December 5, 2018
November 29, 2018
The firm is the premier global provider of data solutions and technology for consumer and business-to-business survey research. This firm reaches participants in countries via Internet, telephone, mobile/wireless and mixed-access offerings. It offers sample, data collection, questionnaire design consultation, online custom reporting, and data processing. With the firm’s global presence, the risk of fraud is high where isolated fraudsters as well as organized criminal networks seek to monetize fraudulent survey information. The firm needed a global, holistic response to this growing fraud trend, while maintaining its trusted reputation and reducing friction for legitimate survey respondents. With ThreatMetrix, the firm was able to:
The firm observed inconsistent survey data and unusually high incentive payouts. Upon investigation, it was determined that cybercriminals were filling out surveys to capitalize on monetary incentives. Cybercriminals would register new accounts to fill out surveys with fake data, extract payment incentives and then re-login into existing accounts to obtain more rewards. Cybercriminals were also leveraging the firm’s multi-mode market research capabilities where they were collecting data from multiple sources such as mobile to web applications. The firm’s flexible platform had also allowed cybercriminals to easily re-engage, to theoretically receive as many incentives as possible by signing back into the websites. Cybercriminals threatened the firm’s brand reputation as its clients relied on accurate data to make better business decisions.
One of the key business requirements for the firm was to ensure that any fraud and security solution was not overly aggressive and did not deter legitimate survey respondents. The ThreatMetrix solution created no friction in the sign-up procedure because respondents were passively authenticated in real time, yet it could still accurately detect high-risk behavior indicative of fraud.
The best way to tackle complex, organized cybercrime is using the power of a global shared network. The ThreatMetrix Digital Identity Network collects and processes global shared intelligence from millions of daily consumer interactions including logins, payments and new account applications. Using this information, ThreatMetrix creates a unique digital identity for each user by analyzing the myriad connections between devices, locations and anonymized personal information. Behavior that deviates from this trusted digital identity can be accurately identified in real time, alerting the firm to potential fraud. Suspicious behavior can be detected and flagged for review, step-up authentication or rejection before a transaction is processed, creating a frictionless experience for trusted users.
The firm took advantage of the flexibility of the ThreatMetrix policy engine to customize risk scores to suit its global business requirements. Additional rules were incorporated to target individual, larger-scale fraud attacks in specific geographical locations, without changes to the wider global strategy.