Fight registration fraud and high risk transactions.

Actionable information is is critical when trying to catch fraudsters. Our JSON response includes all risk hits, and now we have updated the online web form to display reasons and risks areas too. And added a new parameter “compact=yes” to just display the scoring area. This is ideal for linking vetting into CRM systems. Lean more.


February 16th, 2015

Posted In: Vetting-API

Each organization views risk differently. Some consider spam history as very risky, others might not. A newly created domain might be high risk for some, but actually a good score for businesses selling hosting. So we have introduced custom scoring for all annual subscribers, empowering you to modify scoring to meet your business risk tolerance levels.


Configure over 100 items to create a custom risk score for your business needs. Contact your E-HAWK support team for full details.

February 16th, 2015

Posted In: Vetting-API

We have added over 1 million proxy servers to our internal database as well as incorporated some 3rd party proxy detection listings for both anonymous and transparent proxy detection. In addition, private IPs as well as IPs with no geo information will be marked as having some risk.

Our live feeds keep our information fresh and this should improve our proxy detection and fraud analysis.

November 8th, 2014

Posted In: General News, Vetting-API


We like fingerprinting technology. The data can help, when used as an additional parameter, to identify risk.

It’s by no means perfect…. The Gartner Group has many studies highlighting the issues with false tagging, being able to properly tag mobile devices, and the problem with devices changing hands often. We have seen devices go from good to bad, bad to good, in a fairly short period of time. But overall, we also have seen some strong benefits of incorporating device fingerprinting into our testing model.

This example of a single fingerprint includes over 200 high risk sign-up requests across multiple accounts, using 196 domains, and coming from 190 IPs over three weeks. All the IPs in the United States were unknown proxies or drones. By combining our fingerprinting and activity testing engine, we were able to link them together and then back to an IP in UK, and finally back to an IP in India.


October 16th, 2014

Posted In: Vetting-API


Domain and email domain are playing a larger role in our vetting service risk testing.

The number of distinct domains from sign-ups is growing every month, starting at 75% in January and growing to 88% in August. We expect this to keep inching higher with all the new TLDs and how easy it is to automate new domains, apply a template for professional look, and creating emails for sign-ups on these new domains.

Testing on domain is challenging in a real-time vetting service, but we are seeing domain play an increasingly important role in identify risk. Our engine looks at data and factors such as Whois information, registrars, reputation, status (such as parked, for sale), age, hosting IPs, content of the actual web site, etc. The majority of domain issues are tagged by our DNS blacklists, but domain status and age issues are also contributing to higher risks.



In addition, new sub-domains are growing rapidly from “create your own blog” and “create your own website” leveraging built-in templates. For example, below is a weebly.com site using a pre-built template. On the home page everything looks good and professional. But drilling down on subpages, shows missing images, and a privacy policy that has “Lorem Ipsum” filler text.

Screen Shot 2014-09-01 at 1.54.10 PM


Bottom line: when on-boarding new clients, research the domain, the web site, the owner, the hosting company, the content and any data points you can find. A thorough review can show risks that might impact your business.

September 1st, 2014

Posted In: Vetting-API


Leave a Comment

All Subscription customers now have access to the Web Fraud Dashboard and Portal for E-HAWK Services.

The reporting portal provides stats on vet scores, risk types, and trends. With interactive charts and data analysis, it is easy to identify and track high risk areas and bad actor data. In addition, the portal provides feedback loops and the ability to add incidents to the community database.

The Dashboard

The dashboard provides stats on risk types, data processed, average scores, and how data items are trending.


Risk reporting shows the percent of Very High Risk vets and the vets by risk type by day for the last 30 days.


Trend reporting displays the high risk hits by area over time, making it easy to see spikes of threats and risk hits.



The vet data area provides quick links for adding feedback and user data to the community database.



March 28th, 2014

Posted In: Releases and Updates, Vetting-API

Tags: , ,

Leave a Comment

Happy Superbowl!

Today we released version 2.13 of the E-HAWK Vetting Platform.

Along with new tests and enhanced analytics, we have added an additional parameter: timeout=no. Adding this to your vets will run additional tests, but can slow API response times.

Some domain testing and analysis is time consuming and can take up to four seconds to process. For example, checking the parked status on a domain in real-time requires looking at the actual hosted page. Same with link verification, seeing if the site has a real TOS or privacy statement, etc. And Whois response time can be quite slow too. So, we have added the new parameter and value of timeout=no. Just add this to your vets and our service will start running additional testing for every vet. It might slow the response time to five seconds, but you will get the extra testing.

February 2nd, 2014

Posted In: Vetting-API

Tags: ,

Leave a Comment

We just added advanced device fingerprinting as part of our Online Vetting Platform and API. This gives clients enhanced levels of protection against fraudulent activities, registrations, and account hijacking.

The fingerprint is linked to risk level analysis of user data including IP, email address, phone, location information, domain, activity and frequency monitoring, geo-location analysis, and community data throughout our network of clients.

We are seeing a lot of bad actors jump between services using similar data patterns. The device fingerprinting automatically marks these users as very high risk and keeps them out of systems permanently.

The unique device fingerprint is connected to the Risk Score value. If the fingerprint has a positive average, the risk level is reduced. If the fingerprint has a negative average, the risk level is elevated and customers can quickly take the necessary action.

Adding the fingerprinting technology to any web form is a simple JavaScript include. The fingerprint does not run any plugins on the client device, and is totally transparent to the end user experience. No personal identifiable information is associated with a device or fingerprint.

To download and use the fingerprinting in your vets, visit our API support page.

January 28th, 2014

Posted In: Vetting-API

Tags: , ,

Leave a Comment


I am not a fan of Captchas. I have often lost out on great tickets from Ticketmaster.com, because by the time I figured out what the Captcha was, the tickets were gone. Captchas can keep out bots, but they can also negatively impact good customers. Is there a better way?

We think so. Our vetting solution also catches bots… and a lot more. The service runs over 200 tests looking for risky data and bad behavior. Unlike using a Captcha, vetting is totally transparent to the user. Prospects filling out your forms don’t have to type crazy words or try to figure out a complicated phrase. 

And vetting provides real-time intelligence that empowers your business to make decisions based upon risk levels of user sign-up data including IP, phone, email, address, domain, geo-location, device, and more. Our service helps identify spammers, phishers, bots, and high risk data during the sign-up process.

How Does E-HAWK Vetting Work?

  1. When a user clicks the submit button on your sign-up form, vet them using the Sign-up Form Connector or with direct API calls.
  2. Our vetting engine analyzes the data by running tests on IP, email, phone, location, domain, activity, geolocation, device and community for possible risks, and returns a Risk Score and Risk Type.
  3. Based on risk levels, Take Action including:
    •  Set account access limits
    •  Enable or disable features
    •  Tag in CRM, assign for follow-up
    •  Respond with customized content
Try vetting for free. Enhance your business intelligence on user registrations while improving customer experience by removing the Captcha.

January 13th, 2014

Posted In: Vetting-API

Tags: , ,

Leave a Comment

So what is the E-HAWK Risk Score?

Each time you vet some data we give it a risk score. Every vet starts at zero. When our risk engine discovers good things, such as a clean IP, the vet gets a few positive points. When bad things are identified such as a fake domain, negative points are scored. Most vets have some risk, but Risk Scores of -50 and below should be of concern and raise red flags.

As a guideline, our risk types are:

Type Risk Score
Lowest Risk 10+ or higher
Low Risk 0 to 9+
Some Risk -1 to -15
Medium Risk -16 to -30
High Risk -31 to -70
Very High Risk -71 to -100

The Vetting API has nine main areas of testing: IP, email, phone, location, domain, activity, Geo-location, device, and community.

Each area runs many sub-tests as well as cross analysis between linked data (for example the IP and the location). When the vetting analysis and test are complete, the API returns a Risk Score as well as scores for each area if desired. With this detail, your company can set threshold levels of risk tolerance for overall score as well as specific areas of interest.

January 2nd, 2014

Posted In: Vetting-API


Leave a Comment

« Previous PageNext Page »

© Copyright 2013 by E-HAWK. All Rights Reserved.