Connect with us

NEWS

LexisNexis and Promon Target Six Mobile Attack Types

LexisNexis Risk Solutions and Promon are pairing Promon Shield with ThreatMetrix to defend mobile apps from tampering, malware, overlay attacks and more.

Published

on

LexisNexis Risk Solutions and Promon have announced a partnership that fuses Promon Shield and Promon Insight with LexisNexis ThreatMetrix so organizations can defend mobile applications against tampering, malware, overlay attacks, device manipulation, reverse engineering and automated abuse. The union, framed around the LexisNexis Dynamic Decision Platform, brings app-level telemetry into the same decision flow as identity intelligence and transactional risk signals.

On the Promon side, Promon Shield handles in-app protection and Promon Insight contributes trusted telemetry from inside the application. On the LexisNexis side, ThreatMetrix layers digital identity intelligence and risk decisioning onto those telemetry streams. Daniel Kollberg, Chief Executive Officer at Promon, and Grayson Clarke, Chief Commercial Officer at LexisNexis Risk Solutions, are quoted on the announcement alongside the platform piece.

What Each Side Brings to the Partnership

Promon’s contribution to the deal centers on the inside of the mobile application, where Promon Shield works at runtime to keep an app’s code and behavior intact against tampering, malware, overlay attacks, device manipulation, reverse engineering and automated abuse. Promon’s runtime app defense for mobile fraud teams is positioned as the answer to a problem fraud teams cannot solve from outside the app.

LexisNexis ThreatMetrix contributes digital identity intelligence and risk decisioning from across the LexisNexis Risk Intelligence Network, layering what is known about the user, device and behavior on top of Promon’s app-level telemetry.

The two product lines meet on the LexisNexis Dynamic Decision Platform, which the announcement says will support the combined capabilities. Promon’s partner program for embedded app security is the channel through which Promon is delivering its layer to the integration. In-app protection and trusted telemetry from Promon is what enters the platform, while digital identity intelligence and risk decisioning from ThreatMetrix shapes how that telemetry is interpreted.

Capability Promon Shield and Promon Insight LexisNexis ThreatMetrix Combined under Dynamic Decision Platform
Layer protected Inside the mobile app User identity across digital channels Both, with transactional risk signals
What it provides (per source) In-app protection and trusted telemetry Digital identity intelligence and risk decisioning App-level protection, identity intelligence and transactional risk signals for real-time fraud decisions
Signals used Tamper-resistant telemetry from app runtime Device, behavioural, identity attributes Both, fused at decision time

The Six Attack Categories the Union Targets

The partnership announcement names a specific roster of mobile-app threats: tampering, malware, overlay attacks, device manipulation, reverse engineering and automated abuse. Tampering, malware, overlay attacks sit alongside the other three as the threat surface the joint stack is positioned to address. The framing matters because every one of those categories happens inside or directly against the application and its runtime, not against the network edge or the login page.

  • Tampering
  • Malware
  • Overlay attacks
  • Device manipulation
  • Reverse engineering
  • Automated abuse

That is also what the announcement frames as the reason for the partnership. The article says fraud attacks are moving deeper into app and device environments, which leaves organizations whose defenses were built for browser-era identity checks looking at threats their existing signals were not designed to catch. The six categories are the working definition of how far that drift has gone.

How the Pieces Are Stitched Together at Runtime

The Dynamic Decision Platform is the announced integration layer. The platform will support the combined capabilities, the article says, by bringing app-level protection together with identity intelligence and transactional risk signals.

At decision time, Promon Shield supplies tamper-resistant telemetry from inside the application while ThreatMetrix contributes the identity, device and behavioral attributes it already evaluates across the network. The platform fuses those into a single score that organizations can act on inside the flow of a transaction, the announcement says, for real-time fraud decisions rather than after-the-fact review.

That real-time framing is the operational shift the announcement is pitching. Fraud decisions have to be made in the moment of a login, transfer or onboarding step, and the platform is positioned as the place where app-level evidence and identity evidence meet on the same clock. The article uses the phrase “app-level protection, identity intelligence and transactional risk signals” to describe that blend.

The announcement does not specify a deployment timeline, named pilot customers, the geographic rollout or how the integration will be packaged commercially. Any detail beyond what the announcement states on those points would be invented. What the announcement does say is that the partnership is intended to give organizations a single place to bring together the signals from both vendors.

Why This Signals Where Mobile Fraud Has Moved

The roster of six attack categories is the second-order tell. A deal built around browser-traffic identity signals would have named credential stuffing, account takeover through phishing pages or fake-front-end websites. This deal names tampering, malware, overlay attacks, device manipulation, reverse engineering and automated abuse, which all happen after the application has been installed and started.

The consequence is that organizations whose fraud stack is built around user identity, device fingerprinting and behavioral biometrics now face attackers who are operating beneath all three layers, inside the application itself, where signature-based defenses do not see them.

Fraud prevention is increasingly dependent on understanding the full context of a digital interaction. Promon’s app protection capabilities complement the insights delivered through our LexisNexis Risk Intelligence Network, helping customers strengthen the signals they rely on to better detect fraud across the mobile environment.

Grayson Clarke, Chief Commercial Officer at LexisNexis Risk Solutions, made the joint-positioning case in the announcement, and his framing of “the full context of a digital interaction” is the strategic thesis underneath the deal. Identity alone no longer carries enough signal when an attacker has moved into the runtime. LexisNexis’s enterprise fraud and identity management suite is the wider product set into which the partnership feeds.

What is consequential is the category of attack now named, which is exactly the category that organizations relying on web-era identity checks are least equipped to see. LexisNexis and Promon’s mobile app fraud partnership announcement makes that shift explicit by tying Promon’s runtime telemetry to ThreatMetrix’s identity layer, rather than keeping the two stacks separate.

What End-User Organizations Still Have to Decide

The customer-facing value, as Daniel Kollberg, Chief Executive Officer at Promon, put it in the announcement, is that Promon Shield, mobile risk detection, behavioral insights and tamper-resistant telemetry are being brought into “one of the world’s leading fraud intelligence platforms,” so that organizations can protect customers, reduce fraud losses and deliver safer mobile experiences. The pitch is integration, not replacement, which means organizations evaluating this combined stack have to decide how the runtime telemetry is going to land inside their existing decisioning.

What organizations have to decide is whether their fraud operation can ingest tamper-resistant telemetry from inside the app, how the fused identity and transactional risk signals will feed into case management, and what the decision latency looks like in real-world mobile transactions. The decision clock for a mobile login or transfer is shorter than for many web flows, and a stack that adds layers inside the decision path has to clear that latency bar. The partnership puts the integrated pieces on the table. What organizations do with them is theirs to figure out.

Frequently Asked Questions

What does the LexisNexis and Promon partnership actually combine?

It brings together Promon Shield and Promon Insight, which provide in-app protection and trusted telemetry, with LexisNexis ThreatMetrix, which contributes digital identity intelligence and risk decisioning, all under the LexisNexis Dynamic Decision Platform.

Which mobile app threats does the partnership name?

The announcement lists tampering, malware, overlay attacks, device manipulation, reverse engineering and automated abuse as the threat categories the joint stack is intended to address.

How do Promon Shield and Promon Insight differ from ThreatMetrix?

Promon Shield and Promon Insight work inside the mobile application at runtime, while ThreatMetrix evaluates digital identity across channels. The partnership is structured so the two layers feed the same decision rather than running in parallel.

Who is leading the partnership on each side?

Daniel Kollberg is Chief Executive Officer at Promon and Grayson Clarke is Chief Commercial Officer at LexisNexis Risk Solutions; both are quoted on the announcement.

Will organizations still need their existing fraud tools?

The announcement frames the partnership as additive, bringing app-level protection together with identity intelligence and transactional risk signals, without language that supersedes existing fraud stacks.

Logan Pierce is a writer and web publisher with over seven years of experience covering consumer technology. He has published work on independent tech blogs and freelance bylines covering Android devices, privacy focused software, and budget gadgets. Logan founded Oton Technology to publish clear, no nonsense tech news and reviews based on real hands on testing. He has personally tested and reviewed dozens of mid range and budget Android phones, written extensively about app privacy, and built and managed multiple WordPress publications over the past decade. Logan holds a bachelor's degree in English and studied digital marketing at a certificate level.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Trending