| CPC G06Q 20/4016 (2013.01) [G06Q 20/40 (2013.01)] | 18 Claims |
|
1. A system, comprising:
a processor coupled to a memory that stores instructions that when executed by the processor cause the processor to:
determine that a requested action of an application having both a normal environment and a shell environment satisfies a trigger condition;
transition the application from a default mode to a fraudulent activity mode, wherein the requested action is logged and held in the fraudulent activity mode;
convey for display changes falsely indicating that the requested action has been executed, wherein the shell environment is configured to maintain the changes across multiple user sessions until the requested action is determined to not be fraudulent;
analyze for fraud the requested action held in the fraudulent activity mode, by comparing one or more fraudulent activity triggers to a predetermined parameter indicating fraud, wherein one or more of the predetermined parameters includes metadata describing a type of the requested action, metadata describing a location of the requested action, or metadata describing a device on which the requested action was requested;
wherein the application also includes a test environment for the normal and shell environments in which application implementation details can be tested before rolling out the application or changes to the normal and shell environments;
in response to determining the action is not fraudulent, transition the application to the default mode and execute the logged requested action in the normal environment; and
update the shell environment to match the normal environment.
|