• Enabling Business Agility and Reuse
  • Governing the Infrastructure
  • Improving Business Processes
  • Leveraging Information and Intelligence
  • Leveraging the Connected Web
  • Securing Enterprise Applications
  • Supporting Industry Solutions

Industry Solutions Syndicate This

BAM Providers As Online Banking Fraud Preventers

By David Luckham, Professor Emeritus of Electrical Engineering, Stanford University , 07/26/2004

Print this article Email this article Talk Back! Write to Editor

Here's a problem BAM tools should be able to handle fairly soon if the BAM industry continues to develop more powerful event processing capabilities.

In my article, Avoiding Disasters Waiting to Happen," I gave you the example of a banking Web site that had been "phished." This resulted in crooks being able to use stolen identities and passwords to do things that the bank's legitimate customers never did. Because the bank was IT blind it never detected that its supposed customers were behaving in strange ways in effect, throwing their money away.

Since that article, the facts about the magnitude of online banking theft have come out. Nearly two million Americans had their checking accounts raided by criminals in the 12 months preceding June 2004, according to Gartner. Consumers reported an average loss per incident of $1,200, pushing total losses higher than $2 billion for the year. Gartner's report, authored by Avivah Litan, blames online banking for most of the problem.

"There has been a big increase in the abuse of existing checking accounts," Litan said. "What's really scary about it is right now there are no back-end fraud detection solutions for it. The industry was reeling in part because there is no software designed to detect unusual checking account withdrawal patterns, outside of software that looks for money laundering, which doesn't catch simple unauthorized withdrawals.

Banks tend to reimburse these kinds of consumer losses. Litan's report will tell you more about that.

How did all this loss of money come about?

  • The banking industry has aggressively marketed online banking as a way of reducing operating costs and increasing business.
  • Banks have not invested in the technology needed to provide IT insight into their Web sites. They are IT blind at the moment.
  • Banks are investing in making it harder to create fraudulent credit and debit cards. So, guess what. The crooks are moving to new hunting grounds.
  • The crooks have gotten better at identity theft. Phishing is only one method of getting gullible customers to divulge their precious information. And the crooks have developed sophisticated phishing technology, even taking advantage of loopholes in browsers to fake the URL window of cloned Web sites to show the URL of a bank's Web site. If you ask the FBI to close a cloned Web site running on a server with Internet access through an ISP in the USA, a new server will immediately pop up in China.
  • Some percentage of customers are never going to learn, no matter how many warning messages a bank sends out about not falling into identity theft traps. If a bank has 4 million active customers using its Web site, and one per cent of them are brainless, that's 40,000 accounts that need watching for unusual activity.

1

Our Popular Webinars

Insurance: Discovering the Missing Link of Business Architecture

SOA Infrastructure for Any Economic Climate

Mobilizing the Enterprise: Using RIA and SaaS to Do More with Less

Adapt with Agility - Web 2.0 in your Application Infrastructure

Open Source SOA and the Management Challenge: The ROI and Reliability of Open Source Composite Applications

More Webinars

More Top Stories

Federated Event Systems: The Event Web Gold Club Protected

Know Your Business Impact Analyzer Before You Buy It Gold Club Protected

The Evolution of the Business Integration Architect Gold Club Protected

Does Your Company Know What It Knows? Gold Club Protected

Modernizing EDI Gold Club Protected

Aligning Business And IT: There's No Other Way Gold Club Protected

More Top StoriesTopic Archive

Related News

Cordys Announces New Release of Business Operations Platform

Appian and MEGA partner to integrate BPM and Enterprise Architecture Software Tools

Intalio Introduces Key BPM Features With BPMS 5.2

More News

  • ebizQ Update
  • Contribute

Please pardon our appearance while we work out the remaining kinks of our new site. If you happen to find a bug, please let us know at support@ebizq.net

ebizQ is very interested in what you have to say. To contribute an article, an opinion, or to become a blogger, please contact Peter Schooff.

  • Virtual Conferences
  • Webinars
  • Roundtables

SOA In Action

Nov 19, 2008

This conference will teach business leaders what to expect, and what to avoid, to make their SOA journey a success. SOA is a long journey, not a single project, and distributed architectures are inherently complex. Success requires new ways of working, creating more efficient cross organization processes, adopting new tools, and building new skills.Register

View All Virtual Conferences

Create a Center of Excellence in SOA Governance

Date: Dec 02, 2008
Time: 12:00 PM ET- (17:00 GMT)

REGISTER TODAY!

Next-Generation BI

Date: Dec 03, 2008
Time: 12:00 PM ET- (17:00 GMT)

REGISTER TODAY!
View All Webinars

Insurance: Discovering the Missing Link of Business Architecture


Date:Jan 14, 2009

Time:12:00 PM ET- (17:00 GMT)

REGISTER TODAY!
View All Roundtables
  • White Papers
  • Podcasts
  • Blogs

15-Minute Guide to Transactional Content Management

Learn about imaging and document management as part of your business processes and how these processes can be automated to bring value to your...

Download Now

ebizQ also recommends

Dennis Byron: Revisiting Bill Miller of XAware, Open Source Data Integration Software

Almost a year after their first chat, XAware founder and CTO Bill Miller gives Dennis Byron an update on what's going on this year at XAware and how that "open source thing" is working out.

Listen Now

The Acceleration of SOA: iTKO Explains

Listen to Peter Schooff's podcast with Jason English, VP of Corporate Marketing for iTKO, where they offer a quick preview of ebizQ's upcoming SOA in Action Virtual Conference on Nov. 19.

Listen Now

Heading Off SOA Disillusionment With Progress

David Bressler provides Progress Software's customers and field teams with the expertise and experience to deliver SOA. In this podcast, Bressler gives an excellent introduction to ebizQ's Nov. 19 SOA in Action Virtual Conference, where he'll be a featured speaker.

Listen Now

Dennis Byron: VP of IONA/Progress Larry Alston on Functionality in OSS

Hear Larry Alston's unique perspective on the open source development model and how IONA is adopting a "functionality rules" open-source-as-a-tactic theme now that Iona is part of Progress.

Listen Now

Mike Rothman: Understanding Web 2.0 Attacks

In this podcast, Rothman flies solo and rants about Web 2.0 attack vectors, providing a primer on the types of attacks you're likely to see from social networks. Rothman also gives himself the "free association" treatment, discussing topics like Facebook and the impact of Web 2.0 on PCI.rnrnListen to or download the 11:39 minute podcast below:

Listen Now

Featured ebizQ Blog: SOA-Integration Industry Pulse

Most Recent ebizQ Blog Entries

More Blogs
  • Most Read
  • Most Discussed
  • Quick Guide

Building The Instantly Responsive Enterprise

Integrating BPM and CEP gives you intelligent business processes that can react to rapidly changing business conditions with continuous visibility. Learn More

Enterprise Linkage: New Change Management

Insurers need to think about creating "true linkage," which means linking business strategy to process to IT investments and thereby setting the foundation for true change. Learn More

The Invisible Hand of BI

To be effective, business intelligence technology must work behind the scenes to deliver relevant information when, where, and how it's needed. Learn More

Quick Guide: What is Enterprise 2.0?

A lot of people are talking about Enterprise 2.0 as being the business application of Web 2.0 technology. However, there's still some debate on exactly what this technology entails, how it applies to today's business models, and which components bring true value. Some use the term Enterprise 2.0 exclusively to describe the use of social networking technologies in the enterprise, while others use it to describe a web economy platform, or the technological framework behind such a platform. Still others say that Enterprise 2.0 is all of these things. Learn More

Quick Guide: What is BPM?

Learn More

Quick Guide: What is Event Processing?

Smart event processing can help your company run smarter and faster. This comprehensive guide helps you research the basics of complex event processing (CEP) and learn how to get started on the right foot with your CEP project using EDA, RFID, SOA, SCADA and other relevant technologies. Learn More

Product Spotlight

As you may know, technology is only part of an overall SOA governance solution. It is sometimes difficult to ensure visibility into all SOA assets and their relationships, end-to-end governance throughout the lifecycle of SOA assets, and analytics to help ensure organizations are reaping the rewards of their SOA investments. Download this spotlight report to review a solution to governing your SOA.

The Forrester Wave: Business Process Management for Document Processes

Read this Forrester report to see how vendors stack up regarding business process management. Forrester evaluated eight business process management suite (BPMS) suppliers best suited and most experienced for document-intensive processes across approximately 150 criteria. Download this paper to find out which BPM tools are right for your business.

Community Managers

Ronan Bradley

Financial services expert Ronan Bradley is Community Manager for Financial Services covering banking and capital markets.

Read Ronan Bradley's Blog
Ronan Bradley's Features:
Read More »

David S. Linthicum

One of the founding fathers of modern distributed computing, David Linthicum is Community Manager for Information and Intelligence. This community covers BI, operational BI, MDM, and EII, among other topics.

Read David S. Linthicum's Blog
David S. Linthicum's Features:
Read More »

David A. Kelly

With twenty years on the cutting edge of enterprise infrastructure, David A. Kelly is Community Manager for Governing the Infrastructure. This category includes IT governance, SOA governance, and compliance, risk management, ITIL, business service management, registries and more.

Read David A. Kelly's Blog
David A. Kelly's Features:
Read More »

Peter Schooff

Peter Schooff is Managing Editor at ebizQ. Peter is also a popular blogger in the IT Security space, where he keeps an eye on security trends critical to protecting applications and locking down identities.

Read Peter Schooff's Blog
Peter Schooff's Features:
Read More »

Joe McKendrick

Author and consultant Joe McKendrick is Community Manager for Enabling Business Agility and Reuse . This community focuses on SOA, EDA/CEP, ESB, Open Source, Event Processing, Web Services, Application and Web Servers, and Legacy Integration, among other topics.

Read Joe McKendrick's Blog
Joe McKendrick's Features:
Read More »

Deborah Smallwood

Top insurance industry advisors Deborah Smallwood and Cindy Maike are the Insurance Community Managers. Their focus is on transforming insurance companies into agile, business-driven enterprises where IT enables business value.

Read Deborah Smallwood's Blog
Deborah Smallwood's Features:
Read More »

View All Community Managers