Risky transactions likely associated with fraud on gaming platforms jumped more than 206% on Super Bowl Sunday, compared to average volume of NFL playoff games. 

Risky Transactions Score High on Biggest Sports Betting Day of the Year (Taylor’s Version)

Super Bowl LVII: Sports Betting Hits Historic Highs for New Accounts and Bets

Looking Back on Fraud During the 2023 Super Bowl

The Best Defense is a Good Offense: Looking Back on Fraud During the 2023 Super Bowl, and What We Can Expect This Year

How To Evaluate an Online Gaming ID Verification Solution

As more than <a href="https://www.cnn.com/2024/02/12/media/super-bowl-lviii-ratings/index.html">123 million people</a> had their eyes on Super Bowl LVIII in Las Vegas, all predictions pointed toward unprecedented sports betting — and with it unprecedented fraud attempts. 
According to the first figures for Nevada’s sportsbook, <a href="https://www.espn.com/espn/betting/story/_/id/39517831/record-1856m-bet-super-bowl-lviii-nevada-sportsbooks">more than $185 million was bet on Super Bowl LVIII</a>, eclipsing the previous high in 2022 by almost $6 million. 
The rate of risky transactions likely linked to fraud on gaming platforms jumped more than 206% on Super Bowl Sunday, compared to risky transaction volumes seen during the playoff games in January. These transactions are linked to a correlation of compromised identity elements — for example combinations of name, email, address, IP, or device – producing a greater probability that the application is in the top 3% of risk.
<img loading="lazy" decoding="async" src="https://media.socure.com/app/uploads/2024/02/MISC_5991040251-Super-Bowl-2023-Graph-1-1.png" alt="Volume Spikes Across the Socure Gaming Ecosystem" width="894" height="444" />
<h2>Patterns of Risk: An Email Tells A Thousand Tales</h2>
Because many gaming platforms require an email but not necessarily all of the elements of PII — fake emails were the hottest indicator among the mountain of risky Super Bowl transactions.
Socure’s data showed a wide mix of immature, invalid, out-of-use and “tumbled” emails that are often linked to fraud. These emails were highly correlated with identities that had names which could not be resolved to their address, DOB and phones, for example. 
We also saw big spikes in risky emails at the beginning of the game and right before halftime when incentives are offered and gamblers — both valid and risky — are fumbling to seize the moment.
When these emails are correlated with other risk signals, a very clear picture of risk emerges. 
<img loading="lazy" decoding="async" class="wp-image-11374 size-large" title="Untitled" src="https://media.socure.com/app/uploads/2024/02/Untitled-e1707945936879-1024x510.png" alt="Email risk signals" width="1024" height="510" srcset="https://media.socure.com/app/uploads/2024/02/Untitled-e1707945936879-1024x510.png 1024w, https://media.socure.com/app/uploads/2024/02/Untitled-e1707945936879-300x149.png 300w, https://media.socure.com/app/uploads/2024/02/Untitled-e1707945936879-768x382.png 768w, https://media.socure.com/app/uploads/2024/02/Untitled-e1707945936879.png 1529w" sizes="auto, (max-width: 1024px) 100vw, 1024px" />
<h2>Bad Actors Traverse Multiple Gaming Platforms</h2>
Across multiple sports book platforms, we saw the same identities &#8211; indicated by the same combined name, SSN, DOB &#8211; linked to risky emails &#8211; opening accounts and placing bets. 
While creating an account across multiple platforms may not be abnormal, we saw users attempting this over and over with the same PII — possibly in an attempt to abuse a promotion code or referral bonus. The graph below shows the correlation between duplicate attempts and a higher email risk score. 
<img loading="lazy" decoding="async" class="wp-image-11370 size-full" title="Screenshot 2024 02 14 at 3.29.23 PM" src="https://media.socure.com/app/uploads/2024/02/Screenshot-2024-02-14-at-3.29.23%E2%80%AFPM.png" alt="Email Risk Signal Distribution by Duplicated Attempts" width="642" height="530" />
&nbsp;
Low fraud scores for these users could signify good consumers who are maximizing their bets across platforms. However, high fraud scores for these users could mean that a stolen identity is being exploited on not just one gaming platform, but across several.
The data shows that consumers who attempt to use the same PII multiple times are generally much riskier users than those who place one bet, or create one account, at a time.
<h3>Compliance Risk Exposure: A Storm of Bad Social Security Numbers and DOBs</h3>
Because gaming platforms run Know Your Customer (KYC) compliance checks, we saw a clear spike in the number of transactions in which the Social Security number (SSN) or date of birth (DOB) could not be verified against the user’s name. When there is an increase in DOB, SSN, address, or name that cannot be resolved to the identity, that represents an increase in compliance risk.
<h3>Targeting Gen Z Identities</h3>
The graph below shows the age of identities that were used to open accounts or conduct risky transactions. It&#8217;s important to note that while this data shows the 21-25 age group attempts the most risky transactions, it may simply indicate their identities are most commonly stolen due to their limited digital footprint and used fraudulently. Gen Z consumers may be an easier target — according to <a href="https://www.cnbc.com/2024/01/24/gen-z-millennials-are-less-worried-about-fraud-than-older-generations.html">Bank of America research</a>, only 15% of this population are “worried about falling victim to stolen money or assets through deceptive tactics.”
<img loading="lazy" decoding="async" class="alignnone wp-image-11371 size-large" title="MISC 5991040251 Super Bowl 2023 Graph 5" src="https://media.socure.com/app/uploads/2024/02/MISC_5991040251-Super-Bowl-2023-Graph-5-1-1024x509.png" alt="Risky Transactions By Age" width="1024" height="509" />
<h3></h3>
<h3>Monitoring for Users on Global Watchlists</h3>
Global watchlists act as regularly updated databases containing individuals, organizations, or nations that have been identified as potential threats for illegal activities like fraud, money laundering, or terrorism. During major betting events when fraud controls may be relaxed to allow for more business, those named on exclusion lists could see opportunities to slip through the cracks. If a gaming operator knowingly engages with listed parties, they take on inflated financial crime risks.
<a href="https://www.socure.com/blog/looking-back-on-fraud-during-2023-super-bowl">As we saw on Super Bowl Sunday 2023</a>, there was an escalation of gamers who were on these lists. Specifically, Socure’s Global Watchlist solution monitors showed a few specific lists in the U.S., with the Georgia Bureau of Investigation representing about 50% of the hits in 2024.
<img loading="lazy" decoding="async" class="alignnone" src="https://media.socure.com/app/uploads/2024/02/MISC_5991040251-Super-Bowl-2023-Graph-6-1-1536x763.png" alt="Proportion of Watchlist Hits by Source" width="1019" height="506" />
<h2>Where and When Did We See Fraud?</h2>
<h3>Sports Betting Plummeted After Halftime</h3>
As far as betting timing, we saw huge spikes in fraudulent attempts around three hours before kickoff and at the start of the game. The most common reason for reviewing a transaction for fraudulent behavior was when a user’s email was not actively in use. Other common fraud risk signals were IP addresses being over 100 miles from the input address, and using newly created email addresses. 
<img loading="lazy" decoding="async" class="" src="https://media.socure.com/app/uploads/2024/02/MISC_5991040251-Super-Bowl-2023-Graph-7-1-1536x763.png" alt="Fraud risk signals" width="1031" height="512" />
&nbsp;
Timing is everything — but so is where users place their sports bets. To date, <a href="https://www.cbssports.com/general/news/u-s-sports-betting-here-is-where-all-50-states-currently-stand-on-legalizing-online-sports-betting-sites/">38 states and Washington, D.C.</a> allow online sports betting, with each state coming with its own restrictions.
A consumer could be a resident of California, Georgia, or Texas — where online betting is currently illegal — and still place a bet if a gaming operator sees through location tracking that their device is physically present in a state where online betting is legal, such as Indiana, New York, or Florida. 
<h3>The Top 5 Riskiest States</h3>
In 2024, the top 5 states for risky transactions according to users’ driver’s licenses included California, Florida, Indiana, New York, and Texas. While Georgia was on the top 5 list in 2023, it was replaced by Indiana this year. 
<img loading="lazy" decoding="async" class="wp-image-11372 size-large" title="MISC 5991040251 Super Bowl 2023 Graph 4" src="https://media.socure.com/app/uploads/2024/02/MISC_5991040251-Super-Bowl-2023-Graph-4-1-1024x509.png" alt="MISC 5991040251 Super Bowl 2023 Graph 4" width="1024" height="509" />
<h2>Minimizing Friction, Maximizing Conversion</h2>
Just like football (and TayTrav) — the world of online sports betting is full of nuances. Between verifying identity, such as age and location, and preventing fraud, gaming operators have their hands full.
By analyzing when and where fraud spikes occur, gaming operators can strike a balance of preventing fraud, while minimizing friction to convert new users.
&nbsp;

Risky Transactions Score High on Biggest Sports Betting Day of the Year (Taylor’s Version)

Related Posts

Louis Yansaud