Authenticity Blog
Get the latest from our Blog

Brand Integrity, Fraud Detection

Watermark for Emails

How many times have we gotten emails and text messages claiming to be from brands we know and love but turn out to be fraudulent? Some of the messages are so obvious that they are simply nuisances that we ignore, while others are much craftier, making it easy for us to fall into a scam.

The vast majority of social engineering attacks, ones that try to trick unsuspecting users into clicking a link, happen through email. The number stands at a staggering 96%. With half of all US adults reporting being targeted by impostors according to the AARP, this is a problem that is only set to grow exponentially over time.

Nowadays, launching an attack like this is relatively easy. First, the attacker will clone the target organization’s website, making an almost precise copy of it down to subtle changes in the URL. Next, the attacker will use a generic automated email system to send fraudulent emails to users to get them to click on the link to the cloned website. The email can look identical to an email from a legitimate organization. Additionally, more sophisticated attackers could steal user records from the target organization and send emails only to them, making them look more legitimate. The moment the unsuspecting users click the fraudulent link in the email, they have fallen into the scam.

Users currently have some insufficient solutions to mitigate this problem. They can click on the email address of the sender, to see if it is from a fake source. They might receive an email once in a while warning them about the risks involved with phishing attacks, and organizations may implement software that will scan incoming emails for impostors and malicious content.

The main issue with the current solutions is the problem of consumer confidence. If users have already fallen into a scam, or assume that they would, then they would be much less likely to open the email or engage with it in the first place. This is detrimental to the legitimate brand, that on many occasions would rely on e-mails to communicate directly with their users.

A solution is needed that is capable of proactively protecting both the organization and the user, and MEMCYCO has the answer. Its new PoSA™ software provides true, real-time layers of detection and prevention. For the user, an unforgeable digital watermark on the email itself gives a positive visual authentication that the organization they are interacting with is legitimate. Additionally, PoSA™’s sophisticated alerting system stops users from giving details or money to scammers, if they clicked on the fraudulent link. For the organization, PoSA™ will detect and alert if and when there is an attempted attack on their website or pages, and create a profile of the attacker for it to take action. If an attack does occur, PoSA™ provides full visibility into the scope of the attack.

With phishing scams in emails being an extremely prevalent issue, it is imperative that both users and organizations have a way to protect their communications. Once a true real-time solution is implemented, the fear associated with opening emails from organizations will disappear.