Mitigating Man-in-the-Middle and Trojan Attacks: Best Practices for Combating Emerging Threats With Layered Security

As financial institutions across the globe continue to deploy strong, multi-factor authentication, fraudsters are simultaneously developing more sophisticated ways to launch attacks and to circumvent established security measures such as One-Time Password (OTP) authentication. Man-in-the-middle, Trojans and other malicious software ("Malware") attacks are the emerging means that fraudsters are using to target financial institutions and their customers. Man-in-the-middle and malware attacks are happening today and are emerging as the latest practical and "In the wild" threats. The number of attacks has been increasing steadily as the level of difficulty and cost of execution for fraudsters has been lowered. Statistics released by a number of sources are alarming and support the reality that the threat is not going away.