Securing Online Transactions with Mobile 2FA

In today’s digital world there are a large number of organised and well funded cyber criminals focused on breaking into company networks, stealing passwords, and gathering sensitive data for financial gain or to wreak havoc.

Identity theft with the intent to commit fraud is on the rise, and there are a variety of methods used including exploitation of easy to crack passwords and phishing.

modica2According to APWG’s Global Phishing Survey, there were more than 115,565 unique phishing attacks worldwide in the last six months of 2013, an increase of nearly 60% compared to the 72,758 seen in the first half of the year.
Of these, 681 were targeted institutions, and almost half of them were not phished in the first half of 2013.

The report concluded: “This is an unusual amount of “churn” or turnover, and shows phishers trying out new targets. They appear to be looking for companies that are newly popular, have vulnerable user bases, and/or are not ready to defend themselves against phishing.”

As more and more organisations move their operations online to meet user expectation of completing day-to-day tasks on the run, providing that service while ensuring their sensitive information remains completely secure remains a challenge.

Modica’s two-factor authentication (2FA) solution provides extra defence against unauthorised access to a myriad of digital systems by incorporating something users know – their password, and something they already have – their phone. By connecting your system to the Modica 2FA API you quickly and cost effectively have the ability to add a seamless layer of security to logins, major transactions, and profile and account setting changes.

The beauty of 2FA is its simplicity.  Our experienced team and simple API means your new, simple, yet secure service will be ready for roll out to users within a few hours.

The global ubiquity of SMS makes implementation easy for users, who don’t have to remember a whole raft of extra passwords, nor are you sending them expensive unique code generators.

The 2FA process begins when a user interacts with a part of your system requiring user authentication or system approval.  Your system automatically sends an authorisation code to a pre-determined mobile device and then prompts the user to enter that on screen allowing them to complete their transaction – or alerting them that someone else is attempting to access their account.

Modica’s 2FA solution is being used across a range of industries, including financial institutions, Healthcare, Government, and retailers for securing access, confirming high value transactions and managing opt in approvals to mailing lists and competitions.

With more than 10 year’s experience in mobile and ISP operations around the world, our 2FA solutions come with expert assistance, 24/7 support and real-time reporting.

Read a case study from NZACU, one of our satisfied customers, here. Or to find out more about Modica’s 2FA solutions and how to improve your business security please contact us online.


Cut costs, improve customer satisfaction, get results with SMS

The world is more connected and busier than ever.

People are fast becoming accustomed to banking, making reservations and bookings on the fly, and are increasingly expecting the same level of ease in all areas of their busy lives.

SMS services are quickly becoming the preferred method of choice for customers to send and receive information. It’s global, instant, unobtrusive, cost-effective and offers a very easy solution for businesses to connect with their customers.

A recent survey by Harris Poll on behalf of OneReach, showed people would prefer the freedom of contacting customer service via text, rather than by phone or computer.
Eighty one per cent didn’t want to be tied to their computer or phone, while 64 per cent of people prefer text communications over a phone call.

New Zealand software as a service company, Modica Group, has been providing mobile and ISP application services to telcos, Government departments, and businesses of all sizes for more than 10 years.
As a leading SMS marketing and business text messaging provider, Modica provides SMS marketing software, text messaging services, text message marketing, mass text messaging, mobile marketing platform, and mobile web solutions. We’ve worked with sectors including finance, insurance, media, retail, Government, local council, transport and logistics and mobile operators of all sizes.

Below are four of the SMS solutions Modica provides:

Mobile penetration rates have reached 96% globally. This almost universal rate of mobile adoption, coupled with improving telecommunication connectivity, shows SMS services are a cost-effective option for businesses wanting to streamline business processes and increase customer satisfaction.

Mobile Marketing
Businesses can send targeted promotional material and advertising such as promotions, coupons and offers instantly to customers to help gain insight and reduce marketing costs.
Read our case study here.

Mobile Engagement
Customers can participate in promotions and competitions such as text-to-win and unique product codes through subscription or voting products to increase brand awareness and engagement and ROI. Read a case study here.

Customer Service
Send confirmation, reminders, call centre responses and alerts to customers to reduce customer service costs and improve customer experience/retention.
Click here to read the case study.

Make it easy for your customers to complete transactions such as bank transfers, payments and donations quickly and easily with text-transactions to streamline communications and improve business processes.
Read our case study here.

Eight best practices for SMS marketing – infographic

More than 95 per cent of mobile phones are text enabled, which makes SMS a cost-effective and efficient method for brands and businesses to keep in touch with their customers.

Studies show people are increasingly tuning in on their mobile devices rather than their desk top or lap top computers. Today’s consumers are mobile, they’re always on the go and using their mobile devices to send, receive and search for information, all in their own time.

While SMS provides businesses with a huge opportunity to engage with their customers directly, consumer expectations are constantly growing and marketers need to remember to communicate appropriately and respectfully.
Below is a fantastic infographic from, outlining best practices for communicating with mobile subscribers.

Modica infographic

Helping keep NZ green


Forest & Bird is New Zealand’s largest independent conservation organisation that works to preserve natural heritage and native species.

Originally formed in 1923 to protect native forests and birds, over the past 90 years, Forest & Bird has grown to include protection of all native species and wild places from the land to the sea.

With business partners and customers around the globe, the Modica team is proud to call New Zealand home. We know too well that the clean and green image New Zealand projects to the world, is leveraged by every single Kiwi business that does business offshore.


Our international partners and clients consider us to be both world leaders in our conservation efforts, as well as providers of innovative products and services, from a safe and reliable business environment.

Forest & Bird is not a Government department.  They are an independent voice for nature and rely on donations from environmentally conscious people, and partnerships with like-minded businesses and organisations to continue their important work.

Modica has worked with Forest & Bird since 2008, hosting their Domain Names and Web Servers, and are happy to be providing a server for their ‘In Our Nature’ website.


Sponsorships are Modica’s way of helping out individuals and organisations with a good cause or great idea. Generally, we provide support and services, such as SMS services and free email and web hosting, in a partially or fully subsidised manner.

For more information about Modica’s social responsibility policy, or to submit a sponsorship request, click here.

We urge you to do your bit by making a donation to Forest & Bird’s In Our Nature campaign today and help protect our native wildlife for future generations.

Collaborative approach to cyber-safety best policy

In December last year, the Modica Group published its official Vulnerability Disclosure Policy to encourage people to report any system security breaches they may find in our online systems.

This policy supports our commitment to making our online systems as safe and secure as possible, and resolving any security issues in a way that minimises risk and disruption for our customers.
Recognising that our services run in endless configurations and with countless applications, we believe the best approach is to work in a collaborative and co-ordinated way with whoever discovers the flaw.

We ask the security research community to give us the opportunity to correct any vulnerabilities they may find before disclosing it, as we do when we discover breaches in other systems.
In return for people acting in good faith and following our guidelines, we promise the information disclosed to us will not be shared with others without the security researcher’s permission.  We also pledge not to take legal action against people who adhere to our policies.
In fact, if a security researcher were to report a vulnerability that affects our services and infrastructure, we’d publicly give thanks, and in some cases, offer a monetary reward.

Google routinely pay out cash rewards from $100 – $20,000 to security researchers as part of their Vulnerability Reward Programme.

For decades research has shown the important role that researchers can play in keeping systems secure, and a collaborative approach is more beneficial than treating everyone with suspicion.
However, some companies have stuck to the tradition of treating security research activity as criminal.
In this article, a 16-year-old found a basic security hole, that allowed him to access the personal details of 600,000 people.
But after reporting the flaw, instead of a thank you, the researcher received a visit from the police.
In the United States Andrew Auerheimer, aka “weev”, is serving three-and-a-half years in prison for identity theft and hacking after discovering a hole in a website that allowed anyone to obtain email addresses of iPad users.

Google’s Vulnerability Reward Programme tries to prevent would-be samaritans from getting into trouble, with a clause stating they will often pay more to people who report faults early on, to prevent them digging around further.

Last year the New Zealand Internet Task Force released the first draft of the Responsible Disclosure Guidelines to provide guidance for people who discover vulnerabilities, and organisations who have the weakness.  They believe clear boundaries and outlining all parties’ responsibilities will make it easier for security professionals to work together and help improve cyber security in New Zealand, something of benefit to suppliers and consumers alike.