Irvine, Calif.-based SecureAuth expanded the fraud prevention capabilities of its adaptive access control solution last week, to help companies identity, block and protect against those trying to exploit two-factor authentication. The company added the capability to block recently ported numbers, block by number case (such as blocking virtual or toll-free numbers), block by carrier, and one-time passcode spam prevention.
"It is often credentials themselves that are targeted, either directly or opportunistically, to be used in later breaches," Keith Graham, chief technology officer at SecureAuth, said in a statement. "Organizations are deploying adaptive access control methods to prevent the misuse of stolen credentials, but attackers are evolving to take advantage of SMS delivery methods. By performing multiple pre-authentication risk checks, including phone number fraud prevention and other techniques, organizations can determine their customer, 3rd party and employee identities with confidence while still delivering a pain-free user experience."