Every year, more than a billion consumers shop on e-commerce websites. And in 2016, a new startup called Fomo set out to help merchants reach that audience. To do that, Fomo first needed to find a service partner with expertise in geolocation. They chose MaxMind. “We’re a relatively new company, but our growth has been phenomenal since we added MaxMind’s GeoIP2 Precision services,” said Fomo’s co-founder Ryan Kulp.
As more and more TV, music, and movie content has moved online, a veritable industry has grown up around helping people to circumvent location based broadcast restrictions. Demonstrating the scale of the issue, GlobalWatchIndex reports that as many as 29% of VPN users globally accessed Netflix in one recent month. Tutorials for how to access this and other streaming services abound.
Streaming providers are required by content licensors to geographically restrict access to the content they license. Providers risk losing content licensors’ trust and ultimately risk losing their ability to license content from studios and other licensors if they are not able to restrict access based on where their customers are accessing this content from. This post describes the ways restrictions are being bypassed and offers some advice on solutions. Continue reading
If you use a GeoIP database, you’re probably familiar with MaxMind’s MMDB format.
At MaxMind, we created the MMDB format because we needed a format that was very fast and highly portable. MMDB comes with supported readers in many languages. In this blog post, we’ll create an MMDB file which contains an access list of IP addresses. This kind of database could be used when allowing access to a VPN or a hosted application.
The code samples I include here use the Perl MMDB database writer and the Perl MMDB database reader. You’ll need to use Perl to write your own MMDB files, but you can read the files with the officially supported .NET, PHP, Java and Python readers in addition to unsupported third party MMDB readers. Many are listed on the GeoIP2 download page. So, as far as deployments go, you’re not constrained to any one language when you want to read from the database.
Use our GitHub repository to follow along with the actual scripts. Fire up a pre-configured Vagrant VM or just install the required modules manually.
Thus far, our Best Practices Series has discussed how you can use the data provided by the minFraud service for better decision making during manual review.
But actionable data from minFraud starts with the inputs you include with each query.
The minFraud service requires that each query include the IP address associated with the transaction at a minimum; as best practices, MaxMind recommends you send as many data points as possible.
The more data points you provide, the better the riskScore and the more information you make available to your fraud analysts as part of the manual review process. Continue reading
In this blog post, we continue our discussion of best practices for manual review. Today’s topic is assessing IP address risk.
A fraudster (or indeed, anyone) placing an order on a website uses a device (computer, mobile phone or tablet) and this device is associated with an IP address.
In our last blog post, we discussed how the physical location of the IP address can be matched against other location information to see if anything looks suspicious. For example, it’s best to closely scrutinize orders where the location of an IP address is in one country and the billing address in another.
Fraudsters recognize the power of geolocation in identifying fraud, so they act to hide their actual IP address and, by extension, their geographic location. The best way for them to take cover is to connect to the Internet using a proxy server. Popular hiding places include open proxies, hosting providers and VPNs. Continue reading
In our last blog post, we discussed how you can use a risk score to automate fraud screening, saving you time and money.
In this blog post, we begin our discussion of manual review best practices.
Studies show that, in North America, one in four orders on average receive extra scrutiny through the manual review process. The goal is to prevent the expense of chargebacks and customer issued credits associated with fraud. At the same time, you need to ensure that legitimate orders are not rejected unnecessarily, and estimates suggest that this is the case with up to 10% of orders. Rejecting good orders negatively impacts the bottom line, and drives away good customers.
During manual review, fraud analysts examine data associated with an order to assess how likely it is to be fraudulent. One key area of data points to consider is that of geolocation. Continue reading
Welcome to a new installment of MaxMind’s Best Practices Blog Series!
In discussing best practices, our focus is on efficient fraud screening methods which stop fraud while providing a positive customer experience.
Key to efficient fraud screening is automating as many decisions as possible.
In this post, we discuss the crucial role of minFraud’s riskScore to automated decision making. Continue reading
MaxMind is pleased to announce our corporate giving program – we plan to give away over 50% of our profits to charity.
Since its inception, MaxMind has focused on creating value for our customers, especially where the ratio of value to effort is high. It is exciting how technology enables us to write code once and deploy it to thousands of customers to solve problems. For marketing, we focus on strategies that have high impact per dollar invested, including detailed, transparent information about our products on our website and our freemium model for geolocation databases.
Similarly, with charitable giving, we look for opportunities to apply research to find how our funding can have high impact per dollar invested. Sometimes the most cost-effective program can be surprising. For example, according to MIT’s Abdul Latif Jameel Poverty Action Lab, deworming may be one of the most effective ways to increase student participation in school.
The for-profit space seems more and more crowded with great companies pursuing great ideas. There appears to be no shortage of angel and venture capital for technology startups, and competition is intense. On the other hand, the non-profit space appears a lot less crowded, as there are fewer funders pursuing innovative solutions.
We would like to thank our customers for making this possible!
To learn more about MaxMind’s charitable giving, visit our Corporate Giving page.
MaxMind, the industry-leading provider of IP intelligence and online fraud detection tools, has been invited to present at the 2015 Merchant Risk Council (MRC) eCommerce Payments & Risk Conference in Las Vegas. Our co-presenters will include two of the world’s most prominent eCommerce companies: Orbitz, a leader in the online travel industry, and Western Union, a global money transfer giant. MRC’s own Global Director of Programs and Marketing will bring his extensive industry experience to the presentation as well. Whitepages Pro, one of the major providers of contact information in North America, will moderate our lively presentation.
Manual Review Best Practices
Learnings from Peak Buying Times in 2014
We invite you to attend this panel discussion to learn more about best practices for preparing for, executing and evaluating your manual review processes. You’ll benefit by hearing specific examples of unique situations and fraud trends that caused online merchants to alter their tools or procedures. You’ll also have the chance to review some questionable transactions and engage in discussion about whether to approve or reject them.
Mark Your Calendar!
March 24, 2015
1:30 p.m. – 2:15 p.m. PT
Aria Resort, Las Vegas
We hope to see you at the Presentation or just stop by booth #422 and say, “Hello!”
Contact us today at firstname.lastname@example.org to schedule a meeting during the event. We look forward to seeing you at MRC’s 2015 eCommerce Payments & Risk Conference – the largest professional development and networking event for eCommerce payments and fraud professionals in the Americas.
When it comes to fraud detection, finding proxies is a big topic. But why? Fraud detection begins with thinking intelligently about the IP address associated with a transaction. Where is that IP address, and how does that location relate to other transaction data? Whereas most IP addresses inspire confidence, those associated with a proxy generate suspicion.
Let’s take a closer look at proxy detection. Continue reading