Assume it's a false positive for fraud. If you have false positives in your fraud detection and refuse to explain the situation to customers so they can refute the claim, how do you ever fix your broken detection system? Do you simply claim you're batting 1000 and call it a day?
I just logged in to PayPal a couple days ago using my residential IP (unchanged for 2 years), a random (strong, unique) password, and a Yubikey only to be told suspicious activity on my account required me to change my password. From my point of view they randomly picked something they think is suspicious and it triggered something somewhere I guess? Is it suspicious login activity / attempts or suspicious activity like the person here is describing? Am I doing something suspicious or is a nefarious 3rd party doing something suspicious?
Thankfully I don't really use PayPal for anything important and I never will given the terrible stories I've hear for most of my adult life.
Paypal has a "brand safety team" that calls users whenever a new category doesn't align with either their policies, or more likely, VISA/Mastercard's policies.
A very intelligent rep will call you, and either you abandon selling those items or services, or your account is closed.
So for example, I created a file transfer service, and Paypal called me after a few months and said it wasn't permitted to use that account (15 yo account) for billing that item.
The same thing would likely happen for guns, pr0n, etc.
"okay so i was able to get through to a person an this is what I learned:
- this was a "back office" decision, meaning a human being made it
- its "un-appealable", paypal has outright fired me as a customer
- they refuse to explain why "so people dont game the system""
If he's a minority, he could maybe accuse them of being discriminatory/racist, which would force them to defend via revealing the true cause? The "is it because I'm black" "argument". It's completely assholish, but they were the assholes first - i.e. if you want to win win a psychopath (or a psychopatic organization), you have to behave like one yourself.
9 comments
[ 3.6 ms ] story [ 35.2 ms ] threadLike being accused of a crime, but not told which crime, so you "don't game the legal system".
I just logged in to PayPal a couple days ago using my residential IP (unchanged for 2 years), a random (strong, unique) password, and a Yubikey only to be told suspicious activity on my account required me to change my password. From my point of view they randomly picked something they think is suspicious and it triggered something somewhere I guess? Is it suspicious login activity / attempts or suspicious activity like the person here is describing? Am I doing something suspicious or is a nefarious 3rd party doing something suspicious?
Thankfully I don't really use PayPal for anything important and I never will given the terrible stories I've hear for most of my adult life.
Paypal has a "brand safety team" that calls users whenever a new category doesn't align with either their policies, or more likely, VISA/Mastercard's policies.
A very intelligent rep will call you, and either you abandon selling those items or services, or your account is closed.
So for example, I created a file transfer service, and Paypal called me after a few months and said it wasn't permitted to use that account (15 yo account) for billing that item.
The same thing would likely happen for guns, pr0n, etc.
I wonder if it triggered a block for drugs or porn.
"okay so i was able to get through to a person an this is what I learned: - this was a "back office" decision, meaning a human being made it - its "un-appealable", paypal has outright fired me as a customer - they refuse to explain why "so people dont game the system""