• IT Services

    Managed IT Services

    • Managed IT Service Desk
    • Managed IT Infrastructure
    • Managed IT Monitoring
    • Managed Backup
    • Mobile Device Management

    Cloud Services

    • Private Cloud
    • Cloud Migration
    • Cloud Backup
    • Office 365 for Business
    • Job Management System

    IT Services

    • IT Projects
    • Business Phone System
    • IT Planning
    • IT Systems Health Check
    • Education Solutions

  • Software Services

    Technology

    • Dynamics 365
    • SharePoint
    • Office 365
    • Power BI

    Services

    • Business Consulting
    • Software Development
    • Strategic Architecture
    • Intranet Development
    • Data Migration
    • Business Analytics & Data Visualisation

    Solutions

    • Solutions by Industry
    • Solutions by Business Need
    • Solutions by Technology

  • About

    • About us
    • Our Clients
    • Testimonials
    • Success Stories
    • Our Partners
    • Blog
    • Resource Centre

  • Contact Us

FOLLOW US

Sales:
1300 797 888


Support:
1300 797 838

Empower IT Solutions

Google Rating
5.0
Based on 32 reviews
Empower IT Solutions
Empower IT Solutions
5.0
Raji Fernando
Raji Fernando
11:28 25 Feb 19
In terms of Microsoft Dynamics 365 CRM, they have a team with excellent system analysis & implementation services and friendly & expert support services.
Raji Fernando
Raji Fernando
11:28 25 Feb 19
In terms of Microsoft Dynamics 365 CRM, they have a team with excellent system analysis & implementation services and friendly & expert support services.
Lindsay Hay
Lindsay Hay
02:57 20 Feb 19
From the early days, Fayez and the development team quickly gained a thorough grasp of our business and IT requirements as we developed our infield systems. Importantly, they are always willing and supportive as we continue enhancing and expanding our systems. Mahmoud and his friendly support team also have a great understanding of our systems and the devices our field operatives use. This means when our field team need them the most, we receive quick and creative solutions to our problems.
Lindsay Hay
Lindsay Hay
02:57 20 Feb 19
From the early days, Fayez and the development team quickly gained a thorough grasp of our business and IT requirements as we developed our infield systems. Importantly, they are always willing and supportive as we continue enhancing and expanding our systems. Mahmoud and his friendly support team also have a great understanding of our systems and the devices our field operatives use. This means when our field team need them the most, we receive quick and creative solutions to our problems.
Talis Civil
Talis Civil
22:40 18 Feb 19
Exceptional service! From the very first meeting with Salim we knew that Empower had listened and understood exactly what our business IT needs were. The team led by Mahmoud are friendly, knowledgeable and efficient. I couldn't recommend them highly enough.
Elizabeth Kover
Elizabeth Kover
05:21 15 Feb 19
In the 10 years or so I worked with EmpowerIT they were always very knowledgeable and helpful with any issues that we needed solving. I highly recommend them to anyone who needs good IT services.
Taneem Mannan
Taneem Mannan
03:30 14 Feb 19
When it comes to uncompromising quality and commitment, Empower IT is one of my preferred partners in the IT and Software solution domain. They listen to your needs and also assist in securing your business against the unseen. Recommended for businesses who want to be more successful.
Taneem Mannan
Taneem Mannan
03:30 14 Feb 19
When it comes to uncompromising quality and commitment, Empower IT is one of my preferred partners in the IT and Software solution domain. They listen to your needs and also assist in securing your business against the unseen. Recommended for businesses who want to be more successful.
Raby Elmassri
Raby Elmassri
00:27 14 Feb 19
The quality of service and level of professionalism from Salim and the team at Empower IT is remarkable and I really appreciate the insights and regular updates they provide on what is happening in the IT world, particularly on cyber security threats and technology trends.
See all reviewsWrite a review
powered by Google

Search

Search
Call us 1300 797 838
EmpowerIT logo
  • IT Services

    Managed IT Services

    • Managed IT Service Desk
    • Managed IT Infrastructure
    • Managed IT Monitoring
    • Managed Backup
    • Mobile Device Management

    Cloud Services

    • Private Cloud
    • Cloud Migration
    • Cloud Backup
    • Office 365 for Business
    • Job Management System

    IT Services

    • IT Projects
    • Business Phone System
    • IT Planning
    • IT Systems Health Check
    • Education Solutions
  • Software Services

    Technology

    • Dynamics 365
    • SharePoint
    • Office 365
    • Power BI

    Services

    • Business Consulting
    • Software Development
    • Strategic Architecture
    • Intranet Development
    • Data Migration
    • Business Analytics & Data Visualisation

    Solutions

    • Solutions by Industry
    • Solutions by Business Need
    • Solutions by Technology
  • About Us
    • About us
    • Our Clients
    • Testimonials
    • Success Stories
    • Our Partners
    • Blog
    • Resource Centre
  • Support

    NSW & ACT Support
    Phone: (02) 8030 8900
    VIC & TAS Support
    Phone: (03) 9012 9620

    QLD Support
    Phone: (07) 3056 2640
    WA, SA & NT Support
    Phone: (08) 6488 0000

    TeamViewer for Windows TeamViewer for Mac Client Portal

  • Contact

  • Empower blog

    How to detect and prevent account takeover fraud

    Contact us

Share:

How to detect and prevent account takeover fraud

April 15, 2019 | Ally Roos | Blog,Security

account takeover fraud blog

More people are living their lives online, and at the centre of it all is email. Today, a person’s email account is connected to a host of third-party services and contain archives of messages required for work.   

However, such accounts can be compromised by hackers who may then commit identity fraud in their victims’ names. This form of attack is known as account takeover (ATO) fraud, and it can do serious damage if you’re not aware of how it works.  

What is ATO fraud?

ATO fraud occurs when a hacker gains access to a target’s account by stealing usernames and passwords. These login credentials are often obtained through three tactics:

  • Online scams – Hackers dupe victims into giving away personal information, usually by sending emails purporting to be from a legitimate person or company  
  • Malware – Malicious programs like spyware and keyloggers are specifically designed to track user activity and steal passwords
  • Brute-force – Would-be criminals use either trial-and-error or a program to guess passwords

Once inside, the hacker can use the account to meet nefarious ends. They may change passwords to lock you out of your account, steal financial information, scam your email contacts, and more. It differs from identity theft, whereby fraudsters steal their victims’ information to create new accounts.

Hijacking email accounts also gives hackers access to apps and sites your email is tied to. This means they’ll be able to tamper with business documents, post in your social media, and make unauthorised wire transfers. In most cases, however, they’ll sell sensitive information on the dark web to turn a profit.

To avoid raising suspicion, cybercriminals carry out small, less noticeable crimes over time. They’ll even disable app and email notifications to hide their activities, allowing ATO scams to go undetected for several weeks, sometimes months. By the time victims notice an ATO attack, extensive damage may have already been dealt to their finances and reputation.   

Is there a way to detect ATO fraud?

Although fraudsters often employ several tactics to cover up their tracks, there are a few things you can do to detect ATO.

For starters, find out whether access privileges to certain apps and notification settings were modified. Then, inspect account activity logs for any unusual devices and IP addresses that access your account. If there’s an item you don’t recognise, make sure to sign out of all web sessions and change your password as soon as possible. You should also check your financial statements for any fraudulent transactions.

Another way to confirm an ATO attack is to use security systems with Geo tracking, account and network monitoring, and user behavioural analysis. These will detect identity theft and suspicious activities tied to your accounts, and recommend the best way to mitigate the risks.

If you are a victim of an ATO attack, you must do the following:

  • Reset login credentials (preferably with a longer ‘passphrases’ that contain a combination of letters, numbers, and symbols)
  • Reverse fraudulent transactions and changes made in your name
  • Track your identity information on the dark web to prevent identity theft
  • Notify contacts and anyone who may be affected by your compromised account
  • Alert authorities and government agencies about the breach (i.e., the Office of the Australian Information Commissioner)  

How can you prevent ATO?

Setting up preventative security measures can save you thousands of dollars and countless hours recovering from ATO. Here’s what you need to do:

  • Manage access privileges – By restricting account access from other devices and networks, hackers won’t be able to infiltrate your accounts through unauthorised locations
  • Limit login attempts – Email systems allow you to set account lockout policies that prevent hackers from guessing your password through trial and error
  • Enable multifactor authentication – Adding another layer of protection over passwords such as temporary SMS access codes or an authenticator app ensures that only you have access to your accounts
  • Use threat prevention systems – These block potentially malicious programs and other activities that could indicate a cyberattack
  • Train your staff – It’s vital to have a workforce that’s constantly aware of online scams and adheres to password best practices

There’s a lot to consider when creating a robust ATO fraud detection and prevention strategy, but implementing it won’t be a problem if you have the right tools and guidance. Empower IT offers comprehensive cybersecurity solutions and training services that can be customised to your needs. Call us today to prevent hackers from putting a damper on your business.  

Ally Roos
By Ally Roos Digital Marketing Specialist
More Articles by this Author +
Back to Blog

Subscribe Subscribe for the latest news and updates

Categories

Cloud Computing 58
Internet 6
Mobility 11
Social Media 3
Education 10
IT and Business 73
IT Planning 28
Budgeting 5
Consulting 9
IT Roadmap 5
Knowledgebase 2
News 9
Security 96
Software Applications 55
Dynamics 365 14
Microsoft Dynamics CRM 28
Microsoft Dynamics CRM vs Salesforce 7
Microsoft Power BI 7
Microsoft SharePoint 20
Technology & Trends 59
Back to Blog

IT Services

Managed IT Services

  • Managed IT Service Desk
  • Managed IT Infrastructure
  • Managed IT Monitoring
  • Managed Backup
  • Mobile Device Management

Cloud Services

  • Private Cloud
  • Cloud Migration
  • Cloud Backup
  • Office 365 for Business
  • Job Management System

IT Services

  • IT Projects
  • Business Phone System
  • IT Planning
  • IT Systems Health Check
  • Education Solutions

Software Services

Technology

  • Dynamics 365
  • SharePoint
  • Office 365
  • Power BI

Services

  • Business Consulting
  • Software Development
  • Strategic Architecture
  • Intranet Development
  • Data Migration
  • Business Analytics & Data Visualisation

Solutions

  • Solutions by Industry
  • Solutions by Business Need
  • Solutions by Technology

About

  • About us
  • Our Clients
  • Testimonials
  • Success Stories
  • Our Partners
  • Blog
  • Resource Centre

Follow Us

Facebook
LinkedIn
Twitter

Contact Us

Ph. 1300 797 888

@. sales@empowerit.com.au

Copyright © 2019 Empower IT      |      Privacy Policy      |      Website Terms of Use       |      Client Portal