Share this page!

Enter Twitter Thread URL to Unroll

Needs to be the full URL like: https://twitter.com/threadreaderapp/status/1644127596119195649

How to get URL link on Twitter App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
rameerez.eth Profile picture
@rameerez
Jun 5 20 tweets 11 min read Twitter logo Read on Twitter
A few entrepreneur friends seem to also be having this problem so I'm sharing this:

For the past few weeks, we've been targeted with a credit card testing fraud attack on Stripe.

Literally thousands of blocked charges, hundreds in fraudulent payments, ~$2M in blocked charges Image
All similar to what @levelsio @dannypostmaa @kevntz etc already described:

- fraudulent payments using stolen US credit cards
- using PH billing addresses
- with VPNs to sign up & make the payment from BD LA SG etc

A % of these fake charges go through and end up in disputes
@levelsio @dannypostmaa @kevntz All fraudulent payments look the same: lots of credit card tries until one succeeds Image
@levelsio @dannypostmaa @kevntz On some of these fraudulent charges, Stripe Radar reports high number of cards associated with the same IP addr Image
@levelsio @dannypostmaa @kevntz Got most of the fraudulent payments ~ mid May

One morning I woke up to literally dozens of fake charges

Had to refund + block all of them manually. If you don't, they become disputes in a few days and your Stripe account is at risk of getting banned due to high % of disputes
@levelsio @dannypostmaa @kevntz Got most of the recent fraudulent charges under the infamous name "jake smith"

But also some other PH names like "amber rodriquez"

Most lowercase, most with PH billing addresses
Turned on Stripe Radar and started configuring rules and blocking pretty aggressively

I'm now blocking *all* payments from 7 countries, all of which had associated fraudulent payments (YE, VN, LA, KH, BD, SG, PH)

+ added custom block / review rules like this Image
Can't believe Stripe doesn't automatically block payments as obviously fake as these @patrickc

Lots of entrepreneurs are losing lots of time + money (fees, disputes) + putting our Stripe accounts at risk because of this particular credit card testing fraud attack Image
@patrickc I see some speculating this has to do with affiliate scams (@getRewardful etc)

IMHO this is NOT the case.

I don't have a single affiliate link and I've gotten the same attack on different Stripe accounts.

This is just plain credit card testing stripe.com/docs/disputes/…
@patrickc @getRewardful This is my current theory:

Imagine you purchase a big DB of stolen US credit cards

You wanna commit big time fraud with them (i.e.: charge them thousands of $)

But you don't know which ones work and which ones don't.

And you can't risk getting blocked from big websites.
@patrickc @getRewardful So you find small online businesses where you can test CCs with cheap purchases $9, $29, etc.

These are your "burner" businesses

Purchases under $100 usually are not suspicious right? Easy for small companies to overlook
@patrickc @getRewardful Then, when one CC works you just use it purchase thousands of dollars worth of gift cards or whatever

You resell them at a discount in shady forums, pocket the profits, rinse and repeat

This is the typical Indian call center scam, with a twist
@patrickc @getRewardful Small business like me block you, but you were never going to purchase anything from us anyways

You're still good with Amazon, Google, Apple, Steam, etc. where you want to do the actual purchases

You only do the real purchase there when you're 100% sure it's going to go thru
I'm getting a few weird replies, so I thought I'd clarify this: I LOVE Stripe, and the more I use it, the more I understand and appreciate its value. It's an extremely well-built product and me and all my entrepreneur friends use it and promote it whenever we get the chance.
But this is a very real problem I've been struggling with for the past ~month, and I'm shocked because I would have assumed Stripe handled these kind of things on its own without costing me and my company money and trouble.

I have empathy for Stripe, running companies is hard
But this issue has become a daily problem for me and many fellow entrepreneurs

Every day I wake up to a few fraudulent charges and I need to spend time and energy reviewing + refunding/blocking payments

Very time consuming

+ happening at a large scale

= needs fixing ASAP
Update: Stripe is already tackling this Image
24h update: Stripe seems to be investigating but is not being able to stop the attack

Many founders, me included, are still reporting credit card testing fraud

It looks like this has been going on for ~2 months news.ycombinator.com/item?id=361970…

$ millions lost in fraud charges likely
Best course of action for founders right now seems to be to block aggressively + set up custom Radar rules

Some I already described in the thread, some others:
Meanwhile Stripe algorithm still thinking we're overreacting Image

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with rameerez.eth

rameerez.eth Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @rameerez

rameerez.eth Profile picture
Aug 31, 2022
Where would you go look for exceptionally good AI prompts for Stable Diffusion, Midjourney, DALL-E 2, etc?

Not just *some* inspirational inputs, but the top quality ones: the ones that produce the best kind of output these AI models can generate.
Starting to dig into /r/StableDiffusion, /r/dalle2, #stablediffusion, etc. Good stuff, still looking for suggestions!
I've put together some of the best prompts I've found so far on a website!

Super early WIP but here you go: prompthero.com Image
Read 30 tweets
rameerez.eth Profile picture
Oct 6, 2021
I'm launching something I've been working on! ✨

🤖 WebVitalsRobot

- monitors your site's pages for Google's Web Vitals every day
- shows historical charts of your site performance
- emails you when your pages become slower

It's now on @ProductHunt 🎈
producthunt.com/posts/web-vita…
A few months ago Google updated their algorithm to start taking into consideration pages' performance for ranking.

This means that if your website performance suddenly becomes bad, Google will take it down from search results.

I found about this the hard way.
I started noticing less and less traffic every passing week to a Wordpress website I manage, and I couldn't figure out why.

I was aware of the algorithm change, and had optimized the site already to get ready for it.

I couldn't figure why the site's traffic was decreasing.
Read 9 tweets
rameerez.eth Profile picture
Aug 5, 2021
Heads up: if you're using PageSpeed Insights to measure your website's performance and make it rank better on Google, the big number in the circle is NOT the score Google takes into consideration when deciding if your page is properly optimized or not.
That score is called the "Lighthouse score". It's not a random number: there are 6 components to it.

These components are called "Web vitals" and they all have different weights as to how they contribute to the total Lighthouse score googlechrome.github.io/lighthouse/sco…
Now, as for SEO, Google only takes 3 out of those 6 signals into consideration when deciding if your page should rank high or not.

Those 3 signals are called "Core Web Vitals".
Read 5 tweets
rameerez.eth Profile picture
Feb 4, 2019
Two weeks ago I started building something.

It all began with an idea and a logo.

A thread 👇 Image
I was trying to keep one of my New Year’s resolutions, so I started tracking my daily progress on a sheet of paper. Image
But I soon realized that was not the best solution. You may forget your sheet at home, lose it altogether – or even if that's not the case, it's difficult to place it in a spot where you'll see it every day without just learning to ignore it.

Also, it wasn't precisely sexy.
Read 44 tweets
rameerez.eth Profile picture
Aug 5, 2018
Awesome! @Wakefy_app's functionality has just been copied! Not by minor players, but by Spotify and Google themselves! This can only mean I might be onto something with Wakefy!
Just for Android devices, though. Hard to make that work on iOS as far as I know (without forcing users to leave their screen on the whole night). Plus, Wakefy was born with a different use case in mind. But still that's a copy – and only 4 months after Wakefy's launch.
Pattern:

If your product's main functionality is another successful product's lacking feature, chances are they'll just copy your whole product.

Solution:

Don't base your products entirely off another successful product.
Read 7 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

:(