Forum Moderators: buckworks
I'll be processing cards thruogh a gateway on my site and intend to make sure that all people entering details through the gateway have to use a CV2 number for the credit cards but is this enough to stop fraud?
Before I ran a ban list it wasn't really a hassle more than an annoyance for the occasional fraud attempts.
Lots of crooks either:
ARE the credit card holder
HAVE the actual CC in Hand
STOLE to credit info from a place that included CVV's
Lots of LEGIT buyers:
Don't know or care what a CVV is
Don't actually HAVE their card with them
Are afraid to share this info over the net because they know it is 'for their security'
It is a tool, but only one to be used together with many others.
YES. We ban all most all of africa, most of southeast asia and a the odd small island.
I would send everything outside of the USA/Canada to a PPC page, but we are a publicly traded company and some of our investers from outside the US like to look at our sites once in a while...
Many US-based sites I've seen absolutely will not ship to Nigeria or Indonesia due to an unfortunate amount of fraud originating from those countries. A few bad apples there have really spoiled it for *everyone* in those countries wanting to buy from the US. I believe this includes Amazon and CafePress, to name a couple of biggies, but they could have changed since last I checked.
Requiring CVV2 and AVS will, I think, help you in cases of fraud complaints, in the sense that you won't be hit as hard for chargebacks. You'll still get the chargeback and have to eat the cost if you shipped it on a stolen card, but I think that if you do CVV2 and AVS then *your* merchant fees don't go up as much. (At least, this is true for our merchant account/cc processor. Your terms may vary.)
JK
