Case Study: Government
Automated Fraud

Traditional defenses, including firewalls, intrusion detection and prevention services failed to prevent automated attacks.

Government Case Study

Overview

How Shape Stopped Targeted and Highly Sophisticated Attacks

The US Government serves over 100 million households and processes over $2T in payment and benefits. Cybercriminals view government agencies as prime targets for large-scale automated attacks. Using credentials stolen from other websites, attackers use automation to test out large numbers of usernames and passwords with the aim of taking over citizen accounts and stealing valuable information and assets.

Cybercriminals using automated techniques and stolen credentials were able to take over half of the accounts they targeted at one US government agency. Even though the agency authenticated website visitors by challenging them with a series of questions, based on information that was supposed to be only uniquely available to the agency, and that only the account holder should be able to answer, the cybercriminals used AI to intelligently "guess" missing information required for authentication. Traditional defenses, including authentication, web application firewalls, intrusion detection and prevention services, and fraud analytics, failed to prevent these ongoing automated attacks.

The government agency under attack needed a new approach to fight fraud and deployed the Shape Solution. Using Shape, the government agency stopped the account takeover attacks within 2 days of deploying Shape counter measures and going into full blocking mode thereby preventing hundreds of millions in cyberfraud.

Key Points

DOWNLOAD FULL CASE STUDY (3.6MB PDF)

 

 
4 minute preview

Avivah Litan:

VP Distinguished Analyst, Gartner

How to Stop Automated Attacks on Web Applications.
Learn how and why automation-based attacks pose serious threats to web applications. View the video preview to learn what type of websites are targeted.

View Full On-Demand Webinar

Under Cyberattack?
Test drive shape rapid defense.

Get Threat Assessment

2017 CREDENTIAL SPILL REPORT   DOWNLOAD