and Risk Intelligence across Asia Pacific and Japan, Richard Booth, about the overall threat landscape, fraud prevention, and what everyone can do to keep themselves safe.

Booth’s role as a business lead enables him to work with banks, card issuers and eCommerce businesses to secure their customers’ accounts and transactions.

“I love being on the forefront of fraud-fighting technology and seeing our products make a tangible, positive impact within digital channels.”

In general, how is the threat landscape evolving in Asia Pacific – what is really driving those threats and driving defence?

The current threat landscape in the Asia Pacific region is no more, or less, sophisticated than in other parts of the world, such as Europe or the Americas. However, the greatest difference in Asia Pacific is the scale of the market and the rate of change. The Asia region has an enormous consumer population, which is a potential goldmine to fraudsters, and rapid advancements in digital payments means Asia is becoming a hotspot for digital fraud attacks.

The Q1 statistics from RSA’s quarterly Fraud Report seem to suggest the lowest number of attacks since Q2 2017, yet it’s still a minefield of phishing, Trojans, brand abuse, and mobile apps. What is it about mobile apps and how people use these apps that make them so vulnerable to fraud?

The average consumer doesn’t associate potential fraud risks with a new app they download from an online store. Consumers have become so accustomed to online threats (such as phishing and viruses) that the caution exercised when installing a new mobile application is very low.

There is a sense of ‘it won’t happen to me’, which is hugely dangerous. I think there is still a big education job to be done around security. Consumers need to better understand that although an app may appear legitimate on the surface, that doesn’t necessarily ensure it has originated from a safe source.

We have countries like Australia and China that are highly-placed in terms of hosting fraudulent websites (phishing, etc). Are Australia and China-based web hosters knowingly taking on dodgy websites, or are criminals getting better at spoofing IPs?

There are some ISPs that willingly operate fraud operations and are most likely connected to organised crime syndicates. They are known in the fraud underground as “bullet-proof hosts”, meaning they cannot be taken down or disrupted.

For the legitimate web hosts and ISPs, I believe the issue is with the sheer volume of fraudulent websites, as opposed to being criminally complicit. Therefore, many of these new sites are created automatically with scripts and only last for a few hours at a time. That makes it very difficult to track and trace.

With every fraud transaction value being $306 - 47% more than a standard transaction value, this is still far lower than figures from the EU, Americas and UK. Why is this the case?

At the moment, we have no specific data to back this up, but I would hazard a guess that the general population in Asia have less disposable income than those in other global regions, as a result, there is simply less value per victim to steal.

Are there any other relevant APAC stats you can share that highlight fraud?

Last year, card-not-present fraud on Australian-issued cards reached a record level bypassing AUD$400 million for the first time ever, according to the Australian Payments Network.

The report mentions that Reddit is banning fraud subreddits, and in more general terms we’re seeing the likes of Facebook, Google, and Twitter clamping down on cryptocurrency fraud.  What else are global internet companies doing to stop fraud?

As you can imagine, the largest effort to stop fraud is being undertaken by the payment giants such as Visa, MasterCard and PayPal. However, my greatest fears are emerging fintech and cryptocurrency companies that may have a less mature approach to third party consumer fraud, compared to the traditional payment companies.

A good example of this is how many fintech and cryptocurrency companies continue to rely on static credentials for authentication access to consumer services. This approach leaves them ripe for attack from old school phishing techniques.

What initiatives does RSA have around fraud prevention?

RSA’s Fraud and Risk Intelligence portfolio consists of four key capabilities:

  • Fraud Action Services – detecting and shutting down phishing, malware and rogue mobile application attacks
  • Adaptive Authentication – assess login and payment risk in real-time with the potential to invoke a step-up risk-based authentication challenge
  • Web Threat Detection – monitors digital user behaviour from the beginning to the end of the session, similar to CCTV for digital channels flagging abnormal user behaviour
  • 3DSecure Authentication – protects online shopping transaction on behalf of card issuing banks by analysing the fraud risk at the point of check-out and invoking a dynamic authentication challenge depending on risk status

All fraud begins with compromised consumer credentials or devices and reveals itself through abnormal user behaviour during logins, on web and mobile sessions and payments.

RSA’s fraud prevention portfolio focuses on the entire breadth of the fraud ecosystem by detecting and shutting down fraud attacks in the wild (phishing, malware and rogue apps), as well as detecting and mitigating fraud as it happens during login and payments.

What advice would you give to both global enterprises and individual consumers about protecting themselves against fraud?

As mentioned above, all fraud begins with compromised consumer credentials and devices. The number one priority for any consumer is to protect their data. With the number of data breaches increasing in volume and velocity, it is more important than ever before for consumers to ensure they maintain strong passwords that they change regularly.

The new GDPR legislation has made the world sit up and take note of just how important privacy is. Consumers should take the opportunity now to shut down dormant accounts, clean up their social media profiles and review their privacy settings on all digital services.

Global enterprises should (and can) do a better job of disrupting the fraud ecosystem. This includes fraudster communication channels, such as the various social media platforms. It is obviously pleasing to see Reddit leading the way in this regard.

GDPR will hopefully do more to make enterprises consider what types of consumer data is retained, why they need it and how they can secure it. Businesses should only capture the bare minimum of personal data and it should be secured to international best practices. If the data is breached, they should notify consumers as quickly as possible.

Related stories
Top stories
Story image
Tech job moves
Tech job moves - Adatree, Brother, Databricks, Nutanix & Rubrik
We round up all job appointments from May 20-26, 2022, in one place to keep you updated with the latest from across the tech industries.
Story image
Cybersecurity
Could New Zealanders initiate a cyber attack from within?
The threat landscape is significantly increasing worldwide, and the opportunities it presents are a growing concern in Aotearoa.
Story image
PIJF
The path to bolstering supply chain security in New Zealand
A significant amount of today's business and leisure activity relies on IT supply chains. From complex international freight trades to local small business distribution channels, any supply chain that involves IT infrastructure serves as a crucial tool in our daily lives. 
Story image
Microsoft
Microsoft NZ and TupuToa to boost diversity in cybersecurity sector
Microsoft NZ has teamed up with TupuToa to co-develop a cyber security employment programme specifically aimed at creating more diversity in Aotearoa's cybersecurity sector.
Story image
Ponemon Institute
Email revealed to be riskiest channel for data loss
More than half (60%) of organisations experienced data loss or exfiltration caused by an employee mistake on email in the last 12 months.
Story image
BYOD / Bring Your Own Device
How zero trust can lead the battle against ransomware
SecOps teams champion a zero trust strategy to support the fight against the escalating risk of cybercrime and help monitor threat actors across a network.
Story image
Malware
'Alarming' rise in ransomware threats - Verizon report
As criminals look to leverage increasingly sophisticated forms of malware, it is ransomware that continues to prove particularly successful.
Story image
Artificial Intelligence
Gartner reveals top three tech trends for banks this year
Gartner says generative artificial intelligence, autonomic systems and privacy-enhancing computation are gaining traction in banking and investment services.
Story image
Training
Trojan cyber attacks hitting SMBs harder than ever - Kaspersky
In 2022 the number of Trojan-PSW detections increased by almost a quarter compared to the same period in 2021 to reach 4,003,323.
Story image
Cybersecurity
What every CISO must answer to enable a best-in-class security operations program
It has been widely reported recently that South Australian government employees have been the victims of a cyberattack.
Story image
Ransomware
Alarming surge in Conti Ransomware Group activity - report
A new report has identified a 7.6 per cent increase in the number of vulnerabilities tied to ransomware in Q1 2022.
Story image
Phishing
Vishing attacks reach all time high - Agari and PhishLabs
"Hybrid vishing campaigns continue to generate stunning numbers, representing 26.1% of total share in volume so far in 2022."
Story image
Ransomware
APAC ranks third-highest region targeted by ransomware
Asia Pacific has ranked the third-highest region globally to be targeted by ransomware, according to cybersecurity firm Group-IB.
Story image
SaaS
Maintaining secure systems with expectations of flexible work
Most office workers feel they've proved they can work successfully from home, and as much as employers try, things aren't going back to the way they were anytime soon.
Story image
Cybersecurity
Accenture - a collective security approach a driving factor for cyber resilience
With the approaching Davos World Economic Forum upon us, it is even more imperative to discuss the impact of cybersecurity on business operations leading into the future.
Story image
Employment
Tech job moves - Forcepoint, Malwarebytes, SolarWinds & VMware
We round up all job appointments from May 13-20, 2022, in one place to keep you updated with the latest from across the tech industries.
Story image
Microsoft
Elevation of Privilege the top 2021 Microsoft vulnerability
BeyondTrust has released its 2022 Microsoft Vulnerabilities Report, finding that Elevation of Privilege is the top vulnerability category for the second consecutive year.
Story image
Phishing
WhatsApp and QR codes the next scam threat - report
KnowBe4 has warned it expects to see an increase in QR Codes and the WhatsApp chat platform being used for phishing and other scams. 
Darktrace
Threat actors are exploiting weaknesses in interconnected IT/OT ecosystems. Darktrace illuminates your entire business and takes targeted action to stop emerging attacks.
Link image
Story image
Microsoft
Global cybersecurity insurance market worth $11.5b this year
Future Market Insights finds the cybersecurity insurance market is expected to reach USD$11.5 billion in 2022, growing to $61.2 billion in 10 years.
Story image
Check Point
Check Point and CCTV expert join forces to boost protection
The partnership will involve Check Point Quantum IoT Protect Nano Agent being embedded in Provision-ISR’s CCTV cameras for on-device runtime protection.
Story image
Training
Infosec unveils role-guided cybersecurity training roadmaps
Infosec Skills Roles maps hands-on training and certifications to the 12 most in-demand cybersecurity roles to maximise training efficiency.
Story image
Remote Working
Successful digital transformation in the hybrid work era is about embracing shifting goalposts
As organisations embraced remote working, many discovered they lacked the infrastructure needed to support history’s first global load test of remote work capabilities.
Story image
Transport
Third-party automotive apps bear significant privacy risks
Mobile applications for connected cars provide various features to make life easier for motorists, but they can also be a source of risk.
Story image
Data Protection
Information management capabilities to meet privacy requirements
Organisations with customers or operations across more than one country face a spate of new and proposed privacy and data protection laws.
Story image
Cybersecurity
Cybersecurity prompts upgrade for 1.3 billion electricity meters
ABI Research finds Advanced Metering Infrastructure (AMI) and cybersecurity concerns are prompting the upgrade of 1.3 billion electricity meters by 2027.
Story image
Cybersecurity
More than 40% of banks worried about cloud security - report
Publicis Sapient's new report finds security and the lack of cloud skills and internal understanding of business benefits are big obstacles for banks moving to the cloud.
Story image
Silver Peak
The path to an adaptive, modern network
Managing and securing the network looks different than it did just two years ago—especially given that most of these networks are made up of multi-generations of infrastructure stitched together over time.
Story image
Cybercrime
The ups and downs and runarounds of catching cybercriminals in NZ
We're becoming more and more aware of cybercrimes but how many criminals actually get caught? The New Zealand police explain why the answer is complicated.
Story image
Kubernetes
Sysdig unveils new Kubernetes troubleshooting and cloud innovations
Sysdig has introduced two new innovations that look to help bolster cloud services and simplify Kubernetes troubleshooting.
Story image
Ransomware
CERT NZ releases first Cyber Security Insights for 2022
CERT NZ has released Quarter One: Cyber Security Insights 2022, which offers an overview of reports about cybersecurity incidents affecting New Zealanders.
Story image
Ransomware
APAC organisations fail to disclose ransomware breaches
85% of organisations in APAC were breached by ransomware at least once in the past five years, but only 28% publicly disclosed the incident.
Story image
Data Protection
Barracuda launches new capabilities for API Protection
"Every business needs this type of critical protection against API vulnerabilities and automated bot attacks," Barracuda says.
Story image
Cybersecurity
Comcast to use ThreatQuotient for cybersecurity operations
Comcast, the parent company of NBC Universal and SKY Group, has chosen ThreatQ Platform and ThreatQ Investigations to meet their cybersecurity needs.
Story image
Cyber attacks
Devastating cyber attacks expected to hit energy sector
Energy executives anticipate life, property, and environment-compromising cyber attacks on the sector within the next two years.
Story image
ChildFund
ChildFund launches new campaign to protect children online
ChildFund says WEB Safe & Wise aims to protect children from sexual exploitation and abuse online while also empowering them to become digitally savvy. 
Story image
Cybersecurity
Asia Pacific plagued by sophisticated bad bots - report
The three most common bot attacks were account takeover, content or price scraping, and scalping to obtain limited-availability items.
Story image
Vectra AI
Understanding the weight on security leader’s shoulders, and how to shift it
Millions of dollars of government funding and internal budgets are being funnelled into cybersecurity to build resilience against sophisticated threats, indicating how serious this issue has become.
Story image
Ransomware
Employees on the frontline of cyber defense - report
In the first quarter of 2022, employees found themselves more than ever at the frontline of cyber defense, according to a new report from Kroll. 
Story image
New Relic
New Relic launches vulnerability management platform
New Relic has introduced New Relic Vulnerability Management to help organisations find and address security risks faster and with greater precision.
Story image
Surveillance
i-PRO releases smallest AI-based surveillance camera on the market
The new i-PRO mini network camera is now available, with a pocket-sized form factor and full AI analytics functionality.
Story image
Malware
Fortinet introduces self-learning AI in latest offering
Fortinet is introducing self-learning AI capabilities in its new network detection and response offering, FortiNDR.
Story image
Identity and Access Management
The post-pandemic workforce requires secure IAM capabilities
HID Global discusses what identity and access management means for organisations in today's convoluted digital world.
Story image
Managed service provider
Barracuda MSP Day 2022 highlights MSP opportunities
Barracuda Networks has released a report showing global services-related MSP revenue is set to increase by more than a third in 2022 compared to 2021.