Secure Bank

Client-side fraud and attack prevention across sessions, platforms and devices

Product tour
70+ mln
customers of Europe’s top banks protected
9,5 mln
sessions per day processed
$30 mln
saved during 11 months of operation
+79%
reduction in false positives

Detect threats invisible to traditional transactional anti-fraud

Money laundering

Illegal cashing out networks | Tax evasion | AML non-compliance

Get a clear understanding of relationships between accounts and other entities to discover suspicious funds transactions.

Identity theft

Account takeover | New account fraud | Bot activity

Detect the usage of stolen account credentials with advanced user behaviour analytics and device fingerprinting.

Payment fraud

Credit fraud | Card-not-present fraud | Malicious web-injections

Secure your electronic payment environment and protect user’s credit card information.

PC & mobile malware

Pharming | Botnets | Web-scraping | Trojans & Web-fakes

Catch banking trojans with patented clientless malware detection technology.

Social engineering attacks

Email scams | Phishing | Targeted attacks

Defend against online scams and prevent data leakage with global user profiling and threat intelligence stack.

Cross channel/client attacks

E-commerce | Mobile | Web

Protect users across web and mobile channels, including e-commerce and other third-party platforms.

Unlike traditional anti-fraud that analyses transactions, Secure Bank algorithms start working right from sign-in step to detect dangerous activities before the fraud is executed.

At the sign-in
  • perform instant user security check-up
  • identify bots and automated attacks
  • detect anomalies in user behaviour
During the session
  • perform instant user security check-up
  • identify bots and automated attacks
  • detect anomalies in user behaviour
For further analysis
  • get full visibility into attacks schemes
  • understand global user profile to investigate
  • money laundering and tax evasion schemes
  • adapt and enhance your protection with advanced rule engine

Catch any threat with full stack of anti-fraud technologies

Combining several technologies Secure Bank is more than the sum of its parts — it speeds up detection and enhances accuracy while giving context for response and investigation.

Behavioural analytics (UEBA)

Detects: money laundering, social engineering, account takeover, credit fraud, auto account creation and automated actions, bot activity actions, bot activity

Learn more

Using machine learning technologies we continuously analyze user profile based on what is happening during the session (typical scenario of legitimate user vs fraudster) and how the user behaves (bio-chronometrics with number of criteria: velocity & navigation, mouse movement, keystrokes, typing cadence, delays etc). This allows us to identify against previous sessions if a legitimate user or fraudster is logged in.

Advanced Device Fingerprinting

Detects: identity theft, usage of anonymizers and aggregators, money laundering, cross-client attacks

Learn more

Inside our device fingerprinting technology wide range of algorithms analyses the same set of parameters to provide advanced dynamic analysis. It allows to differentiate normal device evolution (OS, browser updates etc) from suspicious changes. Precise fingerprinting can be also applied to investigate money laundering and illegal cashing out networks when several accounts are used from the same device even when TOR, proxy or “anonymizers” are applied. Advanced device fingerprinting allows to highlight malicious activity across separate clients.

Clientless Malware Detection

Detects: trojans (including mobile and web-fakes), unsanctioned remote access, web-injects (“man-in-the-browser” attacks), cross-channel attacks, social engineering, bot activity, brute force, web-scraping

Learn more

Patented clientless detection allows Secure Bank to identify infected client devices without impacting client experience as no installation is required. We catch PC and mobile trojans (including those using web-fakes), web-injects, remote access and social engineering cases. For each case we give wide context, collect injects, C&Cs, and other data to investigate attacks.

Group-IB Threat Intelligence

Detects: newest types of fraud, attacks during preparation, early phishing detection

Learn more

We integrate Group-IB Threat Intelligence (recognized among the top by IDC, Gartner, Forrester) data on threat actors, malware intelligence, malicious IPs and compromised data (logins, passwords, bank cards) into Secure Bank. This allows us to track campaigns, identify web-injects (man-in-the-browser attacks) and actors to give additional insights and actionable intelligence to anti-fraud and cyber security teams.

Global User Profiling

Detects: new account fraud, money laundering, social engineering

Learn more

By cross-referencing anonymized data, Secure Bank creates global user profiles across different online banking channels. This gives us understanding of affinities between users, accounts and sessions to identify good vs bad users with less friction and higher accuracy rates. Our unique threat intelligence stack and Secure Bank analysis on other client identifiers allow us to detect hidden threats and suspicious connections.

Advanced Rule Engine

Advanced Rule Engine allows to adopt existing rules or create new ones to fight with fraudsters schemes, specific to your business. You can create your own risk score model, enhance it to stay effective in a changing environment.

Learn more

Advanced Rule Engine allows to adopt existing rules or create new ones to fight with fraudsters schemes, specific to your business. You can create your own risk score model, enhance it to stay effective in a changing environment.

JavaScript module

As a JavaScript module, Secure Bank is loaded into the source code of each web page that you want to protect. It collects control data of each visitor to the webpage, such as what browser such as what browser...

Learn more

As a JavaScript module, Secure Bank is loaded into the source code of each web page that you want to protect. It collects control data of each visitor to the webpage, such as what browser is in use, browser plugins, cursor movement, device information and other non-confidential data in order to create a unique fingerprint of each client visiting your page.

Mobile SDK

Secure Bank can be deployed via a Software Development Kit, that is easily integrated with customer mobile applications. Its anti-fraud functionality allows to identify mobile devices and...

Learn more

Secure Bank can be deployed via a Software Development Kit, that is easily integrated with customer mobile applications. Its anti-fraud functionality allows to identify mobile devices and discover malicious apps on Android and iOS.

Cross-Channel Analytics

Detects: cross-channel attacks, card‑not‑present fraud (CNP)

Learn more

By cross-referencing anonymized data, Secure Bank creates global user profiles across different online banking channels. This gives us understanding of affinities between users, accounts and sessions to identify good vs bad users with less friction and higher accuracy rates. Our unique threat intelligence stack and Secure Bank analysis on other client identifiers allow us to detect hidden threats and suspicious connections.

Product tour

Why leading financial organizations choose Secure Bank

Secure

All scripts, traffic and data is encrypted to avoid interception by third parties. We do not collect and process personal data and other confidential information. All the infrastructure could be deployed at customer site.

Intelligent

Dedicated Group-IB anti-fraud analyst and incident response capabilities backed up by a team of world-class forensics experts and leading Threat Intelligence Platform recognized by Gartner, IDC and Forrester.

Scalable

Deployed instantly across the entire client base without affecting performance, either as a JavaScript for traditional browser usage, or via SDK on mobile devices - no installation for end-user.

Easy to integrate

Zero client requirements for installation. Already integrated with leading anti-fraud systems such as: RSA, SAS, Intellinx, GBG Predator.

Convenient

Web interface to get detailed reports and rich context on detected threats, create graphics and analyze fraud dynamics.

Flexible

Secure Bank functionality might be customized and adjusted to focus on your high priority issues with ability to create rules fitting your company risk tolerance.

Testimonials

CJSC Sberbank of Russia, expresses sincere thanks to Group‑IB for assistance in preventing theft from the «Sberbank Online» and «Sberbank Business» banking platforms using Secure Bank.

Evaluate your clients’ vulnerabilities and your potential risks – for free. Leave us your contact information to try the solution.

 

* Your data is protected by Privacy Policy
Thank you for the inquiry! We will contact you soon.

Behavioural analytics (UEBA)


Detects: money laundering, social engineering, account takeover, credit fraud, auto account creation and automated actions, bot activity

Using machine learning technologies we continuously analyze user profile based on what is happening during the session (typical scenario of legitimate user vs fraudster) and how the user behaves (bio-chronometrics with number of criteria: velocity & navigation, mouse movement, keystrokes, typing cadence, delays etc). This allows us to identify against previous sessions if a legitimate user or fraudster is logged in.

Advanced Device Fingerprinting


Detects: identity theft, usage of anonymizers and aggregators, money laundering, cross-client attacks

Inside our device fingerprinting technology wide range of algorithms analyses the same set of parameters to provide advanced dynamic analysis. It allows to differentiate normal device evolution (OS, browser updates etc) from suspicious changes. Precise fingerprinting can be also applied to investigate money laundering and illegal cashing out networks when several accounts are used from the same device even when TOR, proxy or “anonymizers” are applied. Advanced device fingerprinting allows to highlight malicious activity across separate clients.

Clientless Malware Detection


Detects: trojans (including mobile and web-fakes), unsanctioned remote access, web-injects (“man-in-the-browser” attacks), cross-channel attacks, social engineering, bot activity, brute force, web-scraping

Patented clientless detection allows Secure Bank to identify infected client devices without impacting client experience as no installation is required. We catch PC and mobile trojans (including those using web-fakes), web-injects, remote access and social engineering cases. For each case we give wide context, collect injects, C&Cs, and other data to investigate attacks.

Group-IB Threat Intelligence


Detects: newest types of fraud, attacks during preparation, early phishing detection

We integrate Group-IB Threat Intelligence (recognized among the top by IDC, Gartner, Forrester) data on threat actors, malware intelligence, malicious IPs and compromised data (logins, passwords, bank cards) into Secure Bank. This allows us to track campaigns, identify web-injects (man-in-the-browser attacks) and actors to give additional insights and actionable intelligence to anti-fraud and cyber security teams.

Global User Profiling


Detects: new account fraud, money laundering, social engineering

By cross-referencing anonymized data, Secure Bank creates global user profiles across different online banking channels. This gives us understanding of affinities between users, accounts and sessions to identify good vs bad users with less friction and higher accuracy rates. Our unique threat intelligence stack and Secure Bank analysis on other client identifiers allow us to detect hidden threats and suspicious connections.

Advanced Rule Engine


Advanced Rule Engine allows to adopt existing rules or create new ones to fight with fraudsters schemes, specific to your business. You can create your own risk score model, enhance it to stay effective in a changing environment.

JavaScript module


As a JavaScript module, Secure Bank is loaded into the source code of each web page that you want to protect. It collects control data of each visitor to the webpage, such as what browser is in use, browser plugins, cursor movement, device information and other non-confidential data in order to create a unique fingerprint of each client visiting your page.

Mobile SDK


Secure Bank can be deployed via a Software Development Kit, that is easily integrated with customer mobile applications. Its anti-fraud functionality allows to identify mobile devices and discover malicious apps on Android and iOS.

Cross-Channel Analytics


Detects: new account fraud, money laundering, social engineering

By cross-referencing anonymized data, Secure Bank creates global user profiles across different online banking channels. This gives us understanding of affinities between users, accounts and sessions to identify good vs bad users with less friction and higher accuracy rates. Our unique threat intelligence stack and Secure Bank analysis on other client identifiers allow us to detect hidden threats and suspicious connections.

Report an incident

24/7 Incident Response Assistance +7 495 984-33-64

* Your data is protected by Privacy Policy
Thank you!
We will contact you soon.