We have always believed that leveraging community information on known spam offenders, bots, phishers, and cyber criminals gives our customers the best chance for rapid identification and stopping bad actors from being able to inflict damage on multiple organizations. We built our service with enhanced data sharing with the goal of providing significant improvement of detection for all involved. And in a strong and successful community, it is important to give some and hopefully get more in return.
The data so far is very exciting and illustrates the power of shared intel on bad actors.
The results so far:
Overall these results are very promising and show the power of community. By sharing intel anonymously and securely, we are making it harder for bad actors to inflict damage on multiple organizations.
Peter Cholnoky May 15th, 2014
Online identity fraud impacts revenue and customer growth, and can seriously damage reputation, brand image, and halt expansion into new markets. Download the free White Paper and see what you can do to help combat fraudulent transactions, registrations, and account hijacking.
Peter Cholnoky April 16th, 2014
Posted In: Uncategorized
All Subscription customers now have access to the Web Fraud Dashboard and Portal for E-HAWK Services.
The reporting portal provides stats on vet scores, risk types, and trends. With interactive charts and data analysis, it is easy to identify and track high risk areas and bad actor data. In addition, the portal provides feedback loops and the ability to add incidents to the community database.
The dashboard provides stats on risk types, data processed, average scores, and how data items are trending.
Risk reporting shows the percent of Very High Risk vets and the vets by risk type by day for the last 30 days.
Trend reporting displays the high risk hits by area over time, making it easy to see spikes of threats and risk hits.
The vet data area provides quick links for adding feedback and user data to the community database.
Peter Cholnoky March 28th, 2014
Today we released version 2.13 of the E-HAWK Vetting Platform.
Along with new tests and enhanced analytics, we have added an additional parameter: timeout=no. Adding this to your vets will run additional tests, but can slow API response times.
Some domain testing and analysis is time consuming and can take up to four seconds to process. For example, checking the parked status on a domain in real-time requires looking at the actual hosted page. Same with link verification, seeing if the site has a real TOS or privacy statement, etc. And Whois response time can be quite slow too. So, we have added the new parameter and value of timeout=no. Just add this to your vets and our service will start running additional testing for every vet. It might slow the response time to five seconds, but you will get the extra testing.
Peter Cholnoky February 2nd, 2014
Posted In: Vetting-API
We just added advanced device fingerprinting as part of our Online Vetting Platform and API. This gives clients enhanced levels of protection against fraudulent activities, registrations, and account hijacking.
The fingerprint is linked to risk level analysis of user data including IP, email address, phone, location information, domain, activity and frequency monitoring, geo-location analysis, and community data throughout our network of clients.
We are seeing a lot of bad actors jump between services using similar data patterns. The device fingerprinting automatically marks these users as very high risk and keeps them out of systems permanently.
The unique device fingerprint is connected to the Risk Score value. If the fingerprint has a positive average, the risk level is reduced. If the fingerprint has a negative average, the risk level is elevated and customers can quickly take the necessary action.
To download and use the fingerprinting in your vets, visit our API support page.
Peter Cholnoky January 28th, 2014
Posted In: Vetting-API
I am not a fan of Captchas. I have often lost out on great tickets from Ticketmaster.com, because by the time I figured out what the Captcha was, the tickets were gone. Captchas can keep out bots, but they can also negatively impact good customers. Is there a better way?
We think so. Our vetting solution also catches bots… and a lot more. The service runs over 200 tests looking for risky data and bad behavior. Unlike using a Captcha, vetting is totally transparent to the user. Prospects filling out your forms don’t have to type crazy words or try to figure out a complicated phrase.
And vetting provides real-time intelligence that empowers your business to make decisions based upon risk levels of user sign-up data including IP, phone, email, address, domain, geo-location, device, and more. Our service helps identify spammers, phishers, bots, and high risk data during the sign-up process.
Peter Cholnoky January 13th, 2014
Posted In: Vetting-API
We capture a lot of web leads to our Salesforce CRM. Many of them were junk or unqualified — including fraud, spam, or simply bogus data. We did not want to waste time on these types of leads. So we built the Sign-up Form Connector.
The connector is a PHP file that you download, add to your web site, and then modify your forms with a few quick changes. When visitors submit the form, the connector will first vet the data using our Vetting API, get a Risk Score and Risk Type for the user, and then automatically pass the registration data plus risk information onto your Salesforce account.
Within Salesforce, you can see each lead and their risk type.
For a specific lead, you can view their Risk Score and Risk Type as part of their record.
And finally, you can build a rule that automatically puts high risk leads into a Bad Actors Queue. So you don’t have to waste time on these leads.
Our automated vetting streamlines your lead process by quickly weeding out high-risk web leads. Invest your sales time on low risk clients to maximize returns.
Peter Cholnoky January 7th, 2014
Posted In: Sign-up Form Connector
Each time you vet some data we give it a risk score. Every vet starts at zero. When our risk engine discovers good things, such as a clean IP, the vet gets a few positive points. When bad things are identified such as a fake domain, negative points are scored. Most vets have some risk, but Risk Scores of -50 and below should be of concern and raise red flags.
As a guideline, our risk types are:
|Lowest Risk||10+ or higher|
|Low Risk||0 to 9+|
|Some Risk||-1 to -15|
|Medium Risk||-16 to -30|
|High Risk||-31 to -70|
|Very High Risk||-71 to -100|
The Vetting API has nine main areas of testing: IP, email, phone, location, domain, activity, Geo-location, device, and community.
Each area runs many sub-tests as well as cross analysis between linked data (for example the IP and the location). When the vetting analysis and test are complete, the API returns a Risk Score as well as scores for each area if desired. With this detail, your company can set threshold levels of risk tolerance for overall score as well as specific areas of interest.
Peter Cholnoky January 2nd, 2014
Posted In: Vetting-API
Tags: risk score
Our new interactive online vetting page is now available. For manual vetting, this is an easy-to-use form designed to work on desktops, tablets, and mobile devices.
The form includes all necessary fields for vetting as well as feedback buttons. Customers can also use the form to submit bad actors to the E-HAWK Community database.
The form is available to all customers. Just go to https://www.e-hawk.net/vet/ and enter your API Key.
Peter Cholnoky December 15th, 2013
We have launched v2.9.1 of the Vetting API. New features include:
Please take a look at our support area for updated guides and documents.
Peter Cholnoky December 11th, 2013
Posted In: Releases and Updates
Tags: product release