Comment by AnotherGoodName
8 days ago
This is often due to network setup. If you're behind NAT where there's many users behind a single IP address you'll be hit.
Eg. Many cell phone providers are 100% behind NAT for IPV4 internet. Corporate networks almost 100% likely to hit this too. VPNs are straight up almost always flagged for further authentication.
A 'fun' thing that often happens to me is purchasing online via credit card at work and then going to use the CC later that day in stores only to be denied since that's likely fraud since you were in another location completely a few hours ago according to IP location (work routes everything via a datacenter on the other coast).
For me specifically, I do believe this is a major part of it. However, if my options are to use a VPN or the service, but not both, I'm more inclined to pick the VPN and say screw the service, I just will opt out of using it. There's no real reason that a sufficiently sophisticated network/security team at a large company can't differentiate between commercial VPN users and "bot" traffic. It's just laziness/incompetence. Sufficiently advanced bots use residential proxies anyway and it really isn't difficult to go down that road.
Cell tower/provider is a big part I think from my own experience; I'd get constant captchas and rejects only when near one specific tower at work, which happened to be right over a fedex ground building, take that how you will...
> If you're behind NAT where there's many users behind a single IP address you'll be hit.
Doesn't this describe the vast majority of networks in the world?
They likely mean CGNAT specifically