LexisNexis® Risk Solutions Blocks Identity Testing Attacks on Restaurant Chain’s Mobile App

• Analytics & Modeling - Predictive Analytics
• Cybersecurity & Privacy - Application Security
• Cybersecurity & Privacy - Identity & Authentication Management

• Food & Beverage

• Business Operation
• Sales & Marketing

• Fraud Detection

• Cybersecurity Services
• System Integration

As an incentive to sign up for an online account, this restaurant chain offered a complementary food item with every new registration to the app. It set a maximum threshold for accounts per user, but quickly found this was being abused as customers were signing up for multiple accounts from their device to take advantage of free food. Although this was hitting the company’s bottom line, a bigger problem soon emerged as a result of the mobile app accepting online payments. The company started seeing a high volume of account takeover attempts and chargebacks, which appeared to indicate an infiltration of organized cybercriminals who were attempting to log in to customer accounts with stolen/spoofed identity credentials, and test stolen credit card data. This restaurant chain needed a robust fraud solution that could accurately detect anomalous or high-risk behavior at login, as well as provide better visibility into a user’s true digital identity to understand whether they were abusing free incentive offers.

The customer is a large U.S. restaurant chain that launched a mobile app to enhance customer experience by allowing them to order and pay for food on their mobile devices. The app was designed to reflect the company's straightforward and customer-centric ethos online. However, the introduction of incentives and rewards for new account registrations led to abuse, and the online payment method exposed the company to fraud. The restaurant chain needed a solution to detect and prevent fraudulent activities while maintaining a friction-free experience for legitimate users.

Leveraging LexisNexis ThreatMetrix digital identity intelligence, this restaurant chain can accurately detect and stop fraudulent and abusive activity in near real-time without creating friction for legitimate users. The LexisNexis Digital Identity Network collects and processes global shared intelligence from millions of daily consumer interactions, including logins, payments, and new account applications. By analyzing the myriad connections between devices, locations, and anonymized personal information, the company can create a unique digital identity for each user. Behavior that deviates from this trusted digital identity can be accurately identified in near real-time, alerting the restaurant chain to incentive abuse and potential fraud. Key features of the ThreatMetrix solution include Smart ID, which identifies returning users that wipe cookies, use private browsing, and change other parameters to bypass device fingerprinting, and deep connection analysis technologies that give a clearer view of suspicious events. Proxy piercing technology examines TCP/IP packet header information to expose both the Proxy IP address and True IP address, helping to detect and flag suspicious behavior for review, step-up authentication, or rejection before a transaction is processed.

• Accurate identification of users who were abusing free new account incentives.
• Ability to modify rules within the ThreatMetrix policy engine quickly and simply to tackle evolving fraud patterns.
• Maintained the integrity of the mobile app platform for trusted repeat users.

• Significant decrease in fraudulent account takeovers.
• Large decrease in volume of chargebacks.