Trusteer

Trusteer Pinpoint for Malware Detection accurately detects malware infected devices and determines the risk level it represents to the organization. Trusteer Pinpoint can alert fraud teams on possible infections or feed risk score to the web application or risk engine to mitigate potential fraud. Trusteer Pinpoint is clientless, completely transparent to end users and does not require any installation of software on the endpoint.

Key Capabilities

• Detects Malware-Infected and Fraudsters’ Devices
• Accurately Identifies Fraud Risk Levels
• Alerts fraud team of high risk users, devices
• Feeds risk score to web applications, risk engines
• Enables malware removal via Trusteer Rapport
• Detects evolving threats and new attack vectors

Detects Malware-Infected and Fraudsters’ Devices
Upon the user’s access to online banking, Trusteer Pinpoint clientless sensors initiate a device analysis to detect malware infection. Trusteer Pinpoint identifies the specific malware variant and the malware’s Crime Logic (set of attack tactics). Trusteer Pinpoint also detects access from devices used by fraudsters as they use information previously stolen by malware to execute account takeovers.

Accurately identifies Fraud Risk Levels
Analyzing malware configuration and device reputation allows Trusteer Pinpoint to identify fraud risk levels for each online banking session. For example, Trusteer Pinpoint detects if the malware targets a specific institution or if it is designed to steal credentials or generate fraudulent transactions.

Alerts fraud team of high risk users, devices
Upon malware detection, Trusteer Pinpoint can alert the fraud team on the potential threat. Fraud and security personnel can reach out to the customer and address threat mitigation while suspending or limiting access to online banking features.

Feeds risk score to web applications, risk engines
Real time malware detection allows financial institutors to stop fraud by adjusting application business logic or the transaction risk score calculated by risk engines. Online banking applications can restrict access and limit the ability to add payees or execute money transfers. Risk engines such as RSA, Actimize and Memento can consume Trusteer Pinpoint’s risk score to drive additional verification activities including manual review based on the financial institution’s established policies.

Enables malware removal via Trusteer Rapport
Removal of malware as part of the threat mitigation process can be a daunting task for fraud and support teams. Financial institutions can offer users with infected devices to download Trusteer Rapport and automatically remove the malware, saving precious time and effort. Furthermore, Trusteer Rapport will prevent future infections, allowing users to safely execute online banking transactions from their machine.

Detects evolving threats and new Crime Logic
New malware is constantly introduced and quickly proliferate in the user base. Trusteer Pinpoint tracks web application anomalies generated by malware, exposing the underlining Crime Logic of known and emerging threats. When new threats are identified Trusteer Intelligence introduces detection and protection capabilities that are immediately integrated into Trusteer Rapport and Trusteer Pinpoint.

Trusteer Pinpoint for Malware Detection is a cloud based solution that is completely transparent to users and does not require any installation of client software.

Financial institutions deploying the solution require small changes to the backend web application. Typically, customers can go-live into production within weeks.

Deployment with Imperva’s WAF
Trusteer Pinpoint is also integrated into the Imperva SecureSphere Web Application Firewall (WAF) as part of its ThreatRadar Fraud Prevention Services. The integration enables organizations to rapidly deploy Trusteer Pinpoint and enforce fraud prevention policies without needing to change Web applications.

Trusteer Pinpoint can be integrated into any online banking platform and supports all end user devices including, PCs, Mac’s and mobile.