tirreno receives real-time user event data from your applications through API calls.

User context and proprietary API enrich data, transforming it into actionable intelligence.

The rule engine processes data to identify positive signals, red flags, and regularities to revaluate the risk score.

Flagged accounts go to manual validation. Accounts with the lowest trust scores may be automatically blacklisted to prevent further access to your app.

‐ User ID

‐ Event type

‐ Time stamp

‐ User agent

‐ IP address

‐ Requested URI

‐ Email address*

‐ Phone number*

‐ User activity metrics

‐ Behavioral data

‐ Device model

‐ IP blacklist matching

‐ Email intelligence*

‐ Disposable email*

‐ Domain intelligence*

‐ Phone data enrichment*

‐ IP geolocation*

‐ VPN/Datacenter detection*

‐ ASN information*

ⓘ Brute-force attack

ⓘ Account takeover

ⓘ New account fraud

ⓘ Merchant fraud

ⓘ Fake listings

ⓘ Compromised accounts

ⓘ Inventory hoarding

ⓘ Payment fraud

ⓘ Account sharing

ⓘ Insider threats

ⓘ Dormant accounts

ⓘ Content abuse

↳ Manual review queue

↳ Blacklist