ThreatMetrix™ Global Trust Intelligence Network Finds 26 Percent of Transactions Initiate From Mobile
Posted October 9, 2013
Continuing Its Alignment to National Cyber Security Awareness Month’s Weekly Themes, ThreatMetrix Outlines Reasons Why Mobile Transactions Pose High Risk
San Jose, Calif. – October 9, 2013 – ThreatMetrix™, the fastest-growing provider of integrated cybercrime solutions, continues its commitment to National Cyber Security Awareness Month by aligning to the week two theme, “Being Mobile: Online Safety and Security.”
New data from the ThreatMetrix™ Global Trust Intelligence Network (The Network) confirms the growing use of mobile devices for banking and online shopping. Of more than 500 million monthly transactions, The Network finds 26 percent initiate from mobile devices and more than a third of mobile transactions are for online banking purposes.
“Mobile transactions are continuously on the rise across industries which translates to an increased risk for cybersecurity threats,” said Andreas Baumhof, CTO, ThreatMetrix. “In fact, by the end of the year, mobile commerce sales are projected to surpass $25 billion. Businesses must have preventative strategies in place to assure mobile transactions are protected from cybercriminals.”
The rapid growth in mobile transactions comes with increased cybersecurity risks – mobile activity does not necessarily go through the same high level security screening as desktop transactions. Specifically, mobile transactions pose a high fraud risk for the following reasons:
• Mobile browsers are less accurate. Mobile browsers do not collect the same scope and accuracy of information as their desktop counterparts, invalidating some security measures. For example, a mobile device using the Opera web browser often inaccurately shows devices as connecting via an IP address in Denmark, no matter where the transaction originates from.
• Mobile apps have less secure back-end processes. Many companies implement alternate back-end processes for mobile transactions in the rush to develop mobile-optimized apps. To do so, security is often not a top priority in initial mobile app development, opening the door to cybercriminals who spot holes in security measures.
• Customer convenience trumps security. To create a more seamless customer experience, businesses often make decisions that compromise mobile security for convenience purposes. For example, because it’s harder to type on a virtual keyboard, online banks might let mobile devices bypass a security step of entering a code on a virtual keyboard.
“Our data shows that hackers are fully aware of the vulnerabilities in mobile security, and they are using them to their advantage,” said Baumhof. “We are also seeing a growing number of suspicious transactions come from PCs that are pretending to be mobile devices by disguising their browser IDs as mobile browsers. Again, this is in the hope that they can bypass lighter security or fraud prevention measures found on mobile browsers.”
Recent ThreatMetrix data on mobile security goes hand in hand with this week’s National Cyber Security Awareness Month theme – “Being Mobile: Online Safety and Security,” as ThreatMetrix aligns with the Department of Homeland Security’s emphasis on the importance of cyber security no matter what device customers access data from.
For more information on National Cyber Security Awareness Month, visit: http://www.dhs.gov/national-cyber-security-awareness-month or http://staysafeonline.org/ncsam/.
ThreatMetrix™ secures Web transactions against account takeover, payment fraud, identity spoofing, malware, and data breaches. The ThreatMetrix™ Global Trust Intelligence Network, which analyzes 500 million monthly transactions, provides context-based authentication and Web fraud prevention to help companies accelerate revenue, reduce costs and eliminate friction. ThreatMetrix protects more than 1,900 customers and 9,000 websites across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government, and insurance. For more information, visit www.threatmetrix.com or call 1-408-200-5755.
To join in the cybersecurity conversation, follow us on Twitter @ThreatMetrix.
© 2013 ThreatMetrix. All rights reserved. ThreatMetrix, TrustDefender ID, TrustDefender Cloud, TrustDefender Mobile, TrustDefender Client, the TrustDefender Cybercrime Protection Platform, ThreatMetrix Labs, and the ThreatMetrix logo are trademarks or registered trademarks of ThreatMetrix in the United States and other countries. All other brand, service or product names are trademarks or registered trademarks of their respective companies or owners.