Fraud - searches for fraud using transactional log data
| Event Types | Description |
|---|---|
| Database logs | Anomalous data layer access |
| Application logs | Anomalous payments |
| Database logs | Anomalous table or row access |
| Application logs | anomalous wire transfer request |
| Database logs | Database honeytoken selects |
| Application logs | Excessive use of a feature of method |
| Database logs | High rate selects |
| Database logs | High volume selects |
| Database logs | Honeytoken access |
| Application logs | impossible time travel - sequences of requests too fast to be human |
| Application logs | impossible travel - sequences of method calls not possible in UX |
| Application logs | large number of payees for one payer |
| Application logs | large number of small deposits to one account |
| Application logs | large number of transactions between one payer and payee |
| Application logs | merchant increases cash deposits by 10x |
| Application logs | merchant increases sales by 10x |
| Application logs | Multiple database queries during one call |
| Application logs | Multi-subject calls |
| Application logs | payment to anomalous country |
| Application logs | same user creates and pays a payee |
| Application logs | Selects of customer records outside the user's assigned territory |
| Database logs | Suspicious database selects |
| Database logs | Suspicious query context |
| Database logs | Suspicious query rates |
| Database logs | Suspicious query patterns |
| Database logs | Suspicious query subjects |