Account Takeover
Account Takeover (ATO) is an attack when fraudsters get the victim’s credentials and gets into the victim’s account. During Session Stealing/Takeover, fraudsters get into an already logged-in session of a legitimate user. This is the first step leading to misuse of the stolen account and can lead to, e.g., changing the personal details of the legitimate client and/or money transfer.
Account Takeover has two subcategories (Accounts are present only in solutions with Payments):
| Name | Description |
|---|---|
|
Sessions |
Shows a list of sessions where the ATO was detected. Those sessions may be controlled by a fraudster. Magnifying glass takes you to a Detail of session where the user’s activity can be inspected. Sessions can be sorted by time, risk score (ascending/descending), and payments (in solution with Payments only). |
|
Clients |
Shows list of users with ATO detection. Each user has a counter of the total amount of ATO detections since the user’s existence. Magnifying glass takes you to the Client’s detail. Clients can be sorted by risk score. |
