Abstract: Methods and systems for preventing unauthorized resource access. In some aspects, the system obtains, in real time, a first data stream between a user requesting access to resources in a user account and an agent. The system processes, using a first machine learning model, the first data stream to generate a confidence score. If the confidence score exceeds a threshold, the system generates a sandbox context configured to simulate output indicative of successful resource access. The system obtains a second data stream for the sandbox context and processes it using a second machine learning model to determine whether the communication between the agent and the user was malicious. If the communication was not malicious, the system removes the user account from the sandbox context and effects grant of resource access. Otherwise, the system reports the agent and the user account for further processing for attempts to obtain unauthorized user access.

Abstract: A method and related system may analyze metadata associated with a first set of transactions to determine whether to perform a second set of transactions. The method and related system may include determining a data category based on first device-provided data of a first database transaction indicating a first record associated with a second record, and may further include obtaining, based on whether the data category satisfies a first set of criteria, an identifier and an amount based on image data using a prediction model. The method may further include querying a database based on the identifier to obtain an indication that the identifier is mapped to an object category, validating the amount based on a result indicating whether the object category satisfies a second set of criteria, and causing a second transaction that changes fields of the first and second records.

Abstract: Methods, techniques, and embodiments are generally directed to systems for receiving a request from an authenticated computing application to associate a contactless card with an account. The systems then authenticate that the request came from an account holder. After establishing the authenticity of the account holder, the systems determine a unique identifier for the account holder associated with the account. Finally, the systems send a second request to the authenticated computing application to write this unique identifier onto the contactless card.

Abstract: Systems and methods are provided for managing electronic tokens associated with an account. A system may include a memory storing instructions and account information associated with an account, and a processor configured to executed the stored instructions to: access information associated with one or more electronic tokens associated with the account, wherein the information includes one or more token settings, receive, via a network, information for a transaction request including a first token; analyze the received information to determine whether at least one rule in the one or more token settings is violated, responsive to a determination that at least one rule is violated, transmit an indication that the transaction request is denied, and responsive to a determination that no rules are violated, detokenize the transaction request.

Abstract: A computing system may receive a request of the user for a first action of the user with an entity. In connection with granting the request of the user, the computing system may configure a token for use by the user and the entity such that (i) the entity is added as an approved entity, and (ii) the token is configured with a resource amount of the first action as a usage threshold of the token. The computing system may receive a request of the entity to use the token. The computing system may determine whether granting the request of the entity would cumulatively exceed the usage threshold of the token. Based on a determination that granting the request of the entity would not cumulatively exceed the resource usage of the token, the computing system may grant the request of the entity to use the token.

Abstract: Systems and methods for successively executing an operation over multiple communication networks. In some aspects, the system obtains first access information received from a physical token and generates an operation related to an aggregated virtual container. The system determines a first communication network from the first access information and transmits, via the first communication network, the operation associated with the aggregated virtual container. If the operation was not transmitted successfully via the first communication network, the system obtains second access information received from the physical token, determines a second communication network from the second access information, and transmits, via the second communication network, the operation associated with the aggregated virtual container. If the operation was transmitted successfully via the second communication network, the system generates for display a notification that the operation has been executed.

Abstract: Proxy-based scaling may be performed for databases. A proxy may be implemented for a database that can establish a connection between the proxy and a database engine to perform a database queries received from a client at the proxy. A scaling event may be detected for the database responsive to which the proxy may establish a connection with a new database engine which may, in some embodiments, have different capabilities or resources that address the features or criteria that triggered the scaling event. Session state may be copied from the database engine to the new database engine so that the new database engine may be able to provide access to the database on behalf of requests received from the client through the proxy.

Abstract: Systems and methods for successively executing an operation over multiple communication networks. In some aspects, the system obtains first access information received from a physical token and generates an operation related to an aggregated virtual container. The system determines a first communication network from the first access information and transmits, via the first communication network, the operation associated with the aggregated virtual container. If the operation was not transmitted successfully via the first communication network, the system obtains second access information received from the physical token, determines a second communication network from the second access information, and transmits, via the second communication network, the operation associated with the aggregated virtual container. If the operation was transmitted successfully via the second communication network, the system generates for display a notification that the operation has been executed.

Abstract: A system and method include a kiosk processor, a device kiosk on a customer mobile device, which displays via a user interface, content and options for the customer from a third party customer service system, a customer interaction channel that receives, via an associated customer interaction network, a request to access the third party customer service system, an authentication module associated with the kiosk processor that receives customer data and customer input associated with an authentication request to authenticate the customer, identifies a customer mobile device based on device identifiers, and evaluates risk factors associated with the customer mobile device, and a communication interface associated with the kiosk processor, that transmits, via a push notification gateway, a push notification to the device kiosk on the customer mobile device that establishes, via the network, a secure connection between the customer mobile device and the third party customer service system.

Abstract: Systems and methods for executing sequential suboperations over multiple communication networks. In some aspects, the system receives, via a first communication network, from an external system, an operation related to an aggregated virtual container. The system generates sequential suboperations including a first suboperation associated with a provider of the aggregated virtual container and the external system and a second suboperation associated with the user and the provider of the aggregated virtual container. If the first suboperation is executed successfully, the system transmits the second suboperation to a user system associated with the aggregated virtual container. If the second suboperation is executed successfully, the system generates a first message indicating that the operation has been executed and transmits the first message via the first communication network to the external system.

Abstract: A computing system may obtain text corresponding to a conversation between an outside caller and an agent. The computing system may obtain data associated with the conversation that may be used to determine whether the outside caller is attempting malicious activity or not. The obtained text and data may be provided to a machine learning model to generate a probability score indicative of whether the outside caller is attempting to obtain unauthorized access or attempting other malicious activity. Based on determining that the probability score satisfies a threshold, the computing system may modify a permission (e.g., an API permission) of the agent. The computing system may deny the request to perform the action and may cause display of an indication that the request was successful.

Abstract: A system and method in accordance with exemplary embodiments may include systems and methods for providing fraud management, which may include, receiving account holder data, determining vertical spend patterns associated with merchants to define a merchant risk for each merchant, generating a transactional behavior patter for the account holder, and generating a fraud score and/or action set (e.g., refer/decline/queue for review) based on the transactional behavior pattern and merchant risk. Account holder data may include, for example, an account type, an account balance, account credits and debits, and transaction data including merchant name, location, and transaction details.

Abstract: In certain embodiments, a presentation of a user interface may be dynamically modified for a user based on data related to the user's email address or other user identifier. As an example, the user interface may be caused to reflect the look and feel of an interface of an entity trusted by the user, incorporate data items related to the user's identifier, or effectuate other modifications. In some embodiments, a user identifier of a user may be received via a user interface associated with the third party, and a query for data related to one or more user accounts associated with the user identifier may be generated. Based on the query, multiple datasets associated with different user accounts may be received, and a first dataset associated with a first account of the user may be selected over other datasets associated with the user's other accounts effectuate the presentation modification.

Abstract: The disclosed embodiments include methods and systems for providing payment token transactions by a mobile device. The mobile device may be operable to obtain a payment token, where the payment token is associated with one or more payment token parameters and the mobile device may be configured to communicate with a financial service provider system over a first network when connectivity to the first network is available to the mobile device. The mobile device may provide the payment token to a contactless payment terminal (CPT) associated with a merchant, during a purchase transaction involving a product provided by the merchant, where the mobile device may communicate the payment token to the CPT over a local network that is different from the first network such that connectivity between the mobile device and the first network is not required.

Abstract: Disclosed embodiments include methods, systems, and computer-readable media configured to provide wearable devices storing tokens associated with digital versions of physical documents/cards. The wearable devices may further transfer tokens securely to interested parties without Bluetooth® or other network connectivity beyond NFC radio. In some embodiments, a token vault operator system may receive a request to establish a token vault account for a user, authenticate an identity of the user based at least on the received request, and generating a token vault ID associated with the user. The token vault operator system may further configure access to data sets generated for and associated with the token vault ID, generate tokens associated with the token vault ID, each token corresponding to one of the one or more data sets, and provide the generated plurality of tokens associated with the token vault ID to at least one user device.

Abstract: The disclosed embodiments include a mobile client device for automatically performing a mobile financial service function, including a memory storing software instructions, the software instructions including a mobile financial service application configured to perform financial service processes. The system may also include and one or more processors configured to execute the software instructions to detect a physical action performed on the mobile client device, and determine a first financial service function to perform based on the detected physical action, wherein the first financial service function is a function provided by the mobile financial service application. The one or more processors may also determine whether verification of a user is required, verify the user if verification of the user is required, and automatically initiate the first financial service function.

Abstract: Systems and methods are provided for providing alerts to a user. The systems and methods may include a financial service provider including a memory device storing instructions. The financial service provider may also include at least one processor configured to execute the instructions to perform a plurality of operations. The operations may include receiving data relating to an activity of a user. The operations may also include identifying a merchant based at least on the received data. The operations may also include accessing historical fraud or disputes data associated with at least one of the user and the merchant. The operations may also include determining whether the received data triggers an alert. The operations may further include sending an alert message to a user device associated with the user when the processor determines that the received data triggers the alert.

Abstract: In a method for providing provisioning information, a central data processing system receives from a transaction data processing system, an encrypted user datum associated with a client user of the transaction data processing system; receives from at least one of a plurality of account administrator data processing systems, a response comprising a notification that a user account administrated by that account administrator data processing system is associated with the client user; receives an account administrator selection message including identification of a user-selected account administrator from an account administrator list; transmits to the account administrator data processing system associated with the user-selected account administrator, a provisioning request for client user account provisioning information; receives from the account administrator data processing system associated with the user-selected account administrator, the client user account provisioning information; and transmits to the t

Abstract: A batteryless device is disclosed. According to certain embodiments, the batteryless device may include a first communication system and a second communication system, the second communication system being a near-field-communication (NFC) system. The batteryless device may also include a power receiver coupled to the first communication system and configured to wirelessly receive power from an external device for powering the first communication system. The batteryless device may further include a controller configured to: when the first communication system is powered, establish, via the first communication system, a first wireless connection with a user device; receive, through the first wireless communication, a token from the user device; establish, via the second communication system, a second wireless connection with a terminal; and transmit, through the second wireless connection, the token to the terminal.

Abstract: A system and method include a kiosk processor, a device kiosk on a customer mobile device, which displays via a user interface, content and options for the customer from a third party customer service system, a customer interaction channel that receives, via an associated customer interaction network, a request to access the third party customer service system, an authentication module associated with the kiosk processor that receives customer data and customer input associated with an authentication request to authenticate the customer, identifies a customer mobile device based on device identifiers, and evaluates risk factors associated with the customer mobile device, and a communication interface associated with the kiosk processor, that transmits, via a push notification gateway, a push notification to the device kiosk on the customer mobile device that establishes, via the network, a secure connection between the customer mobile device and the third party customer service system.