top | item 30855942

(no title)

There are problems with how transparent you make things though (i.e., giving away the underlying signals). There’s a moving target between fraudsters and risk teams at companies where the fraudsters will try to run just up to the edge of alerting systems without passing over, then scale and repeat it.

If the signals used are made public, fraudsters will win every time. It’s the same with search engines- if they publish how a score is calculated, people will game it immediately.

Maybe the signals should be required to go through a review with authorities? Idk.

discuss

spookthesunset|3 years ago

I came here to say this too. A lot of the anti-fraud stuff is a closely guarded secret that changes all the time. I don’t even think that legal would let us disclose it even if we wanted to!

That isn’t to say there shouldn’t be some kind of way to escalate an appeal to a real human.

Of course keeping the fraudsters from DDOSing the crap out the appeals process will be a challenge! Because I could see them doing that…