Updated

ID check(eKYC) - October 2024 Product Updates

Dear customers, 

Recently, attacks utilizing AI-based technologies and automated macros/bots have rapidly increased. Particularly in industries such as financial services, ticket purchasing, and authentication systems, there has been a surge in fraudulent attempts and malicious activities using bypass technologies like VPNs, proxy servers, and TOR networks. Additionally, there has been an increase in attacks aimed at purchasing large volumes of tickets using bots or creating fake accounts to bypass authentication systems.

If these security threats are not effectively detected and blocked, it could lead to a decline in the trustworthiness of the service, resulting in customer dissatisfaction and business losses. To address this, we have added two new features. With this update, your company can protect its security framework more effectively.

 

1️⃣ Proxy & VPN Detection Option

 

This option detects and blocks users attempting to access the system through proxy servers, VPNs, TOR networks, or other bypass methods. Particularly in situations where sensitive data is being processed, if bypass access is detected, the system blocks the attempt immediately, ensuring enhanced data reliability and security.

 

VPN & Proxy Option Guide

  • Go to SettingsMulti-Verification & Anti-Fraud page.
  • Change the Proxy & VPN Detection option from "Disabled" to "Enabled" and click the Save button.
  • Once the setup is complete, when a user enters their email and clicks the Start KYC button in the live form, an automatic IP check will be performed.

 

Dashboard - Pre-Verification

 

The verification results can be found in the Pre-Verification tab under the User Management menu. This tab displays the user's Request ID, IP address, connection type, and the Fraud Score after they have completed the live form.

The Fraud Score is automatically assigned based on the user's IP address.

  • If the Fraud Score is ≥ 90, the user is deemed to have a high likelihood of fraudulent behavior and is blocked at the initial ID Check stage. Blocked users may attempt again after 48 hours.
  • If the Fraud Score is < 90, the user is marked as "Pass," and the KYC process continues as usual.

    *The criteria for passing or failing may be adjusted, either relaxed or strengthened, based on the type of attack detected.

 

Pre-Verification Detail Page

 

The Detailed Information page offers an in-depth analysis of a user's IP address. The key information available on this page includes:

  • IP Anonymization Status: Indicates whether the user is utilizing Proxy, VPN, or TOR networks, with each status labeled as either ‘Risky’ or ‘Safe’.
  • IP Abuse Record: Evaluates the trustworthiness of the IP address based on recent bot activity, abuse frequency, and history of exploitation.
  • Subnet Attempts: Analyzes fraudulent attempts originating from the same network range, with subnet attempts categorized as ‘First Seen,’ ‘Rare,’ ‘Frequent,’ or ‘Very Frequent.’

Through this Detailed Information page, users can gain a more precise understanding of the risks associated with a given IP address. Additionally, when an ID Check process generates a Submission ID, this feature—if activated—enables users to easily access IP-related information in the details section of the submission list.

 

2️⃣ CAPTCHA to Detect Bots

When a user enters their email and clicks the Start KYC button, the system automatically detects bot activity. If the user is suspected of being a bot, they will be redirected to a blocking page, and the process will be terminated.

 

Thank you,
ARGOS Identity

 

 

Was this article helpful?
1 out of 1 found this helpful
Can't find what you're looking for?
Submit a request