a good thing!
Solution evaluates device characteristics and behavioral biometrics to identify and repel fraud.
Gett can now solve for five different fraud use cases.
Fraud detection within Gett increases by 62%.
Detection of suspicious activities increases by more than 120%.
Gett is the leading corporate ground transportation management company that organizes corporate fleet, ride-hailing, taxi and limo providers for their clients all in one place — your phone! The company operates in Israel, the UK and Russia.
As a software as a service (SaaS) solution, Gett consolidates collections of vendors on a single booking platform while clients access this service using apps for iOS and Android. Being the leading company in this industry — and serving a third of the world’s Fortune 500 companies—it’s no surprise that they’ve faced sophisticated security challenges since their inception in 2010.
Initially, Gett began conversations with Ping Identity because the company was having a problem with emulator-based new account fraud (NAF). Emulators are used by fraudsters to mimic devices in order to commit fraud more easily while scaling their activities efficiently—all without large investments in devices. Essentially, rides were paid for using stolen credit cards acquired from the dark web. So, Gett contacted Ping Identity to gain visibility into the scale and extent of these emulator attacks as well as identify fraudulent sessions so they could stop them.
Unfortunately, once Ping Identity addressed this issue, fraudsters amped-up their attack methods. They used sophisticated manual tactics, including three further methods such as:
This presented Gett with more intricate fraud flows originating from those real devices as opposed to emulators. When this happened, Gett needed a solution that could adapt to all of these evolving tactics and flag suspicious activities before transactions were completed. The solution needed to be implemented quickly and be up and running as soon as possible.
To combat sophisticated fraudsters, you need to stay a step ahead. Gett used the device intelligence capability of PingOne Fraud to identify these emulators. They achieved this looking for gaps in data it was receiving due to the fact that the devices the fraudsters were using didn’t have the standard attributes that are commonly found on mobile device. PingOne Fraud also made correlations between users, devices, and sessions. Gett received real time alerts that allowed them to block these fraudulent activities before the transaction was completed.
However, once attackers stepped up their game, Gett added PingOne Fraud’s behavioral anomalies capability—behavioral biometrics—to the previously deployed device intelligence capability to detect more advanced fraudulent activities. This solution looked at fraud indicators to identify any suspicious behavioral or usage patterns within the user journey throughout the Gett app. More specifically, the solution analyzed the correlation between behavioral biometrics and shared device identifiers.
Like before, now Gett started to receive alerts that indicated device manipulation. Upon closer inspection, it was discovered that fraudsters had begun using specialized apps to change indicators on Android devices—such as device ID, and device type—to make it look like different users on different devices were performing transactions.
But, they were unable to manipulate the device footprints. With help from Ping, Gett easily detected attacks by uncovering devices being used in large numbers of access attempts. Gett then used data about device changes provided by PingOne Fraud to improve the precision of their custom algorithms so they could more readily uncover these instances.
Did you know Gett increased...
detection of suspicious activities that were invisible to classic fraud detection tools.
In this case, Gett was experiencing five evolving fraud use cases that Ping was able to solve. These included:
As a result, Gett has increased detection of suspicious activities that were invisible to classic fraud detection tools by more than 120 percent. With each new generation of fraud, Ping captured increasing numbers of suspicious events. By detecting new account fraud with emulators, fraud detection within Gett’s enterprise increased by 62 percent. As fraudsters became more sophisticated, Ping evaluated more behavioral features and was able to double that recall.
More About Gett
Gett is the leading Ground Transportation Management (GTM) platform and B2B marketplace, where spend is estimated to exceed $100 billion globally. Serving more than 1/4 of the Fortune 500, their platform organises corporate fleet, ride-hailing, tax and limo providers in one place.
Learn why Open Banking chose Ping’s identity and access management (IAM) technology to underpin the UK’s Open Banking Directory.
Gates leveraged Ping’s applications and partnerships to implement a global authentication authority at global scale.
Scotts centralized identity services and increased their security posture by implementing federated single sign-on.
HP reduced complexity, optimized spend, and is enabling new business as the company evolves.
See how Ping can help you deliver secure employee and customer experiences in a rapidly evolving digital world.
Request a free demo
Thank you! Keep an eye on your inbox. We’ll be in touch soon.