Appdome launches backend risk APIs for mobile fraud

Appdome has added new Risk Intelligence APIs to its IDAnchor mobile identity product for use in backend fraud systems, identity operations and enterprise AI models.

The release extends IDAnchor with server-to-server access to mobile risk and reputation data, including verified identity signals, threat history and AI-generated risk scores. Appdome also introduced two identifiers, AppID and InstanceID, designed to verify an app and maintain continuity across updates, upgrades and downgrades.

The launch is aimed at a growing need for stronger mobile fraud and identity checks beyond network or static signals. The interfaces let backend systems assess trust and suspicious activity using data tied to an app, device, session and prior threat events.

The package includes DeviceMATCH, which checks whether activity comes from the same physical device, and InstanceMATCH, which confirms the authenticity of AppID and the continuity of an app instance across software changes. It also includes ThreatHISTORY, which provides longitudinal threat evidence linked to identity context, and MobileRISK, which returns risk and reputation scores for devices, accounts and sessions.

AppID replaces Appdome's previously announced ReleaseID. The company describes it as a signature fingerprint for the app, coupled with attestation that the app has not been modified. InstanceID is described as a durable identifier for an app's original installation that remains linked to that installation over time on a device.

Appdome argues that this data can help fraud and identity teams distinguish between first-time users and devices with an established history of risky behaviour. It could also support device-level enforcement, API authorisation checks, risk-based authentication and cross-channel intelligence correlation inside secure server environments.

Tom Tovar, Co-Creator & Chief Executive Officer, Appdome, linked the launch to the scale of mobile threat telemetry gathered by the company.

"At 1.3 trillion threat events per month and growing, we have the largest and most comprehensive data set of mobile threats," said Tovar. "It made sense for us to start exposing this via backend APIs and allow mobile brands to consume that data within well-understood and useful contexts to stop fraud and improve decisioning."

Backend focus

The new interfaces build on Appdome's Threat-Memory framework, which was recently introduced to provide threat intelligence inside mobile apps. With this launch, that intelligence is extended into server-side systems, where fraud engines, case management tools and risk orchestration platforms make operational decisions.

Mobile security data has often been fragmented between the app, the device and the backend. By exposing identity-linked threat history to server-side systems, Appdome is seeking to create a longer-term record for fraud investigations and real-time checks.

Examples cited by the company include identifying repeat offenders across multiple devices or accounts, detecting coordinated fraud and social media scams, spotting attackers who reuse manipulated app installs after device resets, and blocking devices associated with fraud rings or device farms.

Industry analyst Eric Newcomer said the launch reflects the growing importance of mobile security as attacks intensify.

"Mobile devices are more a part of daily life than ever," said Newcomer. "Cybercriminals and fraudsters know this and are constantly ramping up their attacks. Fortunately, mobile defense vendors such as Appdome continue to respond. Their new IDAnchor APIs are an important addition to strengthening mobile app protection as well as server side intelligence."

AI and risk

Appdome is also positioning the product around enterprise AI use cases, arguing that verified threat attribution and mobile identity context can serve as a trusted data source for internal AI systems rather than relying only on inferred signals from network activity.

Avi Yehuda, Co-Creator & Chief Technology Officer, Appdome, said the link between threat history and verified identity creates broader uses across backend decisioning and AI model inputs.

"Binding granular threat data and threat history across verified mobile identities on Appdome's backend creates so many possibilities," said Yehuda. "On the one hand, it can be consumed on the mobile backend to improve risk-based decisions. It can also empower mobile brands to leverage Appdome's APIs as a trusted and verified source of threat data and identity context to enrich Enterprise AI models."

Appdome said fraud and identity teams increasingly need more than a single score to make decisions. It argues for combining risk scoring with attributed threat evidence across different timeframes, from immediate session checks to longer-term histories tied to devices and app instances.

Kai Kenan, Vice President of Identity & Reputation Solutions, Appdome, said the company views mobile risk as an information pipeline rather than a single signal.

"Think of mobile risk as a data pipeline," said Kenan. "Fraud and Identity teams can't perform risk-based decisioning on a single factor and risk false positives or negatives. Our APIs provide risk scoring but also provide detailed threat data attributed to the mobile identities that brands know and trust."

Appdome said the services are designed for secure access in server environments and for real-time decisioning. Srini Avernini, Vice President of Data & Infrastructure, Appdome, said reliability and integrity were central to the way the interfaces were built.

"Secure access, threat data integrity, and continuous availability are built into our API services from the ground up," said Avernini. "We recognize that our new API services will be used for real-time and runtime decisioning in billions of mobile apps and as the bedrock for Agentic AI developments our customers invest in, and we've taken all of that into account in building the service."