This check fires when the number of transactions associated with the shopper IP address exceeds the configured threshold. The time threshold is a moving window calculated backwards from the moment of the transaction.
Fraudsters often use the same IP address for a number of fraudulent transactions in a row, possibly attempting different cards or techniques. This check is aimed to allow merchants to set velocity limits on any particular IP address.
- Merchants can establish a threshold for both the number of transactions and the timeframe allowed. The default is 5 times over 30 minutes.
- The risk fires on the transaction after the set threshold. So, if you set a threshold of 5 in 30 minutes, it fires on the 6th transaction in that 30 minutes.