fraud-events / fraud-event

Request

N/A

Response

The fraud-events resource is returned in the 15011 FRAUD_DETECTED error, which BlueSnap sends when a transaction triggers fraud rules.

This resource is a container with these properties:

Property Name	Type	Description
`fraud-reference-id`	string	Reference ID for the BlueSnap fraud check, in case further investigation or information is required.
`fraud-transaction-id`	string	Unique ID given by Kount for the fraud check.
`fraud-event`	string	Container of fraud-event properties. If a transaction triggers multiple fraud rules, then multiple `fraud-event` resources (one for each triggered fraud rule or threshold) may be sent within one `fraud-events` resource for that transaction.

fraud-event sub-resource
The fraud-event resource is nested in the fraud-events resource container (as shown above). It is a container with the elements described below, which provides an indication of what fraud rule or configurable threshold was triggered and why, and details about the decision (either decline or review).

Property Name Type Description

Property Name	Type	Description
`fraud-event-code`	string	The fraud rule or threshold that was triggered by the order. Errors triggered by CVV/AVS rules AVS_ADDR_MISMATCH: AVS address mismatch AVS_ADDR_NOT_VERIFIED: AVS address not verified AVS_NAME_MISMATCH: AVS name mismatch AVS_ZIP_MISMATCH: AVS zip code mismatch AVS_ZIP_NOT_VERIFIED: AVS zip not verified CVV_MISMATCH: CVV mismatch CVV_NOT_VERIFIED: CVV not verified Errors triggered configurable thresholds blacklistIpCountryDecline: Device IP country is on the Device IP Country Decline List blacklistNetworkTypeDecline: Network type used by the shopper’s device is on the Network Type Decline List blacklistPaymentCountryDecline: BIN country of the credit card is on the Payment Country Decline List blacklistShippingCountryDecline: Shipping address country is on the Shipping Address Country Decline List cardPtokVelocityDecline: Number of transactions with the same credit card in the last hour exceeds the Credit Card 1 Hour Count Decline Threshold deviceFingerprintVelocityDecline: Number of transactions with the same device fingerprint in the last hour exceeds the Device Fingerprint 1 Hour Count Decline Threshold deviceIpVelocityDecline: Number of transactions with the same device IP in the last hour exceeds the Device IP 1 Hour Count Decline Threshold deviceToBillingAddressDecline: Distance from the device IP to the billing address exceeds the Device IP to Billing Distance Decline Threshold emailVelocityDecline: Number of transactions with the same billing email address in the last 24 hours exceeds the Email Address 24 Hour Count Decline Threshold highRiskDecline: Order risk score exceeds the High Fraud Risk Decline Filter orderTotalDecline: Total amount (in USD) for the order exceeds the Total Amount Decline Threshold
`fraud-event-decision`	string	Action taken based on the fraud event code. Values: D: Decline R: Review
`fraud-event-expression`	string	Explains why the rule/threshold triggered.

fraud-event-code

string

The fraud rule or threshold that was triggered by the order.

Errors triggered by CVV/AVS rules

AVS_ADDR_MISMATCH: AVS address mismatch
AVS_ADDR_NOT_VERIFIED: AVS address not verified
AVS_NAME_MISMATCH: AVS name mismatch
AVS_ZIP_MISMATCH: AVS zip code mismatch
AVS_ZIP_NOT_VERIFIED: AVS zip not verified
CVV_MISMATCH: CVV mismatch
CVV_NOT_VERIFIED: CVV not verified

Errors triggered configurable thresholds

blacklistIpCountryDecline: Device IP country is on the Device IP Country Decline List
blacklistNetworkTypeDecline: Network type used by the shopper’s device is on the Network Type Decline List
blacklistPaymentCountryDecline: BIN country of the credit card is on the Payment Country Decline List
blacklistShippingCountryDecline: Shipping address country is on the Shipping Address Country Decline List
cardPtokVelocityDecline: Number of transactions with the same credit card in the last hour exceeds the Credit Card 1 Hour Count Decline Threshold
deviceFingerprintVelocityDecline: Number of transactions with the same device fingerprint in the last hour exceeds the Device Fingerprint 1 Hour Count Decline Threshold
deviceIpVelocityDecline: Number of transactions with the same device IP in the last hour exceeds the Device IP 1 Hour Count Decline Threshold
deviceToBillingAddressDecline: Distance from the device IP to the billing address exceeds the Device IP to Billing Distance Decline Threshold
emailVelocityDecline: Number of transactions with the same billing email address in the last 24 hours exceeds the Email Address 24 Hour Count Decline Threshold
highRiskDecline: Order risk score exceeds the High Fraud Risk Decline Filter
orderTotalDecline: Total amount (in USD) for the order exceeds the Total Amount Decline Threshold

fraud-event-decision

string

Action taken based on the fraud event code.
Values:

D: Decline
R: Review

fraud-event-expression string Explains why the rule/threshold triggered.