How do you "filter" orders?

[shunny]

Hello, 

So a question for all the VPS providers out there. 

How do you guys handle customers on sign up to filter out any abusive orders? 

Do you use the MaxMind phone verification plugin, MaxMind minfraud, manual verification? 

And what is the best way to catch potentially risky orders? 

Thanks, 

 

[lowesthost]

MaxMind minfraud, Fraudrecord, & Jedi mind powers

 

[AMDbuilder]

Common Sense, Fraudrecord, MaxMind minfraud

 

[Cloudrck]

Firewall rules on my server to look for proxies and known bad IP's. Maxmind fraud check, I will always manually verify an account before creation.

 

[Nick_A]

MaxMind and common sense.

 

[Nett]

And what is the best way to catch potentially risky orders? 

Ask for the ID and probably utility bill.

 

[mikeg]

Maxmind minfraud tends to catch most fraud orders. Ones it doesn't catch you can use your common sense to spot these.

 

[matt[scrdspd]]

MaxMind, FraudRecord, manual checks, etc. A combination of many things.

 

[HostHoarders-Mike]

MaxMind is a great thing. If a user comes up as fraud you check it manually.

 

[InfiniteTech]

MaxMind, FraudRecord and a little bit of common sense.

If the order is of high value, we ask for ID as well.

 

[BrianHarrison]

Jedi mind powers

+1

To check for fraud we will typically:

1. Check MaxMind score.

2. Check FraudRecord for listings.

3. Verify geo::IP matches up with billing location.

4. Verify IP address owner belongs to an ISP that serves end-users rather than web servers (e.g., Comcast vs SoftLayer).

5. Credit card AVS check.

6. Credit card CVV check.

7. Number of failed payment attempts.

8. Unusual customer profile. For example, we don't accept orders from Gertrude Millicent with a billing address that traces back to a retirement home -- grandmas generally don't order VMs

9. Cost of the plan and the number of add-ons. Fraudsters often go for the highest value plans and add every possible add-on/upgrade.

10. If the customer has communicated with us through a ticket or sales e-mail, we'll evaluate their English. If they claim to be from Portland, OR but their English is horrible or they type in all capital letters -- then English is likely not their first language and they are likely not from Portland, OR.

Not all of those criteria would constitute an outright rejection of the order, but they play into consideration. If we're ever unsure about a payment, we'll request some sort of identity verification or the completion of a credit card authorization form.

 

[httpzoom]

By taking a little time to "Check out" an order you can normally find out if its legit, search for email addresses, names etc. directly in Google you can normally find the person in question and verify the details / order being ok to proceed.

Its quite expensive and time consuming, but worth it in the long run.

 

[Enterprisevpssolutions]

Always have a verification form they need to fill out with id. MaxMind as well.

 

[Navyn]

We check all order manually.

 

[Francisco]

Aldryic.

Francisco

 

[hostemo.com]

we usually check the ip location vs country; registered email vs paypal ID. Although we are running auto provision, however, when we found the miss match information, we will immediate suspend and request for verification.

 

[blergh]

Most of the above, a good thing to check for sketchy orders is to search places like hackforums, you'd be amazed how many skids use the same email all over.

 

[Thelen]

MaxMind seems to work well enough, some still get through but not a significant amount.

 

[HostSailor]

Maxmind is a great tool, but I believe that using common sense, observing the abusive behaviours, learning their tricks and  spotting their repetitive retries would help you control it to minimum. 

 

[RMX Hosting]

We used to ask for IDs, but a lot of users do not feel comfortable providing these, so Maxmind only right now as well as common sense