It’s important to be familiar with multiple types of fraud that could affect your organization
Leveraging threat intelligence to combat nation state espionage threats is a common practice for cybersecurity teams. However, outside of common types of fraud seen in darkweb or closed forums, the same threat intelligence often is not leveraged to combat enterprise fraud.
If you are a target of APT threats by espionage actors, buying access to known behaviors and TTPs used by APT groups is helpful to build detection models. For instance, the foothold, lateral movement, privilege escalation, and exfiltration techniques are generally repeatable across Windows and Linux corporate and production systems. Security teams build threat alerts and threat hunting models on the TTPs that are likely to target their organizations.
There is no universal type of fraud, and no “one size fits all” way to fight fraud. It’s important to be familiar with multiple types of fraud that could affect your organization in order to build customized defenses that pertain to loss and brand degradation.
12 Common Types of Fraud in Enterprise:
1. Online Shopping Fraud: Involves setting up fake online shopping portals to cheat people of their money.
2. Chargeback Fraud: Consumers fraudulently attempt to secure a refund using chargeback processes.
3. SIM Swap Scam: Account takeover fraud targeting weaknesses in two-factor authentication where the second factor is a call or text message…
