Skip to main content

ThreatMetrix

Active competitor

Established digital-identity platform. LexisNexis Digital Identity Network (78B+ events). SmartID persistent device fingerprinting. Partnered with Radar for location intelligence (2025).

risk.lexisnexis.commaxim.mosinVerified 1mo ago
Compare
USEUUKGlobalBankingInsuranceE-commerceGovernment#new-verticals#identity-consortium#lexisnexis#radar-partner#smartid#compete

Detection scorecard

How ThreatMetrix handles every spoofing technique we test for. Click any cell for findings.

Full matrix →
  • Detected
  • Partial
  • Missed
  • Not tested
CompetitorVPNProxyRemote accessFake GPS appGPS spooferEmulatorDevice farmJailbreak / RootResigned / tampered appSideload (PlayCover)Browser extensionMITM / replayTor

Strongest findings

Failed and partial test outcomes ranked for sales impact — what to lean on in a call.

No findings yet

Once tests land in updates/ with an outcome, they'll surface here.

All findings

Test results and intel tagged to ThreatMetrix.

Operator
Threat
No findings on file for this competitor yet.

Battle card

Talking points for a live sales call.

ThreatMetrix (now part of LexisNexis Risk Solutions) is one of the most established digital-identity + fraud platforms in the market. Core capability is the LexisNexis Digital Identity Network — a 78B+ event consortium fed by contributing financial institutions, e-commerce merchants, and insurers. **SmartID** is their persistent-device fingerprinting product. **The 2025 ThreatMetrix x Radar partnership is the most important development in this competitive landscape to monitor.** If LexisNexis bundles ThreatMetrix's identity network with Radar's location compliance into a single SKU, it becomes a formidable combined competitor — especially in banking and fintech where ThreatMetrix already has deep penetration. **However**, the Radar limitations carry over: no VM / DevTools / browser-extension detection. The adversarial spoofing gap remains GeoComply's strongest angle.

Watch out for

  • 78B+ identity events from a global consortium of contributing organisations.
  • SmartID device fingerprinting persists across browser clearing + device resets.
  • LexisNexis parent adds physical-world identity data (address, phone, credit header) that no pure-play fraud platform can match.
  • Radar partnership (2025) adds geofencing-based location compliance to the stack.
  • Deep banking + insurance + government penetration — credible enterprise vendor.

How we win

  • IP-only geolocation (ThreatMetrix side) — no GPS, Wi-Fi, or Bluetooth sensor data.
  • Radar-side gap carries over: no VM, remote desktop, browser extension, or DevTools spoofing detection.
  • Setup complexity is a real weakness — frequently cited in analyst reviews as difficult to integrate and maintain.
  • Compliance audit log is analytics-grade, not court-defensible.
  • No direct regulatory relationships with gaming commissions.

Capability claims

What they say they do, grouped by category. Cross-check against the detection scorecard above — claims and tests don't always match.

Geolocation

How accurately and reliably the product determines a user's real location.

  • GPS / OS locationUses native device GPS or OS-level location services.
    Noverifiedstale

    Via Radar partnership when bundled — but core ThreatMetrix is IP-only.

  • Wi-Fi triangulation
    Partialverifiedstale

    Via Radar partnership.

  • IP geolocation
    Yesverifiedstale
  • IP-change detectionContinuously monitors IP and re-runs geolocation on Wi-Fi ↔ cellular or VPN swap (GeoComply MyIP equivalent).
    Yesverifiedstale
  • Boundary / state-lineHandles users moving across regulated boundaries during an active session.
    Partialverifiedstale

    Via Radar partnership — same limitations as Radar standalone.

  • Near-border accuracyMulti-point aggregation + buffer-zone handling near regulated borders; measured as pass rate at 250m.
    Noverifiedstale

    Radar near-border failures carry over (see Radar profile).

  • Pre-login pre-check
    Partialverifiedstale

    Risk score, not deterministic compliance assertion.

  • Multi-jurisdictionSingle integration handling operators in multiple regulated states (GeoComply Multipass / Dynamic Boundaries equivalent).
    Noverifiedstale
  • Desktop plugin (PLC-class)Native desktop client / plugin required by PA, NJ, MS and most US iGaming regulators.
    Noverifiedstale
  • On-property BLE geofenceBluetooth Low Energy precision geofencing for tribal / on-property venues (PinPoint-class).
    Noverifiedstale

Anti-spoofing detection

Detection coverage for the spoof vectors tested by the Competitive Intelligence team. Cell values reflect SDK-level detection of the listed vector at the most recently tested operator.

  • VPN exit nodesDetects commercial VPN exit nodes (NordVPN, ExpressVPN, Surfshark, etc.).
    Partialverifiedstale

    IP-based detection.

  • Proxy / residentialDetects datacenter and residential proxies — the harder class of IP obfuscation.
    Partialverifiedstale
  • Tor exits
    Yesverifiedstale
  • Remote desktop (RDP)Detects AnyDesk, TeamViewer, FaceTime, Assistant, HopToDesk, iPhone screen mirroring, RustDesk and similar remote-control sessions.
    Partialverifiedstale

    Behavioural + device signals.

  • Fake-location appsDetects iAnyGo / Fake GPS / mock-location apps on iOS and Android.
    Noverifiedstale
  • Hardware GPS spooferDetects HackRF / BladeRF and GPS-simulator-device signal injection.
    Noverifiedstale

    Radar gap carries over.

  • Emulator / VMDetects Xcode iOS Simulator, BlueStacks, Genymotion and similar virtual environments.
    Yesverifiedstale
  • Device farm / VMOSDetects VMOS / virtualized Android device-farm environments used for multi-accounting.
    Yesverifiedstale

    78B+ identity consortium clusters device + identity across customer network.

  • Jailbreak / rootDetects jailbroken iOS, rooted Android (incl. Magisk hidden root), and Frida / runtime-hook tampering.
    Partialverifiedstale
  • Resigned / tampered appDetects iOS apps that have been re-signed / Android apps that have been repackaged with injected code.
    · Unknownrumorstale
  • Sideload (PlayCover)Detects ARM-macOS iOS sideloading via PlayCover and equivalent hardware-abstraction loaders.
    · Unknownrumorstale
  • Browser extension spoofDetects Chrome / browser extensions that spoof location (Location Guard, Hola, etc.).
    Noverifiedstale

    Radar gap: no browser-extension detection.

  • Session terminationTerminates session when location services are disabled mid-game or device leaves the jurisdiction.
    Yesverifiedstale

    SmartID persists across browser clearing + device resets.

  • MITM / replay attackResists network-level interception, request tampering, and replay attacks against the SDK ↔ backend channel.
    · Unknownrumorstale

Identity & KYC

Document verification, biometric liveness, sanctions screening.

  • Document scan / OCR
    Yesverifiedstale

    Via LexisNexis IDV products.

  • Biometric liveness
    Partialinferredstale
  • Sanctions / PEP
    Yesverifiedstale

    Via LexisNexis WASP.

  • AML / responsible gaming
    Partialverifiedstale

    Limited via LexisNexis WASP.

  • Reusable identity
    · Unknowninferredstale

Platform coverage

Which surfaces the SDK / product runs on.

  • iOS native
    Yesverifiedstale
  • Android native
    Yesverifiedstale
  • Web / browser
    Yesverifiedstale

    JavaScript tag.

  • React Native
    · Unknowninferredstale
  • Flutter
    · Unknowninferredstale
  • Unity
    · Unknowninferredstale
  • .NET / desktop
    · Unknowninferredstale
  • Server-side API
    Yesverifiedstale

Compliance & certification

Regulatory coverage and certifications.

  • US state-licensed (iGaming/sportsbook)
    Noverifiedstale

    Not a gaming-commission certified geo-compliance vendor.

  • US tribal / on-property
    · Unknowninferredstale
  • Canadian provincial
    · Unknowninferredstale
  • European (MGA/UKGC)
    Yesverifiedstale
  • LatAm (Brazil SPA)
    · Unknowninferredstale
  • SOC 2 Type II
    Yesinferredstale
  • ISO 27001
    · Unknowninferredstale
  • GLI-certified
    · Unknowninferredstale

Fraud & device intelligence

Device fingerprinting, IP intelligence, behavioral signals, account-takeover detection.

  • Device fingerprint
    Yesverifiedstale

    SmartID — best-in-class persistent device ID.

  • IP intelligence DBMaintained DB of VPN / TOR / proxy / hijacked-residential IPs with documented refresh cadence (GeoGuard equivalent).
    Yesverifiedstale
  • Behavioral signals
    Yesverifiedstale
  • Velocity / impossible travel
    Yesverifiedstale
  • Bot detection
    Yesverifiedstale
  • Account takeover
    Yesverifiedstale
  • Chargeback mgmt
    Yesverifiedstale

Ops & integration

How easy the product is to integrate, observe, and operate.

  • Self-serve onboarding
    · Unknowninferredstale
  • Case management UI
    Yesverifiedstale
  • Webhook delivery
    Yesverifiedstale
  • Real-time API
    Yesverifiedstale
  • Analytics dashboard
    Yesverifiedstale
  • Audit log export
    Partialverifiedstale

    Analytics-grade, not court-defensible.

  • Encrypted responseDetection flag names hidden from the end user (GeoComply uses encrypted XML; most challengers expose JSON flag names).
    · Unknowninferredstale
  • SDK hardeningSDK is signed, obfuscated, and license-bound — not findable / patchable to inject coordinates client-side.
    · Unknowninferredstale

Commercial

Pricing model and go-to-market shape.

  • Usage-based pricing
    Yesverifiedstale
  • Flat license / enterprise
    · Unknowninferredstale
  • Free tier / trial
    · Unknowninferredstale
  • Publicly listed pricing
    Noverifiedstale
  • Bundled with platformGeo is bundled inside a broader platform deal (OpenBet, GeoLocs/Mkodo, Playtech).
    Yesverifiedstale

    Bundled across LexisNexis Risk Solutions stack.

Watch the ThreatMetrix x Radar bundle

The ThreatMetrix x Radar partnership is the most important development in this competitive landscape to monitor. If LexisNexis bundles ThreatMetrix's identity network with Radar's location compliance into a single SKU, it becomes a formidable combined competitor — especially in banking + fintech where ThreatMetrix already has deep penetration.

Talking points

  1. Adversarial spoofing gap remains the strongest angle. VM, remote desktop, browser extension detection — neither ThreatMetrix nor Radar cover these. See Radar weaknesses — they all carry over to the bundle.
  2. Setup complexity is a real weakness. ThreatMetrix is frequently cited in analyst reviews as difficult to integrate + maintain. GeoComply's implementation story should exploit this in deals where ThreatMetrix is the incumbent or a finalist.
  3. Bundle threat in banking + fintech. LexisNexis can push ThreatMetrix + Radar into existing FIS / Fiserv / Temenos integrations — watch for this in tier-1 banking RFPs.

Where they overlap with GeoComply

  • Banking + insurance: ThreatMetrix is incumbent in many tier-1 financial institutions.
  • iGaming via Radar partnership: indirect — Radar is the geo-compliance side, ThreatMetrix the identity side.