F5 has announced several security offerings to bridge the operations of security and anti-fraud teams that help customers block automated and human malicious activity, protect valuable user information, and stop fraud.
New solutions extend F5’s Shape Security SaaS and managed services portfolio to protect customers, applications, and APIs from account taking (ATO) while delivering better digital experiences at every point of touch.
Today, any organization that issues or accepts digital payments is an ATO target. Once an account is compromised, a fraudster can drain funds, purchase goods or services, or gain access to payment information for use on other sites, thereby alienating customers and reducing income. ATO often begins with credential stuffing, where previously compromised user credentials (such as username / password pairs) and Personally Identifiable Information (PII) are continually tried. automatically until the connection is successful.
Another common way for cybercriminals to sue ATO is to use client-side attacks that take over legitimate websites by installing digital skimming tools to steal login details, payment card details and credit card details. other personal information.
F5’s add-on solutions now offer the industry’s most comprehensive takeover protection on a single platform. Leading security and fraud prevention techniques eliminate automated and human attacks against many threat vectors. Organizations can better defend against bots targeting their web properties and those of third-party vendors with Aggregator Management, recognize legitimate users throughout the customer journey with Authentication Intelligence, and quickly gain insight into client-side digital skimming attacks with Client- Side Defense.
Coupled with the rapid removal of post-login fraud through Account Protection, F5 Shape provides an end-to-end approach that assesses intent, streamlines digital experiences, and stops ATO attempts that otherwise lead to fraud, loss of revenue and customer loyalty.
Disrupt the Cybercrime Economy by Neutralizing Account Takeover
Organizations regularly face a combination of sophisticated, robot-driven manual attacks that are constantly reorganized to deploy new evasive ATO techniques. For example, cybercriminals will often use multiple methods, ranging from bots to targeted manual fraud that can take advantage of trained human “click farms” to bypass anti-automation solutions. Security and fraud teams typically deploy an arsenal of siled tools in response, adding operational complexity and partial solutions that consumers find frustrating (like AMF).
To overcome evolving tactics, F5 Shape elegantly combines application security, bot management and fraud prevention with human experts and real-time machine learning analysis of network, behavioral and malicious activity to protect the whole user experience. Beyond an organization’s applications, Aggregator Management can also detect anomalies and limit access privileges related to the exponential growth of APIs for FinTech use cases such as open banking.
Build trust and optimize the user experience with transparent authentication
Loyal customers who frequently visit a website using the same set of devices to purchase their favorite products or pay their bills generally go through the same login and authentication steps as new customers. This includes tedious steps in selecting images such as traffic lights or crosswalks in a series of CAPTCHA challenges (which sophisticated robots can overcome anyway).
With the authentication intelligence of F5 Shape, organizations can now dramatically simplify return visits for trusted customers by eliminating unnecessary checkpoints, maximizing customer engagement while minimizing abandoned carts and dead ends. similar. Improving overall protections against criminals and bots tempting ATO, F5 Shape’s real-time verification blocks malicious requests and automated attacks without disrupting login, payment, or session extensions, prioritizing user experience more .
Strengthening defenses against larger areas of fraud attack
Security and fraud protection are increasingly intertwined in today’s threat landscape. At the same time, industries are continually expanding their services with applications, APIs, and tools that cut across multiple organizations (such as a retail site that connects to supply chain monitoring or financial account information) . This creates a scenario where valuable details can be compromised by a third party or even a web browser, resulting in a much larger attack surface for threats like ATO.
Like credit card skimming in the physical world, cybercriminals have developed attacks to take over legitimate websites and install digital skimming to steal credit card numbers, social security numbers, names , addresses and other personal information. With advanced solutions such as client-side defense, organizations can confidently deliver richer application experiences to users without giving up essential protections and visibility.
âFaster payments and growing digital activity are expanding the surface for sophisticated fraud and cyber attacks,â said Julie Conroy, Head of Risk Insights & Advisory at Aite-Novarica. âBusinesses increasingly recognize that these attacks, and the resulting financial losses, cannot be dealt with in silos. However, many still struggle with various organizational and technological blockages to achieve effective collaboration between security and enforcement teams. F5 can help address these challenges through innovations in data analytics, automation and machine learning, enabling collaboration between security and fraud teams to help disrupt financial crime, improve efficiency operational and improve the customer experience.
âF5 Shape completely mitigates the impact of harmful human and automated traffic to stop account takeover and a number of derived threats,â said Saurabh Bajaj, vice president of product management, F5 Shape. âDelivering solutions on a single platform encourages collaboration while freeing up fraud and SecOps teams to focus on other priorities and apply information to improve performance. With the ability to proactively detect anomalies and suspicious account behavior, F5 eliminates cybercrime in a variety of ways at every stage of the customer’s digital journey, providing the industry with a true end-to-end security, authentication and fraud solution. at the end.