OYE! Recently, I have had a rash of fraudulent orders from I believe the same person and it is driving nutso. :eek:

So, anyway, although they are originating from US IP addresses, I do not believe they are from the US. Is this possible? and How?

Thanks,
Patrick

proxy server. there are 100's that are anonymous.

the season has just begun....with the holiday season approaching im sure you wont see a decrease in fraud orders with stolen credit cards and wat not...

Hello
I have even heard o ffraudsters using stolen cards to get long distance calls and US dial up accounts.

I spot them by looking at the times they place the orders relative to US waking hours.
Also the domain names they are ordering hosting for.
We have not had a fraud get through for a while.
It is possible to cope with it but it needs constant vigilance.
We still get hit bad on the domain names but thats usually theft by the real card holder rather than conventional fraud.

Gordon

We don't let them through either it is just frustrating. It is so obvious too. We keep terminating their account and they keep signing up again. You would think that they would at least try another host? I dunno.

I had one guy a couple of weeks ago who I emailed and told not to do it again and he sent in three further orders under other names but obviously the same person.

Its obviously just a game to them.

Gordon

Precise, would you care to share the domain they are registering so I may go ahead and block that domain. Or is it different domains with different CC Number's? If so, please descirbe as BEST as possible the credential of this individual in a PM to me so I may continue to block such accounts.

Thank you

oh for the love of god, so far this month, i've had 10

What would be the legalities of building a site where merchants can go to verify orders aren't fraudulent. Or, check to see if the information supplied to them is fraudulent. Of course, merchants would have to contribute information regarding their fraudulent orders.

Are there any liabilities, etc? Does what I said even make sense?

Would the FBI listen? Maybe if they aren't too busy with homeland security they can go catch these punks. Oh wait, they're foreigners. :(

The FBI itself does not deal with Homeland security. -- They have agents set aside for that.

If you would report the credit card fraud to your credit card processor and local law enforcement agency, I'm sure something will be done in a matter of weeks to a month or two.

The reality is that there is just too much credit card fraud on the internet for them to follow up on each one. I think law enforcement only goes after the big ones. Like the hackers who break into sites and steal 500 credit cards and post them on web sites.

Someday, we won't have to deal with this stuff and we'll live in utopia. :(

This is the exact reason we do all orders for our company maually , most fraudsters are looking for auto account creation and all they need is a few mins to use the account to spam , or whatever they please to do.

We have had several attempts , but manually doing it helps keep the attempts down , I even go as far as calling the customer myself if needed to confirm there order.

Originally posted by phantasywork
This is the exact reason we do all orders for our company maually , most fraudsters are looking for auto account creation and all they need is a few mins to use the account to spam , or whatever they please to do.

We have had several attempts , but manually doing it helps keep the attempts down , I even go as far as calling the customer myself if needed to confirm there order.

Is it a pain to do, or do you have few enough orders that it's managable?

It can be a pain sometimes , especially on days where we have alot of signups but it is indeed managalble , but I guess it is all dependant on how much risk a host want's to take in the long run.

So what are the warning signs that an account is a fraud versus a normal sign up? In other words besides finding out later the credit card is stolen how do you tell when a person signs up?

Originally posted by beachtrader
So what are the warning signs that an account is a fraud versus a normal sign up? In other words besides finding out later the credit card is stolen how do you tell when a person signs up?

Address verification, using VisualRoute to confirm location, etc. There are a bunch of techniques you can use. :D

Sometimes is just common sense. IE The order has a name of "Carol Griffith" and an email address of "miharu@kacang-panjang.net".

Maybe it is just me, but it just smells like ****! :D

If you've got a little time and would like to read more about cc fraud and ways to try to avoid it, you can read this 18 page thread:

WHT thread on cc fraud (http://www.webhostingtalk.com/showthread.php?threadid=25585&perpage=15&pagenumber=1)

peace,
yjack

Oh joy...Almost 20 pages!


I might have read it if it was about TimPD, but, oh well.

Originally posted by Precise
OYE! Recently, I have had a rash of fraudulent orders from I believe the same person and it is driving nutso. :eek:

So, anyway, although they are originating from US IP addresses, I do not believe they are from the US. Is this possible? and How?

Thanks,
Patrick

You may want to bookmark this for now and future reference:

http://www.iana.org/assignments/ipv4-address-space

It contains address blocks, who has them, and when they were given to them.


-- One other thing I forgot. I've seen an order come through within an ARIN delegated address that was actually coming out of Peru.. be careful!

The Secret Service handles fraud matters as such..... not thy FBI....

Yeah - I do keep thinking about automating signup, but asking them to mail us first undoubtedly reduces the trade we get, but it means that we can 'vet' clients first...

We have noticed that almost ALL fraud orders are from HotMail (some also from Yahoo) considering how anti-piracy MS are, its a shame they don't do anything about this problem...