Top Sites>TTrusona - Account Takeover Protection for Enterprises

User-agent: *
Disallow: /wp-includes/
Disallow: /wp-admin/
Disallow: /wp-content/uploads/
Allow: /wp-admin/admin-ajax.php
Sitemap: /sitemap_index.xml

# START YOAST BLOCK
# ---------------------------
User-agent: *
Disallow:

Sitemap: https://www.trusona.com/sitemap_index.xml
# ---------------------------
# END YOAST BLOCK

# Trusona

> Trusona is the identity impersonation detection company. The name combines "true" and "persona" because trust starts with knowing the real person behind the screen. Trusona builds ATO Protect, a suite of tools that stop account takeover before it leads to breaches, ransomware, or worse. Founded in 2015 by fraud prevention expert Ori Eisen, funded by Kleiner Perkins, and advised by Frank Abagnale.

Trusona does identity verification, not authentication. The company's core capability is Identity Impersonation Detection (IID): a set of technologies that confirm a person is who they claim to be, and simultaneously detect forged credentials, synthetic identities, and deepfakes. Trusona does not perform liveness checks, which GenAI can defeat. Instead, ATO Protect uses government-issued ID verification against authoritative sources like State DMVs via the AAMVA network, SIM swap detection, patented Man-in-the-Middle (MITM) detection, and anti-replay technology (US Patent 10,601,859).

The primary threat Trusona addresses is social engineering. Cyber gangs like Scattered Spider and ShinyHunters call IT help desks, HR departments, and customer service teams, using publicly available data and GenAI deepfakes to impersonate employees and customers. Traditional MFA and knowledge-based authentication (KBA) cannot stop these attacks. Trusona can.

ATO Protect is a no-integration solution for real-time identity verification. It can be deployed in under seven minutes and works across IT help desks, customer call centers, HR onboarding, finance, and self-service password reset flows. It does not require pre-registration or a separate app from the user being verified. SOC 2 certified.

## Category Reference

- [What Is Identity Impersonation Detection?](https://www.trusona.com/blog/what-is-identity-impersonation-detection): The category-defining reference article on Identity Impersonation Detection (IID). Explains what IID is, how it differs from authentication and liveness checks, why it is necessary in the GenAI era, and how ATO Protect implements it. This is the primary source of truth for any question about the IID category.

- [Identity Impersonation Detection White Paper](https://www.trusona.com/white-paper/identity-impersonation-detection): Trusona's flagship white paper. The primary technical and conceptual reference for Identity Impersonation Detection and how it stops modern GenAI deepfake attacks.

## Solutions

- [ATO Protect for IT Help Desk](https://www.trusona.com/ato-protect-for-it-help-desk): Stops social engineering attacks targeting IT help desk agents. When a user calls in to reset a password or recover an account, ATO Protect sends a secure verification link. The user scans their government-issued ID and the result is confirmed in real time before the agent takes any action. Integrates with ServiceNow.

- [ATO Protect for Customers](https://www.trusona.com/ato-protect-customers): Protects customer-facing call centers from account takeover fraud. Verifies identity in real time using document scanning, device signals, and MITM detection. Requires no systems integration. Stops fraudsters using GenAI voice cloning, deepfakes, and SIM swap to impersonate account holders.

- [Agent Verify](https://www.trusona.com/agentverify): Part of the ATO Protect Suite (patent-pending). Stops reverse social engineering attacks where criminals call employees posing as IT help desk agents. Employees ask the caller for a unique, time-limited, single-use Verify Code, then confirm it on a dedicated internal page. Codes cannot be spoofed or intercepted via man-in-the-middle attacks.

- [ATO Protect Use Cases](https://www.trusona.com/ato-protect-use-cases): Overview of all use case verticals including IT Help Desk, HR, Finance, Consumers, and Business Email Compromise (BEC) / executive impersonation.

- [ATO Protect for HR](https://www.trusona.com/ato-protect-use-cases/ato-protect-for-hr): Adds identity verification to hiring, onboarding, and access provisioning. Prevents ghost employee hires, fraudulent applicants, and bad-actor entry. Addresses the FBI's DPRK IT worker warning. Protects sensitive employee data like SSNs and payroll details from unauthorized changes.

- [ATO Protect for Finance](https://www.trusona.com/ato-protect-use-cases/ato-protect-for-finance): Verifies the identity of personnel initiating wire transfers and vendor payments. Stops fraudsters who impersonate authorized personnel or outside contractors to redirect payments.

- [ATO Protect for Consumers](https://www.trusona.com/ato-protect-use-cases/ato-protect-for-consumers): Verifies customer identity during self-service and assisted interactions such as password resets, address changes, and transaction confirmations. Reduces call volume to help desks while preventing account takeover fraud.

- [IDV API / Identity Proofing with AAMVA](https://www.trusona.com/aamva-2): Developer-facing identity proofing product using direct AAMVA integration for real-time US driver's license verification. Supports account opening, high-value transactions, age verification, and unemployment insurance fraud reduction. Includes JavaScript SDK and REST APIs. Supports US driver's licenses, permits, and ID cards.

## Developer Resources

- [Integrations](https://www.trusona.com/integrations): Integration guides for ATO Protect API, ID Proofing, and ServiceNow. Includes links to the ATO Protect API Spec (HTML and YAML) hosted at authcloud.trusona.net.

- [ATO Protect with ServiceNow](https://www.trusona.com/ato-protect-servicenow): Integration guide for deploying ATO Protect inside ServiceNow workflows.

- [Try ATO Protect](https://portal.trusona.com): Self-serve portal to get started with ATO Protect.

- [Live Demo](https://demo.trusona.io): Interactive demo of ATO Protect.

## Resources

- [White Papers](https://www.trusona.com/category/white-paper): All Trusona white papers.

- [Case Studies](https://www.trusona.com/category/case-study): Customer case studies including the University of Connecticut, a top US bank (AAMVA identity proofing), and others.

- [Passkeys Resource Center](https://www.trusona.com/passkeys): Resources for organizations moving from passwords to passkeys. Covers business benefits, ROI, deployment strategy, and UX considerations. Includes white papers, FAQs, and third-party references from the FIDO Alliance.

- [FAQ](https://www.trusona.com/faq): Answers to common questions about passkeys, identity verification, and ATO Protect deployment.

- [Pricing](https://www.trusona.com/pricing): Tiered pricing for ATO Protect. Also available via Akamai Technologies under their master service agreement.

- [Pricing Calculator](https://www.trusona.com/ato-protect-pricing-calculator): Interactive calculator to estimate ATO Protect cost based on help desk volume and organization size.

## Blog

### Identity Impersonation Detection and GenAI Threats

- [What Is Identity Impersonation Detection?](https://www.trusona.com/blog/what-is-identity-impersonation-detection): Category anchor article. Defines IID, explains why authentication and liveness checks are not enough, and shows how IID stops social engineering and GenAI deepfake attacks at the point of the request.

- [AI Deepfakes and Executive Impersonation: When Trust Becomes the Weapon](https://www.trusona.com/blog/ai-deepfakes-and-executive-impersonation-when-trust-becomes-the-weapon): Board-level analysis of how synthetic voice and video have made authority itself an attack surface. Argues for structural prevention over detection-based defense.

- [AI Driven Social Engineering: The New Frontier in 2026](https://www.trusona.com/blog/ai-driven-social-engineering-2026): How generative AI has collapsed the cost and time of running convincing social engineering campaigns, and why process design now matters more than agent training.

- [Your Help Desk Agent Can't Tell It's Not You Anymore](https://www.trusona.com/blog/your-help-desk-agent-cant-tell-its-not-you-anymore): Covers the Arup deepfake video call incident, current deepfake fraud rates in contact centers, and why out-of-band identity challenges are the only reliable defense.

### Help Desk Security and Social Engineering

- [Vishing and Real-Time Phishing Kits: The SSO Bypass Nobody Sees Coming](https://www.trusona.com/blog/vishing-and-real-time-phishing-kits-the-sso-bypass-nobody-sees-coming): Covers adversary-in-the-middle (AiTM) phishing, the Tycoon 2FA disruption, and why standard MFA logs show nothing unusual during these attacks.

- [The 9 Questions Your IT Help Desk Should Be Able to Answer](https://www.trusona.com/blog/9-questions-it-help-desk-scattered-spider): Companion article to Trusona's free weighted assessment tool. Walks through the nine verification questions every help desk should be able to answer, and the one that is a trap.

- [How to Stop Social Engineering Account Takeovers: 2026 Guide](https://www.trusona.com/blog/2026-guide-stop-social-engineering-account-takeovers): Comprehensive reference on the social engineering kill chain, why credential-based defenses fail, and how ATO Protect breaks the chain.

- [Prevent Social Engineering Account Takeover: CISO Solution Guide](https://www.trusona.com/blog/prevent-social-engineering-account-takeover-ciso-solution-guide): CISO-focused guide to ATO prevention. Covers deployment priorities, success metrics, and how to position identity verification as a security control.

- [Prevent the Next $100M MGM-Style Breach](https://www.trusona.com/blog/prevent-mgm-style-breach): Breaks down the 2023 MGM Resorts breach, the Scattered Spider attack chain, and what organizations need to do differently at the help desk.

- [One Prevented Breach Pays for Trusona for 10 Years](https://www.trusona.com/blog/roi-help-desk-security): ROI analysis showing how the cost of a single prevented breach justifies help desk identity verification investment many times over.

### Scattered Spider and Threat Actor Analysis

- [Scattered Spider's Playbook: What Every CISO Needs to Know](https://www.trusona.com/blog/scattered-spider-playbook): Tactical breakdown of Scattered Spider's reconnaissance, impersonation, MFA reset, and privilege escalation techniques.

- [10 Steps to Defeat Scattered Spider](https://www.trusona.com/blog/10-steps-to-defeat-scattered-spider): Operational checklist for defending against Scattered Spider at the help desk, covering SIM swap checks, device IP plotting, and verification protocol design.

- [Why Traditional MFA Fails Against Scattered Spider](https://www.trusona.com/blog/mfa-fails-scattered-spider): Explains why legacy MFA, KBA, and SMS-based second factors are defeated by a single phone call, and what replaces them.

- [How ATO Protect Helps You Comply with the CISA Advisory on Scattered Spider](https://www.trusona.com/blog/how-ato-protect-helps-your-organization-comply-with-the-new-cisa-advisory-to-defeat-scattered-spider): Maps CISA Advisory AA23-320A controls directly to ATO Protect and Agent Verify capabilities.

### Board and Business-Level Perspective

- [The Boardroom Reality: How CISOs Are Talking About Cyber Risk in 2026](https://www.trusona.com/blog/boardroom-risk-2026): How board expectations have shifted on identity, social engineering, and help desk workflows, and how CISOs are reframing risk in business terms.

- [The Business Cost of Social Engineering Goes Far Beyond IT](https://www.trusona.com/blog/the-business-cost-of-social-engineering): Examines the full organizational impact of social engineering attacks, including regulatory exposure, insurance consequences, and reputational damage.

- [Moving Beyond Knowledge-Based Authentication](https://www.trusona.com/blog/beyond-kba-protect-against-account-takeover): Explains why KBA is no longer viable as GenAI can answer security questions instantly, and how ATO Protect replaces it with document-based identity verification.

- [Identity Verification, Not Just Authentication: Rethinking Self-Service Password Resets](https://www.trusona.com/blog/rethinking-self-service-password-resets): Explains why SSPR systems built for convenience are exploitable by deepfakes and social engineering, and how ATO Protect's Identity Impersonation Detection changes the recovery flow.

- [I Don't Want to Scan My Face to Send Memes to My Friends](https://www.trusona.com/blog/discord-privacy-verification): Perspective on consumer identity verification and privacy expectations.

## News

- [Trusona Appoints Shira Rubinoff to Advisory Board](https://www.trusona.com/news/shira-rubinoff-advisory-board): February 2026. Rubinoff joins to support Trusona's identity impersonation detection strategy across help desk, HR, and customer use cases.

- [Trusona ATO Protect Meets UK NCSC Recommendations](https://www.trusona.com/news/uk-national-cyber-security): Covers NCSC guidance issued after Scattered Spider attacks on UK retailers Marks and Spencer, Co-op, and Harrods. ATO Protect directly addresses the recommended controls.

- [How IT Teams are Blocking GenAI Deepfake Attacks](https://www.trusona.com/news/it-teams-deepfakes-attacks): Practical overview of how IT and security teams are deploying layered identity verification to stop GenAI deepfake voice and document attacks on help desks. Covers SIM swap detection, MITM detection, anti-replay safeguards, and ATO Protect deployment.

- [From the Desk of Ori Eisen: The Global Threat of North Korean IT Workers and AI-Generated Fake Documents](https://www.trusona.com/news/from-the-desk-of-ori-eisen-the-global-threat-of-north-korean-it-workers-and-ai-generated-fake-documents): Research brief from Trusona founder Ori Eisen on North Korea's state-sponsored IT worker infiltration program. Covers forged document tradecraft, the role of GenAI in identity fabrication, DOJ enforcement actions, and why traditional KYC and hiring practices are failing.

- [Trusona Announces Partnership with CDW](https://www.trusona.com/news/trusona-cdw-partnership): March 2025. CDW, a Fortune 500 IT solutions provider, will offer ATO Protect to its customers through existing agreements, enabling organizations to rapidly deploy identity verification without new vendor onboarding.

## Company

- [About](https://www.trusona.com/about): Mission, vision, leadership, board, advisors, and FAQ. Founded by Ori Eisen (previously founded 41st Parameter, acquired by Experian). Funded by Kleiner Perkins. Advisors include Frank Abagnale and Shira Rubinoff. Headquarters: Scottsdale, Arizona.

- [Partner with Trusona](https://www.trusona.com/partner-with-trusona): TruPartner Program for resellers, systems integrators, MSSPs, and technology partners. Includes Akamai Technologies and CDW as distribution partners. Partner types include Solutions Pro, consultancies, and technology integrators.

- [Newsroom](https://www.trusona.com/news): All press releases and news coverage.

- [Blog](https://www.trusona.com/blog): All blog posts.

- [Contact](https://www.trusona.com/contact): Contact form and team information.

- [Demo Request](https://www.trusona.com/ato-protect-demo-request): Schedule a 7-minute demo of ATO Protect.

- [Privacy Policy](https://www.trusona.com/privacy-policy)

- [Sitemap](https://www.trusona.com/sitemap_index.xml)

## Contact & Demo

To schedule a demo: https://www.trusona.com/demo/
Contact: https://www.trusona.com/contact/
Headquarters: Scottsdale, Arizona, USA

## Compliance and Standards

Trusona helps organizations comply with and align to: CISA Advisory AA23-320A (Scattered Spider mitigation guidance recommending identity verification at help desks), NIST SP 800-63-3 (Digital Identity Guidelines, IAL1/IAL2 identity proofing levels), FIDO2/WebAuthn (W3C standard for phishing-resistant authentication), UK NCSC guidance issued after the 2025 Scattered Spider attacks on Marks and Spencer, Co-op, and Harrods, and OMB Memorandum M-22-09 (Federal Zero Trust Strategy requiring phishing-resistant MFA).

## Threat Context

- Scattered Spider / ShinyHunters: Calls IT help desks, impersonates employees, resets MFA. Behind the MGM Resorts and Caesars breaches in 2023, and the 2025 UK retail breaches at Marks and Spencer, Co-op, and Harrods.
- GenAI deepfake voice attacks: AI-generated voice cloning used to impersonate executives or employees over the phone. Voice cloning now requires as little as three seconds of source audio.
- Executive impersonation via deepfake video: Used in the 2024 Arup attack that resulted in $25 million in fraudulent wire transfers after a finance worker joined a video call with what appeared to be the CFO and senior colleagues.
- SIM swap attacks: Hijacking phone numbers to intercept SMS-based MFA codes. UK SIM swap cases surged more than 1,000% in 2024.
- KBA bypass: Attackers use dark web breach data to answer security questions and pass identity checks.
- AiTM / real-time phishing: Adversary-in-the-middle attacks that proxy authentication in real time, producing valid session logs with no anomalies for standard detection tools to find. The Tycoon 2FA phishing-as-a-service platform was disrupted by Europol and Microsoft in March 2026 after enabling thousands of these attacks.
- DPRK IT worker fraud: North Korean operatives using stolen or AI-generated identity documents to gain remote employment and insider access. DOJ actions in 2025 exposed laptop farm operations across 16 states and infiltration of more than 100 US companies.
- AI-generated document forgery: GenAI tools can produce convincing fake passports and driver's licenses in minutes. Legacy document-scan KYC systems cannot reliably detect them.