Signicat unlocks advanced MitID security features to combat account takeover and payment fraud in Denmark

Signicat, the leading pan-European digital identity company, is now offering Danish companies a proprietary eID Risk Indicator that works with MitID. This feature, developed by and exclusively available through Signicat, is built on MitID’s risk data to provide organisations with a real-time risk assessment for every transaction and allows them to stop fraud attacks as well as meet PSD2 compliance requirements.

This move comes as Danish businesses report a sharp increase in fraudulent activities. New data from Signicat’s 2025 “The Battle in the Dark” report reveals a 63% rise in attempted fraud and a 65% increase in successful attacks, the second-highest rate in Europe. Fraudsters are increasingly targeting the digital identity layer itself, with 34% of fraud attempts in Denmark involving eID systems.

“For years, the debate around eIDs has focused on defense. That’s no longer enough,” says Petter Iversen, Country Manager Denmark and Norway at Signicat. “It’s time to go on the offense. MitID was designed for this new reality, and Signicat is now making its advanced, intelligent capabilities easily accessible to stop criminals before they can act.”

MitID was developed by the Danish Agency for Digital Government and Finance Denmark with a flexible, risk-based architecture. This was a deliberate design choice to future-proof the platform against evolving threats.

How eID Risk Indicator delivers adaptive security

MitID’s infrastructure provides raw risk data for every authentication and signature. Signicat’s risk engine processes these signals in real-time, translating them into a simple, actionable rating for each transaction: Low, Medium, or High risk. Key signals include:

• Device Intelligence: Whether a device is jailbroken or rooted, and when the user’s MitID app was activated.
• Behavioural History: Unusual changes in behaviour or a high number of recent failed login attempts.
• Geolocation & Network: Mismatches in IP address location, for example, if a user’s app is in Copenhagen but the login is initiated from an unfamiliar foreign network.

Based on the risk rating, a bank can automate its security policy. For instance: 

• Low Risk: The transaction proceeds seamlessly.
• Medium Risk: Automatically trigger a step-up authentication, as required by SCA.
• High Risk: The transaction is blocked, and the account is flagged for review.

“Eighty-nine percent of Danes trust MitID. Our solution builds on that trust,” continues Iversen. “This transforms MitID from a simple login gate into an active fraud-detection tool. For a bank, this means they can better protect high-value payments and customer data, helping them meet their compliance obligations while keeping the experience smooth for the vast majority of their customers.”

eID Risk Indicator for MitID is available immediately to all Signicat customers with no additional integration required.