This check fires when the number of transactions associated with the transaction email address exceeds the configured threshold. The time threshold is a moving window is calculated backward from the moment of the transaction.
It is time intensive for fraudsters to collect new email addresses. As such, fraud is often attempted in clusters coming from the same email address in a given time period. This check is aimed at allow merchants to set velocity limits on any particular email address.
- Merchants can establish a threshold for both the number of transactions and the timeframe allowed. The default is 5 times over 30 minutes.
- The risk fires on the transaction after the set threshold. So, if you set a threshold of 5 in 30 minutes, it fires on the 6th transaction in that 30 minutes.