Free triage tools for citizens fighting scams. Advisory mule-account intelligence for banks integrating with FMS. On-device extraction strips PII before transmission. STIX 2.1 feeds built for regulated environments.
Malaysia lost an estimated RM2.97 billion to fraud in 2025, with cases doubling to over 66,000 nationally. The current response is fragmented and manual — victims report hours after the scam, mule accounts are drained within minutes, and raw evidence sharing across banks risks PDPA violations.
The Waspada Edge SDK runs inside the host banking app or the public web triage sandbox. No receipt uploads to our cloud. Extraction is three-tier — Regex → NER → SLM — with platform on-device AI preferred when the SDK is embedded in a native partner app.
WASM-based PDF.js and Tesseract.js extract text from receipts and screenshots entirely on-device. Handles multi-page, encrypted PDFs, and Malaysian banking formats.
Regex for hard fields (account, BIC). NER for aliases and URLs. SLM for normalisation and Bahasa draft assist. Apple/Android on-device AI when available; web SLM fallback.
NRIC, phone, email stripped before transmission. Payload signed with RS256 JWT — non-repudiable, per-partner key isolation. Works offline (airplane mode).
From a WhatsApp magic link to on-device three-tier AI (Regex → NER → SLM), then privacy-safe federation to bank SOCs — step by step. WhatsApp delivers the link; evidence never uploads to our servers.
Every design decision prioritises privacy compliance, extraction accuracy, and integration with existing bank infrastructure.
NRICs, phones, and emails blocked on-device and re-checked at the gateway. Scammer aliases configurable: include / hash / omit.
PDF.js + Tesseract.js WASM workers parse receipts locally. Measured accuracy on Malay receipt corpus. Evidence never uploaded.
RS256 JWT with JTI replay protection, per-partner key rotation, and HMAC-SHA256 blinded evidence hashing.
SSE with short-lived stream tickets. Memory path p99 64ms, durable path p99 ~2s — measured design trade-off.
Malicious URLs from scam messages enriched with WHOIS/RDAP registration data for attribution and takedown.
Export STIX 2.1 bundles from verified alerts for SIEM ingestion — Splunk, CrowdStrike, or bank SOC pipelines.
All telemetry ingestion requires partner JWT authentication. Alert streaming uses analyst API keys exchanged for short-lived tickets.
We publish our own threat model, red-team audit residuals, and compliance mappings. Review the evidence, not the marketing.
We're looking for forward-thinking banks, regulators, and anti-fraud teams who want to test Waspada with real-world receipt data.