Defeating Man-in-the-Browser Attacks

Consumer identity theft and online fraud continue to accelerate at an alarming rate. Online threats are increasingly sophisticated. The latest malware trend? Man-in-the-browser attacks and the rise of social engineering.

To help you understand these advanced online threats, be our guest for an essential Webcast — an event that's only available to select financial institutions.

In this session, Entrust director of identity products Steve Neville and TowerGroup senior research director George Tubin will look at the current state of online fraud and how the evolution of these threats is affecting online transactions. What have other financial institutions done to protect themselves? What has worked? And, importantly, what hasn't?

On-Demand Webcast

Battling Online Fraud:
Getting in Front of Man-in-the-Browser Attacks and Other Evolving Threats

George Tubin, Senior Research Director, TowerGroup
Steve Neville, Director of Identity Products, Entrust

Watch the replay

Understanding MITB

One of the newest forms of malware, a man-in-the-browser attack typically takes the form of a trusted browser extension. From the user's point of view, the Web transaction is taking place normally, complete with expected interactions with the server.

As such, it is nearly impossible for a user to identify a man-in-the-browser attack in progress. It can modify Web sessions at will, and initiate fraudulent transactions. The impact these attacks can have on the adoption of the online channel, corporate brands and your customers' financial livelihood could be substantial.

Try our Needs Analysis Tool Entrust IdentityGuard Mobile

Entrust Public Key Infrastructure (PKI)

Public key infrastructure or PKI refers to a system that provides certificate management for digital certificates. Digital certificates contain public key pairs that can be used for encryption, digital signature and authentication security. Entrust PKI security solutions help government agencies and corporations to secure their digital identities and information.

Specialized "passport PKI" is used by governments to verify and secure data stored on a chip imbedded in passports issued to citizens. Epassport PKI involves the use of PKI by governments to secure data stored on a chip imbedded in a passport. The government acts as a certification authority that issues the digital certificates used in an ePassport system.

Entrust is a trusted provider of network security solutions that include digital certificates, managed PKI certificates, two factor-authentication, ssl certificates, token authentication, smart card PKI and encryption software.