Research and insights on stopping modern bots and fraud
Today, May 15, 2025, Castle extends its proven behavioral detection to the network edge through a no-code, fully managed Cloudflare
In my previous post, I showed how LinkedIn detects browser extensions as part of its client-side fingerprinting strategy. That post
Modern bot detection rarely deals with obviously fake browsers. Most large-scale automation today runs inside browser instances, with patched fingerprints,
In fraud and bot detection, people usually think of fingerprinting as the classic browser or device fingerprint. This comes from
Every month, we publish a snapshot of the email domains most actively used in fake account creation and related abuse
If you have been following this series (post 1 and post 2), you know the ritual by now. I buy
![Investigating tinyhost[.]shop: a disposable email API used for large-scale fake account creation](/content/images/size/w960/format/webp/2025/12/image--15-.webp)
While working on a new customer, we identified a burst of automated activity linked to accounts created before Castle protections
A few months ago, I accidentally bought sneaker proxies. Instead of crying over my mistake, I did what any reasonable
If you landed here after searching for something like “browser fingerprint test”, “bot detection API”, or “Kameleo anti-detect browser”, then
Every month, we publish a snapshot of the email domains most actively used in fake account creation and related abuse
We recently detected and blocked a large-scale fake account creation campaign. The attacker attempted to register tens of thousands of
Why canvas fingerprinting matters in fraud detection Canvas fingerprinting is often presented as a textbook example of browser fingerprinting. The
A few years ago, Puppeteer stealth was one of the most popular tools in the automation and scraping ecosystem. Built
