In the coming months, we will be retiring the following:
TLS v1.0 and 1.1 support across MaxMind products and services (October 16, 2019);
Unencrypted HTTP requests to our legacy minFraud services (October 16, 2019); and
The legacy minFraud service SOAP API (January 31, 2020).
Read on below for more information. MaxMind is deeply committed to information security and protecting customer data, and taking these steps will allow us to ensure your data is as safe and secure as possible. If you have any questions, please do not hesitate to contact us.
***PLANNED INTERRUPTION*** On September 25, 2019 we will interrupt requests (as a warning) for up to 8 hours from 14:00-22:00 UTC (10:00am-6:00pm US Eastern time). During the interruption, requests using TLS v1.0 and v1.1 and unencrypted requests to legacy minFraud endpoints will fail with an error.
Anonymous IP addresses (sometimes incorrectly generalized as “proxies”) serve to hide a web user’s true IP address and obfuscate their geolocation. There are legitimate reasons, usually related to privacy or security, to use anonymous IPs, but many businesses find that fraudsters and other bad actors also use anonymous IPs in malicious ways that affect the bottom line.
After careful consideration, taking into account customer feedback, we have decided against removing latitude and longitude coordinates from the GeoLite2 databases. We are in the process of reviewing coordinates used in all of our GeoLite2 and GeoIP databases to ensure there is no risk of misuse.
Moving forward, we will still be discontinuing the GeoLite Legacy databases and will continue to support open source through our GeoLite2 databases. Please continue to check our blog, Support Center, websites, and ourTwitter andLinkedIn accounts for additional updates on our review of GeoLite2 database coordinates.
At MaxMind, “open communication” is one of our core values. We’re listening to you and we take your feedback seriously.
Digitally savvy consumers areincreasingly seeking online experiences tailored to their interests; meanwhile, web personalization companies likeGeoFli are increasingly seeking ways to deliver just the right experiences to those consumers, at the right time.
“We wanted to create a service to display website content based on a visitor’s IP address,” said GeoFli co-founder Nick Shontz. “Using MaxMind’s GeoIP2 City database combined with GeoFli’s custom software, we have seen conversion rates double for our customers. It’s great having an industry-leading tool like GeoIP2 City that’s so easy to integrate with our systems and have such great application and scalability,” Shontz added.
Free and open source code has been part of MaxMind’s technical and organizational foundation since our earliest days. As we continue to develop new products to better service our customers with a broader range of diverse and innovative offerings, we occasionally find it necessary to discontinue or phase out some of our products or services.
Accordingly, we have decided to discontinue the GeoLite Legacy databases on January 2, 2019. (Note that we will begin by discontinuing updates to the free GeoLite Legacy databases as of April 1, 2018. For info, see the “Important dates to consider” section.)
MaxMind is heading to ad:tech New York, one of the world’s largest conferences for digital brands and technology leaders. Come visit us at our booth and learn more about our GeoIP and minFraud products, and stick around for a speech hosted by our Director of Business Development Jenn Sessler.
Online fraud is a complex, hard to detect, and constantly evolving type of crime with serious business consequences. While many e-commerce merchants are looking for new ways to engage with customers, fraudsters are also looking for new ways to exploit them. In a way, every touchpoint you create – from buy online/pick up in store options to social click-to-buy ads, mobile shopping to loyalty rewards programs – is another opportunity for cybercriminals to bypass your fraud screening.
Every year, more than a billion consumers shop on e-commerce websites. And in 2016, a new startup called Fomo set out to help merchants reach that audience. To do that, Fomo first needed to find a service partner with expertise in geolocation. They chose MaxMind. “We’re a relatively new company, but our growth has been phenomenal since we added MaxMind’s GeoIP2 Precision services,” said Fomo’s co-founder Ryan Kulp.
As a merchant, you’ll frequently see cases where multiple orders with different billing addresses and payment methods are placed from the same IP address, and it’s not clear whether or not this indicates fraud.
Such activity could be a sign of fraud, with a fraudster testing multiple compromised credit cards. It could also be a sign that a fraudster is using a proxy to obscure his identity. There are times though when such activity is expected and flagging such transactions as fraudulent would mean denying good orders and frustrating customers.Continue reading →