The Online Fraudcast with Brett Johnson & Karisse Hendrick
Summary: Brett Johnson and Karisse Hendrick are both anti-cybercrime experts. But, with very different experiences. Karisse has worked with hundreds of the World's largest e-commerce and mobile companies to help them prevent payment fraud and other threats to their bottom line and customers. Brett, started his journey as an online fraudster, creating the first darknet forum for buying & selling credit cards and was responsible for creating the criminal enterprise that commits identity theft, credit card fraud and many other online scams. But, after landing on the Secret Service's Most Wanted List and serving his time, he's been reformed and now dedicated his career to helping consumers and online companies prevent fraud from people he used to be.
This week, Brett took one for the team, recording by himself, while Karisse recovers from losing her voice. In this episode, Brett touches on several topics such as sophisticated vs. unsophisticated fraud, preparing your employees to protect your company against the most vulnerable attack methods and a deep dive in to NEW techniques being used to commit synthetic identity theft. -This is especially important for financial institutions, companies with lines of credit and merchants with private label cards. Subscribe to Online FraudCast on your favorite podcast platform to be alerted when new episodes are out! To contact the hosts, go to www. OnlineFraudCast .com or connect with each host individually on LinkedIn.
Last week, news broke of a new cache of stolen PII data being released. "Collection #1" consisted of over 700 million e-mail addresses and over 20 million passwords. And, it was reported more collections (2-6) would be released soon. But, shortly after the news was announced, many experts reported the bulk of the data had already been released in to the dark markets, so the majority of the "Collection #1" data was "old". Many experts stated this wasn't a big deal because the information is already out. But, is this really no big deal for fraud?Brett & Karisse asked friend of the podcast, Aaron Sherman, Senior Director of Cyber Threat Intelligence at Braintrace. aaron had a few days to look through the Colllection #1 data and shares observations he found, as well as insights that can be gained from this data that will continue to be useful for fraudsters to commit fraud. Password safety, employee training, credential stuffing and business email compromise are just a few of the topics discussed in this episode.Subscribe to Online FraudCast to be alerted when new episodes are out!Original Article Detailing Collection #1:https://www.troyhunt.com/the-773-million-record-collection-1-data-reach/Have I been pwned website:https://haveibeenpwned.com/
When a company first starts receiving fraudulent transactions on their website, it's usually fairly easy to spot (if you know what to look for). But, after awhile, the fraud tactics will get more sophisticated and frequent. When is that tipping point and what causes it? That's the main listener suggested question Brett and Karisse answer in this episode. They also explore how a fraudster selects a new company to exploit and the things they look at to select the method they use and the information they buy. And, to demonstrate the way they do this, Brett uses the online rental websites as an example. -A business model Karisse knows all about and shares some of her experience & stories.Subscribe to Online Listen to be alerted when new episodes are released. Follow Online FraudCast on Facebook and Brett & Karisse individually on LinkedIn.
Brett & Karisse dive in to one of the "Top CyberCrime Trends in 2019", fake reviews online. While not directly related to payment fraud, there are several connections to the methodology and goals of the perpetrators. -To create a perception of reality and a narrative to manipulate consumer behavior to their advantage. And if you're a company that allows consumer reviews on your website, chances are your fraud department oversees the integrity of these ads as well.Then, Karisse tackles a question that was posed in an article last week (and a question she receives fairly often from merchants): Are AVS & CVV necessary in this day and age? Both hosts will discuss the benefits and challenges that come with utilizing these services in an online environment. The answers may surprise you!Subscribe to Online FraudCast on your favorite podcast platform to be alerted when new episode are out! And, follow Online FraudCast on Facebook, or Brett & Karisse individually on LinkedIn for more fraud news throughout the week.
Brett & Karisse are both back from their travels & ready to dive in to talking about fraud. Brett starts out talking about his trip to speak at an International Security Conference in Istanbul, Turkey. Then, he convinces Karisse to share how she helped a famous former athlete re-cover their social media account after it was compromised due to Account Takeover. They also share their suggestions for New Years resolutions for fraud prevention professionals, based their observations of the merchants that they work with and talk to. Working on any of these best practices will lead to more streamlined processes, business intelligence and optimized systems. Subscribe to Online Fraud on your favorite podcast platform, follow us on Facebook or individually on LinkedIn.
Brett is out of the country, so Karisse is on her own! Fraud Fighters often ask her about career growth & personal development in this emerging industry of fraud prevention, so she took this opportunity to give her thoughts & experience and some advice she's learned along the way. You're hear about her long & windy road that lead her to consulting & speaking at events, and some of the advice she has for those fraud fighters wanting to take that next step, whatever it is.Subscribe to Online FraudCast to be alerted to new episodes and follow Online FraudCast on Facebook, or the hosts individually on LinkedIn. Or, e-mail us at Info@OnlineFraudcast.com
What happens when Brett Johnson records an episode without his co-host? You get to learn a lot from a former cyber-criminal! In this solo podcast, Brett shares his opinion on former colleague Max Butler's recent indictment of additional felonies while in jail, as well as insights on his own time in prison. Brett also discusses vulnerabilities in the USPS "Informed Delivery" program and smart doorbells and how both can provide a false sense of security unless you're informed. News Stories Referenced in this episode:Max Butler News:https://www.thedailybeast.com/feds-say-imprisoned-hacker-ran-a-drone-smuggling-ringAaron Sherman's Interview on Informed Delivery:https://www-abc4-com.cdn.ampproject.org/v/s/www.abc4.com/amp/news/local-news/criminals-can-target-your-packages-with-usps-informed-delivery/1639604014?amp_js_v=0.1&usqp=Brett Johnson's Blog Post about Smart doorbells:https://www.anglerphish.com/single-post/2018/11/12/Ring-a-Ling-Porch-Pirates-Defeating-the-Ring-Doorbell-SystemSubscribe to Online FraudCast to be alerted of new episodes when they're released. Also, follow Online FraudCast on Facebook, connect with co-hosts on LinkedIn or e-mail us at Info@OnlineFraudCast.com
Based on several reports from online merchants, law enforcement, cardholder victims and even posts on fraudster forums, it's become clear to Brett & Karisse that there's a new fraud tactic targeting online retailers. It's a new issue that they're not entirely sure of a solution yet, but it's rampant enough to discuss and notify online retailers this is happening. But, before diving in to that topic, Brett & Karisse discuss fraud during the holidays. Why do fraudsters love Christmas as much as everyone else? What are some of their goals for holiday orders? What are they posting on dark web fraudster forums? -It'll all be discussed prior to discussing what they're tentatively referring to as "white list fraud". Follow Online FraudCast on Facebook! Questions? e-mail: email@example.com
According to a recent study, experts are estimating that fraud targeting call centers and customer service departments of online companies will increase 250% by the end of 2018 (compared to 2017). And, based on the online companies Karisse and Brett have talked to, it's become a huge problem. Whether the fraudster is calling to re-route a package, place an expensive order or to pre-text, Karisse & Brett will discuss why these are becoming a bigger problem, examples of the tactics being used and ways to work with customer service to train them to identify fraud calls and prevent losses due to phone fraud. Especially with the holidays coming quickly, this is an important episode to listen to as this method will be used frequently by fraudsters for the Holidays 2018.To listen to the webinar the hosts mention they did with Sift Science and CardNotPresent.com, and hear more about this fraud trend and others impacting retailers this holiday season, go here:https://info.cardnotpresent.com/holiday-fraud-trends-targeting-retailers-webinar?utm_campaign=Webinar%20Rebroadcasts&utm_source=web&__hstc=244873690.753f11dbb2fd82bcb7ebeb3a7dfb2a58.1519760045432.1524771864226.1533093306402.8&__hssc=244873690.2.1542309146129&__hsfp=298233994Subscribe to Online FraudCast on your favorite podcast app to be alerted when new episodes are out. We love to hear from our listeners! Follow Online FraudCast on Facebook, follow the hosts individually on LinkedIn or e-mail us at firstname.lastname@example.org to stay connected, ask questions or provide feedback!
According to a recent AARP study, over 50% of all calls placed to cell phones will be spam/fraudulent by the end of 2018. They say that they'll continue to increase and comprise of 80% of all cell phone calls by 2020. Why are they growing so quickly, how can they be stopped and what do you to to prevent yourself form giving information away on those calls that could lead to financial losses and identity theft? These are just some of the topics discussed on this call; in addition to a thoughtful recollection by Brett of a "full circle moment" recently, speaking at Quantico.Follow Online FraudCast on Facebook; subscribe to be updated when new episodes are released; e-mail for additional information or questions: info@OnlineFraudCast.com
If you have an e-mail address or a cell phone, chances are you've received e-mails or phone calls attempting to gain your information or have you "fall" for a scam by sending money. This is called "Phishing". -Fraudsters are phishing for your information every day. So much so, it's the #1 method of obtaining consumer information to use that data fraudulently. Accoridng to a recent study by Intel, 97% of consumers and employees can't identify a phishing e-mail. In this episode, Brett and Karisse provide examples of phishing attempts, why they happen, why they work and what to look out for the next time you check your e-mail or your cell phone.Phishing has also become one of the biggest threats to companies of all sizes and verticals. -Not just online companies, though they're included in those that are targeted. Some companies have lost millions because their CEO responded to a phishing e-mail. Or someone within the company clicks on an attachment in an e-mail, and a hacker gains access to the company's network. Phishing to target companies is also discussed in depth in this episode. You can follow Online FraudCast on facebook or contact the hosts at Info@OnlineFraudCast.com with feedback or topic suggestions. Any advertising/sponsorship requests should be sent to Josh Cohen at Authentic Management: Josh@AuthenticM.com
Kids are the #1 victims of Identity Theft currently. Experts predict that 1 in 4 children will be a victim of identity theft before they turn 18. On this episode, Brett and Karisse discuss why this is, where the information comes from and what you can do to ensure your child doesn't become a victim. But, there are several other threats to kids online. From account takeover fraud to the theft of a parent's credit card to safety from child predators, Brett & Karisse talk about their own experiences raising teenagers in the age of the internet and how they keep their kids safe. And, they provide several tips to keep your own kids safe, especially in online games and social media. If you're a parent, this will probably the most important FraudCast Episode you listen to!Important links mentioned in this episode:Freezing credit with all 3 credit bureaus:Transunion:www.transunion.com/credit-freeze or free freeze mobile app called MyTransunionEquifax:www.equifax.com/personal/credit-report-services or call 800-685-1111Experian:www.experian.com/freeze or call 1-888-experianSubscribe to Online FraudCast to be notified when future episodes are released on preventing online fraud.Look for Online FraudCast on Facebook or e-mail us at email@example.com
Identity Theft has become a "buzz word" in the media to describe many types of online fraud. But the actual instances of identity theft have a bigger impact on its' victims than most other online fraud methods. Opening credit lines, bank accounts, driver's licenses and/or filing taxes in your name could be crippling to your credit and take hours and months to clean up. In this episode, Brett and Karisse discuss how it happens, why it's so prevalent for fraudsters, how to find out if you've been a victim, and most importantly, the best way to prevent becoming a victim of identity theft. One of those ways became free starting September 21 for US residents.Important links mentioned in this episode:Freezing credit with all 3 credit bureaus:Transunion:www.transunion.com/credit-freeze or free freeze mobile app called MyTransunionEquifax:www.equifax.com/personal/credit-report-services or call 800-685-1111Experian:www.experian.com/freeze or call 1-888-experianTo check your credit for free once a year:www.OnlineCreditReport.comSubscribe to Online FraudCast to be notified when future episodes are released on preventing online fraud.Look for Online FraudCast on Facebook or e-mail us at firstname.lastname@example.org
Once your credit card is stolen, what should you do? And how do you prevent your card numbers from being stolen in the future? These are just two of the topics discussed in this follow-up episode to "What happens when a credit card is stolen". Brett and Karisse also discuss other types of fraud that victims of credit card (or debit card) fraud are more susceptible to and how to protect yourself from those as well,It's estimated that over 14.2 million credit cards were exposed in 2017 in the U.S. As the hosts of Online FraudCast often say, it's "not if, but when", fraud will happen to you. After listening to this episode, you will be more prepared for when this happens to you.Subscribe to Online FraudCast to be alerted when new episodes are uploaded. Follow Online FraudCast on Facebook, or e-mail us at email@example.com
Have you had your credit card stolen? Or, has your business had stolen credit cards used on your website or in your physical location? In this episode, Brett & Karisse discuss various methods that are used to obtain credit card numbers, how they are sold & purchased, common ways that credit cards are monetized (used fraudulently) and some of the most common methods being used now to commit credit card fraud that victimize both consumers and online companies. Subscribe to Online Fraudcast to be alerted to the release of future episodes! If you enjoyed this epiosde, please rate and review this episode on your favorite podcast app to help others find this podcast!