Trusted Transactions | Entersekt Blog

Trusted Transactions | Entersekt Blog

SS7 attack gives pause for thought

Posted by Stephen Drake, Senior Systems Developer - Entersekt

Jul 6, 2017 8:00:00 AM

A recent malicious attack on customers of O2-Telefonica in Germany saw several bank accounts drained. This may just be the clarion call for telcos to address a flaw in Signaling System 7 (SS7) that has been raising red flags for years.

SS7 is an international telecommunications standard that defines how elements in a public switched telephone network (PSTN) exchange information. It is what allows us to receive an SMS text message whether we are at home or roaming in Europe. It is what enables carrier interoperability, and as such is the backbone of global communication.

Read More

Topics: SMS OTP/ mTAN, Interoperability, Privacy

Why would you need MFA for healthcare?

Posted by Jolette Roodt, Writer/Analyst, Entersekt

Feb 21, 2017 10:00:00 AM

Are reports of breaches at health providers sending your blood pressure skyward? Straightforward, effective authentication is just what the doctor ordered!

We tend to associate authentication with the obvious things we want to protect, like the money in our bank accounts. Increasingly, consumers are also becoming aware of the inherent value of their personal email, social media interactions, and other account information – monetized as it now is on the black market. Few of them are yet aware of why the healthcare industry needs multi-factor authentication too. Where would you use it, and how would it work?

 

Read More

Topics: Data breaches, Privacy, Insurance, Healthcare

GDPR? PSD2? Four-letter headaches in need of specialist attention

Posted by Niel Bester, SVP Products, Entersekt

Feb 9, 2017 10:00:00 AM

Time is running out for companies to comply with the European Union’s Revised Payment Services Directive (PSD2), which takes effect in January 2018, and General Data Protection Regulations (GDPR), which kick in in May 2018. The trouble is that these two sets of guidelines are not only strict on their own, but in some respects even seem to work against each other. How are financial institutions to approach this conundrum?

 

Read More

Topics: Regulatory guidance, Privacy

Will a cashless society be the future?

Posted by Claudius van der Meulen, VP business development / director Europe, Entersekt

Jun 9, 2016 2:39:59 PM

Sweden has often been quick to use new technologies to power cultural and social development. Spotify, founded in Sweden in 2006, embraced streaming technology as a business model and is considered to be one of the world leaders in music distribution today. In the gaming world, a Swedish company named King developed the immensely popular Candy Crush app. It has since become a global leader in social gaming.

It goes without saying that innovative virtual services such as streaming music or gaming rely on accessible, convenient electronic payment systems. Perhaps that is why Swedish banks and other service providers have been so innovative in exploring cutting-edge payment alternatives.

Read More

Topics: Card-not-present authentication, Cards, Privacy

Fingerprints and the gap between identity and authentication in digital banking

Posted by Christiaan Brand, chief technology officer, Entersekt

Jul 23, 2015 10:30:00 AM

FingerprintsIdentity, security, privacy

Apple’s TouchID has taken the world by storm and, with official fingerprint biometric support now also coming to Android M, it looks like username and password prompts on mobile applications will soon go the way of the VCR and the gramophone player.

Still, unlike usernames and passwords, which we can change at will, we only have one set of biometric prints. If our biometrics fall into the hands of hackers, they become useless to us, forever. The consensus amongst industry experts such as the FIDO Alliance and Apple is that we must limit exposure to our private biometric data by not sharing it, keeping it instead locked down on our personal devices. In other words, that record of your fingerprint used to unlock your iPhone should never leave your device. Not even Apple has access to it.

Read More

Topics: Biometrics, Public-key cryptography, Apple, Privacy

About Trusted Transactions

Trusted Transactions is Entersekt's blog devoted to keeping our customers, prospects and friends updated with industry news, security threats and technology advances in consumer authentication. We can protect against online banking fraud and account takeovers. Trusted Transactions brings you industry data and insights to help safeguard your online and mobile banking and payments transactions. 

Subscribe to Entersekt's Blog

 

Download white paper: The importance of transaction  signing to banks  

 

Follow Entersekt