Case Study

Leading Mobile Gaming Company Blocks Account Takeover Attacks and Fake Accounts

Download Case Study

Company

The company’s portfolio includes products for sports betting, casino, daily fantasy sports and horse racing and serves more than 12 million customers in the U.S.

“We seamlessly integrated HUMAN at our platform edge [AWS CloudFront] to ensure maximum protection against automated bot attacks, but also to minimize latency”

– Senior Director, Architecture

Challenge

The customer experienced unprecedented growth in 2018 following a US Supreme Court ruling that allowed wagers on professional sporting events in the US. As the company’s popularity and product portfolio grew, it became a large target for account takeover (ATO) attacks and experienced up to 10 million malicious login attempts per day. Although they originally explored a homegrown bot management tool, but ultimately pivoted to consider vendor offerings instead.

Solution

The company implemented HUMAN Application Protection because of its ability to protect against the volume of attacks its platform had to endure. In addition, HUMAN delivered the following benefits that allowed this customer to mitigate ATO attacks without sacrificing their users’ online experience:

Learn More
  • Accurate bot protection based on behavioral analytics, advanced machine learning techniques and predictive models that blocks a wide range of automated attacks.
  • Custom parameters allowed the organization to store specific data points, which was a key differentiator for the company.
  • Seamless integration with AWS CloudFront allowed alignment with HUMAN via an edge Lambda function, preserving page load performance and ensuring low latency.
  • Improved efficiency and optimized the use of the company’s internal security resources and infrastructure costs.
  • Helpful customer support available 24/7/365 via Slack, email or phone.

The gaming company was also impressed with HUMAN’s innovative product portfolio. They were particularly interested in our ability to flag and stop logins with compromised credentials in real time. Part of Account Takeover Defense, this capability proactively mitigates credential stuffing attacks and allows the organization to get ahead of account fraud.

RESULTS

HUMAN Account Protection blocked 99.9% of malicious traffic, stopping over 3,000 bad login attempts per second—even after they passed through a WAF and other security controls. Credential monitoring provided early warning of stolen credentials and reduced the economic viability of credential stuffing attacks. In one month, 1,500 fake accounts were flagged and actioned, protecting both revenue and reputation. HUMAN continues to prevent ATOs and defend the brand’s bottom line.
Application Protection is continuously evolving to keep up with new technologies and threats from bad actors. HUMAN has helped prevent ATOs and protected FanDuel’s reputation and bottom line.

Connect with Us

to Learn More How HUMAN Can Mitigate ATO and Credential Stuffing Attacks for You

Related Resources

Solution Briefs

HUMAN Bot Defender Overview

DOWNLOAD NOW

Solution Briefs

Account Takeover Defense

DOWNLOAD NOW

Solution Briefs

HUMAN for Gaming and Streaming

DOWNLOAD NOW