Skip to main content

3 posts tagged with "geocomply"

View All Tags
DetectedRemote access★ Pinned

GeoComply / FanDuel NJ: Mac-to-Mac Tailscale remote screen sharing blocked immediately — Blocked Software rule ✓

FanDuel
geocomplyfanduel-njrdptailscalemacos-screen-sharing

Source. June 30, 2026 weekly sync.
Ticket. CIV-94: FanDuel NJ — Remote screen control blocked (GeoComply).

What we tested

The same Mac-to-Mac remote screen-sharing attack that succeeded on BetRivers PA / XPoint during the same test cycle:

  • Tailscale — two Macs on the same private network over the internet.
  • macOS screen sharing — out-of-state Mac drives an in-state Mac via Finder, with full remote control and no local presence required on the host.

Operator: FanDuel New Jersey, a GeoComply desktop (PLC) deployment.

What happened

  • Detection fired immediately. The session was blocked under the "Blocked Software" rule before any wager could be placed.
  • No bets were possible through the remote session.

Why it matters

This is a clean, same-week, same-method contrast:

OperatorGeo providerTailscale Mac RDPResult
BetRivers PAXPointMac-to-Mac via Finder✗ Undetected — 1-hour FaceTime + sustained Mac RDP (June 30)
FanDuel NJGeoComply (PLC)Mac-to-Mac via Tailscale✓ Blocked immediately — Blocked Software rule

The attack uses entirely off-the-shelf, legal tools. Catching it in real time on FanDuel NJ while XPoint misses the identical pattern on BetRivers PA is a concrete compliance advantage for GeoComply in operator conversations this week.

Cross-reference

Detection matrix → · June 30 weekly sync →

DetectedRemote access★ Pinned

GeoComply / Bally Bet NJ: remote screen control via Tailscale blocked at login and mid-session ✓

Bally Bet
geocomplybally-bet-njrdptailscalemacos-screen-sharing

Source. June 2, 2026 weekly sync.
Ticket. CIV-82: Bally Bet NJ — Remote screen control blocked (GeoComply).

What we tested

The remote-screen-control fraud pattern: one person physically in the permitted state (New Jersey) hands full control of their screen to someone in an entirely different location, who places all the bets. The person in-state does nothing themselves.

Stack used:

  • macOS Native Screen Sharing — Apple's built-in remote-desktop feature, driving Mac #1 from Mac #2.
  • Tailscale — a networking tool that puts both Macs on the same private network over the internet, so Screen Sharing works as if they were side by side.

Operator: Bally Bet NJ, a GeoComply-integrated deployment.

What happened

  • Blocked at login. The attempt was stopped before any wager, with the error Blocked_software.
  • Blocked mid-session. Detection also fired during an active session — not only at startup — so a session that began clean could not be handed off to a remote controller later.

Why it matters

This is a clean, real-time win on the exact vector that three competitor integrations missed in the same test cycle. Regulators require operators to prevent geolocation fraud; catching remote screen control in real time — at login and mid-session — reduces operator liability and is a concrete, demonstrable compliance advantage for the GeoComply value proposition. The attack used entirely off-the-shelf, legal tools, which is exactly what makes the competitor gaps below material.

Cross-reference

Detection matrix → · June 2 weekly sync →

IntelSocial

FanDuel: $12,000 payout denied due to 'suspicious location' flag

FanDuel
socialfanduelgeocomplypayout-denied

Source. April 14 weekly end-user-feedback section. 36 new posts added to the tracking spreadsheet.

Headline. FanDuel dominated complaints this week — persistent location errors, bans for cross-state logins, and one high-impact case: a user denied a $12,000 payout due to a "suspicious location" flag.

Adjacent signals.

  • DraftKings — multiple reviews citing location checks taking 10+ minutes, disrupting live bets.
  • Bet365 (XPoint web / Radar mobile) — continued app freeze + bet slip erasure reports; one user must delete and reinstall the app every session.
  • Fanatics (OpenBet) — location error on first launch reported by new users.

Why this matters. A denied $12K payout in public Reddit / X chatter is the kind of operator-anxiety story account managers can use to start a conversation about geo-check frequency tuning. Note: state attribution is hard from the public posts; whether the user was on a GeoComply or non-GeoComply state is uncertain.

QUESTION (from the weekly): Do we want to contact our clients about feedback, and if so, how do we want to approach them?