Harness the power of your data to reduce fraud
and increase payment acceptance
Tailor-made fraud protection
Detect and stop fraud faster with clear
Adaptive solutions for emerging threats
Defend against ATO, promo abuse and seller
Optimize conversion with agnostic
Manage PSD2 and take control of
Online payment fraud
Understand chargebacks, fees &
Machine learning for fraud detection
Models, risk scores & thresholds
Link analysis & graph networks
Draw deeper insights from data
Account takeover fraud
Prevention strategies & reputational
Uncover & stop hidden costs
PSD2 & SCA
3D Secure, TRA & exemptions
Global payment regulation map 2022
Track PSD2 & more with a full report
Deep dives on fraud & payments topics
The latest fraud & payments updates
API & developer docs
APIs, glossary, guides, libraries and SDKs
Discover the story about Ravelin
Join our dynamic team
Read more about our happy customers
Join our partner programme
Harness the power of your data to reduce fraud and increase payment
Detect and stop fraud faster with clear insights
Defend against ATO, promo abuse and seller fraud
Optimize conversion with agnostic authentication
Manage PSD2 and take control of authentication
Understand chargebacks, fees & detection
Prevention strategies & reputational risk
Uncover & stop hidden abuse
Read more about our happy custmomers
Hackers are hungry for food accounts. So how did one food marketplace reduce account takeovers by 95%? Could your business see similar results?
Share this article:
Account takeover cases dropped 75% with custom rules
Cases dropped 95% with a bespoke machine learning model
“They don’t have to worry about this type of fraud anymore” - Project Lead
“My account has been hacked!” “I’ve been charged for food I didn’t order!”
A popular food marketplace was getting hundreds of these customer complaints everyday. Why? They were a hot target of account takeover attacks.
Account takeover attacks on food accounts is a growing problem. On the dark web, food account mentions have increased 230% since 2019, and login details are easy to buy at $1.50 - $10 each.
So how did this food marketplace eliminate their account takeover problem? What steps did they take to reduce cases by over 95%?
Account takeover happens when a fraudster gets access to a genuine customer’s account and uses it to make money. Fraudsters can use your customers’ food delivery accounts to:
Order food to resell (or eat themselves)
Sell on accounts or personal info
Get refunds on recent orders
Use & abuse voucher discounts
Commit card payment fraud
Attacks cause revenue loss, brand damage, and stress for your customers and fraud teams. So what was the business impact on this food marketplace?
Account takeovers are stressful for your customers and teams. The merchant’s customer services were feeling the pressure after handling a stream of frustrated customers. The business faced mounting costs of more refunds, and it was likely victims wouldn’t trust their brand again.
When it comes to account takeover, there is such a thing as bad publicity. Reports of data breaches and security issues hit headlines. And since 81% of customers stop engaging with brands following a data breach, it often inhibits your sales and business-growth.
What team is responsible for managing account takeover? The task sits outside of the fraud team in 40% of businesses, so there’s no one-size-fits-all.
Customer support, legal, fraud and security teams were all involved, and had a different takes on how to solve the problem. This meant a lot of coordination was needed across teams.
If your online platform is easy for customers to use, it’s often easy for fraudsters to take over. If a bad actor knows they’ll get away with it, your business will quickly become a favourite target.
“Account takeovers can be incredibly lucrative for attackers because they can launch relatively low effort attacks to target services at scale" - Katrina Scott, Senior Product Manager at Ravelin.
Firewalls are a critical layer to protect your business from bad actors - particularly bots. But attacks still get through if a fraudster mimics legitimate traffic. They can change their IPs or reduce the rate of login attempts to sneak under the radar.
This food marketplace had a firewall and basic rules, but fraudsters found a way around them. There were gaps in their defences they needed to fill.
Ravelin and the merchant’s fraud team joined together to talk about their goals and possible solutions. Together we had to find a way to stop account takeovers, but it wasn’t a ‘do whatever it takes’ situation. We also had to make sure we weren’t blocking good customers. If a customer orders food to a new delivery address, it might seem risky but it could just be that they are hungry at a friend’s house! It’s important to fully understand what risky behavior looks like in your customer base.
The stakes were high. If you mess up the logins and create added friction for good customers, it could mean stopping valuable sales.
They had to immediately relieve the pressure. Based on analysing the customer data, we quickly created and pushed live some custom rules to block less sophisticated hackers.
The result? Account takeover cases dropped 75%.
It was a great first-step, but we knew it had limitations. Rules are a strong layer of defence, but over time fraudsters can side-step them. If you want a lasting and proactive approach to stopping account takeover, machine learning is the way to go.
Machine learning models are great for managing account takeover as they’re trained to understand specific fraud signals in your customer base. This bespoke approach increases the accuracy of predictions, and gets better over time (it gains knowledge like a human brain!)
But you need a certain number of labels to train a model, which requires data and processes the merchant didn’t yet have. So we worked together over a series of meetings, gathered the right information and got the model live.
Compared to rates before integrating the model, account takeover cases dropped by 95%!
Ravelin’s Katrina Scott reflects: “I am thrilled with what this merchant achieved. It was a great collaboration. Working as a team, their account takeover attacks went down to a very low level! They now have fantastic processes & tools in place, and don’t have to worry about this type of fraud anymore.”
If this account takeover problem looks familiar and your business could benefit from a solution, chat with the team now.
Grace Proctor, Content Writer
Blog / News
You might’ve heard about a new fraud tactic called ‘account pre-hijacking.’ But what actually is it? And how can you prevent it? Let’s break it down.
If you offer a subscription, recurring payments can leave you vulnerable to unique fraud risks. How should you tailor your fraud strategy?
Buy now, pay later is exploding - what risks could this bring your business? We speak with Nelda Biltauere, Fraud Researcher at Ravelin, about BNPL challenges, costs & strategy.
Subscribe to our newsletter to get the latest fraud & payments updates
sent direct to your inbox.