Hi,
Looking for opinions
About a week ago a customer from China signed up for a VPS (my smallest one). Before signing up he asked if he could pay via PayPal, for I did not have that method active on my site. I activated it and he ordered 1 VPS.
The strange thing about it is was the Paypal account name was different from client whmcs name (paypal name could be American or other Western name). I thought well, ok -- Paypal flagged it as "partially verified." A couple days later, client orders 2 more VPS under same paypal account.
A few days go by and just yesterday client ordered 10 more VPS in two orders, but this time under a 2nd Paypal account! (again a Western name) One order failed so there was just the one order of 5 to process
After that I refunded money to 2nd account and disabled VPS administrator accounts on the first three VPS. A little later I received an email from 2nd paypal account holder (or at least from the email address on account) asking why I refunded the money. WHMCS customer emailed me saying the 2nd paypal account holder is a friend helping him pay.
I let things sit silently for a while and several hours 5 VPS ordered again with same 2nd paypal account, as if a mistake was made by me or my system and so he would give it a second try. I did not process order yet.
I then asked customer to email or fax me postal address, phone numbers and photo id of the 2 paypal account holders. My policy is not to ask for such things and terminate alleged fraudster account. But here I have 8+ VPS so the effort might be worthwhile
What do you think of these events? I believe China censors internet? Is this a legit customer providing internet access via my servers and RDP to others?
And what about Paypal? This is the first transaction I used with Paypal. With cc I have Maxmind to guide me but with Paypal there really isn't much to go on.
Looking for opinions
About a week ago a customer from China signed up for a VPS (my smallest one). Before signing up he asked if he could pay via PayPal, for I did not have that method active on my site. I activated it and he ordered 1 VPS.
The strange thing about it is was the Paypal account name was different from client whmcs name (paypal name could be American or other Western name). I thought well, ok -- Paypal flagged it as "partially verified." A couple days later, client orders 2 more VPS under same paypal account.
A few days go by and just yesterday client ordered 10 more VPS in two orders, but this time under a 2nd Paypal account! (again a Western name) One order failed so there was just the one order of 5 to process
After that I refunded money to 2nd account and disabled VPS administrator accounts on the first three VPS. A little later I received an email from 2nd paypal account holder (or at least from the email address on account) asking why I refunded the money. WHMCS customer emailed me saying the 2nd paypal account holder is a friend helping him pay.
I let things sit silently for a while and several hours 5 VPS ordered again with same 2nd paypal account, as if a mistake was made by me or my system and so he would give it a second try. I did not process order yet.
I then asked customer to email or fax me postal address, phone numbers and photo id of the 2 paypal account holders. My policy is not to ask for such things and terminate alleged fraudster account. But here I have 8+ VPS so the effort might be worthwhile
What do you think of these events? I believe China censors internet? Is this a legit customer providing internet access via my servers and RDP to others?
And what about Paypal? This is the first transaction I used with Paypal. With cc I have Maxmind to guide me but with Paypal there really isn't much to go on.
Last edited: