- Today
- Holidays
- Birthdays
- Reminders
- Cities
- Atlanta
- Austin
- Baltimore
- Berwyn
- Beverly Hills
- Birmingham
- Boston
- Brooklyn
- Buffalo
- Charlotte
- Chicago
- Cincinnati
- Cleveland
- Columbus
- Dallas
- Denver
- Detroit
- Fort Worth
- Houston
- Indianapolis
- Knoxville
- Las Vegas
- Los Angeles
- Louisville
- Madison
- Memphis
- Miami
- Milwaukee
- Minneapolis
- Nashville
- New Orleans
- New York
- Omaha
- Orlando
- Philadelphia
- Phoenix
- Pittsburgh
- Portland
- Raleigh
- Richmond
- Rutherford
- Sacramento
- Salt Lake City
- San Antonio
- San Diego
- San Francisco
- San Jose
- Seattle
- Tampa
- Tucson
- Washington
Behavioral Biometrics Emerge as New Cybersecurity Frontier
As AI-powered attacks evolve, banks turn to continuous user authentication to protect against fraud
Apr. 6, 2026 at 10:37am
Got story updates? Submit your updates here. ›
As cybercriminals leverage advanced technology like deepfakes and remote access trojans to bypass traditional security measures, banks are increasingly turning to behavioral biometrics to continuously authenticate users throughout a banking session. By analyzing subtle, unconscious patterns in how a user interacts with their device, behavioral models can distinguish one person from another, providing more robust protection against account takeover and device takeover attacks.
Why it matters
The rise of sophisticated cyberattacks has forced banks to rethink their security approaches, moving away from point-in-time authentication methods like passwords and biometrics towards continuous, passive authentication based on user behavior. This shift not only enhances security, but also improves the customer experience by reducing disruptive verification steps.
The details
Behavioral biometrics analyzes factors like scrolling patterns, typing rhythms, and device handling to create a unique profile for each user. Studies have shown that after just 11 scroll strokes, behavioral models can accurately identify an individual with 100% accuracy. By combining these nuanced behavioral signals with other risk indicators, banks can continuously verify a user's identity throughout a session, stopping fraud attempts in real-time without interrupting the customer experience.
- In 2012, researchers at UC Berkeley published the 'Touchalytics' study demonstrating the uniqueness of user scrolling patterns.
- In 2023, the FBI took down the notorious 'Genesis Market' dark web forum that hosted over 80 million stolen credentials.
- Emerging cyberattack tools like 'ProKYC' deepfakes and the 'BingoMod' remote access trojan are increasingly bypassing traditional security measures.
The players
AppGate Center of AI Excellence
A machine learning engineering team that develops user-specific behavioral models to provide continuous authentication and risk analysis for banking customers.
UC Berkeley
A university that conducted groundbreaking research on the uniqueness of user behavioral patterns, known as the 'Touchalytics' study.
FBI
The U.S. federal law enforcement agency that took down the 'Genesis Market' dark web forum, a major hub for stolen credentials.
What they’re saying
“Behavioral biometrics represents a sea change, from active (users are required to do something) to passive (natural behavior becomes the credential), from point-in-time authentication to continuous authentication, from fragmented user experiences to intrinsic and safe user workflows.”
— Brandon Janes, Machine Learning Engineer
What’s next
As behavioral biometrics continues to evolve, banks will likely invest more in developing user-specific models and integrating them with other security measures to stay ahead of increasingly sophisticated cyberattacks. Regulators may also play a role in establishing guidelines and standards around the ethical use of behavioral data for authentication.
The takeaway
The shift towards behavioral biometrics highlights how cybersecurity is becoming an arms race, with banks needing to constantly adapt their defenses to keep pace with the creativity of cybercriminals. By focusing on the uniqueness of each user's natural interactions, behavioral models offer a more robust and frictionless approach to authentication that can better protect against emerging attack vectors.
