Tuesday, November 24, 13:53
Home security Account Takeover Attacks: How to Avoid Them?

Account Takeover Attacks: How to Avoid Them?

Attacks Account Takeover (ATO) is a form of theft, often used by them Criminals. Attackers try to break into accounts users and use them to their advantage.

Account Takeover

According to experts, this attack has increased significantly during the pandemic.

How does Account Takeover work?

Many times, the attack starts with one Phishing e-mail, which tricks the account holder into clicking on a document or downloading a virus that records its credentials. Email can have a sense of urgency, to make the user act immediately without thinking too much.

Account takeover can be done in different types of accounts: online bank accounts and credit cards, tax related accounts (eg for submitting false tax returns, email accounts, SOCIAL MEDIA accounts etc.

Account Takeover: Differences between corporate and personal accounts

When criminals take control of a corporate account, we talk about theft of "business identity". In this case, the criminals steal them online banking credentials of a business, while when they target personal accounts, they steal personally data. In the case of a corporate account, attackers can cause a lot of problems, such as sending money to alleged partners, stealing customer information for further attacks etc.

How can you protect your business from this type of fraud?

Look for employee information before hiring them: Recruitment during the pandemic brings its own unique challenges. You may not meet someone in person and do all the interviews at Internet. However, you need to make one Investigate the potential employee and check if he or she has ever been involved in a scam.

Train employees to identify key threats: Employees are the first line of defense. Having a strong training program can be a very effective way to prevent Account Takeover and other attacks.

Employees should be very careful when opening emails: Employees must be trained so that they do not open emails and links from unknown senders and not give their personal and financial details.

Train employees to detect signs that a system may have been compromised: These signs may be the inability to access files or websites, the dramatic slowdown, the unexpected restart computer, the inability to restart a computer or the presence of unusual pop-ups.

Track account activity: Regularly monitor your account activity to detect suspicious transactions.

Examine your partners' details: You need to know which ones businesses you have constant communication. Carefully check their email addresses, names and phone numbers to make sure the sender is indeed one of these companies before you open an email.

What to do if your business has been attacked by an Account Takeover?

Should stop any activity immediately from systems which may be violated. The next step is to notify her immediately bank you for him account that has been violated. Change credentials immediately and if money has been stolen, contact authorities.

Source: Infosecurity Magazine


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortresshttps://www.secnews.gr
Pursue Your Dreams & Live!


Data breach at Bristol City Council

A data breach that took place in the Bristol City Council, resulted in the leak of information such as names and email addresses ...

E-Land-South Korea: Fell ransomware attack

One of the largest retailers in South Korea, E-Land, was forced to close almost half of its stores after a ransomware ...

Investigator breaks down a Tesla Model X in just minutes

A Belgian security researcher has discovered a method that hijacks the firmware of key fobs of the Tesla Model X, allowing him to ...

Arrest of fraudsters for a scam associated with the sale of an airplane!

U.S. police have arrested a man in connection with a multimillion-dollar scam involving the sale of an airplane to Australia. In 2018, research began after ...

Black Friday offers: Windows 10 completely FREE!

Black Friday offers: Windows 10 completely FREE! Black Friday is a huge promotional event created by big retailers ...

TikTok fixes bugs that allowed account breaches

TikTok has encountered two vulnerabilities that could allow intruders to take over accounts with a single click when connected together ...

Parliament Street: UK MPs receive millions of email attacks every month

UK MPs have been repeatedly targeted by hackers, with email attacks receiving a 60% increase from year to year ...

Louisiana hospitals have reported data breaches

Thousands of Louisiana patients have fallen victim to a cyber attack that has hit US medical facilities. LSU Health New Orleans published ...

Fake Minecraft modpacks bombard devices with ads

Hackers managed to bypass the protections of the Google Play Store and publish more than 20 fake modpacks for the popular game ...

Brazil Supreme Court: Recovers after ransomware attack

After suffering the most serious cyber attack ever orchestrated against a Brazilian public sector institution, the Supreme Electoral Court (STJ) ...