Collaborative threat intelligence enables your organization to contribute non-identifiable fraud signals to a shared intelligence network managed by Mosaic. This collective model helps all participants proactively detect and prevent fraudulent activity—without sharing data directly between organizations.
This feature is currently in early availability. Contact your Transmit Security representative for details.
Participating in collaborative threat intelligence creates a shared defense network where:
- Fraudsters detected by one particiapating organization are flagged across the network: If a device or IP address is confirmed as fraudulent by other tenants, Mosaic factors this into your risk recommendations.
- Emerging threats are identified faster: Attack patterns spreading across industries are detected earlier, before they reach your users.
- First-time visitors benefit from network-wide intelligence: Even users who have never interacted with your application can be assessed based on their activity elsewhere in the network.
When you enable network membership, your organization shares non-identifiable threat indicators, such as device fingerprints and IP risk factors associated with confirmed fraud, with Mosaic. Mosaic aggregates these indicators across the network and applies them to its fraud detection models.
Once Mosaic's collaborative threat intelligence accumulates enough data on a specific threat indicator (e.g., a device fingerprint was reported as malicious by multiple participating organizations), it contributes to a risk recommendation allowing you to benefit from collaborative threat intelligence.
Mosaic includes specific reason codes (prefixed with CONSORTIUM_) to indicate that collaborative threat intelligence influenced the assessment.
At this time, CONSORTIUM_ reasons don't affect recommendations (TRUST, ALLOW, CHALLENGE, DENY).
Data sharing follows privacy best practices:
- Non-identifiable data only: Shared data does not include personally identifiable information (PII). Only non-identifiable threat indicators are exchanged.
- Fraud-related signals: Only data associated with confirmed or suspected fraudulent activity is shared—not data from legitimate user interactions.
- Opt-out anytime: You can disable collaborative threat intelligence at any time without affecting your existing Mosaic integrations and issued recommendations.
To enable collaborative threat intelligence:
- In the Admin Portal, go to Fraud Prevention > Configuration > Collaborative threat intelligence.
- Toggle Enable network membership to on.
Once enabled, your organization will begin contributing to and receiving threat intelligence from the network. The integration is automatic—no additional configuration is required. You can stop participating in the collaborative threat intelligence by disabling the toggle.