Resources

Contact Us

Cyveillance Anti-Phishing - Malware™

The use of malware to commit fraud has significantly increased over the past year with no signs of slowing down. Malware offers the criminal unlimited options to lure unsuspecting victims into their fraud and ID theft scams. In a traditional phishing attack the phisher attempts to lure the user to a Web site typically through the clicking of a link in an email. After the user clicks on the link, he or she is taken to the Web site via a Web browser. Once there, the Web site requests the user to enter personal information such as a social security number, username and password, or a variety of other data. The compromised data is then used to perpetrate fraud.

Malware-based phishing attacks on the increase and far more dangerous

In a malware-based phishing attack all the user has to do is simply click on the link in the email. After the user clicks on the link he or she is taken to a Web site that downloads an executable malicious file usually without the user’s permission or knowledge. The file opens itself and begins to perform nefarious activity collecting personally identifiable information through keylogging, screen-scraping, downloading and more.

Traditional phishing attacks typically only provide a phisher with a single compromised credential or set of compromised credentials that are only valid for a set period of time. Malware-based attacks download malicious software that resides on a user’s computer and may go unnoticed for an extended period of time. This software steals sensitive information or allows a fraudster to gain unauthorized access to not only the user’s computer, but to any network resource the user has accessed.

The need for organizations to combat malware-based phishing

Cyveillance Anti-Phishing - Malware provides protection from both existing and emerging online threats. Like traditional phishing, malware-based phishing facilitates fraud by stealing and misusing an organization’s brand. Since malware-based phishing attacks are easily concealed yet far more dangerous, it is imperative that organizations have adequate protection against these more potent forms of attack.

The Solution

Cyveillance Anti-Phishing - Malware is a comprehensive, turnkey solution that enables organizations to prevent, detect, respond to and recover from phishing and fraud-related malware attacks. Using its proprietary Internet monitoring technology, proven processes and procedures, and industry-leading security operations team, Cyveillance identifies targeted fraud activity such as suspicious domain registrations, phishing lures, spoof sites, malware distribution points and the post-attack gathering and exchange of compromised credentials.

Comprehensive detection of malware-based phishing attacks

For each Web page we review a number of characteristics associated with phishing and malware. Our advanced technology uses a combination of heuristics, exploit detection, signature matching, and analyst review to provide the industry’s most comprehensive anti-phishing and anti-malware services.

Service Benefits

  • Minimization of fraud losses through industry’s fastest detection and takedown capabilities
  • Detection of technically advanced zero-day attacks
  • Turnkey service easily integrated into existing processes

Features

  • Real-time alerts of malware-based phishing attacks that target a customer’s brands
  • Real-time status updates via Cyveillance Intelligence Center Portal
  • URL-blocking of the attack’s Web address through Cyveillance partners’ networks
  • High-level analysis of the malware and url used in the attack
  • Detailed summary report for each incident
  • Access to subject matter expertise
  • Optional reporting to law enforcement agencies to help facilitate criminal investigations and prosecutions