Fraud prevention through device intelligence

Published: May 5, 2014 by Matt Tatham

As we discussed in our earlier Heartbleed post, there are several new vulnerabilities online and in the mobile space increasing the challenges that security professionals face. Fraud education is a necessity for companies to help mitigate future fraud occurrences and another critical component when assessing online and mobile fraud is device intelligence. In order to be fraud-ready, there are three areas within device intelligence that companies must understand and address: device recognition, device configuration and device behavior.

Device recognition
Online situational awareness starts with device recognition. In fraudulent activity there are no human users on online sites, only devices claiming to represent them. Companies need to be able to detect high-risk fraud events. A number of analytical capabilities are built on top of device recognition:

  • Tracking the device’s history with the user and evaluating its trust level.
  • ​Tracking the device across multiple users and evaluating whether the device is impersonating them.
  • Maintaining a list of devices previously associated with confirmed fraud.
  • Correlation of seemingly unrelated frauds to a common fraud ring and profiling its method of operation.

Device configuration
The next level of situational awareness is built around the ability to evaluate a device’s configuration in order to identify fraudulent access attempts. This analysis should include the following capabilities:

  • Make sure the configuration is compatible with the user it claims to represent.
  • Check out internal inconsistencies suggesting an attempt to deceive.
  • Review whether there any indications of malware present.

Device behavior
Finally, online situational awareness should include robust capabilities for profiling a device’s behavior both within individual accounts and across multiple users:

  • Validate that the device focus is not on activity types often associated with fraud staging.
  • Confirm that the timing of the activities do not seem designed to avoid detection rules.

By proactively managing online channel risk and combining device recognition with a powerful risk engine, organizations can uncover and prevent future fraud trends and potential attacks.

Learn more about Experian fraud intelligence products and services from 41st Parameter, a part of Experian.

Related Posts

Pre COVID-19, operations functions for retailers and banks had not consisted of a remote workforce. Now retail and banking have changed for good.

Published: July 8, 2020 by Marc Mosman

Synthetic ID fraud is the fastest-growing type of financial crime in the US. The best offense means detecting synthetic identities before they're in place.

Published: December 5, 2019 by Alison Hillendahl

Combatting fraud trends in loyalty and rewards programs requires device intelligence, digital identity verification email risk scoring and more.

Published: December 4, 2019 by Alison Hillendahl