Arkose Labs, the leading global account security company, announced the release of its new report, A Data-Driven Analysis of Threat Actor Behavior, which unveils exclusive insights from a year of scammer behavior data into how they operate in today’s digital ecosystem. The analysis reveals the psychology, motivations and tactics driving digital fraud and provides actionable intelligence for combating today’s sophisticated adversaries.
“Our year-long analysis shows they time their scams around major events, emulate legitimate shoppers during the holidays and turn phishing into scalable business models…and that’s just the start,” said Arkose Labs Chief Operating Officer Frank Teruel.
Cyber Technology Insights : Arkose Labs Unveils Device ID for Accurate Identification
Insights into the economics of scams are revealed, including:
Earning Potential: A single bad actor can pocket an average of US$145,176, targeting just 5 gaming platforms with account takeover scams.
‘Tis the Season: Timeline analysis reveals that major attacks align with high-profile events like the Super Bowl and U.S. elections, resulting in a 48% spike in sign-up attacks in the third quarter of 2024.
Scammers Hide in a Crowd: Sign-up attacks jumped 309% during the busy holiday shopping season in the fourth quarter of 2024.
Arkose Labs’ analysis is shared at a critical juncture as threat actors have industrialized fraud, using AI-powered tools and systematic testing to turn attacks into profitable enterprises that can generate six-figure salaries per scammer.
“The numbers are shocking. Threat actors are making major money attacking enterprises,” said Arkose Labs Chief Operating Officer Frank Teruel. “This next generation of scammers is highly organized, supported by global crime-as-a-service platforms and rapidly adopting enabling technologies, like agentic AI. Our year-long analysis shows they time their scams around major events, emulate legitimate shoppers during the holidays and turn phishing into scalable business models…and that’s just the start. While we’re debating constraints around technology adoption, they’re on a tear expanding their reach. It’s time for cybersecurity, anti-fraud and risk leaders to soften the constraints on tech adoption and data sharing and start disrupting bad actors’ profit margins because if we’re not making fraud unprofitable, we’re making it inevitable.”
Cyber Technology Insights : Vikas Shetty Named Head of Product at Arkose Labs
The analysis reveals where attacks originate, the industries targeted and the techniques used:
The top countries of origin of attacks: United States, Vietnam, Great Britain, Germany and Thailand. Other nations visible in the research include El Salvador, where threat actors make 20x more targeting gaming companies compared to those working as software developers.
A list of five of the most targeted industries: technology, social media, gaming, retail and fintech.
The top three attack points used: account sign-up, sign-in and account management, with details on the sophisticated techniques and mechanisms employed by threat actors.
While the analysis looks at every aspect of bad behavior, the report also chronicles the successes that enterprises are having in stopping scams cold and ensuring legitimate consumers have seamless digital experiences living, working and enjoying the internet. Case studies detail the measures taken to reduce the impact of threat actors by taking away their main incentive—profit—by raising the cost to attack big companies.
Arkose Labs’ analysis is a call to action for global enterprises, security professionals and individuals alike to heighten vigilance against fraud. By shining a light on the complex scam ecosystem, Arkose Labs reinforces its mission to enable a safer digital experience for all.
Cyber Technology Insights : Arkose Labs launches bot protection for enterprise GPT
To participate in our interviews, please write to our CyberTech Media Room at sudipto@intentamplify.com
Source: businesswire
