Recently, Xiaodun Security, an independent brand of business security under Tongdun Technology, and FreeBuf, a domestic network security industry portal, jointly released the "2021 Annual Business Risk Control Insight Report" (hereinafter referred to as the "Report"), which conducts an in-depth analysis of typical fraud scenarios and cases in 2021 from the three dimensions of business security, content security and cross-border security, and predicts the future risk evolution trend.
The "Report" pointed out that the normalization of the epidemic in 2021 has triggered the problem of reducing the expectation of global economic recovery and restructuring the industrial chain. Taking advantage of the situation, the mainland has made systematic and comprehensive arrangements for the development of the digital economy and the construction of related institutional mechanisms. At the same time, with the promulgation of the Personal Information Protection Law and the Data Security Law in 2021, the cybersecurity law and the previous Cybersecurity Law constitute the troika of the mainland network information world, and the anti-telecom fraud accelerates the legislative process to jointly ensure the long-term healthy development of the mainland's information-related industries.
As a leading full-stack business risk control solution service provider in China, Xiaodun Security analyzes and sorts out nearly 1,000 websites, hundreds of billions of network requests, and regulatory governance dynamics at home and abroad in 2021 in the "Report", using desktop research, industry interviews, market research and other methods, and combined with the results of Xiaodun Security's own monitoring system, to conduct in-depth analysis of the latest changes and typical cases of online fraud forms, network fraud distribution, content security risks, and cross-border business risks. Make predictions and suggestions on risk management in the post-epidemic era to provide reference for industry users.
Business security: Be wary of new types of fraud
Xiaodun Security said in the "Report" that the normalization of the epidemic has accelerated the process of economic and social digital transformation, on the one hand, the epidemic has accelerated the structural transformation of the online economy and the offline economy, and online traffic such as social networking, long and short videos, reading, office, education and so on has ushered in explosive growth.
With the easing of the epidemic and the recovery of the economy, the Internet industry has shown resilience, while contactless network fraud has become increasingly severe, fraud risk has become a major challenge for enterprise digital transformation and online business development, information scalping, card theft, wool wool, telecommunications fraud every year brings nearly 100 billion economic losses. Xiaodun security-related monitoring results show that the three industries most affected by online fraudulent traffic in 2021 are travel, government affairs, and e-commerce.
The report pointed out that the travel industry has become the industry with the largest online fraud traffic in 2021, especially airlines and railway ticketing systems have become the hardest hit areas for fraudulent traffic. At the same time, the government website ranked second. In recent years, under the background of "cloud government affairs", a large amount of government data can be queried in real time through the network, which has greatly benefited the people and has also become a major battlefield for network crawlers.
The e-commerce industry ranks third. In 2021, the total amount of commodity transactions (GMV) of the "Double Eleven" e-commerce platform reached a new high of nearly one trillion yuan, and various marketing activities emerged in an endless stream, and typical marketing activities such as Moutai spikes, large coupon subsidies, and novice activities were flooded with a large amount of black production traffic. In addition, it is worth noting that in 2021, the fraudulent traffic of the HYIP industry ranked in the top four, and a large number of automated malicious traffic entered the field.
In terms of forms of fraud, Xiaodun Security introduced in the "Report" that professional dating investment fraud "pig killing disk", online gambling, naked chat fraud, fish killing plate, bird killing disk, traffic fraud and other traditional forms of fraud, combined with digitalization, virtualization and other technical means continue to renovate variants. In addition, since 2021, there have been new cases of fraud using information related to the prevention and control of the new crown epidemic, such as posing as the CDC to send vaccine appointment text messages, and taking users' personal and bank card information in SMS links to defraud.
Xiaodun Security believes that the whole society needs to continuously strengthen the awareness of personal information protection and maintain a high-pressure crackdown on all kinds of telecommunications network fraud. At the same time, professional institutions need to strengthen the research and cracking of professional black and gray fraud methods, and use more professional means such as machine learning, knowledge graphs, and intelligent decision-making analysis tools to create a higher level of security boundaries with technology.
Content security: Regulatory "zero tolerance" high-pressure crackdown on violations
The report cites statistics from the China Internet Development Report 2021, showing that as of June 2021, the number of internet users on the mainland reached 1.011 billion, and the Internet penetration rate reached 71.6%. According to the latest data from the Ministry of Industry and Information Technology, as of the end of October 2021, the total number of on-shelf app distributions in mainland third-party app stores reached 2,039.4 billion times.
Xiaodun Security said that complex content constitutes the capillaries of the Internet, and everyone in this era is a content absorber and a producer, and various problems have begun to stand out in the context of the explosion of Internet content. Based on data analysis of tens of billions of samples and a survey of dozens of industry leaders, Xiaodun Security found that the distribution of illegal content under different carriers in the whole year of 2021 is as follows:
Xiaodun security research data shows that illegal content in 2021 accounted for more than 1% of the overall network content. At the level of different carriers, text is still the carrier with the highest incidence of illegal content, and advertising is the scene where all illegal content appears the most. At the same time, pornographic content tends to be disseminated in the form of pictures, and although the total amount of politically illegal content is small, it mostly touches the red line. In scenarios where foreign language content such as English is used, abusive content accounts for the largest proportion.
In addition, Xiaodun Security observed that the protection of minors online has reached a new height. The newly revised Law on the Protection of Minors came into effect on June 1, 2021, adding two chapters on "Network Protection" and "Government Protection" to the original to provide all-round protection for the healthy growth of minors. With the exponential growth of Internet content, online platforms need to further assume the main responsibility for the protection of minors.
In 2021, several other outstanding features in the field of content security are the high incidence of short video infringement, the "chaos in the rice circle" has repeatedly become the focus of public opinion, and the entertainment live broadcast frequently hits pornographic content "scratching the edge"; at the same time, the regulatory level has increasingly reflected the "zero tolerance" crackdown on content security violations. Therefore, the content security management of enterprises also needs to be comprehensively laid out from the aspects of policy understanding, technical reserves, and talent reserves.
Cross-border risk control: solving the "water and soil dissatisfaction" of going to sea
Since 2021, domestic enterprises going to sea has become an important breakthrough in creating new economic growth points, and a group of enterprises represented by e-commerce, pan-entertainment, and payment institutions have used their own platforms, technologies, services and other advantages to go to sea across borders, gradually covering Latin America, Africa, Southeast Asia, the Middle East and other regions on the basis of the traditional European and North American markets, ushering in more development opportunities in many emerging markets.
Cross-border business of enterprises essentially belongs to the scope of international trade. Xiaodun Security believes that in the post-epidemic era, cross-border business will face a series of pressures such as a more complex trading environment, regulatory environment and cultural environment than general international trade, and it is necessary to strengthen management in terms of two major risks: business security and content security.
In the long-term research and continuous confrontation of overseas black industry, Xiaodun Security found that although the cheating methods of overseas black industry are relatively simple at this stage, and there is a certain gap in technical maturity compared with domestic professional black industry, while mainland enterprises go to sea across borders to open up new markets, domestic black production sea has also become a trend, and it is expected that the risk of overseas business will become increasingly fierce in the next few years.
For example, in Southeast Asia, where mainland enterprises go to sea is more dense, the risk risk of marketing fraud "wool" has become a significant feature, the reason is that Southeast Asia is more closely related to the mainland region, and the black industry is also more mature, and the proportion of automated black production tools such as multi-opening and simulators is also the largest in the main sea areas.
As one of the focal points of creating a new development pattern of domestic and international dual circulation, China's cross-border overseas enterprises have applied artificial intelligence, big data, small programs and other technologies in the wave of continuous upgrading of consumption patterns, spawning new formats and new models, conforming to the current consumer demand of personalization and emphasizing experience, and are becoming an important leader in global new consumption. However, there are thousands of roads, and safety is the first. In order to meet the various risk challenges of the digital age, only by strengthening the risk awareness and building a solid digital security infrastructure can all participants better seize the opportunities given by the times.
Leifeng Network