Author Archives: maxmind

Apple Pay: What does it have in store for online merchants?

In the world of accepting online payments, credit and debit cards are the industry standard. And for good reason– they’re convenient, and they’ve been around for decades.

But while they’re the go-to payment option, merchants continue to struggle with their vulnerability to fraud.

So that got us wondering– at some point, the credit card was a new invention and appeared to be the payment solution of the future. It was a paradigm shift from the written bank check, which was itself an invention over cash and hard currency. And each option has pushed us into a new era of thieves trying to crank out a payday– sometimes digital, sometimes physical.

So, what’s next for the digital age? Apple is hoping to introduce a new era with Apple Pay. Does it have the moxie to move us beyond the credit card and associated e-commerce fraud?

Mobile payment: Apple Pay
You can’t tap your scroll wheel without clicking through a headline for Apple Pay. And it makes sense– digital-physical hybrid payment options have been trying to take hold for several years now.

While Google and Microsoft have tried their hand at mobile payment methods, Apple’s recent release of Apple Pay is the first to show encouraging signs of nascent adoption. With the smartphone now ubiquitous, the ease of use at the cash register for this type of payment method becomes more compelling.

Apple Pay has immediate benefits for merchants taking CNP payments as well. Apple Pay incorporates fraud detection technology such as TouchID biometric sensors, NFC, and geolocation data. Apple is banking on these features to make Apple Pay more attractive to merchants, and is even going so far as to assume some of the risk of fraudulent transactions themselves.

The future of payment security
Apple’s initial Apple Pay push covers 35 brick and mortar retail stores and provides a new opportunity for widespread use. But considering the amount of consumer data and financial information involved, consumers and merchants alike are sure to closely monitor what E-commerce fraud detection looks like as new payment options spread online within Apple apps.

NFC payment systems are incorporating unique digital signatures and Apple Pay is moving personal data off servers to thwart fraud. At the same time, Apple Pay and other mobile payment options are really no more than glorified credit cards. Is the new technology real progress, or will the fraudsters just step up their game? Adaptation of the new payment methods will be slow, so it will be some time before we can tell.

MaxMind website and services unaffected by Heartbleed Bug

MaxMind’s website and services were unaffected by the recently announced Heartbleed bug in the OpenSSL cryptographic software library.

The discovery of the Heartbleed bug means your encrypted connections with websites that used particular versions of the OpenSSL library (versions 1.0.1-1.0.1f and 1.0.2-beta1) may have been compromised, exposing your logins, passwords, and other data. MaxMind does not use a vulnerable version of the OpenSSL library on internet-facing servers. So you need not worry that your credentials or data were compromised.

This article on ReadWrite describes the bug in more detail as well as what to do to determine if your servers are vulnerable and how to protect yourself personally.

We strongly recommend you change your passwords on any sites affected by the bug. You should assume a site was affected unless you hear otherwise. Mashable and CNET provides a partial list of sites affected by the bug.

Please contact support@maxmind.com with any questions.

“AVS” and “CVV” Declines – Maximize Conversion AND Fraud Protection

img for blog

Welcome to our first installment of MaxMind’s Best Practices Blog Series!

In this post, we discuss using the minFraud Service in conjunction with your AVS and CVV declined transactions in order to help you increase your conversion rate and stop more fraud.
Continue reading

MaxMind Speaking at MRC. March 20, 2014 – Mark Your Calendar!

MaxMind, the industry-leading provider of IP intelligence and online fraud detection tools, has been invited to present at the 2014 Merchant Risk Council (MRC) eCommerce Payments & Risk Conference in Las Vegas. We are excited to be joined by a top Risk Analyst from our merchant partner, Shopify, the leading commerce platform that allows anyone to easily sell online, at their retail location, and everywhere in between. Continue reading

Access MaxMind’s web services via IPv6

We’re happy to announce that MaxMind’s roll out of Internet Protocol version 6 (IPv6) access for our GeoIP2, Legacy GeoIP, Proxy Detection, and minFraud web service endpoints is complete. This update means each service is queriable at an IPv6 address in addition to existing Internet Protocol version 4 (IPv4) addresses; no API updates are required. Your development team will be happy to know that MaxMind is IPv6-ready as Internet users transition to IPv6.
Continue reading

Introducing the GeoIP2 Beta

We are happy to announce the public beta of GeoIP2. GeoIP2 is the successor line of products and services to the GeoIP brand of IP intelligence data (Note: not all GeoIP ‘Legacy’ products and services will have GeoIP2 counterparts).

The transition to GeoIP2 is an ongoing project and this blog post is intended to provide an accessible summary of what GeoIP2 is all about. The latest updates will be documented throughout our main site and our developer site.
Continue reading

Why should I use the minFraud service’s ‘riskScore’ instead of ‘score’?

The ‘riskScore’ is the most actionable piece of data returned by MaxMind’s minFraud service. The ‘riskScore’ simplifies the accept/reject/review decision for online orders, helping merchants to prevent fraud and reduce time spent on manual review. This blog post will explain why minFraud service users should use the ‘riskScore’ instead of the ‘score’ to catch fraud.

Prior to February 2007, before the ‘riskScore’ was introduced, the only risk estimation element the minFraud service returned was the ‘score’ value. The ‘score’ ranges from 0-10 and is calculated by a static risk model formula that uses previously observed risk factors. This return value is deprecated and the risk model behind it is no longer updated. The actual formula used to calculate the ‘score’ can be found here.
Continue reading

Welcome to MaxMind

Hello and welcome to MaxMind’s official blog. This blog will provide you with valuable information, whether you’re a MaxMind customer or not.

Our blog will primarily cover IP geolocation and the prevention of online fraud. We will address these topics from both technical and non-technical viewpoints. On occasion, we will also share status updates on what we are working on here at MaxMind. We appreciate your feedback and would love to hear about what you’d like to see on our blog.

MaxMind in a Nutshell

We are a tech-driven, customer-focused company committed to providing great products and services. We want to build the the best IP geolocation and fraud detection systems in the industry and make them available to everyone.

We keep our prices low and our sales process simple. You can visit our website right now and sign up for any of our products. There’s no lengthy sales process, just a simple web form. You don’t have to talk to a sales person, though we’d love to hear from you. We’re happy to talk to you via email or online chat if you have questions.

We make our services as easy to use as possible. All of our web services are clearly documented on our developer website. We also believe in open source. You can follow us on GitHub, where we publish our client APIs, as well as the spec and creation tools for our new IP database format.

Watch this space! You can also follow us on Twitter as @maxmind.