Phishing, Identity Theft and Bank Fraud Detection

Security Services

• Audited by Netcraft
• Web Application Testing
• Application Testing Courses
• Performance Monitoring
• Fraud & Spoof Detection

About Netcraft

• Netcraft News
• About Netcraft
• Netcraft Toolbar
• Phishing Site Feed
• Phishing Countermeasures

Protect Your Brand Online

The Netcraft Phishing, Identity Theft and Bank Fraud Detection services help you to protect your brand by preemptively identifying possible attacks.

Netcraft has developed a service for banks and other financial organizations to track occurrences of their name, brands, trademarks and slogans on the Internet. The service helps companies identify sites which may be trying to construct frauds, and phishing attacks or attempt identity theft by through impersonation, or are fraudulently implying a non-existent relationship with the company.

Common attacks on banks through Internet content creation include phishing (attempts to trick account holders to give their account authentication details away), fraudulent association with the bank as part of investment scams, and trademark violation.

Through the Netcraft Web Server Survey , we have hostname & domain names for over 200 million web sites, and the front page content for over 50 million sites, and can check each of these for the occurrence of the bank's domains, trademarks and commonly used phrases.

Through the Netcraft Toolbar, we receive phishing reports from our anti-phishing community around the world, with over 4.3 million unique phishing sites have been detected and blocked to date [September 2011].

With this information, we are uniquely placed to monitor the Internet for these attacks, and inform you in a timely manner.

Service Description

The key attributes of the service are:

• Daily monitoring of the DNS for registrations matching specific alert patterns.
• Matching alert patterns against domains and hostnames discovered by the Web Server Survey.
• Matching of text on site front pages.
• Real time monitoring of phishing site reports from the Netcraft Toolbar community.
• Matching SSL certificate Common Names found by the SSL Survey.
• Identification of sites' hosting locations.
• Reporting registration details of matching site domain names and IP addresses.
• Manual reviewing to classify sites into 'owned by company', suspicious, benign (e.g., Mention on news or personal site), customer reference, partner reference, domain registration template, and no content present. Reviewers sign for each site with the review date stamped each with a recommended date for re-reviewing.
• Support by electronic mail and phone.

Phishing site reports are monitored in real-time, and domain registrations are monitored at internals varying between daily and monthly according to TLD.

We inspect and review site content using a combination of advanced automatic classification, as well as manually, so you'll always have a good idea of which sites are benign, infringing trademarks, or up to something more nefarious.

We can also offer bespoke approaches as required.

For more information, please contact us by email or phone +44(0)1225 587500. Ideally with some details of names, brands and text strings you would like to monitor.