DEFINITION of 'Man-In-The-Middle Fraud'

Man-In-The-Middle Fraud is a crime where an unauthorized third party obtains a consumer’s or business’s sensitive data as it is being sent over the Internet. This fraud can be accomplished fairly easily over an unsecured network, such as public WiFi, or a poorly protected home network. It can also be carried out through installing malware on the target’s computer.

BREAKING DOWN 'Man-In-The-Middle Fraud'

You could become a victim of man-in-the-middle fraud if a criminal “eavesdrops” on your login credentials when you log in to your bank account through an unsecured wireless network. You’ll have no idea that anything unusual is happening. Later, with your login name and password, the thief can clean out your bank account.

Fake WiFi Networks

Criminals can also set up fake public WiFi networks that innocent users then log onto and send data over. The criminal has access to all the information that the users send over that network and can steal any valuable data. A criminal could also conduct a man-in-the-middle attack by setting up a fake website that pretends to be a legitimate website, then stealing consumers’ information when they try to use the fake website. Yet another strategy involves intercepting emails between two parties and creating spoofed emails that cause those parties to provide sensitive data to the man in the middle.

Fraudwatch International recommends "that you use strong mutual authentication between the client and the server. For instance: the server authenticates the client’s request by presenting a digital certificate, and only then can a connection be established. Another method for preventing a MITM attack is never to connect to open Wi-Fi routers directly. If you need to do this, you should use a browser plug-in, such as HTTPS Everywhere or ForceTLS. These plugins will help you establish a secure connection whenever the option is available."

You can avoid man-in-the-middle attacks by:

  • not clicking on links in emails.
  • making sure the address of the financial institution’s website you’re visiting starts with https, not just http.
  • changing your home Internet password from the default one the Internet service provider issued you.
  • not using public WiFi on your phone, tablet or computer to check your email, your bank account balance, your credit card account, or any other site that contains or requires your personal data.
  • using Internet security software.

There is no complete foolproof way to avoid becoming a victim of a sophisticated man-in-the-middle attack, but taking these basic precautions will lower your risk.

RELATED TERMS
  1. Fullz

    A slang term that criminals who steal credit card information ...
  2. Supply Chain Attack

    A supply chain attack is a cyberattack that attempts to inflict ...
  3. Networking

    Networking is a process that fosters the exchange of information ...
  4. Marketing Fraud

    Marketing fraud is an illegal practice perpetrated by a company ...
  5. Securities Fraud

    Securities fraud is a form of white-collar crime that disguises ...
  6. HTTPS

    Hypertext Transfer Protocol Secure (HTTPS) is a secure form of ...
Related Articles
  1. Tech

    How to Protect Your Data From Being Hacked

    Identity theft and credit card fraud can happen to anyone. Use these tips to help keep your personal information safe.
  2. Insights

    How to Protect Your Assets From Cyber Thieves

    Taking these precautions can keep you a step ahead of identity thieves and fraudsters.
  3. Personal Finance

    7 Places To Find Free WiFi

    Free internet is widely available and easily accessible - you just need to know where to look. Here are some places to start.
  4. Tech

    Debit Card Fraud: Is Your Money At Risk?

    Find out how your money is becoming more vulnerable to debit card fraud by criminals and hackers. Use these nine easy ways to protect yourself.
  5. Tech

    11 Ways to Help Prevent Identity Theft

    Identity theft is no joke. Here are 11 ways to help prevent falling victim to it.
  6. Personal Finance

    Which Airline Has the Best Wi-Fi?

    Airlines know that flyers expect a wireless connection – but not all offer the same level of connectivity.
  7. Tech

    5 Ways to Avoid Identity Fraud

    Identity theft was the number one consumer complaint in 2014. Here are some ways you can protect yourself.
  8. Tech

    Avoid Becoming An Identity Thief's Next Victim

    Use these 7 techniques to keep yourself under the radar and out of the way of identity thieves.
  9. Financial Advisor

    Top Hacks to Protect Clients from Tax Scams

    There are many ways that clients can be victimized in today’s digital world, but there are also many ways to protect against these invasions. Here are some.
Trading Center