Case Study Problem In the spring of 2017, Avenue Stores customers began noticing fraudulent orders for merchandise placed on their accounts. Customers complained to their credit card companies who, in turn, notified Avenue that something was amiss. Avenue’s information security and fraud prevention teams investigated the issue and discovered that a ring of attackers had used bots to target Avenue.com with account takeover (ATO) attacks. Over the course of three months, the Avenue fraud prevention team spent thousands of man-hours combating the attacks from log file analysis, cooperating with payment processors to inform blacklists of the hacker’s IP and physical addresses, and customer service to the affected customers. The Avenue team initially tested a static Web Application Fi

Join for free to read