• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer
  • Our Services
  • Contact Us
  • Newsletter
  • Top Nav Social Icons

FindBiometrics

FindBiometrics

Global Identity Management

  • Biometrics
    • What are Biometrics?
    • FAQ
    • Biometric Associations
    • Companies
    • Premier Partners
  • News
    • Featured Articles
    • Interviews
    • Thought Leadership
    • Podcasts
    • Webinars
    • Year in Review
  • Applications
    • Biometric Security
    • Border Control and Airport Biometrics
    • Consumer and Residential Biometrics
    • Financial Biometrics
    • Fingerprint & Biometric Locks
    • Healthcare Biometrics
    • Justice and Law Enforcement Biometrics
    • Logical Access Control Biometrics
    • Mobile Biometrics
    • Other Biometric Applications
    • Physical Access Control Biometrics
    • Biometric Time and Attendance
  • Solutions
    • Behavioral Biometrics
    • Biometric Sensors and Detectors
    • Facial Recognition
    • Biometric Fingerprint Readers
    • Hand Readers & Finger Scanners
    • Iris Recognition
    • Biometric Middleware and Software
    • Multimodal Biometrics
    • Physiological Biometrics
    • Smart Cards
    • Vein Recognition
    • Voice and Speech Recognition
  • Stocks
  • Events
  • Companies
  • Podcasts

BioCatch Highlights Limitations of Device ID Security

September 30, 2020

BioCatch has detailed some of the limitations of device ID in a new post on the company blog. In the post, the company acknowledges that device ID is a useful security tool when used in conjunction with other technologies, but nevertheless argues that it creates several blind spots that make it inadequate as an organization’s primary fraud prevention strategy.  

BioCatch Highlights Limitations of Device ID Security

As BioCatch explains it, device ID is a “what you have” form of authentication that links a device to an individual user based on factors like browser data and IP address. The system will then approve future authentication requests as long as those requests come from a trusted source.

While that information is useful, it does not provide any insight (or ongoing security) beyond the login window. As a result, cybercriminals are able to operate unimpeded if they are able to get past the device ID check, and that can now be accomplished in several different ways. For example, a fraudster can use social engineering to trick a customer to log in and transfer funds, and the interaction will appear to be legitimate because the user did in fact use their regular device to access their account.

By the same token, a hacker can use a Remote Access Tool (RAT) to take over someone’s computer and initiate a fraudulent transaction from that device without the owner’s knowledge or consent. Device ID can also be spoofed remotely with methods like proxy IP addresses and Man-in-the-Browser attacks.

Device ID similarly struggles with new account fraud, largely because a new user does not yet have any device history. A fraudster and a new customer will both appear to be using an unfamiliar device, so device ID cannot intervene without creating barriers for genuine users.

With that in mind, BioCatch pushes behavioral biometrics as a solution for both problems. The company’s technology can identify suspicious behavioral patterns during the registration process, and can then continue to monitor the account after the user has logged in. The solution is able to spot and stop multiple forms of fraud that would slip past device ID alone.

BioCatch recently made the CB Insights FinTech 250 list as one of the industry’s fastest-growing financial security providers.  

–

September 30, 2020 – by Eric Weiss

Related News

  • BioCatch Highlights the Fraud Risks of Trojans and Compromised EmailsBioCatch Highlights the Fraud Risks of Trojans and Compromised Emails
  • BioCatch Warns About COVID-19 Social Engineering AttacksBioCatch Warns About COVID-19 Social Engineering Attacks
  • BioCatch Offers Anti-Fraud Advice for Remote Work EnvironmentsBioCatch Offers Anti-Fraud Advice for Remote Work Environments
  • BioCatch: Behavioral Biometrics Stops More Complex Forms of FraudBioCatch: Behavioral Biometrics Stops More Complex Forms of Fraud
  • BioCatch Survey Finds Financial Institutions Worried About Account Takeover AttacksBioCatch Survey Finds Financial Institutions Worried About Account Takeover Attacks
  • BioCatch Pushes for Behavioral Biometrics on Mobile Banking ChannelsBioCatch Pushes for Behavioral Biometrics on Mobile Banking Channels

Filed Under: News Tagged With: anti-fraud, BioCatch, corporate blogs, device ID, device identification, digital security, RAT attacks, Remote Access Trojan, social engineering, social engineering attacks

Primary Sidebar

EXCLUSIVE MEMBERS ONLY CONTENT:

Become a FindBiometrics Member and gain easy access to specialty content, including the ID Tech column, replays of virtual events, and Identity School educational checklists:

ID Tech: America’s Most Murderous City Reverses Its Facial Recognition Ban [NEW]

ID TECH: What Role Will Biometrics Play in the Cyber Cold War? We’re About to Find Out

Identity School: Facial Recognition Cheat Sheet

Sponsored Links

TECH5 showcase logo

TECH5 is an international technology company founded by experts from the biometrics industry, which focuses on developing disruptive biometric and digital ID solutions through the application of AI and Machine Learning technologies.

TECH5 target markets include both Government and Private sectors with products powering Civil ID, Digital ID, as well as authentication solutions that deliver identity assurance for various use cases. 

Learn more: www.tech5.ai

Onfido logo

Onfido is building the new identity standard for the internet.Our AI-based technology assesses whether a user’s government-issued ID is genuine or fraudulent, and then compares it against their facial biometrics. That’s how we give companies like Revolut, Zipcar and Bitstamp the assurance they need to onboard customers remotely and securely. Our mission is to create a more open world, where identity is the key to access.. For more information, please visit www.onfido.com

ThreatMark brings trust to the digital world by providing cutting-edge fraud prevention solutions. Major banks use ThreatMark’s AI-powered technology and behavioral biometrics to build secured banking experience to precisely verify their legitimate users, seamlessly across all digital channels. All while securing the users’ most precious assets and keeping the fraudsters away. Learn more: www.threatmark.com/

With its secunet border gears product portfolio and specialised consulting expertise, secunet supports police forces and security authorities in their sovereign tasks. Whether ABC gates, self-service kiosks or biometric middleware – each component helps to strengthen identity protection and to accelerate verification – in mobile and stationary scenarios.

Mobile ID World Logo

Mobile ID World is here to bring you the latest in mobile authentication solutions and application providers. Our company is dedicated to providing users with the best content and cutting edge information on technology, news, and mobile solutions for your mobile identity management needs.

Recent Posts

  • NEXT Biometrics’ $2.2M India Deal Is Now ‘Irrevocable’
  • The FTC Wades into the Privacy Discourse: Biometrics News Digest
  • Liveness, Lawsuits, and TikTok: Biometrics News Digest
  • Eyeing EU Digital Wallet Opportunities, iProov Gets LoA High Certification
  • Authentication, Border Screening, Surveillance – Biometrics News Digest for August 10, 2022

Biometric Associations

IBIA and fido

Tweets

Footer

  • About Us
  • Company Directory
  • Advertise With Us
  • Contact Us
  • Privacy Policy
  • Terms of Use
  • Archives
  • CCPA: Do not sell my personal info.

Follow Us

Copyright © 2022 FindBiometrics