The Challenge

Alas, with great power comes great responsibility. OfferUp faced a problem with the account takeover (ATO). With lots of transactions and money on the line especially as OfferUp moved into the mobile payment space, the company became a target for fake accounts and fraudsters looking to exploit any obvious holes for their own gain. As originally constructed, OfferUp leaned on a fairly weak email verification process, one that could be gamed by even a novice hacker. With their platform exploding with growth and a valuation nearing the stars, OfferUp knew they needed to nip this issue in the bud before it became a major problem, so they turned to TeleSign.

TeleSign Delivered

Built Mobile Verification Process with 2FA

Improved KYC With Data Intelligence

Enhanced User Experience and Security

The Solution

As the pioneers in phone-based verification, TeleSign knew exactly how to provide a comprehensive SMS based verification solution to help OfferUp. OfferUp indeed implemented a three-pronged solution to increase their security and ensure they could maintain its mission of being the most trusted market place in the industry. The first step was to add SMS verify, a product that leverages 2-factor authentication (2FA) by utilizing a person’s cell phone. While creating an account a six-digit one-time passcode (OTP) is sent to the user’s phone proving that they are indeed the person they say they are. Furthermore, that number is then stored and in the case of a password reset, another OTP is sent to the number on file to help prevent account takeover. Perhaps most interestingly though OfferUp wanted to know what type of device their customers were using, so they implemented a TeleSign data solution, specifically the Phone ID Device Info API which will return to a business a type of device. This can be helpful for UX reasons. For example the user experience could be optimized differently whether a user is on an iPhone or an Android, but also if a user is customarily using one or the other and a foreign device pops up this can be a red flag for fraud. All in, OfferUp saw ATO drop dramatically with the implementation of a comprehensive TeleSign security solution. As they move toward universal adoption by their millions of monthly active users the OfferUp platform literally becomes more secure by the day.

Although verifying a phone number during our sign up process is optional, we see more than two-thirds of our new users opting-in.

Michael Pezely

OfferUp Head of Trust and Safety

Talk To An Expert

Interested in learning about how TeleSign's identity and engagement solutions can prevent fraud while fostering secure and global growth for your business? Let's chat.