Abstract: Described are techniques including a computer-implemented method of maintaining a list of newly assigned phone numbers. The method further comprises intermittently removing phone numbers from the list of newly assigned phone numbers. The method further comprises determining that a newly assigned phone number initiates a number of calls per unit time that exceeds a threshold number of calls per unit time. The method further comprises automatically flagging the newly assigned phone number as a possible robocaller.

Abstract: A computer-implemented method, a computer system and a computer program product detect false images and malicious embedded links in communications. The method includes receiving an image from a server. The image includes a link with an address. The method also includes determining that the image is associated with an organization based on comparing the image to a set of verified images associated with the organization. In addition, the method includes determining that the address of the link is not associated with the organization based on comparing the address to a set of verified addresses associated with the organization. Lastly, the method includes displaying an alert on a device in response to the determination that the image is associated with the organization and the address is not associated with the organization.

Abstract: Described are techniques including a computer-implemented method of maintaining a list of newly assigned phone numbers. The method further comprises intermittently removing phone numbers from the list of newly assigned phone numbers. The method further comprises determining that a newly assigned phone number initiates a number of calls per unit time that exceeds a threshold number of calls per unit time. The method further comprises automatically flagging the newly assigned phone number as a possible robocaller.

Abstract: Embodiments of the present invention provide a method, computer program product, and computer system for verifying transactions over a network. The method includes initiating a proposed transaction with a transaction server. The transaction server provides encoded details of the proposed transaction, in the form of a QR code, to the user. The QR code is scanned using a computing device, and is decoded using an application on the computing device. A set of transaction details associated with the decoded QR code is compared with the details of the proposed transaction. The proposed transaction is then confirmed or aborted using a separate communication channel.

Abstract: Embodiments of the present invention provide a method, computer program product, and computer system for verifying transactions over a network. The method includes initiating a proposed transaction with a transaction server. The transaction server provides encoded details of the proposed transaction, in the form of a QR code, to the user. The QR code is scanned using a computing device, and is decoded using an application on the computing device. A set of transaction details associated with the decoded QR code is compared with the details of the proposed transaction. The proposed transaction is then confirmed or aborted using a separate communication channel.

Abstract: The disclosure is directed to a device password reset. A method in accordance with an embodiment includes: receiving a phone call at a locked mobile device from a phone having a privileged phone number; initiating a password reset in response to the receipt of the phone call from the privileged phone number and the phone call exceeding a predetermined time duration threshold by: terminating, by the locked mobile device, the phone call from the phone having the privileged phone number; generating, by the locked mobile device, a temporary password; establishing, by the locked mobile device, a connection to the phone having the privileged phone number; displaying, by the locked mobile device, a password entry field; communicating, by the locked mobile device, the temporary password via the connection to the phone having the privileged phone number; and unlocking the locked mobile device upon successful entry of the temporary password in the password entry field displayed by the locked mobile device.

Abstract: The disclosure is directed to a mobile device password reset. A method in accordance with an embodiment includes: receiving a phone call at a locked mobile device from a phone having a privileged phone number; initiating a password reset in response to the receipt of the phone call from the privileged phone number and the phone call exceeding a predetermined time duration threshold by: terminating, by the locked mobile device, the phone call from the phone having the privileged phone number; generating, by the locked mobile device, a temporary password; establishing, by the locked mobile device, a connection to the phone having the privileged phone number; displaying, by the locked mobile device, a password entry field; communicating, by the locked mobile device, the temporary password via the connection to the phone having the privileged phone number; and unlocking the locked mobile device upon successful entry of the temporary password in the password entry field displayed by the locked mobile device.

Abstract: The disclosure is directed to a device password reset. A method in accordance with an embodiment includes: receiving a phone call at a locked mobile device from a phone having a privileged phone number; initiating a password reset in response to the receipt of the phone call from the privileged phone number and the phone call exceeding a predetermined time duration threshold by: terminating, by the locked mobile device, the phone call from the phone having the privileged phone number; generating, by the locked mobile device, a temporary password; establishing, by the locked mobile device, a connection to the phone having the privileged phone number; displaying, by the locked mobile device, a password entry field; communicating, by the locked mobile device, the temporary password via the connection to the phone having the privileged phone number; and unlocking the locked mobile device upon successful entry of the temporary password in the password entry field displayed by the locked mobile device.

Abstract: The disclosure is directed to a mobile device password reset. A method in accordance with an embodiment includes: receiving a phone call at a locked mobile device from a phone having a privileged phone number; initiating a password reset in response to the receipt of the phone call from the privileged phone number and the phone call exceeding a predetermined time duration threshold by: terminating, by the locked mobile device, the phone call from the phone having the privileged phone number; generating, by the locked mobile device, a temporary password; establishing, by the locked mobile device, a connection to the phone having the privileged phone number; displaying, by the locked mobile device, a password entry field; communicating, by the locked mobile device, the temporary password via the connection to the phone having the privileged phone number; and unlocking the locked mobile device upon successful entry of the temporary password in the password entry field displayed by the locked mobile device.

Abstract: Aspects of the invention provide a solution for detecting man-in-the-middle attacks in electronic transactions using prompts. One embodiment includes a method for authenticating an electronic transaction. The method includes: receiving an electronic transaction request from a user, determining an IP address associated with a client system from which the electronic transaction request originates, providing the user with a password associated with the electronic transaction request, receiving a telephonic communication from a telephonic device associated with the user, prompting the user, via a voice response unit, to input the password using the telephonic device, authenticating the user by comparing the inputted password and the provided password, determining a probable location of the user based on the determined IP address of the client system, communicating to the user the probable location of the user based on the determined IP address, and prompting the user to confirm the probable location of the user.

Abstract: Aspects of the present invention provide a solution for verifying the integrity of a transaction. In response to receipt of a confirmed electronic transaction from a user, a one time password is forwarded to the user. The user then initiates a telephonic communication with a verifier on the user's wireless device and provides the one time password to the verifier. The verifier authenticates the mobile telephonic device based on the device's caller identification number and determines whether the one time password provided by the user matches the one forwarded to the user. After the user is authenticated, the verifier communicates the details of the transaction that were received and the user confirms whether the details match those originally entered.

Abstract: A system, method and program product for controlling access to a restricted item. A method is provided that includes: receiving a request for access to a restricted item at a computer system associated with a provider, said request originating from a client system; determining an IP address of the client system; determining a mobile phone number of a mobile phone associated with the requester; transmitting to a third party service provider the IP address and mobile phone number; and receiving back from the third party service provider a confirmation message indicating whether or not the IP address and mobile phone are located within an acceptable range of each other.

Abstract: Aspects of the invention provide a solution for detecting man-in-the-middle attacks in electronic transactions using prompts. One embodiment includes a method for authenticating an electronic transaction. The method includes: receiving an electronic transaction request from a user, determining an IP address associated with a client system from which the electronic transaction request originates, providing the user with a password associated with the electronic transaction request, receiving a telephonic communication from a telephonic device associated with the user, prompting the user, via a voice response unit, to input the password using the telephonic device, authenticating the user by comparing the inputted password and the provided password, determining a probable location of the user based on the determined IP address of the client system, communicating to the user the probable location of the user based on the determined IP address, and prompting the user to confirm the probable location of the user.

Abstract: Aspects of the present invention provide a solution for verifying the integrity of a transaction. In response to receipt of a confirmed electronic transaction from a user, a one time password is forwarded to the user. The user then initiates a telephonic communication with a verifier on the user's wireless device and provides the one time password to the verifier. The verifier authenticates the mobile telephonic device based on the device's caller identification number and determines whether the one time password provided by the user matches the one forwarded to the user. After the user is authenticated, the verifier communicates the details of the transaction that were received and the user confirms whether the details match those originally entered.

Abstract: A system, method and program product for controlling access to a restricted item. A method is provided that includes: receiving a request for access to a restricted item at a computer system associated with a provider, said request originating from a client system; determining an IP address of the client system; determining a mobile phone number of a mobile phone associated with the requester; transmitting to a third party service provider the IP address and mobile phone number; and receiving back from the third party service provider a confirmation message indicating whether or not the IP address and mobile phone are located within an acceptable range of each other.

Abstract: A method and apparatus are disclosed for preventing unauthorized access to a restricted item using a cellular telephone that has been previously associated with a user, for example, during a registration process. The user is initially identified, for example, by entering a password, and a one-time pseudo-random token is provided to the user using a first communication channel. The user is requested to dial a telephone number associated with an access control service using a cellular telephone that has been previously associated with the user and enter the assigned token. The user obtains access to the restricted item if the assigned token is entered from a cellular telephone having a serial number that has been previously associated with the particular user.

Abstract: A method and apparatus are disclosed for preventing unauthorized access to a restricted item using a cellular telephone that has been previously associated with a user, for example, during a registration process. The user is initially identified, for example, by entering a password, and a one-time pseudo-random token is provided to the user using a first communication channel. The user is requested to dial a telephone number associated with an access control service using a cellular telephone that has been previously associated with the user and enter the assigned token. The user obtains access to the restricted item if the assigned token is entered from a cellular telephone having a serial number that has been previously associated with the particular user.

Abstract: A method and apparatus are disclosed for preventing unauthorized access to a restricted item using a cellular telephone that has been previously associated with a user, for example, during a registration process. The user is initially identified, for example, by entering a password, and a one-time pseudo-random token is provided to the user using a first communication channel. The user is requested to dial a telephone number associated with an access control service using a cellular telephone that has been previously associated with the user and enter the assigned token. The user obtains access to the restricted item if the assigned token is entered from a cellular telephone having a serial number that has been previously associated with the particular user.