Catch the fraud — with observability and analytics
2023-06-20 , Maschinenhaus

This is the story of how to catch cheaters by combining observability and analytics data through the power of search.


Elastic — the company behind Elasticsearch, Kibana,... — is running an annual competition to reward contributions like pull requests, blog posts, talks, etc. Once we started giving away MacBooks, we got a massive influx of fraud. This talk tells the tongue-in-cheek story of how people cheated and also how we caught them:
* Observability: Find the bots and trace everyone's actions to figure out what is a coincidence and what is not.
* Analytics: See how people are trying to exploit the system through fake accounts, shady content, or bending the rules.

While we initially hadn't planned for this scenario, having the power of search available across observability and analytics data let us do many interesting correlations to get a complete picture of the monster we had created.

See also: Slides (6.7 MB)

Philipp lives to demo interesting technology. Having worked as a web, infrastructure, and database engineer for over ten years, Philipp is now a developer advocate and EMEA team lead at Elastic — the company behind the Elastic Stack consisting of Elasticsearch, Kibana, Beats, and Logstash. Based in Vienna, Austria, he is constantly traveling Europe and beyond to speak and discuss open source software, search, databases, infrastructure, and security.