Skip to main content

Business Security Center

Go Search
Personal
Business
Customer Service
  

Glossary of Terms 

Keylogging - A Keylogger is malicious software that resides unnoticed inside your computer. The keylogger records keystrokes (i.e. each time you type something on the keyboard) and then sends this information to the attacker. Rapport encrypts your keystrokes and prevents keyloggers from reading sensitive information.

Pharming or DNS Spoofing - A pharming or DNS spoofing attack is when the attacker causes your computer to go to fraudulent website each time you type a real website's address in your browser's address bar. To protect you against pharming attacks Rapport verifies the IP address and the SSL certificate of the website each time you connect to a protected website. If the verification fails, Rapport terminates the connection and establishes a new connection to the real website.

Phishing - To protect you against phishing attacks Rapport learns the password (and sometimes even the username) you use with protected websites. Rapport then warns you each time you use the password or the username on a different website. Using this warning you can immediately understand that you are on the wrong website and prevent the password from being submitted.

Malicious Browser Add-ons - Browser add-ons (e.g. toolbars, BHOs, plug-ins) control everything that happens inside your browser. A malicious add-on is capable of reading sensitive information such as your sign-in credentials and passing them to the attacker. It can also generate transactions on your behalf, such as transferring money from your account to the attacker's account. Rapport prevents unauthorized browser add-ons from reading sensitive information and tampering with your transactions.

Malicious Programs - A malicious program can connect to your browser and control everything that happens inside your browser. Such a program is capable of reading sensitive information (such as your sign-in credentials) and passing them to the attacker. It can also generate transactions on your behalf, such as transferring money from your account to the attacker's account. Rapport prevents programs from connecting to the browser, reading sensitive information and tampering with your transactions while you are logged into protected websites.

Man-in-the-Browser attacks - Zeus, Silon, Torpig and Yaludle are just some of the lethal Trojans in the wild today that focus on committing online fraud. They wait for customers and employees to log-in to their account and then begin tampering with their browser to commit fraud. These Trojans find their way onto computers and into the browser by exploiting software vulnerabilities before the vendor has had a chance to create a workaround. Such attacks are also called Zero day attacks.

Man-in-the-Middle attacks - Using proxy servers, DNS poisoning and other techniques, fraudsters force customer and employee communications with the website to pass through them. Fraudsters then intercept traffic and read login information or change transactions and web pages. Some instances of such attacks don't involve any access to the victim's computer and can be achieved by tampering with the ISP's servers directly.

Screen Shooting - This malware takes screen shots and sends them to the attacker. Rapport prevents taking screen shots while you are connected to protected websites.

Session Hijacking - This malware steals your session parameters with a specific website and sends this information to the attacker. These session parameters can then be used by the attacker to take over your session with the website and to bypass the authentication process that is required to log into the website. Rapport prevents access to session parameters while you are connected to protected websites.