In the coming months, we will be retiring the following:
TLS v1.0 and 1.1 support across MaxMind products and services (October 16, 2019);
Unencrypted HTTP requests to our legacy minFraud services (October 16, 2019); and
The legacy minFraud service SOAP API (January 31, 2020).
Read on below for more information. MaxMind is deeply committed to information security and protecting customer data, and taking these steps will allow us to ensure your data is as safe and secure as possible. If you have any questions, please do not hesitate to contact us.
***PLANNED INTERRUPTION*** On Monday, July 29, 2019, Wednesday, July 31, 2019, and Friday, August 2, 2019, we will interrupt requests (as a warning) for up to 2 hours starting at 14:00 UTC (10:00am US Eastern time) on all three days. During the interruption, requests using TLS v1.0 and v1.1 and unencrypted requests to legacy minFraud endpoints will fail with an error.
MaxMind and Dosh will be presenting at the Merchant Risk Council’s annual fraud prevention conference, MRC Vegas, on Tuesday, March 19, from 4:15pm – 5pm. Read on below for the details and what you’ll take away from the session.
Anonymous IP addresses (sometimes incorrectly generalized as “proxies”) serve to hide a web user’s true IP address and obfuscate their geolocation. There are legitimate reasons, usually related to privacy or security, to use anonymous IPs, but many businesses find that fraudsters and other bad actors also use anonymous IPs in malicious ways that affect the bottom line.
Just like good customers, fraudsters must provide a shipping address in order to receive merchandise. But fraudsters, who need to evade detection and efficiently resell stolen goods, leave traces in the shipping addresses they use. The minFraud Network collects data on shipping addresses and uses it to identify any high risk shipping addresses associated with the transactions you submit for review.
This blog post investigates some high risk shipping addresses known to MaxMind, as well as provides some general fraud review tips for identifying them.
As a merchant, you’ll frequently see cases where multiple orders with different billing addresses and payment methods are placed from the same IP address, and it’s not clear whether or not this indicates fraud.
Such activity could be a sign of fraud, with a fraudster testing multiple compromised credit cards. It could also be a sign that a fraudster is using a proxy to obscure his identity. There are times though when such activity is expected and flagging such transactions as fraudulent would mean denying good orders and frustrating customers.Continue reading →
The new year has arrived. With transaction history from a busy holiday season on hand, this is a great time to take a look your historical transactions with a fresh and critical eye.
Reviewing your chargeback data to identify fraud patterns is a good way to get started. In this month’s blog post, we provide a case study of an online penny auction business, which improved their bottom line by doing just that. Continue reading →