minFraud Release Notes

September 14, 2020

We have released an additional input parameter for use with custom rules. Customers of minFraud Score, minFraud Insights, and minFraud Factors can now use email address to serve as the basis when creating a custom rule:

  • Email address: /email/address/ – a valid email address or an MD5 of the lowercased email used in the transaction.

For more information on implementing custom rules, see the Custom Rules Guide on our Support Center.

September 10, 2020

We have added a new permission category for the Standard User type. The Product/Service permission grants a Standard User access to product and service related functionality in the account portal without having access to user management and billing functionality. For more information, consult our Multi-User Account Access Guide.

August 10, 2020
Effective August 17, 2020, we will no longer serve minFraud service queries from our London-area servers. These queries will automatically be re-routed to our US-East servers. You do not need to take any action as a result of this change. Customers who have previously had queries routed to these servers may see an increase of 100 – 150 ms in the response time for your queries.
August 6, 2020
We have released three additional subscore outputs. Customers of minFraud Factors can now access the following subscores:
  • /subscores/device – Risk associated with the device.
  • /subscores/email_local_part – Risk associated with the part of the email before the @ symbol.
  • /subscores/shipping_address – Risk associated with the shipping address.
Our client APIs have been updated to support these outputs so may need to refresh yours if you are not interfacing directly with our rest API.
June 24, 2020

The minFraud Score, Insights, and Factors client APIs now support sending transaction feedback to our Report Transaction endpoint. This will allow you to more easily report fraud, suspected fraud, spam/abuse, and false positives to improve scoring. You can find more details on using this functionality in the documentation for the specific client API you use.

June 22, 2020

We’ve updated our Two-Factor Authentication (2FA) implementation to the FIDO2 standard, which supports more web browsers and more types of security keys (e.g. supported biometrics keys). See our Two-Factor Authentication (2FA) User Guide for more information.

June 15, 2020

We are planning to make a number of data changes to the minFraud Legacy Standard and Premium, and GeoIP Legacy City and Insights (formerly Omni) web services at the end of May 2022. Please see our blog post for more information, and how to prepare.

Data Changes to GeoIP Legacy and minFraud Legacy Web Services in May 2022
May 14, 2020

Customers of minFraud Insights and minFraud Factors can now use the following Anonymous IP outputs as parameters to serve as the basis when creating a custom rule:

  • /ip_address/traits/is_anonymous
  • /ip_address/traits/is_anonymous_vpn
  • /ip_address/traits/is_hosting_provider
  • /ip_address/traits/is_public_proxy
  • /ip_address/traits/is_tor_exit_node

May 8, 2020

On May 8, 2020, we discontinued our legacy minFraud SOAP API in order to focus our development on our newer current APIs. We initially announced this retirement in April 2019.

Other client APIs for legacy minFraud services (not recommended) will continue to be supported. We recommend either integrating with the legacy minFraud service directly, or using our current minFraud services.

April 27, 2020

We have released additional input parameters for use with custom rules. Customers of minFraud Score, minFraud Insights, and minFraud Factors can now use the following inputs to serve as the basis when creating a custom rule:

  • /billing/address – The first line of the user’s billing address.
  • /billing/address_2 – The second line of the user’s billing address.
  • /email/is_disposable – This field is true if MaxMind believes that the email address is from a disposable email provider. It is false if the address is not from a known disposable email provider.

April 6, 2020
The /credit_card/is_business output is now available in minFraud Insights and Factors. This field is true if the issuer ID number is for a business card.
March 24, 2020

The /email/domain/first_seen output is now available in minFraud Insights and Factors. This output is a date string (e.g. 2020-03-24) indicating the date the email address domain was first seen by MaxMind. The earliest date that may be returned is January 1, 2019.

March 2, 2020

Users of the minFraud Score, Insights, and Factors services can now manually submit minFraud queries (with a subset of inputs) through the new minFraud Query Form [login required]. The results of the query are displayed in our minFraud Interactive user interface.

February 19, 2020

The /email/is_disposable output is now available in minFraud Insights and Factors. The output is a boolean indicating whether the email address is from a disposable email provider.

February 4, 2020

We’ve added the following outputs to the Transaction Details screen in minFraud Interactive to assist you with manual review of minFraud transactions:

  • Subdivision name
  • Registered country name
  • Represented country name
  • Represented country type
  • Country, city, and subdivision confidence
  • ISP
  • Organization
  • Domain
  • Anonymous IP flags
  • User count
  • Static IP score

You can find descriptions of these outputs here.