The amount of phishing-attacks grows fast notwithstanding security developing companies efforts to low it. RSASECURITY issues monthly phishing-attacks reports which can be available at company official website . The serious issue is that victims hide the statistics as the fact of successful phishing-attack is just a serious threat for the company reputation.

The classic phishing-attack looks as follows. Let’s assume that the fraudster decided to capture confidential data that gives usage of the account management zone on X bank website. Fraudster must entice a prey to a false website that represents a copy of X bank site. 먹튀사이트 It is performed in order to make victim enter his/her private data thinking that he/she is really using real bank website. As a result fraudster gets full usage of victim’s account management.

Protecting yourself from phishing attacks is a hard task that will require combined approach. It’s often necessary to reexamine the existent client work scheme and complicate the authorization process. As a result client is put through additional inconvenience and company spends a fortune to guard itself. That is why companies usually don’t follow this way. Reliable, widespread and cheap verification that is user friendly is the key factor in phishing-attacks prevention. The top verification that actually protects from phishing attacks is automated telephone verification.

There’s a few Service Providers such as for example offering inexpensive, simple in integration and at once effective solution – verification via telephone. Verification is processed instantly without the necessity for an operator.

Let’s examine what can happen if telephone verification was utilized in the phishing attack described above. A single step must be added to the authorization procedure at bank’s website: phone call to previously stored customer’s phone number.

When customer enters correct login and password information, bank sends a request with customer’s telephone number and a randomly selected code to Service Provider. Service Provider makes a phone to user’s telephone number, dictates the code passed by the bank to the consumer and then hangs up. User then enters provided code in corresponding field and proceeds to restricted access area.

For the calls’ processing Service Providers use VoIP technology which allows to help keep the expense of an individual verification call low. In case call’s cost to specific destinations will undoubtedly be regarded as too high phone verification service can be utilized selectively e.g. a verification call can be initiated only in case of account operations. Phishing will no longer succeed for such site being an additional security measure is employed – automated telephone verification