Quote:
Originally Posted by CarlosTheGaucho
Just a question regarding 3D secure
I've been recently reviewing some transactions and see an account that has a clear fraud pattern. Multiple names on cards attempted in a short sequence incl. female names etc.
However, what surprised me is many of these purchases (incl. those that were immediately reported to the biller by its cardholder for refunding) went through as 3D Secure.
These were $ 100 token packages so this should require a 3D secure verification. Of course this may differ depending on the issuing bank, for example with my bank I have it set so that an SMS verification is required with any online purchase over $ 25.
So how come these $ 100 packages went through as 3D secure if carded? All these cards were US and Canadian.
|
I have seen our processors decline the transaction on 3ds sometimes. My guess is that it is a reported stolen card used.
I can change my 3ds password at one of my banks with my birth date and the last 4 digits of my Social Security number (USA). If someone broke into my house, or knew you, they might well have that information?
I see carders using multiple cards with different names too. Usually they are on my proxy/VPN list (not mini-fraud only)
#curl
https://ipinfo.io/8.8.8.8 you can do this in real time and scrub.
https://github.com/arineng/nicinfo nicinfo is written in ruby you can scrub ASblocks with it
By scrub: I mean 3ds ONLY or GTFO -- some legitimate customers will use proxies and VPNs. They are at work fucking off and don't want to get caught. They are in countries that cut your head off for doing or viewing porn or cams.
A reversed charge does not count against your charge back ratio with the credit card associations. A reversed charge with -0- loss (for a good reason) I have no issue with.
Of course, I don't like to leave money on the table but you will toss some wheat out with the chaff. I have people that refuse sms verification too. I don't know if they are carders or people with privacy issues.
Ultimately, we want operate an 'internet wallet' using SEPA and ACH. However, this would deny impulse purchases. I think most of our established customers would fund their wallets with $100 -$300 to avoid the billing hassles. There are regulatory issues however -- a merchant can sell his own goods on any terms agreed. MTA (money transfer agents) like VISA, PayPal are subject to US MTA regs and similar regs in the EU. This is a direct sale with the customer -- different set of laws ...