Corporate Account Takeover

InfoSight's Corporate Account Takeover Services

Corporate Account Takeover is on the rise, and even today it remains the single most online threat to your customer's accounts. Corporate account takeover is a type of fraud in which cyber thieves access a business' finances and accounts, making unauthorized transactions. Some of these transactions include; transferring funds out of the company's accounts, adding fake new employees to your payroll, and retrieving vital customer information that is often not recoverable.

Consumer bank accounts do have a certain level of protection that the business accounts do not. Under Regulation E, there are limited liabilities limits for for unauthorized electronic fund transfers affecting consumer bank accounts. So when business accounts are compromised, it often ends in litigation between the financial institution and their customer.

Our Corporate Account Takeover methodology includes:

  • Gathering information about the target before the test (reconnaissance)
  • Identifying all possible entry points, vulnerabilities, and weaknesses
  • Attempting an exploit to gain entry
  • Reporting back findings and providing detailed instructions for remediation

In an effort to protect both consumers and businesses from financial fraud, the Federal Financial Institutions Examination Council (FFIEC) has implemented new security guidelines for financial institutions in January 2012. These guidelines describe the measures financial institutions should take to protect Internet banking customers from online fraud and corporate account takeover

InfoSight can provide your organization with the assistance you need for effective email social engineering prevention. Training your people is always a good place to start when managing the quality of your security profile. If you would like more information about email social engineering contact us at info @

Here are some questions to ask to determine how vulnerable your network may be:

  • How long ago was my last vulnerability test?
  • How many changes and or upgrades has my network had since my last vulnerability test?
  • Do the counter measures I have in place to prevent an intrusion actually work?
  • What security layers should I implement next to best protect my company's assets?
  • Do I know where confidential and sensitive data is located on my network enterprise wide?
  • How do I know if my IT Security reports are accurate?

If you would like more information about Corporate Account Takeover, contact us at

Request More Info

Corporate Account Takeover