A cybersecurity expert warns that two-factor authentication (2FA) is insufficient against sophisticated fraud strategies.
According to the expert, cybercriminals are using advanced tools like malware to steal banking credentials and hijack active user sessions. This allows them to manipulate transactions, insert fake forms undetected by traditional systems, and even use deepfakes to falsify user identities.
The main problem, according to Mario Barrera, Commercial Director of Nubatech, is the static approach to security. "This security paradigm is insufficient against the sophistication of fraud strategies because cybercriminals exploit the gaps that exist between each validation," he argues.
Instead, a continuous validation approach is proposed. "It's not enough to verify who enters; we must continuously verify who is really behind each action, adopting a different approach that validates the user's identity and intent throughout the session, in real-time and without the customer having to intervene," Barrera details.
Current solutions can validate the user while they operate on their device through precise biometrics, real-time liveness detection, and behavioral models. These verifications are completely invisible to the customer but are highly effective at eliminating the security gaps that criminals exploit.
