Slide background

The Entersekt blog.

Industry news, security threats, and technology advances in consumer authentication
Five things you’ve been reading on the Entersekt blog posts

Five things you’ve been reading on the Entersekt blog posts


As we approach the end of the year, we looked back to see which of our blogs our readers enjoyed the most. From digital wealth management security, to inspiring customer trust, to friendly friction (yes, there is such a thing), and even evolution, the vast array of topics covered by our contributors surprised even us.

Read More ...

Snippet: Barely a day goes by without news of a high-profile security breach or announcement of a major security flaw affecting the Internet. Consumers have never felt more unsafe using digital channels to transact than they do now, but their use continues to grow nonetheless.

Barely a day goes by without news of a high-profile security breach or announcement of a major security flaw affecting the Internet. Consumers have never felt more unsafe using digital channels to transact than they do now, but their use continues to grow nonetheless.

Snippet: The king of financial malware, Zeus, has many variants and one particular variant, the Citadel trojan, continues to pose a significant global threat, despite the rumors of its withdrawal from the crimeware market.

The king of financial malware, Zeus, has many variants and one particular variant, the Citadel trojan, continues to pose a significant global threat, despite the rumors of its withdrawal from the crimeware market.

Snippet: Zeus-in-the-mobile, or “Zitmo”, is the first program specifically designed to steal mobile transaction authentication numbers (mTANs) without mobile users noticing. The mTAN is an SMS-based form of one-time password (OTP) widely used by financial institutions for online transaction authentication.

Zeus-in-the-mobile, or “Zitmo”, is the first program specifically designed to steal mobile transaction authentication numbers (mTANs) without mobile users noticing. The mTAN is an SMS-based form of one-time password (OTP) widely used by financial institutions for online transaction authentication.

Snippet: While we have established that 3-D Secure has proven beneficial to the industry by reducing fraud, lowering issuers’ operational costs and increasing card usage and retention, adoption of the standard is still being met with resistance from skeptics within the industry.

While we have established that 3-D Secure has proven beneficial to the industry by reducing fraud, lowering issuers’ operational costs and increasing card usage and retention, adoption of the standard is still being met with resistance from skeptics within the industry.

Snippet: The introduction of chip and PIN cards has significantly reduced cloning as a source of card fraud, particularly in Europe, but fraudsters, never idle for long, have switched their focus to a softer target – card-not-present online purchases.

The introduction of chip and PIN cards has significantly reduced cloning as a source of card fraud, particularly in Europe, but fraudsters, never idle for long, have switched their focus to a softer target – card-not-present online purchases.

Snippet: I received a phishing email last night. Since Entersekt is in the business of protecting banking customers from online fraud, I like to check out these phishing sites to see their latest tricks. This one was a good copy; it even had that standard “Secured by XYZ” logo included, indicating the certificate authority (CA) supposedly used to secure the site.

I received a phishing email last night. Since Entersekt is in the business of protecting banking customers from online fraud, I like to check out these phishing sites to see their latest tricks. This one was a good copy; it even had that standard “Secured by XYZ” logo included, indicating the certificate authority (CA) supposedly used to secure the site.

Snippet: While technology continues to evolve to help combat fraud, so do the strategies of savvy fraudsters. Protecting customer accounts, both consumer and business, has been a top priority for financial institutions everywhere for some time, but even more so now with the increased use of Internet and mobile banking channels.

While technology continues to evolve to help combat fraud, so do the strategies of savvy fraudsters. Protecting customer accounts, both consumer and business, has been a top priority for financial institutions everywhere for some time, but even more so now with the increased use of Internet and mobile banking channels.

Snippet: Whether they’re house burglars or cyber criminals, crooks tend to go for the easiest target, the proverbial lowest hanging fruit. With card-present fraud a greater challenge since the advent of EMV, fraudsters have retooled and set their sights on the tantalizingly low fruit of the digital world – card-not-present payments in particular.

Whether they’re house burglars or cyber criminals, crooks tend to go for the easiest target, the proverbial lowest hanging fruit. With card-present fraud a greater challenge since the advent of EMV, fraudsters have retooled and set their sights on the tantalizingly low fruit of the digital world – card-not-present payments in particular.

Snippet: Protecting customer accounts, both consumer and business, is a top priority for financial institutions everywhere, especially in light of the growing security risks with online and mobile banking.

Protecting customer accounts, both consumer and business, is a top priority for financial institutions everywhere, especially in light of the growing security risks with online and mobile banking.

Snippet: An SSL vulnerability! Again. Of all the things that can go wrong with secure communications on the Internet, a bug inside one of the most widespread SSL libraries, OpenSSL, is definitely one of the worst. Officially referenced as CVE-2014-0160, the bug is aptly nicknamed “Heartbleed,” since it was discovered inside an OpenSSL heartbeat feature.

An SSL vulnerability! Again. Of all the things that can go wrong with secure communications on the Internet, a bug inside one of the most widespread SSL libraries, OpenSSL, is definitely one of the worst. Officially referenced as CVE-2014-0160, the bug is aptly nicknamed “Heartbleed,” since it was discovered inside an OpenSSL heartbeat feature.

Entersekt Logo

Entersekt is an innovator of customer-centric fintech solutions. Financial services providers and other enterprises rely on our patented mobile identity system to provide both security and the best in convenient new digital experiences to their customers, irrespective of the service channel. With us, they can concentrate on their innovation roadmap, while delivering intuitive, low-friction digital experiences to their customers.