Thank you for the free holiday.
We all know there are growing numbers of cyber-attacks where hackers use their devious skills to get your financial and personal information. They can then sell this data or use it to make purchases, commit fraud and the like.
A growth in account takeover rewards fraud has provided a new method for the bad guys to take advantage of a data breach and to get your free stuff.
Compromised, stolen or breached credentials are also used to book holidays, free flights or exchange loyalty points for real goods. An often less secure portion of your environment is the rewards system – there is normally no credit card transaction which takes place and this means that compliance codes do not apply – therefore most don’t do much about it. Many of these systems do not even have an option for two factor authentication.