SYS-CON MEDIA Authors: Mat Mathews, PR.com Newswire, David Smith, Tim Crawford, Kevin Benedict

News Feed Item

Banking Websites Pose Easy Target for Malicious WIFI Hotspots

AACHEN, GERMANY and BOSTON, MA -- (Marketwired) -- 05/29/14 -- Recent studies in the Netherlands showed that consumers who are sending Internet banking transactions through a malicious WIFI hotspot could be easily manipulated if the SSL security is switched off during communication. For only $100 cyber criminals can buy a malicious WIFI router, which will give them access to any data sent through the hotspot in order to intercept passwords and to manipulate payment transactions.

Today every large city has hundreds of WIFI hotspots available, free to access and easy to use but it's very difficult or even impossible to identify whether a WIFI hotspot is malicious or not. To solve the problem of disabling the SSL security, most Dutch banks and web browsers are now supporting the new HTTP Strict Transport Security (HSTS) protocol to ensure that the communication security between the consumer and the bank is guaranteed. The problem however is that not all browsers, like the current Microsoft Internet Explorer version, are supporting the new web security standard.

The security leak is very serious according to SecureLabs, a Dutch security company that has tested the security of Dutch banking websites using a malicious WIFI hotspot. The risk heightens especially when using Microsoft IE or any other outdated Internet browser. As long as all online banking websites and browser vendors are not embracing the new security standard, the SSL web security can be easily bypassed with a cheap and easily assessable WIFI hotspot.

Several Dutch banks have now implemented fraud detection technology from INFORM GmbH to avoid this problem. With RiskShield, INFORM GmbH offers a real-time fraud detection solution that monitors transaction details and web anomalies to identify unusual behavior when payments are processed through hotspots.

"Most of the larger banks in the Netherlands are using RiskShield to protect them from fraudulent payments. With RiskShield we provide them the tools to respond quickly to the new modus operandi of cyber criminals. The new cyber threat is a good example of how critical it is for banks to be able to quickly react to new types of threats. It allows them to easily adapt the detection rules in a short timeframe and without any IT involvement. Banking websites are not the only targets. Any other online merchants like airlines or web shops are vulnerable to these cyber hacks," says Stanley Harmsen van der Vliet, Product Marketing Manager of INFORM GmbH.

For more information about RiskShield, please visit our website at www.riskshield.com or call us at +49 2408 9456 5000.

About INFORM GmbH

INFORM develops and markets software systems to optimize business processes on the basis of operations research and fuzzy logic. Using these two technologies, INFORM is able to develop software systems that "think" and can make intelligent decisions. The benefits for users are better on-time delivery performance, lower costs and a significant competitive advantage.

More than 1000 companies worldwide benefit from advanced optimization software systems by INFORM in industries such as transport logistics, airport resource management, production planning, financial crime risk management and insurance claims handling optimization. INFORM employs over 500 staff from more than 30 countries.

Contact RiskShield
INFORM GmbH
Caroline Lenkitsch
Risk & Fraud Division
Pascalstrasse 23, 52076 Aachen, Germany
Phone: +49 2408-9456-5000
E-Mail: Email Contact

Contact INFORM Communications
INFORM GmbH
Sabine Walter
Pascalstrasse 23, 52076 Aachen, Germany
Phone: +49 2408 9456-1233
E-Mail: Email Contact

US Media Relations Contact
Valerie Harding
Ripple Effect Communications
Phone: 617-429-8628
E-Mail: Email Contact

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.