Entrust, Industry Leaders Address Man-in-the-Browser Malware at Bank Security Forum
DALLAS, May 26 /PRNewswire/ — As man-in-the-browser malware attacks threaten online-banking for consumer, business and corporate environments, industry experts continue to push the innovation of dedicated security solutions. On Tuesday, Entrust, Inc. hosted a forum in New York City that brought together expert analysts and decision-makers from top banks, brokerage firms and federal agencies.
The event featured Gartner vice president Avivah Litan, as well as Entrust vice president Bob VanKirk and senior product manager Mike Byrnes, who outlined the advanced nature of today’s real-world threats and explored specific methods proven to defeat man-in-the-browser attacks.
“The key to thwarting man-in-the-browser – and all forms of online fraud – is the continued innovation and industry collaboration to quickly detect and defend against evolving threats,” said Entrust President and CEO Bill Conner. “Financial institutions being targeted by man-in-the-browser malware are advised to layer strong authentication, fraud detection and out-of-band transaction verification solutions. This forum enabled experts to disseminate these strategies and engage in one-on-one dialogues with participants to understand real-world concerns and experiences with malware.”
As a trusted security expert, Entrust continues to lead the industry with a highly effective solution that is supported by sustained innovation – a formula that places Entrust ahead of man-in-the-browser and other advanced online fraud threats. Entrust offers advanced fraud detection that monitors both Web analytics and user-behavioral profiling to provide financial organizations with one of the most comprehensive fraud detection capabilities.
Layered with fraud detection, Entrust provides one of the most versatile authentication platforms on the market today – further proven by the recently announced Entrust IdentityGuard Mobile out-of-band transaction verification solution.
“Attacks continue to morph and are unpredictable,” said Litan in a March 2010 case study. “The best approach is a layered security method that uses rule-based and predictive fraud models, risk-appropriate authentication and transaction verification.”(1)
Unveiled in April, the Entrust IdentityGuard Mobile smartphone application enables out-of-band transaction verification, OATH-compliant signatures and even a method to immediately report suspicious account behavior. The new mobile authenticator is currently scheduled to be available in summer 2010 as part of the release of Entrust IdentityGuard 9.3, a strong authentication solution that provides one of the widest ranges of authenticators available on single platform.
Entrust enables organizations to layer security – according to access requirements or the risk of a given transaction – across diverse users and applications. Entrust’s authentication capabilities include username and password, IP-geolocation, device, questions and answers, out-of-band one-time passcode (delivered via voice, SMS or e-mail), grid and eGrid cards, digital certificates (in software or on smart cards/USB Tokens) and a range of one-time-passcode tokens, including Entrust IdentityGuard Mobile.
Want to know more about how Entrust helps defeat man-in-the-browser malware? Visit entrust.com/MITB for detailed solutions, features and resources.
Entrust provides identity-based security solutions that empower enterprises, consumers, citizens and Web sites in more than 4,000 organizations spanning 60 countries. Entrust’s identity-based approach offers the right balance between affordability, expertise and service. For strong authentication, fraud detection, digital certificates, SSL and PKI, call 888-690-2424, e-mail email@example.com or visit www.entrust.com.
(1) “Case Study: Bank Defeats Attempted Zeus Malware Raids of Business Accounts,” Avivah Litan, Gartner, Inc., March 24, 2010.
Entrust is a registered trademark of Entrust, Inc. in the United States and certain other countries. In Canada, Entrust is a registered trademark of Entrust Limited. All Entrust product names are trademarks or registered trademarks of Entrust, Inc. or Entrust Limited. All other company and product names are trademarks or registered trademarks of their respective owners.
SOURCE Entrust, Inc.