arrow left facebook twitter linkedin medium menu play circle

Announcing the Q1 2018 DataVisor Fraud Index Report

The DataVisor Fraud Index Report for Q1 2018 is based on attacks detected by the DataVisor UML Engine between January and March of 2018, and incorporates analysis of over 40 billion application-level events and 680 million user accounts across some of the largest internet properties and financial services in the world.

By Christopher Watkins June 20, 2018

Photo of Christopher Watkins

about Christopher Watkins
Christopher Watkins is Senior Creative Writer at DataVisor. He brings 10+ years of writing, editing, and strategy experience to his role. He was previously Senior Writer and Chief Words Officer at Udacity. He holds an MFA in Creative Writing from the University of Southern Maine.

DataVisor Fraud Index Report Q1 2018

Today, we released the DataVisor Fraud Index Report for Q1 2018. As attack patterns and fraud techniques evolve, it is increasingly important that organizations have ongoing access to updates on the threats impacting their businesses. Our Fraud Index Report provides timely insights into the activities of fraudsters and malicious users across the globe, as well as data around trends in global fraud activity, and deep dives into new and emerging attack techniques.

This past quarter, we uncovered a total of 900 million malicious activities and transactions. Our report reveals dramatic growth in fraud infrastructure, with fraudulent accounts growing by 50% from Q4 2017 to Q1 2018.

North America Emerges as a Leading Source of Financial Crime

The number of fraudulent accounts originating from the U.S. doubled since the previous quarter. The U.S. hosts more than 23 percent of fake accounts targeting online and financial services in North America and Europe, dwarfing countries in Southeast Asia and Eastern Europe that have historically been hotspots for fraud.

Bad Actors Continue to Migrate to the Cloud

Fraudsters are taking advantage of cloud service infrastructure such as virtual servers and anonymous proxies. The cloud allows fraudsters to easily orchestrate attacks at scale and hide behind legitimate networks in order to remain anonymous and avoid IP blacklists. 27% of accounts associated with cloud service provider IP ranges appear to be fraudulent, with some cloud services and data centers having more than 90 percent fraudulent activity.

Fraudsters Step up Device Spoofing to Evade Detection

Fraudsters are getting better at mimicking legitimate user activities, including using device platforms popular among real users. 28% of fraudulent accounts originated from Mac OS X devices this quarter, representing a four-fold increase over last quarter. As Mac OS is associated with fewer fraud activities in the past, fraudsters are likely spoofing their user agent strings to avoid detection.

“Our research shows that fraudsters are not only scaling up their attacks, but also becoming more sophisticated,” said Ting-Fang Yen, Director of Research at DataVisor. “Fraudsters are evolving quickly and using the latest technologies to evade detection—an example is the widespread practice of device and OS spoofing. Solutions that automatically adapt to ever-changing attacks will be critical for businesses looking to protect themselves against fraud and abuse.”

The DataVisor Fraud Index Report for Q1 2018 is based on attacks detected by the DataVisor UML Engine between January and March of 2018, and involved analyzing 40 billion application-level events and 680 million user accounts across some of the largest internet properties and financial services in the world.

Download the full report here >>


Popular Posts

Intelligent solutions. Informed decisions. Unrivaled results.

DataVisor Fraud Index Report: Q2 2019

Learn More

The DataVisor Q2 2019 Fraud Index Report is here.

Customers online want convenience, ease, and access. Fortunately, your business offers it all. Unfortunately, that’s what fraudsters want too. To a cyber criminal, those features means vulnerabilities. To bring you the very latest and most actionable insights about where the risks are and what you…

Dumb & Dumber vs Ocean’s 11

Learn More

Understand the range of modern fraud attacks to ensure complete coverage for your organization.

Complex and coordinated fraud attacks that are extensively planned, hard to detect, and highly scalable are the new normal for online platforms. Explore and understand the full spectrum of fraud attacks—from simple to sophisticated—and learn how you can defend against each type in this…

Diagnose and Defeat Application Fraud with the Latest AI-Powered Tools

Learn More

Learn how leading financial institutions are using ML to proactively detect card application fraud.

In this insightful webinar, you’ll explore how organizations are leveraging AI-powered fraud management solutions to get tangible, real-world benefits as they work to proactively detect and defeat sophisticated modern fraud attacks. Plus, you’ll discover strategies for empowering cross-team…


Protect your business, your customers, and your data.

Request Demo