Site Protection Without Captcha.
(without impacting conversions)
Bot Sophistication and Captcha Farms
When Google first introduced Captcha, it was a relatively easy puzzle for humans to solve, but which presented difficulties for bots. Today, bots are much more sophisticated. As a result, Google has been forced to make its Captcha challenges progressively more complex. To combat the Captcha complexity, hackers have invested in “Captcha farms” that employ thousands of freelancers to solve Captcha’s manually.
Captcha complexity has resulted in soaring Captcha refusal rates and Captcha abandonment as users just become increasingly frustrated by having to finding all the images of traffic lights, crosswalks and automobiles in a series of pictures.
Converting site visitors to sales or opt ins is hard enough, without presenting an additional barrier at a key moment when your potential customer is about to enter their credit card details. (CAPTCHA codes reduce form conversions by up to 40% according to a study by researchers at Stanford University).
What We Do
We provide an edge of network Machine Learning app to each and every visitor to determine if the site visitor is really human. We perform hundreds of backgrounds checks on your visitors using our cloud based services and we track each visitor until they reach the payment gateway. By the time the visitor reaches your payment gateway we’ve catalogued visitor’s activity and undertaken deep forensic fingerprinting to validate if the traffic is coming from an automated source or not.
Credit Card Spinning Via Automated Bots
Cybercriminals often bulk test credit card lists against a payment gateway with a micro-transaction or even just to get an approval which validates the card’s acceptance. These credit card lists are often massive and hackers automate the card spinning process through the use of bots. Our Machine learning detects these scripts and blocks access at the source of the automated traffic.
Reduced Fraud. No Impact On Conversions. No Captcha.
Automated bots make up nearly 50% of all web traffic. Hackers use these malicious bots in an attempt to infiltrate a site’s payment gateway by finding and exploiting vulnerabilities. We stop these automated bots at the DNS server level before they get to your website. We don’t touch your website, so there’s nothing to slow it down, affect performance or negatively impact your visitor experience in any way.
Lighten Your Server Load.
Cybercriminals can bombard your payment with automated traffic that could take your entire payment service offline. Blocking this traffic at the network edge, takes the load off your servers and allows legitimate customers to carry on transactions in your shopping cart.
Payment Processors Hold Online Merchants Responsible.
Fraudulent transactions create problems for online merchants and their relationship with their payment processor. Website owners are responsible for the costs and fees associated with malicious activity regardless of whether transactions are approved or declined.
An Unprotected Payment Gateway Can Result In Merchant Account Termination.
Cybercriminals can target unprotected payment gateways with thousands of transaction attempts within a very short window of time. The volume can flag your merchant account and may result in your merchant account being suspended or terminated.
Our edge of network machine learning based application monitors all your visitor activity up to the point they attempt to access the payment gateway. Legitimate users tend to be behave in a reasonably predictable way. We use our forensic Machine Learning (ML) skills to learn the patterns of what a normal visitor looks like, as well as looking for the tell tale signs of automated bot activity.
Filtering Your Unwanted and Malicious Bot Traffic So That Only “Pristine Traffic” Remains
Our Machine Learning is based around a risk score for each and every one of your visitors. In the vast majority of cases we can determine if the visitor is automated or not with an extremely high degree of accuracy. In order to prevent any legitimate customers from being blocked automatically, we only block clients if we are 100% certain the traffic is automated. In the case where we are e.g. 99% certain the traffic is automated, you can display a custom page which allows a real customer to call a customer service desk or complete a captcha to enter their credit card details. We also allow customers to enter into test mode for a period of time to monitor the customer traffic, and prove that the blocked visitors are actually automated.
eCommerce sites are under constant threat from malicious activity including…