E-HAWK Blog

Fight registration fraud and high risk transactions.

Today’s 4.25 release has new tests and analysis focused on email and, name, and IP. Additional testing includes:

  • email (moving periods, two first names, accept all and role based email addresses)
  • name (suspect and junk names, two first names)
  • IP: Fast Flux Networks

Also added are Activity Unique testing for Email <-> Name combinations.

Let us know if you have any questions.

January 17th, 2018

Posted In: General News, Releases and Updates

4.24 was released on December 19, 2017. It includes new updates and features and incorporates all the changes in small releases from 4.14 throughout the year.

Some of the highlights:

  • Enhanced Reporting: new column selector, multiple download formats, and multi-filtering
  • Tags for Lead Source: good and bad tagging by lead source

Other features (between 4.11 and 4.24)

  • Talon 5.5, fingerprint collisions and duration
  • Report API – add scoring and risk hit meta-data to other systems such Hadoop, Tableau, and Splunk
  • Activity API – real-tome data on bots and repeat activity
  • Tag API  – for creating custom white, black, and do not score lists
  • New tests including: name and email similarity, extra bot analysis, activity tracking duration, etc.

And as a way of giving back, E-HAWK plated 1,000+ trees this year.

December 19th, 2017

Posted In: Releases and Updates, Vetting-API

Version 4.14 was released today with many new tests and features including:

  • Emaildomain testing for age, phishing, malware, and Spam DNSBLs
  • Country Tagging to block leads from specific regions
  • High Velocity notices for data that exceeds normal use
  • Activity Unique testing for uniqueness across data
  • Talon 4.2 device fingerprinting

portal5-scoring

November 22nd, 2016

Posted In: Releases and Updates

Interested in knowing which lead sources and campaigns are delivering the best results? Which ones have the highest rate of bogus and fake users? What are the top rated sources?

The new Leads and Campaigns tabs in the portal automatically track all your results. Just send lead source and/or campaign values in your vets.

Stop buying leads from poor performers, and improve campaign conversion results.

campaign-performance

 

Lead Source Tracking

Buying or generating leads from different online sources? Add lead source to your API calls and instantly view ranking and performance metrics. Stop buying from sources who have bad leads and move those resources into sources that perform well.

Marketing Campaign Tracking

Your marketing campaign is driving signups and leads to your site. But are they converting? Are they from bots or bogus? Just add the campaign to your API calls and view performance and raking by lead quality.

Learn more.

July 12th, 2016

Posted In: Releases and Updates, Reporting Portal

We now monitor vets and can notify you via email or API when new blacklist items hit your historic vet data.

Alerts provide monitoring of your key user data. As an example, you vet a user that scores positive on their email, and a few days later that email is added to the community as a phisher, our system can create an alert so you can quickly review the user, revet them if you wish, and take any necessary actions. Learn more.

Screen Shot 2016-05-26 at 10.27.31 AM

May 26th, 2016

Posted In: Releases and Updates, Reporting Portal

The E-HAWK Reporting Portal has an updated GUI, many new features, charts and tools. The redesigned Dashboard allows you to quickly spot spikes in risks, area issues, and usage.

dashbaord

Each testing area now includes customized tag scoring charts by impact levels. These are created based on your Custom Scoring settings, so your most critical scoring issues that impacting your business risk levels can be tracked. Clicking on any chart will show all vets associated with the risk.

score-impact

 

 

March 24th, 2016

Posted In: Releases and Updates, Reporting Portal

Tagging is used to score specific emails, emaildomains,TLDs, domains, names, IPs, CIDRs, and device fingerprints as good, bad, or to skip scoring. Items tagged as Bad will add negative scoring to the risk area, Good tags add positive scoring, and Do Not Score will set the item score to zero.

Read about the new Tag API usage and specs.

 

September 29th, 2015

Posted In: Feed-API, Releases and Updates, TAG-API, Vetting-API

Release 4.1 takes the reporting portal to a new level. 50+ new features: real-time data, enhanced drill-down charts, top risk tables, support for multiple accounts, and more.

dashboard-full

Top Features:

  • Chart Drill Down – Click on any data point in the portal charts and quickly view all matching vets during the selected time period. Time charts also support zoom are are now real-time.
  • Top Lists – Quickly view the highest risk items such as IPs, email, and domains as well as the items sorted by highest activity. These lists are updated every six hours.
  • Quick Reports – Filter vets by risk score quickly from the Vets page. Just select the Risk Level and click on a Vet record for details.
  • Multiple Account and Rollup Views – View activity for multiple accounts, manage users, and quickly see rollup reports for all your E-HAWK accounts. Enter “-1” in menu for a rollup of all your accounts.
  • Direct Link to Your UserID Vet History – If you are sending a unique userID for the username keyword in your vets, you can now add a hyperlink to your internal systems to quickly view all vet details for that user over the last 30 days.

See Updated Portal Guide.

June 12th, 2015

Posted In: Releases and Updates, Reporting Portal

v2.27 is live with custom scoring, improved domain and website analysis, device fingerprint banning, updated web vetting form, and more. We expect to process over 100 million vets this year. Thanks to all of you for making this possible, providing invaluable feedback, and supporting our community fraudster sharing project.

February 16th, 2015

Posted In: Releases and Updates

Happy to announce that version 2.25 is released. This major release adds: risk reasons to the vet response and portal results, ability to ‘hold’ activity incidents, community fingerprint scoring, and more. Read below to learn about the new features and how to use them to optimize performance.

Version 2.25 – New Features

Risk Details Returned Within the JSON Response
Subscription customers can now get risk hit information as part of the JSON response. The new details area lists all major issues such as anonymous proxy, bots, spam blacklists, disposable emails, parked domains, geo issues, activity hits, fingerprint risks, and community reasons like fraud and phishing… empowering your organization to quickly identify specific risks and take immediate action.

As an example, if the IP score is -180, you can now see that it is linked to a bot, proxy, and on a spam blacklist:

"details": {
 "ip": {
 "score_details": [
 "Proxy",
 "Bot",
 "Spam Blacklist"
]

Risk Details and Advanced Search in Portal
The Vet tab in the portal now supports searching for any input value such as IP, email, domain, phone, fingerprint, etc.

After a search, clicking on any row will show an information block listing all the areas, values, scores, and risk reasons. In the example below, the email is disposable, the phone fake, the IP is very high risk, and the geo-location data-points do not match up (IP from Asia and location from NY).

vet_details

Clicking on a key value in this block, such as IP, will re-run the search for all vets using that IP, giving you instant insight to others who are accessing your system from the same IP. If you drop the last digits from the IP you can search for all vets with a specific IP block too.

This powerful search can be used to quickly find users with similar IPs, fingerprints, domains, email domains, and other input data.

If you would like to call the portal results page from your web app, just setup a link to: https://portal.e-hawk.net/vet/search?search_keyword=XXXX

Read the new Portal Help Guide.

Adding to Community and Feedback

Within the portal, it is now easy to provide user data to the community database. Just click on the Vet tab, enter search data such as an IP, email, domain, or fingerprint. Then click on a row of the result set to view details.

To the right of the vet information, select a reason under Add to Community and the data will immediately impact your following vets.

add_feedback

Fingerprint Community Scoring
Fingerprints that are part of the community database will now be scored for vets with matching device fingerprints under the Community scoring area. This is in addition to the standard fingerprint scoring. If you have a known fingerprint of a phisher, add it to the community using Feed-API calls and tag all future vets.

IP Geo Details Within JSON Response
As part of the new details area of the JSON, we now return city, country, and time zone of the IP, making it easy for you to modify workflow based on location and country risks.

"city": "Delhi",
"country": "India",
"timezone": "Asia",

Activity Incidents – New ‘Hold’ Status

The Activity Report lists all incidents tagged by our activity monitor during the last ten days. To the right of each incident are buttons: Correct to verify the incident as a bad actor, False to mark as incorrect (remove from scoring), and Hold to not score until marked correct or false. This report should be checked often because many times the first items in the incident are marked as low risk (no bad pattern yet), and the later ones are marked as high risk. If the incident is Correct, then make sure to take action on all items in the incident. Read the new Portal Help Guide.

Updated Materials and Guides
API Support Guide
FEED-API Support Guide
Portal Help Guide

November 13th, 2014

Posted In: General News, Releases and Updates

Next Page »


© Copyright 2013 by E-HAWK. All Rights Reserved.