Cybercriminals Increasingly Harnessing Stolen Identity Data to Launch Global Attacks
A new report by LexisNexis® Risk Solutions, Cybercrime Report covering July 2019 through December 2019, reveals how fraud has increasingly become borderless on a global scale. As the report analysis shows, cybercrime is a well-organized, global endeavor powered by networks of fraud. While consumers enjoy access to goods and services from all over the world, fraudsters are able to harness stolen identity data to launch corresponding cross-border fraud attacks, says the report.
This global, networked pattern of cybercrime is further reflected in mobile attack rate growth, which is heavily influenced by a global bot attack targeting mobile app registrations, adds the company. Fraudsters are migrating attacks to exploit the mobile channel: Of the 19 billion transactions recorded by the LexisNexis® in this six month period, for the first time, mobile attacks outpaced desktop attacks, with a 56 percent growth in the mobile attack rate year-over-year.
Key findings from the LexisNexis Risk Solutions Cybercrime Report:
- Global Networked Fraud – The threat of networked cybercrime grows daily. Fraudsters are working in hyperconnected, global networks, targeting businesses across country borders and industries. In just one month, 73,000 devices associated with a fraudulent event at one organization were later recorded at another organization within the Digital Identity Network®.
All of the fraud networks identified in the recorded period involved organizations from more than one region and more than one industry. This confirms the global nature of networked fraud and illustrates how cybercriminals launder the proceeds of their crimes throughout the digital economy for maximum financial gain.
- Globally Connected Bot Attacks Target New Account Creations – Over the period examined, bot volumes saw strong growth from key regions, as fraudsters use automation to maximize success. Bot volumes can be very volatile given that one bot attack can represent millions of individual attacks. Analyzing regional growth provides an alternative view of attack growth targeting specific industries and regions.
The Digital Identity Network recorded strong growth in bot attacks from Canada, Germany, France, India and Brazil. Furthering the notion of fraud without borders, bots from Canada, France and Germany all targeted the same group of organizations, which were mainly in financial services and media.
- Growing Mobile Attack Rate – While attack rates targeting desktop transactions (2.7 percent) and mobile transactions (2.5 percent) are almost identical, the mobile attack rate grew 56 percent while the desktop attack rate fell 23 percent, confirming the growing shift toward mobile fraud.
Within the mobile space, there are also nuanced differences between browser and app attacks. Mobile browser transactions are attacked at a higher rate – 4.2 percent compared with 1.9 percent for apps – but mobile app transactions realized a greater growth in attack rate, up 171 percent compared with a steadier growth rate of 14 percent for browsers.
Sharing information about known fraudsters across industries and geographies is more important than ever, says the report.
“The ability to harness intelligence related to devices, location, identity and behavior to combat fraud is critical, given the globally connected fraud that permeates the global digital economy," said Rebekah Moody, director of fraud and identity at LexisNexis Risk Solutions. “Today, fraudsters are able to attack with unprecedented ease and speed and it is not enough for businesses to focus their fraud mitigation efforts on individual attacks. To mitigate the hyperconnected nature of global cybercrime, businesses need access to a shared view of risk that can operate across channels, across industries and across country borders.
“The layering of next generation fraud defenses creates the opportunity to slow the onslaught of cybercrime,” continued Moody. “Now more than ever, it is necessary for businesses to implement these advanced global solutions that can truly prevent the evolving nature of fraud.”
Download a copy of the LexisNexis Risk Solutions Cybercrime Report, July through December 2019 here.