TMCnet News
Castle Unveils Four Account Takeover Tactics Cyberattackers are Using to Successfully Exploit UsersSAN FRANCISCO, Dec. 12, 2019 /PRNewswire/ -- Castle, the user-centric account security company, today announced the availability of Evolution of Attacks on Online Users eBook. The eBook provides research that illustrates four new tactics cyberattackers are using to successfully take over accounts and exploit users. Castle is continuously researching attacks to improve threat modeling for attack detection and prevention. Stolen credentials have been linked to some of the largest and most costly data breaches to date, including Equifax and Yahoo, which affected almost half of the US Population. Despite the success of these attacks, attackers continue to search for ways to improve success by tricking security tools to avoid detection. Traditional success rates of account takeover attacks have been approximately .1%, but over the past year, Castle has discovered new trends in attack patterns with success rates as high as 20-30% in finding valid credentials. The company's research team was analyzing malicious login attempts of 100 million+ worldwide user accounts when it discovered this massive increase for some of its customers. Through its investigations and data analysis, the company identified four new trends in account takeover. Folowing are the tactics we found attackers are using to improve their success rates as they target user accounts.
"As attackers become more sophisticated, it's our responsibility to conduct the research needed to stay ahead of them," said Johan Brissmyr, co-founder and CEO of Castle. "Detecting new attack trends early on is critical in maintaining both security and user experience which could impact a company's bottom line. Fortunately we discovered these attacks early and kept our customers and their user's accounts protected." The "Evolution of Attacks on Online Users" eBook also provides tips for companies to improve defenses including implementing IP rules and blacklisting as well as a list of helpful resources and tools. For more information, please see the full eBook here. About Castle Castle helps businesses keep their customers' online accounts safe from human-powered account takeovers, automated credential stuffing, risky user transactions and other attacks impersonating users. Castle's user-centric approach to account security allows organizations to fully automate threat response and account recovery in real-time with risk-based authentication, granular access policies, and custom workflows for end-to-end account recovery. Unlike traditional solutions, Castle gives users the ability to actively participate in their own account security to keep safe. Castle has also removed complexity for security teams with an easy-to-use, fully automated and developer-friendly solution that enables strong security and keeps user satisfaction at the forefront. Castle is headquartered in San Francisco, CA with offices in Malmo, Sweden and Krakow, Poland.
View original content to download multimedia:http://www.prnewswire.com/news-releases/castle-unveils-four-account-takeover-tactics-cyberattackers-are-using-to-successfully-exploit-users-300974134.html SOURCE Castle, Inc. |