Identity Fraud Protection

ReachFive’s Identity Fraud Protection (IFP) module analyzes events to determine if a particular IP is exhibiting suspicious behaviour. In particular, the Identity Fraud Protection module consumes login attempts where it determines if the IP is suspicious or not. If the Identity Fraud Protection module determines that the IP is suspicious, the IP is flagged and siloed into a separate database where its access is immediately blocked.

If automatic suspension is enabled on your ReachFive Console and the IFP module detects that malicious IPs have successfully accessed an account, the account is automatically suspended.

Administrators can view and manually suspend user accounts that have been compromised by these suspicious IPs directly from the ReachFive Console.
ifp overview
Why use Identity Fraud Protection?

Enabling the Identity Fraud Protection module on your ReachFive account allows you to:

  • Substantially reduce the impact of a credential stuffing attack.

  • Provide reports for GDPR purposes.

  • Immediately block suspicious IPs.

  • Easily view compromised user profiles. Premium feature

  • Quickly suspend compromised user profiles from the ReachFive Console. Premium feature

  • Automatically suspend accounts associated with suspicious IPs. Premium feature

View compromised profiles

To use the Identity Fraud Protection module, you must have it enabled on your ReachFive Console by a ReachFive administrator.

If it should be enabled, and you do not see it on your console, contact ReachFive support.

Prerequisites

  • You must have access to the ReachFive Console.

  • You must have a CRM, Manager, or Administrator role.

  • You must have the IP Blocking feature enabled.

  • You must have the Compromised profiles feature enabled.

Instructions

  1. Log in to your ReachFive Console.

  2. Go to Analytics  Profiles.

  3. Select Compromised profiles.

    compromised profiles


    The Compromised profiles section
    • lists all compromised profiles by ReachFive ID, Identifier (like email or mobile), their Suspension status, and when the suspicious behaviour was detected.

    • allows you to search by ReachFive ID and/or Identifier.

Suspend compromised profiles

To use the Identity Fraud Protection module, you must have it enabled on your ReachFive Console by a ReachFive administrator.

If it should be enabled, and you do not see it on your console, contact ReachFive support.

Prerequisites

  • You must have access to the ReachFive Console.

  • You must have a CRM, Manager, or Administrator role.

  • You must have the IP Blocking feature enabled.

  • You must have the Compromised profiles feature enabled.

Instructions

  1. Log in to your ReachFive Console.

  2. Go to Analytics  Profiles.

  3. Select Compromised profiles.

    compromised profiles

  4. Select the compromised profiles you wish to suspend.

  5. Click Suspend.

  6. Confirm the profiles to suspend in the pop-up.

    suspend compromised profiles from console

Enable Automatic suspension with IFP

You can enable the IFP module the right to automatically suspend accounts associated with a malicious IP.

Prerequisites

  • You must have access to the ReachFive Console.

  • You must have a CRM, Manager, or Administrator role.

  • You must have the IP Blocking feature enabled.

  • You must have the Compromised profiles feature enabled.

Instructions

  1. Log in to your ReachFive Console.

  2. Go to Settings  Security  Automatic suspension.

  3. Check the Enabled box.

  4. Don’t forget to Save your input.

ifp auto suspend

API operations

Use the Management API to:

Feedback