Fraud Notification
This document describes how to receive and process fraud notifications. Onerway pushes fraud alert information in real-time via Webhook to help merchants promptly identify and handle potentially fraudulent transactions, reducing chargeback risks and financial losses.
Feature Overview
The fraud notification service provides:
- Real-time fraud alert information push
- Detailed transaction and fraud type data
- Quick identification of high-risk transactions
- Chargeback status and refund status information
- Support for timely risk control measures
Notification Configuration
To receive fraud notifications, merchants need to configure a Webhook URL in the Onerway merchant dashboard. The system will push fraud alert information to this URL via HTTP POST. Configuration steps:
- Log in to Onerway merchant dashboard
- Navigate to "Developers" > "Notification Settings"
- Configure the "Fraud Notification" receiving address
- Test that notification reception works properly
Fraud Type List
Fraud Types
The following are common fraud types for merchant reference:
Lost- Lost cardStolen- Stolen cardNRI- Never received cardFraud Application- Fraudulent applicationCounterfeit- Counterfeit cardMiscellaneous- Other typesFraudulent Use of Account Number- Fraudulent use of account numberCard Not Present Fraud- Card not present fraudAccount Takeover Fraud- Account takeover fraudFirst-Party Fraud- First-party fraudBust-out Collusive Merchant- Bust-out collusive merchant
Notification Example
{
"notificationId": "123456762",
"fraudType": "Card Not Present Fraud",
"createTime": "2025-04-30 10:33:17",
"originTransactionId": "1907624215008641024",
"txnAmount": 20.00,
"cardBrand": "PIX",
"chargebackStatus": 0,
"refundStatus": 0,
"merchantNo": "800550",
"sign": "6bf3a6260ec5794031beace10c46dd7e09d4f58c4086a2e314cdb235cb9aa647"
}2
3
4
5
6
7
8
9
10
11
12
{
"20000"
}2
3
Notification Parameters
| Parameter | Type | Length | Required | Signed | Description |
|---|---|---|---|---|---|
notificationId | String | / | Yes | Yes | Unique identifier for fraud notification |
fraudType | String | / | Yes | Yes | Type of fraud detected. For a common list of fraud types, refer to the Fraud Type List section |
createTime | String | / | Yes | Yes | Notification creation time. Format: |
originTransactionId | String | 20 | Conditional | Yes | Original transaction ID from Onerway |
txnAmount | String | / | Yes | Yes | Order amount after conversion to settlement currency |
cardBrand | String | / | Yes | Yes | Payment method (card brand), such as: |
chargebackStatus | String | / | No | Yes | Chargeback status:
|
refundStatus | Number | / | Yes | Yes | Refund status:
|
merchantNo | String | 20 | Yes | Yes | Merchant number assigned by |
sign | String | / | Yes | No | Digital signature string for request verification. Please refer to Signature for signature generation method. |
Notification Processing Flow
Notification Receipt Confirmation
Important Notes
- Ensure your notification receiving server is stable and reliable, capable of receiving notifications
24/7 - After receiving a notification, return
20000to indicate successful receipt - If notification sending fails, the system will retry according to the following strategy:
- Total of 6 attempts
- Initial sending interval of 5 seconds
- Each sending interval grows exponentially (doubling each time)
- Maximum sending interval of 60 seconds
- Sending interval sequence: 5s → 10s → 20s → 40s → 60s
- Notification content should be treated as confidential information, properly stored and processed
- Recommend saving all received notification records for subsequent tracking and analysis
Notification Signature Verification
To ensure notification authenticity, merchants should verify the signature of received notifications:
- Extract the
signfield from the notification - Follow the signature verification logic in Transaction Notification to calculate signatures for other fields
- Compare the calculated signature with the
signin the notification - If inconsistent, reject processing of the notification
Fraud Risk Handling Recommendations
After receiving fraud notifications, merchants should take different measures based on risk levels:
Handling Strategies
- High-risk Transaction Processing
- Immediately suspend order shipment or service provision
- Consider proactively initiating refunds to avoid subsequent chargebacks
- Add customers to risk monitoring lists
- Preserve relevant transaction evidence
- Account Security Measures
- Consider implementing temporary security restrictions on involved accounts
- Require users to re-verify their identity
- Check accounts for other suspicious activities
- Subsequent Prevention
- Analyze fraud patterns and adjust risk control rules
- Enhance verification requirements for similar transactions
- Consider implementing additional verification for specific payment methods or regions
Important Considerations
Important Notes
- Ensure Webhook receiving servers are stable and reliable to avoid missing notifications
- Verify the signature of each notification to prevent forged requests
- Implement idempotent processing to avoid duplicate processing from repeated notifications
- Transactions with chargeback status
1should be prioritized to reduce potential losses
Best Practices
- Establish dedicated fraud notification processing workflows and teams
- Prioritize high-risk transactions, especially high-value transactions
- Save all notification records for subsequent analysis and auditing
- Promptly initiate full refunds for suspicious transactions to reduce chargeback risks
- Establish comprehensive transaction documentation management systems
- Regularly analyze fraud data and trends to adjust risk control strategies
- Consider using machine learning models for automated risk scoring