Advertisment

RSA offers advanced solns to combat Man-In-The-Browser attacks

author-image
CIOL Bureau
Updated On
New Update

BANGALORE,INDIA: RSA, The Security Division of EMC today announced RSA Man-in-the-Browser Solutions, a portfolio of anti-fraud services that give businesses and their customers defense against one of the most sophisticated means of  theft of online information, identities and financial assets. With these additional layers of defense from RSA, organizations can better fight against the sharp rise in Man-in-the-Browser (MITB) attacks that lead to Trojan and malware infection within enterprises and personal computing environments.

Advertisment



Leveraging the technologies and services of the RSA Identity Protection and Verification Suite, the RSA Man-in-the-Browser solution includes newly enhanced transaction monitoring as well as risk-based authentication; Trojan detection and attack shut down; and intelligence to identify malware-infected enterprise environments. 



Advertisment

"Today cybercriminals are able to leverage online banking sessions in real time, concurrent with the victim,” said Robert Vamosi, Security, Risk and Fraud Analyst for Javelin Strategy & Research. “No stand-alone authentication or other security tool is enough to defend against the more sophisticated Man-in-the-Browser attacks.”

“Online criminals are continually evolving their tools and tactics to work around defenses established by even the most security-conscious organizations,” said Christopher Young, Senior Vice President of Products, Technologies and Markets, at RSA. “In particular, Man-in-the-Browser attacks have presented a significant online threat that defies geographic boundaries and discriminates against no one person or entity. Organizations need to approach this problem with a multi-layered defense strategy reinforcing security measures at login that in isolation can be thwarted. This includes the ability to detect, monitor, shut down and cull intelligence based on transactions, malware and online attacks.”



Advertisment

MITB attacks are designed by fraudsters to infect a web browser with malware which can result in modified web pages and transactions that are largely transparent to both the user and the host application. Trojans such as Silent Banker, Sinowal are pre-programmed by fraudsters to activate when the user’s browser accesses a specific website such as their online banking portal. The activated Trojan can then track the online session and perform real-time interception and manipulation of information that can lead to illegal money transfers, identity theft, or the compromise of valuable enterprise information.







tech-news