Anti-Phishing Services
Phishing attacks have risen dramatically in the last year and have significantly undermined trust in online commerce. Secure Identity Systems provides the best anti-phishing detection and takedown service available in the market, and is currently being used by companies such as ING and the IRS. Our services monitor 24/7, on a global basis, each of the financial institutions respective identities such as the Internet banking site, the holding company and all banks within the holding company as well as the mortgage unit, brokerage unit, insurance subsidiary and any other online service. The datasets are unique to Secure Identity Systems and represent the most comprehensive of their type in the IT industry.
Currently, Secure Identity Systems detects and blocks over 100,000 fake websites a month, a three-fold increase from the previous year. Early detection and effective action against phishing attacks not only protects users, but also deters scammers from mounting future attacks. In most cases, fraudulent sites are taken down within 4 hours.
Secure Identity Systems can:
This helps prevent phishing attacks, identity theft, fraudulent association, trademark violations and more.
Phishing Detection Service
Secure Identity Systems has host and domain names for over 142 million sites, as well as monthly updated home page content for approximately 35 million sites and 0.5 million SSL certificates. Using this data, Secure Identity Systems can search for the occurrence of the financial institution’s domains, trademarks and commonly used phrases. Having the data on disk allows Secure Identity Systems to perform regular expression searching, something that cannot be done with current Internet search engines.
In addition to detection methods, Secure Identity Systems can also provide financial institution account holders with anti-phishing toolbar technology, and access to a network of phishing feed clients who assist in countering difficult or fast-moving phishing activity with their filtering/blocking/take-down services and technologies. The end result is a service which makes authentic looking phishing sites difficult to create without early detection, and blocking strategies for sites which evade detection or are difficult to take down.
Take-Down Service
Once a financial institution has been alerted to the fact that it is the subject of a phishing attack, the race is on to close the target phishing site as quickly as possible. However, professional fraudsters will take steps to ensure that the process is as difficult and time consuming as possible, often hosting their sites in developing countries with limited law enforcement resources and incentivize the hosting company to keep the site running as long as it possibly can. Secure Identity Systems’ countermeasures service helps banks and other financial institutions to combat these techniques. Once a phishing site has been detected, Secure Identity Systems responds with a set of actions which will significantly limit access to the site immediately, and will ultimately cause the fraudulent content to be eliminated. Secure Identity Systems’ approach is distinguished from other providers of take-down services through its ability to block access to the site for users of a wide range of technology immediately, and to provide information back to the financial institution that will identify compromised accounts.
Secure Identity Systems will identify, contact and liaise with the company responsible for hosting fraudulent content. If the hosting company is reputable, this may be sufficient to ensure a prompt end to the fraudulent activity. Importantly, where an attack uses similar domain names, form handlers and e-mail accounts for gathering data, Secure Identity Systems will also attempt to suspend those services to deter quick repeat attacks. Some hosting companies offer fraud hosting as a service whereby they are incentivized to keep the site up as long as possible, and this necessitates more extensive action.