Order Verification

MaxMind has been great. Some common things are that customers order with a China IP for example, but say they are from the USA. The customer then sends in a ticket asking why their 'order' has been marked as fraud. All we do is just ask for verification proof :)
 
RLT-Alex said:
MaxMind has been great. Some common things are that customers order with a China IP for example, but say they are from the USA. The customer then sends in a ticket asking why their 'order' has been marked as fraud. All we do is just ask for verification proof :)
Click to expand...

In my 11 years as a host, if its a true scammer that signs up and marked as fraud then they never contact you asking why the order was marked as fraud, they just move onto the next host to try. in the case you mentioned an IP from one country and they say they are from another country, then i wont even ask for ID as i would not accept the order.
 
helix247 said:
Add the FraudRecord Module if you are using WHMCS. It is quickly picking up in popularity. i have been able to identify several fraudulent/spam orders within a couple of minutes of signup.
Click to expand...

I can second helix247 on this, we use this module on WHMCS, although we have had a few genuine customers have the orders marked as fraud, so having a support team on standby for those situations is useful for the genuine customers.
 
easyhostmedia said:
In my 11 years as a host, if its a true scammer that signs up and marked as fraud then they never contact you asking why the order was marked as fraud, they just move onto the next host to try. in the case you mentioned an IP from one country and they say they are from another country, then i wont even ask for ID as i would not accept the order.
Click to expand...

A thing to consider tho - what about if I am on holiday abroad and want to get some hosting? Or I am a company with offices in multiple countries? Or simply travelling a lot? In all cases there is a good chance that my billing details will differ from my IP or have other missmatches (address lets say). So denying a service to such a person, without even trying to contact them and see where the truth lies might result in a lost valid prospect. You said it yourself, most frauds would do anything to hide from you - deny answering calls, move on to the next target and so on...but why not making the effort and checking what is the case. In my experience clients with IP missmatches are 50/50 on the clean/fraud scale. That's the whole purpose of the manual verifications, to clear all doubt about the credibility of a certain client :rolleyes2
 
Rado_Ch said:
A thing to consider tho - what about if I am on holiday abroad and want to get some hosting? Or I am a company with offices in multiple countries? Or simply travelling a lot? In all cases there is a good chance that my billing details will differ from my IP or have other missmatches (address lets say). So denying a service to such a person, without even trying to contact them and see where the truth lies might result in a lost valid prospect. You said it yourself, most frauds would do anything to hide from you - deny answering calls, move on to the next target and so on...but why not making the effort and checking what is the case. In my experience clients with IP missmatches are 50/50 on the clean/fraud scale. That's the whole purpose of the manual verifications, to clear all doubt about the credibility of a certain client :rolleyes2
Click to expand...

i always will check the actual IP location and the given address, but i have had clients who give a genuine address, but phone numbers as 1234567 and DOB as 0.0.000, so you cant contact them. in 11 years i can tell a fake order from a genuine order.
 
I configure maxmaind with a very conservative threshold. I am sure I lose some legit customers this way, but at the end of the day I have a very clean server and customer list.

Once in a while a new customer will inquire about a fraud flag. In that case I send an email with the following requests

1) provide a business or local e-mail address (not a free e-mail account such as gmail),

2) the name and phone number of the bank that issued the credit card (located on the back of the card),

3) the CVM code imprinted on the card

4) the exact name with middle initial on the credit card.

5) Also a scanned copy of a government issued ID card such as a driver's license.

If its truly a fraud there will be no response. If its a good customer there will be a response. If its a good customer and there is no response, I am willing to take that hit.
 
same here configured Maxmind along with their telephone verification service, we get very few fraud orders. We also have a whmcs addon that if we need clients to provide documents we just direct them to a page in their client area that they must complete before an order is approved.
 
easyhostmedia said:
same here configured Maxmind along with their telephone verification service, we get very few fraud orders. We also have a whmcs addon that if we need clients to provide documents we just direct them to a page in their client area that they must complete before an order is approved.
Click to expand...

Which system do you use? I've seen a module recently which does this job just not sure if it's really worth it.
 
We first use MaxMind. We then rely on Stripe or PayPal's fraud detection. When we see suspicious orders, we use FraudRecord and go from there.
 
The combination of maxmind and fraudrecord is really great for managing fraud, ofcourse experience and being on top with how fraud is committed each day will be your best bet.
 
You must log in or register to reply here.

Supporters

Back
Top