SYDNEY โ February 14, 2024 โ Cequence Security has released new research that found scammers are increasingly active on dating apps, attempting to manipulate and exploit users for financial gain. These deceptive individuals pose as genuine romantic interests, building emotional connections before attempting to extract money from unsuspecting individuals.
Developed by the Cequence CQ Prime Threat Research Team, the report analysed anonymised 2023 traffic and attack data across multiple customers in the dating and media vertical across all geographies. The CQ Prime team identified and categorised active threats, and the resulting threat intelligence is a foundational element of Cequence products that enable mitigation and blocking to protect customersโ businesses.
Key Findings Include
- 58% of all detected bot activity in 2023 originated from the U.S., up from 48% in 2021.
- 28% of transactions were spoofing an iPhone app.
- In 2023, more than 660 million bot requests on popular dating apps were detected.
- More than 12 million unique accounts were protected from account takeovers.
โThis Valentine’s Day, love is in the air, but so are scammers targeting lonely hearts on dating apps and looking for ways to extort money,โ said William Glazier, Director of Threat Research at Cequence. โThanks to the recent advancements in AI, bad actors are now leaning on automation to scale their operations, increasingly exploiting APIs to get the accounts they need to continue their scams. While legitimate end users should always watch for red flags, organisations that develop and manage the social and dating applications where these scams occur must take the appropriate measures to curb this malicious activity.โ
According to the FTC, victims falling prey to the preferred falsehoods of scammers resulted in a substantial financial loss of $1.3 billion in 2022 alone. Bots serve as the linchpin for scammers, providing the means to scale their operations. Through the efficiency of automation, these perpetrators intensify their efforts, significantly elevating the likelihood of successful exploits.
โTo combat romance fraudsters, dating sites and apps must find the perfect, long-term match to help protect their users from automated attacks,โ Glazier continued. โThese organisations must adopt a holistic security strategy that protects their APIs at every lifecycle phase. This means treating API security and bot management as interconnected challenges, not separate issues solved by isolated teams. This combined approach involves identifying and registering all APIs, ensuring rigorous adherence to industry standards, and deploying advanced threat detection and mitigation tools to defend against attacks.โ
Additional Resources
- Download the infographic to learn more about how scammers are infiltrating dating apps.
- Read the blog
- Learn more about our Unified API Protection platform
- Follow us on LinkedIn and Twitter
About Cequence Security
Cequence, a pioneer in API security and bot management, is the only solution that delivers Unified API Protection (UAP), bringing together discovery, compliance, and protection across all internal and external APIs to defend against fraud, business logic attacks, exploits, and unintended data leakage. Needing less than 15 minutes to onboard an API without requiring any instrumentation, SDK, or JavaScript integration, the flexible deployment model supports SaaS, on-premises, and hybrid installations. Cequence solutions scale to handle the most demanding Fortune and Global 2000 organisations, securing more than 8 billion daily API calls and protecting more than 3 billion user accounts across these customers. To learn more, visit www.cequence.ai.
— END