Skip to main content

Competitive Intelligence โ€” Weekly Sync

๐Ÿ“… Week 6 โ€” May 5, 2026 ยท โฑ 30 minutes ยท ๐Ÿ‘ฅ Weekly cadence ยท ๐Ÿ”– Monthly Brief

1 ยท Competitive and Client Testing (Julia) โ€” Key Findingsโ€‹

Radar Browser-Based Solution โ€” Saracen ARโ€‹

๐Ÿ“น Full video: BetSaracenFullTestingSession.mov (21 min, internal Drive)

OpenBet Locator iOS + Android SDKs โ€” Fanatics TNโ€‹

  • โœ— Remote Access detection gaps โ€” HopToDesk + iPhone screen mirroring bypassed
    Users outside Tennessee borders successfully wagered on the local platform via both Android and iOS. Substantial compliance + fraud-prevention risk.
  • โœ— Absence of State Border Buffer Zones โ€” Players within 50m of the boundary experience frequent state-switching, enabling unauthorized cross-border wagering. Persistent page refreshes + inability to finalize cash-out.
  • โœ— Failure to Monitor IP Changes โ€” System fails to flag IP address changes during active user sessions. Critical spoofing indicator missed.
  • โš  VPN Restriction Protocols โ€” Aggressive VPN blocks risk false positives for legitimate corporate-network users.

2 ยท Competitive Research (Valeria) โ€” Key Findings ยท MONTHLY BRIEFโ€‹

Gaming competitor research has proven its valueโ€‹

Source analysis and behavioral testing surfaced real, confirmed vulnerabilities in every competitor we analyzed:

  • Radar โ€” client-side compliance decisioning, an open-source unobfuscated SDK, and GPS injection methods in its public API.
  • XPoint โ€” returns compliance decisions and raw coordinates in plaintext to the client with a public GPS injection method.
  • GeoLocs โ€” missed RDP, FLA, iOS emulator, and IP change detection in live testing, with sessions persisting 15โ€“60+ minutes after location services are disabled.
  • Locance โ€” allowed a deposit before document verification in live testing, and exposes fraud flag names in plaintext JSON responses.
  • OpenBet โ€” missed HopToDesk and iPhone screen mirroring with no border buffer zone.

15 test cases + SDK review tickets queuedโ€‹

  • XPoint jurisdictionArea field investigation
  • Full GeoLocs retest suite (RDP, FLA, emulator, session persistence, cross-border, VPN mid-session)
  • First-ever Locance spoofing tests (RDP, FLA, emulator, JSON flag exposure)
  • Magisk bypass on Bet365 / XPoint Verify
  • Radar SDK tickets for iOS + Android teams to assess client-side decisioning and on-device signal storage vulnerabilities

Three open questions for the groupโ€‹

  1. Do we start structured competitor research for non-gaming verticals?
  2. Do we need a dedicated KYC research track? KYC friction is now 23% of all end-user complaints in our monitoring data, and we have no testing on IDComply competitors (Shufti Pro, Sumsub, Socure). We do not yet have a list of competitors + the operators they assist.
  3. What is our next gaming research priority? Waiting for all tests to be conducted, but is there a specific area we need to dig into for each competitor (pricing models / adv models / etc)?

3 ยท End-user Feedback (Valeria) โ€” Key Findings ยท MONTHLY BRIEFโ€‹

๐Ÿ“Š Full dataset: Social Media Competitive Signals ยท Reddit + X/Twitter public posts. Monitoring initiated March 2026.

Location verification failures dominateโ€‹

38% of all findings. DraftKings (11) and FanDuel (9 mentions) generate the highest complaint volumes across March 30 โ†’ April 27. Top reported issues:

  • DraftKings โ€” app lag causing re-verify loops
  • FanDuel โ€” location dropping mid-session

Both patterns consistent with geo-check frequency friction, not outright failures.

QUESTION: Do we want to contact our clients about feedback, and if so, how do we want to approach them?

Circumvention attempts are growing in sophisticationโ€‹

Present in every weekly report. Flags rose steadily from 2 to 3 per week. The community has moved beyond basic VPN queries to peer-sharing GPS spoofing and mock location methods on Reddit. An active DraftKings VPN bypass thread was still gaining replies in the April 27 report.

ACTION ITEM: All spoofing cases (even implied) should be reported to the testing team to reproduce. Claimed DraftKings Magisk bypass โ€” test already requested.

KYC friction (23% of findings)โ€‹

Secondary but growing concern concentrated at Fanatics and DraftKings โ€” duplicate account suspensions, document rejection loops, 2+ week verification delays, SSN privacy objections. Not geo issues โ€” but they create halo damage: users conflate geo lockouts and KYC holds into a single "the app won't let me play" complaint.

QUESTION: Do we want to perform KYC competitor research? Do we want to have a list of all geolocation operators and their known KYC, with added feedback about every KYC provider?

4 ยท What's Next โ€” Plan for Next Weekโ€‹

Field Testingโ€‹

  • Ontario Competitor Analysis โ€” validate current competitor integrations (Mkodo, LocationSmart) in Ontario in anticipation of Alberta launch
  • Radar / Saracen AR, XPoint, Radar / Bet365 โ€” run the Replay Attack testing
  • GPS Simulator โ€” test location spoofing on Radar & XPoint with GPS-simulator device
  • RobinHood โ€” RAT
  • FD WV / Radar โ€” Spoofing testing with PlayCover
  • Device farm VMOS โ€” FD WV, Fanatics, BetRivers

Betting Heroโ€‹

  • UX testing for Betsson Brazil
  • Competitor Intel: 7kBet (Incognia), Bet.bet (Legitimuz), Estrella Bet (Radar), Oley Bet (internal)
  • Locance (LocationSmart) โ€” Full Validation
  • mkodo Geolocs โ€” Full Validation

Integrations teamโ€‹

  • TBD