Hey Product Hunt, I’m thrilled to share Stytch’s Fraud & Risk Prevention solution with you today. I'm a huge fan of Stytch because they continue to innovate and rethink how authentication and fraud prevention can work for your product. Stytch’s new Fraud & Risk Prevention solution goes beyond basic identity verification, addressing critical issues such as programmatic fraud, compute abuse, and account takeover using advanced technology. The team is eager for your feedback as they continue to innovate in this space. Thanks for your support! 🚀

Hi Product Hunt Community! I’m Julianna, founder and CTO of Stytch. We’re a team that wants to make it easier for you to scale your applications and keep them secure. We’re excited to announce today a radical new approach to protecting applications and users against fraud and abuse. 🚩The Problem: Auth alone is no longer enough While we’ve spent the last few years focused on building better authentication infrastructure for developers, we’re seeing a worrying trend where threats are becoming more sophisticated and more pervasive - thanks in no small part to AI. Even the strongest methods can fall short and leave your app susceptible to: - Free tier abuse and programmatic fraud. Your app needs a better understanding of who each user is when they log in, going way beyond self-reported attributes. - Account takeover. Your app needs to evaluate what specifically a given auth method attests to, and how it interacts with other vectors. - Account theft. Social engineering, phishing, and session hijacking are all very difficult to mitigate unless your app is collecting low-level sub-signals to understand if the user is really who they claim to be. 🚫 Limitations of Current Solutions WAF and CAPTCHA only look at parts of the problem. These solutions are either incomplete, not very accurate or use blunt force methods that ruin the user experience. They’re reasonable as a first line of defense but work at a pretty broad level (e.g, IP address range) and can’t evaluate and shape traffic at a granular level. And they’re simply not built for the sophisticated attacks we see today. 🚀 Introducing Stytch Fraud and Risk Prevention Stytch’s new solution delivers the industry's most accurate and intelligent fingerprint-based solution. It’s completely integrated with our auth platform - or can be used as a standalone security product. It offers the most accurate device fingerprint using a broad collection of standard and proprietary signals from across: - Software stack and OS version - Browser sub-signals and capabilities - Passive network TLS fingerprinting - User attributes - Hardware architecture and resources And to combat advanced fraud, we’ve released these new cutting-edge features: * Security Rules Engine: For every fingerprinted visitor, Stytch returns a clear verdict of whether that visitor should be allowed, blocked or further challenged before being granted access. These rules are further configurable via either the Stytch dashboard or programmatically via our API. * Intelligent Rate Limiting: The Stytch solution also supports fine-grained rate limiting. Unlike network-focused solutions, when Stytch identifies a potential vulnerability it can limit the specific device or set of devices that are the offenders. Whereas other bot mitigation solutions might rate limit an entire IP address range, with both good and bad actors. * ML-Powered Device Detection: While the foundation of our fingerprinting solution is deterministic and rules-based, we’ve also introduced a machine learning model to accelerate device detection and categorization, further improving zero-day threat detection and overall user experience. Stytch's Fraud and Risk solution offers industry-leading accuracy in detecting bots and bad actors, even when methods like browser automation frameworks or user agent deception are employed. Unlike other fingerprinting solutions, it is resistant to reverse engineering and tampering, natively integrates with authentication, and delivers low latency for a seamless user experience. We think we’ve created something really special here and we’re eager for feedback from the Product Hunt community!

Super excited to be a part of this launch and get to hear from customers like Replit, Pixels and Hubspot that are already using this product as critical security infrastructure for their app to protect against bots, fraud and abuse

The integration with auth processes is a smart move. Curious about how it compares to traditional methods like CAPTCHAs in terms of user experience? Would love to see some early success stories! 🚀

This new fraud prevention solution feels game-changing for today's SaaS apps. It seems like innovation in authentication and identity rarely happens, but this product is a major step forward with its device detection + auth capabilities. Congrats to the team on the launch!

Thanks for sharing, Lenny! Stytch's new solution sounds promising. With online fraud becoming more sophisticated, it's great to see innovations in prevention. I'm curious about how it balances security with user experience - does it add any noticeable friction for legitimate users? Also, that 99.99% bot detection accuracy is impressive if it holds up in real-world use. Might be worth looking into for our app's security upgrade.

This sounds like a super smart solution to a growing problem! Love how Stytch is going beyond just auth to really address sophisticated threats. Excited to see how the intelligent rate limiting and ML-powered detection works in practice. Congrats on the launch, can't wait to try it out.

Hey Julianna and the Stytch team! 🌟 This new Fraud and Risk Prevention solution sounds like a monumental step forward in application security. The range of threats you’re addressing—from free tier abuse to sophisticated account takeovers and theft—is truly impressive. Your device fingerprinting approach, combining software stack insights with ML-powered detection, promises to bring unprecedented accuracy and resilience against even the most advanced attacks. The Security Rules Engine and Intelligent Rate Limiting are particularly exciting features, offering robust protection without compromising user experience. Integrating this seamlessly with your existing auth platform, or as a standalone product, is a fantastic move. Kudos on this game-changing innovation! 🚀🛡️ @jelamb

🙌 Congrats to the team on the launch!

@lenny_rachitsky Kudos on the stellar launch, Stytch Fraud & Risk Prevention team! Your advanced fingerprinting technology is revolutionizing app security with unparalleled bot detection and fraud prevention. It’s exciting to see your focus on both accuracy and user privacy. How do you anticipate your fraud prevention measures influencing user trust and retention? At InterWiz, we’re transforming the hiring landscape with AI-driven evaluations, enabling recruiters to seamlessly identify top talent, thereby fostering more robust and capable teams.

congrats on the launch! super smart to embed fraud + fingerprinting into auth

The blend of advanced fingerprinting technology and intelligent rate limiting is super impressive. Your approach to tackling sophisticated threats with such precision is bound to make a huge difference in app security.

Congratulations on launch of Stytch Fraud & Risk Prevention.....

Love this. Really innovative approach to fraud prevention and a great solution for modern threats. Congrats on the launch!

This looks like a fantastic solution! One small thing...we tried it and noticed the documentation page was slow to load on mobile. It might be worth optimizing that, but otherwise, everything is spot on!

Love seeing lots of industry experts who are using this product. The way finger printing is stitched together to derive at a decision is pretty smart! congrats on the launch @jelamb and team! PS: hey Lenny!

This is awesome! I was just thinking the other day, of solutions to prevent bot and fraud traffic from attacking my website. Congratulations on your new solution, I will definitely be digging deeper.

With all the upcoming bots - this is actually very useful!