Restoring Trust to Phone-Based One-Time Passcodes
Mitigate phone takeover attacks to reduce identity fraud and improve customer experience.
Nearly 70 percent of consumers received a one-time passcode (OTP) via SMS/text message to validate their identities during a new account opening in 20201, despite years of warnings about vulnerabilities with this authentication approach. Fraudsters have become adept at intercepting OTPs via SIM swapping, unauthorized number reassignment, or call forwarding. The increased use of OTPs contributed to the $13 billion lost to identity fraud over 20202.
The risk of phone-based OTPs has led some organizations to consider alternative authentication approaches. Unfortunately, the most common alternatives often degrade customer experience, increase costs due to required manual resolutions, and undercut operating efficiency. Organizations need new and innovative authentication strategies that match the ease and accessibility of sending SMS text messages or placing phone calls.
Restore trust to phone-based one-time passcodes to focus fraud-prevention resources more efficiently and reduce friction for legitimate users.
1. Neustar, Voice Phishing Increases Risk of Account Takeover Fraud
2. Neustar, Stopping Fraud on Peer-To-Peer Payment Apps