According to multiple threat index reports issued at the end of 2018, the threat of Remote Access Trojans (RATs) is at an all time high. One RAT made Checkpoint’s Global Threat Index Top 10 list, while Proofpoint reports that the number of RATs doubled each quarter of 2018, accounting for more than 5% of all malicious payloads for the year, marking a significant change from the past.
It is important to note that there are many types of RATs. The most popular ones are either a script that gives a human fraudster access to an account after the legitimate user logs in or a sophisticated social engineering scheme where the user is tricked to allow a third party to takeover an online session via TeamViewer, LogMeIn or other remote access tool.
RATs pose significant challenges to fraud teams as they often take over after the login, meaning a session is authenticated, and by design circumvent traditional fraud detection tools that look for the presence of malware, bots and blacklisted devices or IP addresses.
BioCatch takes a unique approach to detecting RATs. Where most systems used today examine device data, which cannot detect a RAT attack as it takes over a trusted device, BioCatch behavioral biometrics monitors and analyzes a user’s physical and cognitive behaviors without interfering with the user experience. Using advanced AI and machine learning, BioCatch collects more than 2,000 parameters passively and continuously and provides real-time alerts if an anomaly is detected.