{"metadata":{"image":[],"title":"","description":""},"api":{"url":"","auth":"required","results":{"codes":[]},"settings":"","params":[]},"next":{"description":"","pages":[]},"title":"fraud-events / fraud-event","type":"basic","slug":"fraud-event","excerpt":"Contains information regarding fraud errors","body":"###Request\nN/A\n\n###Response\nThe `fraud-events` resource is returned in the [15011 FRAUD_DETECTED](doc:fraud-errors) error, which BlueSnap sends when a transaction triggers fraud rules.\n\nThis resource is a container with these properties:\n[block:parameters]\n{\n  \"data\": {\n    \"h-0\": \"Property Name\",\n    \"h-1\": \"Type\",\n    \"h-2\": \"Description\",\n    \"0-0\": \"`fraud-reference-id`\",\n    \"0-2\": \"Reference ID for the BlueSnap fraud check, in case further investigation or information is required.\",\n    \"0-1\": \"*string*\",\n    \"1-0\": \"`fraud-transaction-id`\",\n    \"1-1\": \"*string*\",\n    \"1-2\": \"Unique ID given by Kount for the fraud check.\",\n    \"2-0\": \"`fraud-event`\",\n    \"2-1\": \"*string*\",\n    \"2-2\": \"Container of <a href=\\\"#fraudevent\\\">fraud-event</a> properties.\\nIf a transaction triggers multiple fraud rules, then multiple `fraud-event` resources (one for each triggered fraud rule or threshold) may be sent within one `fraud-events` resource for that transaction.\"\n  },\n  \"cols\": 3,\n  \"rows\": 3\n}\n[/block]\n<a name=\"fraudevent\"></a>**fraud-event sub-resource**\nThe `fraud-event` resource is nested in the `fraud-events` resource container (as shown above). It is a container with the elements described below, which provides an indication of what fraud rule or configurable threshold was triggered and why, and details about the decision (either decline or review).\n[block:parameters]\n{\n  \"data\": {\n    \"h-0\": \"Property Name\",\n    \"h-1\": \"Type\",\n    \"h-2\": \"Description\",\n    \"h-3\": \"Values\",\n    \"0-0\": \"`fraud-event-code`\",\n    \"1-0\": \"`fraud-event-decision`\",\n    \"2-0\": \"`fraud-event-expression`\",\n    \"0-1\": \"*string*\",\n    \"1-1\": \"*string*\",\n    \"2-1\": \"*string*\",\n    \"0-2\": \"The fraud rule or threshold that was triggered by the order.\\n \\n**Errors triggered by CVV/AVS rules**\\n  * **AVS_ADDR_MISMATCH**: AVS address mismatch\\n  * **AVS_ADDR_NOT_VERIFIED**: AVS address not verified\\n  * **AVS_NAME_MISMATCH**:\\tAVS name mismatch\\n  * **AVS_ZIP_MISMATCH**: AVS zip code mismatch\\n  * **AVS_ZIP_NOT_VERIFIED**: AVS zip not verified\\n  * **CVV_MISMATCH**: CVV mismatch\\n  * **CVV_NOT_VERIFIED**: CVV not verified\\n\\n**Errors triggered configurable thresholds**\\n  * **blacklistIpCountryDecline**: Device IP country is on the Device IP Country Decline List\\n  * **blacklistNetworkTypeDecline**: Network type used by the shopper’s device is on the Network Type Decline List\\n  * **blacklistPaymentCountryDecline**: BIN country of the credit card is on the Payment Country Decline List\\n  * **blacklistShippingCountryDecline**: Shipping address country is on the Shipping Address Country Decline List \\n  * **cardPtokVelocityDecline**: Number of transactions with the same credit card in the last hour exceeds the Credit Card 1 Hour Count Decline Threshold\\n  * **deviceFingerprintVelocityDecline**: Number of transactions with the same device fingerprint in the last hour exceeds the Device Fingerprint 1 Hour Count Decline Threshold\\n  * **deviceIpVelocityDecline**: Number of transactions with the same device IP in the last hour exceeds the Device IP 1 Hour Count Decline Threshold\\n  * **deviceToBillingAddressDecline**: Distance from the device IP to the billing address exceeds the Device IP to Billing Distance Decline Threshold\\n  * **emailVelocityDecline**: Number of transactions with the same billing email address in the last 24 hours exceeds the Email Address 24 Hour Count Decline Threshold\\n  * **highRiskDecline**: Order risk score exceeds the High Fraud Risk Decline Filter\\n  * **orderTotalDecline**: Total amount (in USD) for the order exceeds the Total Amount Decline Threshold\",\n    \"1-2\": \"Action taken based on the fraud event code.\\nValues:\\n  * **D**: Decline\\n  * **R**: Review\",\n    \"1-3\": \"\",\n    \"2-2\": \"Explains why the rule/threshold triggered.\"\n  },\n  \"cols\": 3,\n  \"rows\": 3\n}\n[/block]","updates":[],"order":42,"isReference":false,"hidden":false,"sync_unique":"","link_url":"","link_external":false,"_id":"61a5033cd3c4d201e7b58421","category":{"sync":{"isSync":false,"url":""},"pages":[],"title":"Resources","slug":"resources","order":8,"from_sync":false,"reference":false,"_id":"61a5033cd3c4d201e7b583c2","version":"61a5033cd3c4d201e7b5848b","project":"57336fd5a6a9c40e00e13a0b","createdAt":"2015-10-15T16:20:51.519Z","__v":0},"project":"57336fd5a6a9c40e00e13a0b","user":"560d5913af97231900938124","parentDoc":null,"version":{"version":"8976-Extended","version_clean":"8976.0.0-Extended","codename":"3.40 Release","is_stable":false,"is_beta":false,"is_hidden":false,"is_deprecated":false,"categories":["61a5033cd3c4d201e7b583ba","61a5033cd3c4d201e7b583bb","61a5033cd3c4d201e7b583bc","61a5033cd3c4d201e7b583bd","61a5033cd3c4d201e7b583be","61a5033cd3c4d201e7b583bf","61a5033cd3c4d201e7b583c0","61a5033cd3c4d201e7b583c1","61a5033cd3c4d201e7b583c2","61a5033cd3c4d201e7b583c3","61a5033cd3c4d201e7b583c4"],"_id":"61a5033cd3c4d201e7b5848b","project":"57336fd5a6a9c40e00e13a0b","__v":0,"forked_from":"6040037678d626005641a154","createdAt":"2018-04-24T15:33:45.744Z","releaseDate":"2018-04-24T15:33:45.744Z"},"createdAt":"2015-12-29T15:38:03.931Z","githubsync":"","__v":0}

Extended Payment API

Orders

Shopping Context

Shoppers

Catalog

Subscriptions

Wallets

Errors

Resources

Test Data & Codes

Guides & Tools

fraud-events / fraud-event

Contains information regarding fraud errors

Request

N/A

Response

The fraud-events resource is returned in the 15011 FRAUD_DETECTED error, which BlueSnap sends when a transaction triggers fraud rules.

This resource is a container with these properties:

Property Name
Type
Description

fraud-reference-id

string

Reference ID for the BlueSnap fraud check, in case further investigation or information is required.

fraud-transaction-id

string

Unique ID given by Kount for the fraud check.

fraud-event

string

Container of fraud-event properties.
If a transaction triggers multiple fraud rules, then multiple fraud-event resources (one for each triggered fraud rule or threshold) may be sent within one fraud-events resource for that transaction.

fraud-event sub-resource
The fraud-event resource is nested in the fraud-events resource container (as shown above). It is a container with the elements described below, which provides an indication of what fraud rule or configurable threshold was triggered and why, and details about the decision (either decline or review).

Property Name
Type
Description

fraud-event-code

string

The fraud rule or threshold that was triggered by the order.

Errors triggered by CVV/AVS rules

  • AVS_ADDR_MISMATCH: AVS address mismatch
  • AVS_ADDR_NOT_VERIFIED: AVS address not verified
  • AVS_NAME_MISMATCH: AVS name mismatch
  • AVS_ZIP_MISMATCH: AVS zip code mismatch
  • AVS_ZIP_NOT_VERIFIED: AVS zip not verified
  • CVV_MISMATCH: CVV mismatch
  • CVV_NOT_VERIFIED: CVV not verified

Errors triggered configurable thresholds

  • blacklistIpCountryDecline: Device IP country is on the Device IP Country Decline List
  • blacklistNetworkTypeDecline: Network type used by the shopper’s device is on the Network Type Decline List
  • blacklistPaymentCountryDecline: BIN country of the credit card is on the Payment Country Decline List
  • blacklistShippingCountryDecline: Shipping address country is on the Shipping Address Country Decline List
  • cardPtokVelocityDecline: Number of transactions with the same credit card in the last hour exceeds the Credit Card 1 Hour Count Decline Threshold
  • deviceFingerprintVelocityDecline: Number of transactions with the same device fingerprint in the last hour exceeds the Device Fingerprint 1 Hour Count Decline Threshold
  • deviceIpVelocityDecline: Number of transactions with the same device IP in the last hour exceeds the Device IP 1 Hour Count Decline Threshold
  • deviceToBillingAddressDecline: Distance from the device IP to the billing address exceeds the Device IP to Billing Distance Decline Threshold
  • emailVelocityDecline: Number of transactions with the same billing email address in the last 24 hours exceeds the Email Address 24 Hour Count Decline Threshold
  • highRiskDecline: Order risk score exceeds the High Fraud Risk Decline Filter
  • orderTotalDecline: Total amount (in USD) for the order exceeds the Total Amount Decline Threshold

fraud-event-decision

string

Action taken based on the fraud event code.
Values:

  • D: Decline
  • R: Review

fraud-event-expression

string

Explains why the rule/threshold triggered.