July 16, 2019
With many companies now employing a “digital first” strategy, online transactions have become more pivotal than ever. Consumers transact across a range of devices, storing more personal information online than ever before and visiting trusted sites on a daily basis. Fraudsters are cashing in on this diverse landscape, capitalizing on new techniques for stealing credit card and identity information, and the availability of ever more sophisticated malware. As mobile transactions continue to increase, the threat from payment fraud has never been greater.
Payment fraud can have a huge impact on the success of a business. Damage from a single incident is not limited to lost revenue. Fraudulent transactions can compromise user trust, acquisition numbers and lifetime value. Yet preventing fraud is a balancing act between identifying cybercriminals while minimizing friction for trusted users.
The Value of Understanding True Digital Identity
Establishing a complete, unique and reliable picture of true digital identity is more valuable to businesses than ever before. It is crucial to know who your customers really are, because a legitimate and trusted customer base is essential to business growth. The infiltration of fraudulent transactions can cause huge damage to revenue, reputation and lifetime value.
Identifying Legitimate Transactions Without Adding Friction
The challenge for businesses is how to navigate the balancing act of accurately identifying fraudsters, while minimizing friction associated paying for good and services. Invasive verification strategies often lead to legitimate customers abandoning transactions and hinder business growth.
Using the ThreatMetrix Digital Identity Network to Establish True Identity
ThreatMetrix has a market leading fraud solution that can protect your business from fraudulent transactions. The ThreatMetrix Cybercrime Protection Platform adopts a layered approach to effectively distinguish between legitimate customers and cybercriminals in real time.
The ThreatMetrix Digital Identity Network
The Network underpins the ThreatMetrix solution and leverages global shared intelligence from millions of daily consumer interactions including logins, payments and new account originations. Using this information, ThreatMetrix stitches together a customer’s true digital identity by analyzing the myriad connections between devices, locations and anonymized personal information.
The challenge for businesses is how to navigate the balancing act of accurately identifying fraudsters, while minimizing friction associated paying for good and services.
Leveraging User Identity and Behavior Patterns to Detect Threats
Digital Identities within the ThreatMetrix Digital Identity Network show a pattern of trusted behavior by incorporating anonymized non-regulated personal information such as user name, password and email address with device identifiers, connection and location characteristics. At the same time ThreatMetrix profiles all devices accessing a website (desktops, laptops, smartphones, or tablets), to identify the presence of malware or other anomalies that might indicate a high-risk transaction. High-risk anomalies can be easily identified and flagged for review or automatic rejection. Businesses can confidently detect transactions, including:
- Payments From Legitimate
Users confidently approve transactions from legitimate, trusted users; streamlining their online experience and reducing unnecessary friction.
- Transactions From Cybercriminals
Reject transactions from known fraudsters, or bots carrying out credit card testing. Detect multiple identities using a single device, mismatches between identity and location, devices disguising their true locations, and other indicators of identity theft.
- MITM or MITB Malware
Avoid accepting transactions from devices compromised by malware. Use page fingerprinting to detect compromised sessions that may be redirecting or altering transaction information in flight.
Personalizing the ThreatMetrix Solution to Your Business
ThreatMetrix offers a powerful yet easily customizable Policy Engine that allows you to incorporate your own business processes and tolerance for risk. This allows your business to fine tune and automate responses for transactions. Every business faces different exposure to fraud risk; with ThreatMetrix you have the ability to tailor the solution to meet these varying and evolving business needs. For example, you may:
- Allow payments from known good customers on known devices with no evidence of malware or compromise.
- Deny transactions from highly suspicious situations or known botnet participants.
- Automate third-party identity validation for particularly sensitive transactions.
ThreatMetrix offers a powerful yet easily customizable Policy Engine that allows you to incorporate your own business processes and tolerance for risk.
What Gives ThreatMetrix the Advantage?
ThreatMetrix offers the broadest combination of defenses against payment fraud in a solution that imposes little burden on your IT resources or your customers.
- Rapid, lightweight deployment:
The ThreatMetrix Cybercrime Protection Platform is a cloud-based solution, meaning you don’t need to add servers or additional infrastructure to protect account transactions.
- Up-to-date global insight:
Integration with the ThreatMetrix Digital Identity Network gives you constant access to current fraud intelligence, including known botnets, global device behavior, and the identity of known fraudsters.
- Real-time responsiveness:
ThreatMetrix delivers real-time insight, so you can identify fraudsters before they breach transact and compromise your business.
- Integration with third-party services:
For higher-risk accounts, you can verify transactions with integrated third-party identity verification services for an extra level of assurance.
- Detailed analysis and reporting:
ThreatMetrix provides visualizations and analytical reports that allow your security and fraud analysts to see and understand enterprise application activity, and take proactive steps to improve security and reduce fraud.