Secure Portal
Personal data security and fraud protection for websites, e-commerce and paid subscription services

Customized solutions tailored to your industry
Travel
Prevent loyalty programs fraud, fraudulent ticket sales, and account takeover
E-commerce
Detect malicious bot activity, account takeover, and multiple account registration fraud
Insurance
Recognize false insurance claims and hijacking of user accounts
Gaming & Gambling
Identify fake accounts and block bots to ensure fair play
Crypto
Safeguard your cryptocurrency projects against scams, botnets, and mining fraud
E-government
Protect government online services from fraudulent activities and ensure the safety of sensitive data
Exclusive anti-fraud technologies, protecting your portal
Behavioural analytics (UEBA)
Detects: money laundering, social engineering, account takeover, credit fraud, auto account creation and automated actions, bot activity actions, bot activity
Learn moreUsing machine learning technologies we continuously analyze user profile based on what is happening during the session (typical scenario of legitimate user vs fraudster) and how the user behaves (bio-chronometrics with number of criteria: velocity & navigation, mouse movement, keystrokes, typing cadence, delays etc). This allows us to identify against previous sessions if a legitimate user or fraudster is logged in.
Advanced Device Fingerprinting
Detects: identity theft, usage of anonymizers and aggregators, money laundering, cross-client attacks
Learn moreInside our device fingerprinting technology wide range of algorithms analyses the same set of parameters to provide advanced dynamic analysis. It allows to differentiate normal device evolution (OS, browser updates etc) from suspicious changes. Precise fingerprinting can be also applied to investigate money laundering and illegal cashing out networks when several accounts are used from the same device even when TOR, proxy or «anonymizers» are applied. Advanced device fingerprinting allows to highlight malicious activity across separate clients.
Clientless Malware Detection
Detects: trojans (including mobile and web-fakes), unsanctioned remote access, web-injects («man-in-the-browser» attacks), cross-channel attacks, social engineering, bot activity, brute force, web-scraping
Learn morePatented clientless detection allows Secure Portalto identify infected client devices without impacting client experience as no installation is required. We catch PC and mobile trojans (including those using web-fakes), web-injects, remote access and social engineering cases. For each case we give wide context, collect injects, C&Cs, and other data to investigate attacks.
Group-IB Threat Intelligence
Detects: newest types of fraud, attacks during preparation, early phishing detection
Learn moreWe integrate Group-IB Threat Intelligence (recognized among the top by IDC, Gartner, Forrester) data on threat actors, malware intelligence, malicious IPs and compromised data (logins, passwords, bank cards) into Secure Bank. This allows us to track campaigns, identify web-injects (man-in-the-browser attacks) and actors to give additional insights and actionable intelligence to anti-fraud and cyber security teams.
Global User Profiling
Detects: new account fraud, money laundering, social engineering
Learn moreBy cross-referencing anonymized data, Secure Portalcreates global user profiles across different online banking channels. This gives us understanding of affinities between users, accounts and sessions to identify good vs bad users with less friction and higher accuracy rates. Our unique threat intelligence stack and Secure Portal analysis on other client identifiers allow us to detect hidden threats and suspicious connections.
Advanced Rule Engine
Advanced Rule Engine allows to adopt existing rules or create new ones to fight with fraudsters schemes, specific to your business. You can create your own risk score model, enhance it to stay effective in a changing environment.
Learn moreAdvanced Rule Engine allows to adopt existing rules or create new ones to fight with fraudsters schemes, specific to your business. You can create your own risk score model, enhance it to stay effective in a changing environment.
JavaScript module
As a JavaScript module, Secure Portal is loaded into the source code of each web page that you want to protect. It collects control data of each visitor to the webpage, such as what browser such as what browser...
Learn moreAs a JavaScript module, Secure Portal is loaded into the source code of each web page that you want to protect. It collects control data of each visitor to the webpage, such as what browser is in use, browser plugins, cursor movement, device information and other non-confidential data in order to create a unique fingerprint of each client visiting your page.
Mobile SDK
Secure Portal can be deployed via a Software Development Kit, that is easily integrated with customer mobile applications. Its anti-fraud functionality allows to identify mobile devices and...
Learn moreSecure Portal can be deployed via a Software Development Kit, that is easily integrated with customer mobile applications. Its anti-fraud functionality allows to identify mobile devices and discover malicious apps on Android and iOS.
Cross-Channel Analytics
Detects: cross-channel attacks, card‑not‑present fraud (CNP)
Learn moreBy cross-referencing anonymized data, Secure Portal creates global user profiles across different online banking channels. This gives us understanding of affinities between users, accounts and sessions to identify good vs bad users with less friction and higher accuracy rates. Our unique threat intelligence stack and Secure Portal analysis on other client identifiers allow us to detect hidden threats and suspicious connections.
How Secure Portal works
Unknown user
Session info collection by Secure Portal module on website or in mobile app
User device and activity analysis
Blocking of fraudulent activity
Transferring information about fradulent activity to anti-fraud system or analysts
Why world leading companies choose Secure Portal
150,000 malicious
bot requests
detected Secure Portal in just 24 hours on а popular online store, which had been already overlooked bу the existing bot management solution
Already integrated with
Advanced protection against cyber threats
Group-IB’s security ecosystem provides comprehensive protection for your IT infrastructure based on our unique cyber intelligence and deep analysis of attacks and incident response.
Intelligence
Аctionable, finished intelligence to track actors and prevent attacks before they happen
Intelligence-driven network protection even from the most advanced attacks
Client-side fraud and attack prevention system for online banking, working across sessions, platforms and devices
Protection from bots, fraud and data leakage for e‑commerce and web portals
Evaluate your clients’ vulnerabilities and your potential risks – for free. Leave us your contact information to try the solution.
Behavioural analytics(UEBA)
Behavioural analytics (UEBA)
Detects: money laundering, social engineering, account takeover, credit fraud, auto account creation and automated actions, bot activity
Using machine learning technologies we continuously analyze user profile based on what is happening during the session (typical scenario of legitimate user vs fraudster) and how the user behaves (bio-chronometrics with number of criteria: velocity & navigation, mouse movement, keystrokes, typing cadence, delays etc). This allows us to identify against previous sessions if a legitimate user or fraudster is logged in.
Advanced Device Fingerprinting
Detects: identity theft, usage of anonymizers and aggregators, money laundering, cross-client attacks
Inside our device fingerprinting technology wide range of algorithms analyses the same set of parameters to provide advanced dynamic analysis. It allows to differentiate normal device evolution (OS, browser updates etc) from suspicious changes. Precise fingerprinting can be also applied to investigate money laundering and illegal cashing out networks when several accounts are used from the same device even when TOR, proxy or «anonymizers» are applied. Advanced device fingerprinting allows to highlight malicious activity across separate clients.
Clientless Malware Detection
Detects: trojans (including mobile and web-fakes), unsanctioned remote access, web-injects («man-in-the-browser» attacks), cross-channel attacks, social engineering, bot activity, brute force, web-scraping
Patented clientless detection allows Secure Bank to identify infected client devices without impacting client experience as no installation is required. We catch PC and mobile trojans (including those using web-fakes), web-injects, remote access and social engineering cases. For each case we give wide context, collect injects, C&Cs, and other data to investigate attacks.
Group-IB Threat Intelligence
Detects: newest types of fraud, attacks during preparation, early phishing detection
We integrate Group-IB Threat Intelligence (recognized among the top by IDC, Gartner, Forrester) data on threat actors, malware intelligence, malicious IPs and compromised data (logins, passwords, bank cards) into Secure Bank. This allows us to track campaigns, identify web-injects (man-in-the-browser attacks) and actors to give additional insights and actionable intelligence to anti-fraud and cyber security teams.
Global User Profiling
Detects: new account fraud, money laundering, social engineering
By cross-referencing anonymized data, Secure Bank creates global user profiles across different online banking channels. This gives us understanding of affinities between users, accounts and sessions to identify good vs bad users with less friction and higher accuracy rates. Our unique threat intelligence stack and Secure Bank analysis on other client identifiers allow us to detect hidden threats and suspicious connections.
Advanced Rule Engine
Advanced Rule Engine allows to adopt existing rules or create new ones to fight with fraudsters schemes, specific to your business. You can create your own risk score model, enhance it to stay effective in a changing environment.
JavaScript module
As a JavaScript module, Secure Bank is loaded into the source code of each web page that you want to protect. It collects control data of each visitor to the webpage, such as what browser is in use, browser plugins, cursor movement, device information and other non-confidential data in order to create a unique fingerprint of each client visiting your page.
Mobile SDK
Secure Bank can be deployed via a Software Development Kit, that is easily integrated with customer mobile applications. Its anti-fraud functionality allows to identify mobile devices and discover malicious apps on Android and iOS.
Cross-Channel Analytics
Detects: cross-channel attacks, card-not-present fraud (CNP)
Secure Bank protects users across web and mobile channels via JavaScript and mobile SDKs. This gives us the capacity to also detect a wide range of cross channel attacks, including attacks on third party platforms such as e‑commerce where card not present fraud may take place, as our script can be integrated into 3‑D Secure pages.