Online Crime – No End in Sight

Identity theft and fraud are major threats to consumers as the number of
victims and the extent of their financial losses increases
year after year.

The Invisible Criminal

With millions of people banking, shopping, and conducting other financial transactions online each day, criminals have turned their attention to stealing consumers' online identities and, ultimately, stealing their money. Consider these frightening statistics:

  • Per person losses from online theft topped $6,000 in 2006, requiring an average of 600 hours to rectify. (Source: Identity Theft Resource Center)
  • Once every four seconds a phony charge is made to an American's credit card. (Source: MSNBC)
  • “The number of bank Trojans and password-stealing crime-ware incidents increased by 186% between fourth quarter of 2008 to the present.” (Source: Anti-phishing Work Group Study published October 2009)
  • Banks have experienced a 325% increase in phishing attacks, and credit unions have experienced a 584% increase in phishing attacks during the past 12 months. (Source: Cyveillance)
  • Financial loss reimbursements from banks to consumers has dropped from 82% to 54% during the past two years. (Source: Gartner)

According to a report by Gartner, a leading research firm, approximately 15 million Americans were victims of some form of identity theft-related fraud in the 12 months ending in mid-2006, representing more than a 50 percent increase since 2003.

ID Vault – Online Protection Against Multiple Threats

Bank Trojans – ID Vault ensures that users log in to legitimate web site, establish an SSL connection with the Web site and are protected from browser-based threats by ID Vault SecureView, a hardened browser.

Phishing – ID Vault checks each time users submit stored credentials to a Web site. If the Web site is not on the white list, a warning is displayed which asks the user to confirm that the Web site is safe before proceeding.

Pharming – ID Vault uses a white list of over 8,000 financial sites that is continuously validated and updated to ensure that users are taken to legitimate, verified websites and that an SSL connection is established. This prevents users from falling prey to DNS poisoning or malware that covertly redirects the user to a fraudulent Web site.

Dictionary attacks – the ID Vault remote authentication service prevents dictionary attacks because it shuts down after four unsuccessful attempts at unlocking a user’s ID Vault.

Browser-based attacks – ID Vault SecureView, a hardened browser, locks itself down to protect consumers against malicious browser plug-ins and add ons. SecureView is a single-session browser used only for logging into financial sites.