True-Geo location intelligenceThe true location of the device originating a transaction can be revealed using TrueGeo geolocation technology. If a proxy is used during fraudulent transactions, it serves to hide the true location of the perpetrator. If the fraudster is using a botnet proxy network, then multiple transactions can appear to be coming from different locations, hiding the fact that they are all actually coming from the same source.Current fraud scrubbing technologies look for "transaction velocity" to determine that automated transactions are occurring, by looking for multiple transactions from the same location within a short time frame. These techniques cannot detect high transaction velocities when the fraudster uses multiple botnet proxies, since each transaction appears to be coming from a different location, and the proxy itself is undetectable by the techniques currently in use. Taking information from device fingerprinting and TrueIP proxy peer-through, TrueGeo returns the true location of these multiple transactions, and the location of the proxies. Proxy servers such as those provided by ISPs, or anonymous browsing services, can show IP and location relationships between each other. Legitimate use of proxies by the same end user can result in the end user showing a varying IP and location, but these data will be related to one another. A perpetrator using a botnet proxy network will use proxies more randomly unrelated in address or geolocation. TrueGeo helps to unmask anomalous location information. For example, TrueGeo may show that a perpetrator's machine is located in Russia, and that transactions from that machine have occurred via proxies as separated in location as the UK, USA and Germany. This would not be as likely if the use of the proxy was for legitimate use. TrueGeo, when coupled with TrueIP and device fingerprinting helps to establish more effective fraud control through more effective identity verification and anomaly detection. |