Stripe has built-in fraud prevention rules for businesses. They are not all enabled by default, so you may consider enabling or disabling them according to your business needs.
To configure the rules, please log in to your Stripe dashboard, then go to Payments > Fraud & risk > Rules: https://dashboard.stripe.com/settings/radar/rules
Authentication rules
Stripe provides three built-in rules to dynamically request 3D Secure (3DS). The first rule is enabled by default, however, you may enable all three rules to improve the security checks/level.
Built-in rules to request 3D Secure: https://stripe.com/docs/radar/rules#request-3d-secure
Disputed payments and liability shift
The liability shift rule applies to payments that are successfully authenticated using 3D Secure. If a cardholder disputes a 3D Secure payment as fraudulent, the liability should shift from you to the card issuer.
Please find more details from the link below.
Block rules
Stripe has built-in block rules to allow you to block payments, these rules might not be enabled for your account by default. You may enable them to block payments if the CVC or postal code verification check fails.
Traditional card checks: https://stripe.com/docs/radar/rules#traditional-bank-checks
Review rules
Stripe provides rules based on the judgments of machine learning models. You may enable the built-in review rule to place payments into review if they are suspected to have an elevated risk of fraud.
Machine learning risk checks: https://stripe.com/docs/radar/rules#machine-learning-risk-checks
Radar for Fraud Teams
Stripe also provides the “Radar for Fraud Teams” service at an extra cost which allows you to customise your rules. For example, create a customised block list to block a specific email address or IP address.
Please find more details from the link below.
Radar for Fraud Teams: https://stripe.com/radar/fraud-teams
If you have any questions about setting the rules, please contact Stripe support.
Stripe Support: https://support.stripe.com/