Transmit Security: Detecting Registration Bots: A Case Study
The rise of registration bots
The past few years have witnessed a massive increase in new account fraud across a wide range of digital platforms. From fake profiles on dating apps that send phishing messages to legitimate users to bogus online gaming accounts designed to accrue in-game assets, to fraudulent financial accounts created to open new lines of credit, these phony accounts are often driven by registration bots — a type of bad bot that uses stolen or synthetic identities to create fraudulent new user accounts for malicious purposes. From 2020 to 2021, new bank account fraud grew 64%, according to the FTC…
The Cyber Hut Comment: An interesting - yet un-named - case study from Transmit. They initially provided support for the client during login, but registration issues due to an increasing number of fraudulent users, prompted Transmit to help out during enrolment too. They basically analysed some 2000 suspicious registrations - mainly new ID’s from new IP’s with no previous history of interaction. Transmit leveraged telemetry data they collected during the login phase - including network reputation, device fingerprint analysis and device (including mouse movement) behaviour anomaly. Using this hybrid data pack they help to improve the detection of fake identities.
IAM Radar by The Cyber Hut is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.