Appdome adds backend Risk Intelligence APIs for IDAnchor

Appdome has added Risk Intelligence APIs to IDAnchor, its mobile identity and reputation product. The new server-to-server interfaces are designed for backend fraud systems, identity operations and AI models.

The APIs give businesses access to mobile threat history, identity data and risk scoring beyond the app itself. That data can be used in backend decisioning to assess trust, suspicious activity and fraud risk across devices, accounts and sessions.

IDAnchor now also includes two mobile identifiers, AppID and InstanceID. AppID verifies an app's bundle identity and attests that it has not been modified. InstanceID is designed to preserve the identity of an app installation across updates, upgrades and downgrades on a device.

According to Appdome, the new Risk Intelligence APIs include DeviceMATCH, which checks whether activity comes from the same physical device; InstanceMATCH, which verifies AppID authenticity and app lineage; ThreatHISTORY, which supplies threat evidence linked to the app, install, instance, device or user; and MobileRISK, which provides AI-generated risk and reputation scores for devices, accounts and sessions.

The launch extends Appdome's push to move mobile threat and identity data into server-side systems, where fraud engines and case management tools can act on it. Backend teams can use the APIs in secure server environments and integrate them with risk orchestration platforms and authentication flows.

The rationale is that fraud and identity teams need more persistent signals than network data or one-off events can provide. Appdome says the service is designed to help identify repeat offenders, detect coordinated scams, flag reused devices and app installs, and reduce false positives by distinguishing genuinely new users from previously identified risky hardware.

Tom Tovar, Co-Creator & Chief Executive Officer of Appdome, linked the move to the scale of data handled by the company.

"At 1.3 trillion threat events per month and growing, we have the largest and most comprehensive data set of mobile threats," said Tovar. "It made sense for us to start to expose this via backend APIs and allow mobile brands to consume that data within well-understood and useful contexts to stop fraud and improve decisioning."

Backend Focus

The release builds on Appdome's Threat-Memory framework, which stores threat intelligence inside mobile apps. The new APIs let backend systems retrieve that information and link it to what Appdome describes as verified mobile identities over time.

The approach reflects a wider trend in fraud prevention: combining telemetry from customer devices with server-side controls. Rather than relying solely on login behaviour, IP addresses or network indicators, businesses increasingly want device-level histories that can be traced across app changes and repeat interactions.

Eric Newcomer, Principal Analyst at Intellyx, said the addition broadens Appdome's mobile protection offering into server-side intelligence.

"Mobile devices are more a part of daily life than ever," said Newcomer. "Cybercriminals and fraudsters know this and are constantly ramping up their attacks. Fortunately, mobile defense vendors such as Appdome continue to respond. Their new IDAnchor APIs are an important addition to strengthening mobile app protection as well as server side intelligence."

Identity Continuity

A key part of the update is the use of identifiers intended to remain stable as apps change over time. AppID replaces an earlier identifier, ReleaseID, and acts as a fingerprint for the app's signature. InstanceID tracks the original installation of an app on a device and is meant to survive software changes that often make tracing abuse harder.

Appdome argues that linking threat data to those identifiers gives risk teams a more durable basis for decision-making. That could affect API authorisation, transaction reviews, step-up authentication and device bans, especially when fraudsters try to reset devices or manipulate app installations.

Avi Yehuda, Co-Creator & Chief Technology Officer of Appdome, said the model extends beyond fraud operations into AI systems that ingest risk data.

"Binding granular threat data and threat history across verified mobile identities on Appdome's backend creates so many possibilities," said Yehuda. "On the one hand, it can be consumed on the mobile backend to improve risk-based decisions. It can also empower mobile brands to leverage Appdome's APIs as a trusted and verified source of threat data and identity context to enrich Enterprise AI models."

Kai Kenan, Vice President of Identity & Reputation Solutions at Appdome, said the company believes risk decisions should rest on multiple factors linked to persistent mobile identities.

"Think of mobile risk as a data pipeline," said Kenan. "Fraud and Identity team can't perform risk-based decisioning on a single factor and risk false positives or negatives. Our APIs provide risk scoring but also provide detailed threat data attributed to the mobile identities that brands know and trust."

On the infrastructure side, Appdome said the service was built for continuous access in high-volume environments where backend systems need threat data during live decisions.

"Secure access, threat data integrity, and continuous availability are built into our API services from the ground up," said Srini Avernini, Vice President of Data & Infrastructure at Appdome. "We recognize that our new API services will be used for real-time and runtime decisioning in billions of mobile apps and as the bedrock for Agentic AI developments our customers invest in, and we've taken all of that into account in building the service."