RSA, The Security Division of EMC, has unveiled Man-in-the-Browser offerings, a portfolio of anti-fraud services designed to give businesses and their customers defense against means of theft of online information, identities and financial assets.
The company claims that the new offering helps organisations to fight against Man-in-the-Browser (MITB) attacks that lead to trojan and malware infection within enterprises and personal computing environments.
RSA said that the new new Man-in-the-Browser offering leverages the technologies and services of its Identity Protection and Verification Suite and includes newly enhanced transaction monitoring as well as risk-based authentication.
According to RSA, the new offerings provide transaction-level fraud monitoring and protection for participating financial institutions; invisible analysis of user behaviour; phone authentication; and new features that include advanced detection of trojans and HTML injections as well as analysis of mule accounts and user vulnerabilities.
The new offerings also include adaptive authentication for risk-based authentication based on identification and analysis of potentially risky behaviour by online users; FraudAction Solution for detection, monitoring, blocking and shut down of phishing and trojan attacks; CyberCrime Intelligence Service to help identify corporate resources, user devices and data compromised by malware, the company said.
The company said that the CyberCrime Intelligence Service provides access to real-time fraud data via the RSA eFraudNetwork collaborative community of financial services and other organisations.
Christopher Young, senior vice president for products, technologies and markets at RSA, said: In particular, Man-in-the-Browser attacks have presented a significant online threat that defies geographic boundaries and discriminates against no one person or entity.
“Organisations need to approach this problem with a multi-layered defense strategy reinforcing security measures at login that in isolation can be thwarted. This includes the ability to detect, monitor, shut down and cull intelligence based on transactions, malware and online attacks.
