Fraud & Risk

Beyond Two-factor Authentication -- How They Already Broke 3DS

Aleksander Kijek -- Nethone

Presentation

Two-factor authentication adds a second authentication level or factor when a user logs into an account, such as sending a one-time use verification code in an SMS message to a person's mobile phone. In this presentation, Nethone notes examples of tools which may be used to bypass two-factor authentication, then shows how phishing exploits can be used to collect victims' data. A scenario is then shared in which "smishing" -- phishing conducted through SMS -- is used by a fraudster to access a legitimate customer's bank account.

Note that this presentation is also available as a webinar. To view the webinar, click here.

Beyond Two-factor Authentication -- How They Already Broke 3DS

Download Now