Contact fraud detection & risk scoring
Turtini can automatically assess a contact's email domain for signs of impersonation or fraud — particularly important when working with government agency contacts.
How to run a risk check:
1. Open any contact's detail panel (Contacts page)
2. Scroll to the bottom of the Details tab
3. Click "Run Risk Check"
4. The result appears instantly — no page reload needed
Three checks are performed:
• Government domain check — If the linked account is a federal agency or state/local government (SLG), Turtini verifies the contact's email ends in .gov, .mil, or .us. A commercial address like @example.org is flagged.
• SAM.gov cross-reference — If the account has a UEID linked, Turtini fetches the registered entity's Points of Contact from SAM.gov and checks whether the contact's email domain matches. Mismatches are flagged.
• Domain age check (WHOIS/RDAP) — For any non-government domain, Turtini checks when the domain was registered. A domain registered less than 90 days ago is a strong warning sign; less than a year also raises a flag.
Risk scores:
• Low — No issues found. No badge shown.
• Review (amber) — One flag. Common for contacts using shared/commercial email at a government agency. Warrants a quick check.
• High Risk (red) — Two or more flags. Treat with caution and verify the contact through official agency channels.
Admin fraud list:
The Admin Panel → Fraud tab shows all flagged contacts across every org in one place. Admins can recheck any contact directly from that view. Contacts cleared on recheck are automatically removed from the list.
Background:
This feature was built in response to a known fraud pattern where bad actors register look-alike domains (e.g., cuyahogacounty.org instead of cuyahogacounty.gov) and impersonate government purchasers to extract vendor resources or pricing.