Email Risk Scores

The email risk scores are risk factor scores that indicate the risk associated specifically with the email inputs only. There are email risk scores for:

These risk factor scores will only be returned if you are passing the relevant email inputs, and are only returned in minFraud Factors queries.

Like all risk factor scores, the email scores are given as a percentage ranging from 0.01 to 99. For example, an email local part risk score of 85.40 means that the transaction has a 85.4% chance of being fraudulent based on the part of the email before the @ alone.

If you're using email risk scores for manual review, you may also find it helpful to consult the email risk data to give you a better picture of the transaction. Learn more about email risk data.

Email address risk score

The email address risk score is the risk associated with the email address alone.

A higher email address risk score could indicate that we have seen suspicious activity associated with this email address across the minFraud network, or that we have not seen any activity across the minFraud network for this email address.

If you see a higher email address risk score, you may want to see whether there is a history of good use for this email address in your transaction history. You might also want to check the email address to see if it matches with the customer's name or other account or transaction details.

email_address.png

The email address risk score is displayed in the list of risk factor scores, in a blue modal called "Subscores," beneath the overall risk score in the transaction review screen on the account portal. Learn how to review transactions using the account portal.

The email address risk score may be returned when you pass the email address as an input to minFraud Factors. Read the API specification for the email address input on our developer's site:

Email domain risk score

The email domain risk score is the risk associated with the domain of the email address (the part of the email address that comes after the @) alone.

A higher email domain risk usually indicates that we've seen suspicious activity on email addresses that use this domain across the minFraud network.

This could mean that a customer is using an email address from a provider that is prone to abuse or that they created an email domain for fraudulent activity. It could also mean that we don't see a lot of activity from this email domain, and the activity is not necessarily fraudulent.

If you see a higher email domain risk score than you would have expected for a transaction, you can check your transaction history to see if you normally do business with customers who have this email address domain. You could also try to verify the legitimacy of the domain, and see if it is commonly used by people in the geographic locations where you normally do business.

email_domain.png

The email domain risk score is displayed in the list of risk factor scores, in a blue modal called "Subscores," beneath the overall risk score in the transaction review screen on the account portal. Learn how to review transactions using the account portal.

The email domain risk score may be returned when you pass the email domain as an input to minFraud Factors. Read the API specification for the email domain input on our developer's site:

Email local part risk score

The email local part risk score is the risk associated with the local part of the email address (the part of the email address that comes before the @) alone.

A higher email local part risk score would usually indicate that a customer has an unusual email address.

This could mean that a customer is entering random numbers and letters for the local part of their email address because they are creating email addresses quickly in order to conduct fraudulent transactions. It could also mean that the customer simply has an unconventional local part of their email address.

If you see a higher email local part score than you would have expected for a transaction, you can compare the email local part to the customer's name (for example, j4n3d03 might stand for janedoe). You can also consider whether the format of the local part is common to the customers that you serve, whether because of regional or social habits.

email_local_part.png

The email local part risk score is displayed in the list of risk factor scores, in a blue modal called "Subscores," beneath the overall risk score in the transaction review screen on the account portal. Learn how to review transactions using the account portal.

The email local part risk score may be returned when you pass the full email address as an input to minFraud Factors. Read the API specification for the email address input on our developer's site:

This page was last updated on .

Was this article helpful?