Report Overview
Account takeover sits at the center of modern banking fraud, impacting authentication, session behavior, recovery, and ultimately customer trust. Yet many banks still rely on point-in-time controls, leaving gaps attackers exploit after login.
As digital banking expands across mobile, APIs, third-party integrations, and call centers, ATO has become more persistent and harder to contain. Most fraud teams now see the same compromised accounts targeted repeatedly, stretching operations and exposing customers to ongoing risk.
Keeping pace requires moving beyond static authentication. Leading banks are shifting toward continuous monitoring, behavioral intelligence, and real-time risk decisioning that adapts as sessions unfold, without adding unnecessary friction for legitimate customers.
The 2025 Index for Account Takeover Prevention in Banking benchmarks the 15 vendors driving this shift. Liminal evaluated the market to identify platforms that combine strong detection, scalable automation, and customer-aware controls across authentication, behavioral analysis, fraud intelligence, and recovery orchestration.
Key Takeways:
- ATO attacks are persistent, not isolated: 95% of practitioners report repeated attacks against the same compromised accounts, highlighting the need for continuous monitoring beyond login.
- Authentication is necessary, but insufficient on its own: 97% of practitioners confirm authentication reduces risk exposure, yet 95% still view post-breach prevention and recovery as central to their fraud strategy.
- Threat exposure is expanding across channels: Over the next two years, practitioners expect rising ATO risk across mobile (78%), third-party partners (76.7%), APIs (74%), desktop (69.9%), and call centers (65.8%).
- Customer friction limits stronger controls: 88% of practitioners admit they avoid deploying stronger safeguards due to concerns about abandonment and experience impact.
- AI agent activity is rising fast: 86% observe consumer-controlled AI agents performing commercial tasks, but 60% see compliance risk and 20% feel unprepared to govern access.
- Automation is reshaping recovery: 81% of practitioners now favor automated identity re-verification in recovery workflows, compared to just 21% who still rely on manual case reviews.
Methodology
The Link Index offers a detailed analysis and ranking of leading vendors for specific use cases, leveraging robust data and insights from Liminal’s market and competitive intelligence platform, Link. Liminal’s research team invites solution providers to participate in a company survey and analyst briefing. It uses a proprietary framework to assess and rank product capabilities based on their relevance to market needs. Liminal’s Digital Identity Landscape taxonomy and ontology are central to the Link Index, which precisely evaluates vendor solutions by buyer demand, product capability, and market presence. Liminal conducts a rigorous survey among buyers in the vendor selection process to identify the most in-demand product capabilities and the most valued product components. Market presence criteria included buyer satisfaction, market penetration, and brand recognition. The Link Index was designed to be used to inform go-to-market strategy and execution and provide guidance for solution buyers, specifically:
- Executives in corporate strategy
- Leaders of go-to-market execution
- Practitioners of solution implementation
Customer
access
- View the full report instantly in the Liminal platform.
Contributors
Travis Jarae
CEO
Jennie Berry
President
Stacy Beddoes
Chief Marketing Officer
Joe Stuntz
Principal
Cameron D'Ambrosi
Senior Principal
Coby Friedland
Associate
Vivaan Jaikishan
Associate
Intelligence Platform
Turn Data Overload
Into Strategic Action
Make confident decisions with centralized, contextualized intelligence.
Start Today