Company
·
Antoine Vastel is joining Castle as Head of Research
Bot detection is broken. Attackers have moved far beyond basic bot scripts—they’re leveraging AI, residential proxies, and sophisticated
The Castle blog
Research and insights on stopping modern bots and fraud
Featured
Latest
Research
·
Anti-detect browser analysis: How to detect the Undetectable browser?
This is the second article of our series about anti-detect browsers. In the first article, we gave an overview of
Overview of anti-detect browsers
This is the first article of a series about anti-detect browsers. In this article, we provide an overview of anti-detect
Antoine Vastel is joining Castle as Head of Research
Bot detection is broken. Attackers have moved far beyond basic bot scripts—they’re leveraging AI, residential proxies, and sophisticated
Research
·
Detecting noise in canvas fingerprinting
In a previous blog post, we talked about canvas fingerprinting, a technique commonly used to detect fraudsters and bots. In
Research
·
The role of WebGL renderer in browser fingerprinting
Browser fingerprinting leverages different JavaScript attributes related to the user's device, OS, and browser. When it comes to
Research
·
Anatomy of a 4-day mobile app credential stuffing attack
In this article, we cover the details of a distributed credential-stuffing attack that targeted the mobile application of a major
Research
·
How bots and fraudsters exploit free tiers in AI SaaS
The latest wave of artificial intelligence (AI) improvements significantly improved the quality of models for image and text generation. Several
Research
·
How bots and fraudsters exploit video games with credential stuffing
If you spend time on video game forums, you might have noticed posts from users discussing their accounts being hacked
Research
·
Open Bullet 2: The preferred credential stuffing tool for bots
Open Bullet 2 is an open-source software, specialized in credential stuffing attacks, i.e. attacks that use bots to automatically
Research
·
Canvas fingerprinting in the wild
Every day, your computer renders dozens of these without you even noticing. Strange patterns, colorful shapes, and emojis—what do
Research
·
Anatomy of a 6-day credential stuffing attack from 2.2M residential IPs
In this article, we cover the details of a heavily distributed credential-stuffing attack that targeted a major US financial service
Fixing the blind spots in fraud prevention
Fraud prevention fails when you can’t see what’s happening on your platform. Most companies rely on basic fraud