Fraud requires reliance by the other party to its legal detriment. If I tell you my house is termite free when it's not, I'm a liar, but not guilty of fraud. If you then buy it believing me, then that's fraud. But if you independently discover the termites, but buy it anyway, that's not fraud because there is no reliance (although it might be attempted fraud, or covered by disclosure laws, etc).

If I tell you I'm Napoleon while handing you $10, that's simply not fraud.

I'm not sure it was fraud. The National Journal article said what they did was buy a prepaid Amex and use it to make donations online to both campaigns. The McCain campaign kicked it because it couldn't verify a billing address (because it's a prepaid card) while the Obama campaign evidently didn't check if they matched.

Assuming that neither donation exceeded limits or was from someone not eligible to donate, they wouldn't be fraudulent. They are just demonstrating a means that someone who is over the limit or not a citizen could fraudulently donate.

Assuming that neither donation exceeded limits or was from someone not eligible to donate, they wouldn't be fraudulent.

Even assuming such donations are illegal under campaign finance laws, that doesn't make them wire fraud. Who is being defrauded, in the event that the donor really does own the cards, really intends for the campaign to get the money, and really pays the bill at the end of the month?

Maybe Mark Kleiman can offer one of these "legal arguments" he seems so fond of.

It's not fraud - it is a breach of electoral finance laws by various donors (foreigners and Americans going over the limit). This breach is facilitated by the Obama campaign, in part by disabling the tools that are commonly used to prevent CC fraud. As I wrote earlier, on a very cursory reading, I don't think the Obama campaign broke the law (I don't think even a tacit understanding like this can be conspiracy, but I'd like to be wrong), but they put in place the tools and conditions to allow others to break the law and to make sure that there was little chance of the illegality being discovered later - and unless an illegality is discovered, they don't have to give back the money. As long as they do give back the money when and if it is discovered to be improper (unlikely with poor or no records), then the campaign isn't really in trouble, since you don't want to have a situation where a McCain supporter makes donations to Obama just to get them in trouble, or vice versa.

There is basically a loophole in the law that says donations under $200 don't have to be reported - that's just dumb. McCain and Hillary each track those smaller donations out of a sense of caution and self-serving pragmatism (McCain because he is Mr Campaign Finance Goodey-2-Shoes, Hillary because of past Clinton fundraising scandals). Obama is (I think) obeying the letter of the law while working to undermine and corrupt its spirit, and to help others break the law.

I hope that this was not the change we were waiting for?

In the end, I don't think it has made much difference; Obama isn't winning because of his massive pocketbook

He's outspending McCain on advertising 4 - 1 in many battleground states. You really think that isn't having an effect?

Really?

...the Republicans got caught in bed with a naked Financial crisis....Brilliant!!!

So when a 20 million dollar donation comes in from Rezko's Iranian friend not to worry right.

are we claiming that the banks are conspiring to help Obama in this matter?

We're claiming that whatever the banks are doing, the Obama campaign is forwarding charges to them with obviously fake names, but the McCain campaign is not.

If it costs the Obama campaign money to reverse a fraudulent donation, that's a "legal injury."

A while back, I set up a web payment process for a client and they did not want address validation. Why? Because there was a charge for address verification and they deemed it unlikely that someone would want to pay a bill with a stolen credit card.

I've done CC authorization stuff for years - the Address Verification Service (AVS) that is done over the internet is by default and encouraged to be as strict as possible. With card-not-present (all phone and internet) transactions the vendor, in this case Obama, is 100% liable for all fraud. This places all of the record keeping and risk burden on the vendor.

Obama could simply have not turned off the zip matching, or flagged those for review before processing, and prevented a whole host of issues. This proves we need to require more reporting requirements and record keeping on ALL donations.

Obama has proven that you can't trust a politician to do even the right thing when they don't need to do the wrong thing. He's violated the fundraising laws intent if not letter and done so when his opponent was limited to less than 1 month of his fund raising totals.

Obama: the hope, campaign finance violations, staffer vote fraud, political intimidation, lapdog media and change we deserve.

All the information that I have gathered indicates that this couldn't simply have happened by accident; you have to systematically uncheck all the security guards that prevent address verification. I don't read the sinister signs into this that others do--having worked in technology, I can easily imagine half-a-dozen scenarios in which a lazy tech overrode the security rather than actually fix some annoying bug. Nonetheless. Whoever is responsible should be fired.

Megan, this is rendered increasingly unlikely by the length of time that it has continued to be possible, and even more unlikely by the fact that when it was first revealed, the address checks were re-instituted for a short time and then removed again.

Is it possible, by Heinlein's Razor, this believe it's stupidity instead of actual purposeful malice? Yeah, I suppose.

But speaking as a computer security professional, I'd have to say it ain't easy.

Mike:

I offered up the verification to them. They declined. When I reflected upon it, I decided they probably knew what they were doing. Only a moron would use a stolen credit card to pay a monthly bill tied to their residence.

I am happy to say that I was incorrect, but this seems to me like a distinction without a difference.

Nice try, Jonah...er...Megan, but the real lesson here is that you--yet again--need to stop and think before you post something out of your...er...off the top of your head. (It should go without saying that, as with the unsubstituted post on hoaxes, Megan's opinion reflexively tilted Republican--yet again.)

Is there anything else which you're happy to admit you were incorrect about?

Mike - go easy - JonF is not a bad guy here.

rob - interesting, I guess that makes sense, since it is pretty traceable. In the Obama case, I'm sure there is also some fraudulent use of stolen cards or numbers, but I'd imagine it is pretty minimal, and if it happens i'm sure the reverse the charge.

Our concern is not some punk with a stolen card - I'm concerned about some upper middle class moveon type with a fist full of cards and some time to kill - easy to make hundres of $199 donations in a few hours.

What's the payoff for the fist-full-of-cards guy?

Dear Megan,

This message is going to be a bit technical, but if you're going to talk about these things shouldn't you know the facts?

I'm using authorize.net as my example because they're the most popular payment gateway. Here's their AVS (address verification service) documentation:

http://www.authorize.net/support/CNP/helpfiles/Account/Settings/Security_Settings/Fraud_Settings/Address_Verification_System_(AVS).htm

1. The only 2 pieces of information that get used in AVS are address line 1 and zip code. It is simply not possible under any circumstances to verify a credit card against a person's name at transaction time.

2. On the configuration page of an account each of those letters (BEGRSUYAWZN) has a checkbox next to it. To configure your account you simply check the boxes that you want to enable.

3. The purpose of checking any of the boxes is to minimize chargebacks so that you pay a lower transaction cost. A chargeback is when someone calls their credit card company and says they don't want to pay for the charge. In some businesses, like adult online services, this is a huge problem. In other situations, like collecting political donations, it's most likely a non-existant problem. *If you don't care about chargebacks there is no reason to check any of the boxes.*

4. It is against credit card security compliance rules to store credit card numbers. So there is no way, at transaction time, to check whether a given credit card number has been used above a certain dollar amount. That can only happen off line and after the fact.

5. In short, any auditing of credit card transactions to verify that they follow campaign finance laws can only happen at some point *after* the transactions have happened and the records can be analyzed. Let me emphasize that with all caps: IT IS TECHNICALLY IMPOSSIBLE TO VERIFY CREDIT CARD TRANSACTIONS AT TRANSACTION TIME FOR THE PURPOSES OF CAMPAIGN FINANCE LAWS.

Here's what you said:

"it should not be possible to charge something to a credit card without matching the name to the name on the credit card"

As stated above the "name on the credit card" does not exist anywhere in the payment system. What you think should not be possible is not only possible, it's mandatory.

"All the information that I have gathered indicates that this couldn't simply have happened by accident; you have to systematically uncheck all the security guards that prevent address verification. I don't read the sinister signs into this that others do--having worked in technology, I can easily imagine half-a-dozen scenarios in which a lazy tech overrode the security rather than actually fix some annoying bug."

I'm glad you don't read any sinister signs into this. But you're still using wingnut language. What kind of system do you need to systematically click a checkbox on a webpage? This has nothing to do with software or bugs and there's no security to "override." There's only a preferences web page with some boxes that you can check to minimize your chances of getting chargebacks.

"All the information I have gathered..." Please don't be a wingnut. Reading that paragraph made me sad, for real. If you need a source for accurate internet technology information in the future feel free to email me. Peddling ignorance is very unbecoming.

Megan:

From what I remember, you did a bloggingheads episode with Kleiman. I don't think you gelled very well with him.

"brooksfoe,

What crime have otherwise legitimate donors using their own credit cards but fake names committed?"

Um, what is violating election finance law by exceeding the maximum limit per person? How about donations by non-US citizens?

I thought that Dems were supposed to be smart - for such geniuses you folks sure are slow on the uptake - it's almost like you don't want to understand . . .

Um, what is violating election finance law by exceeding the maximum limit per person? How about donations by non-US citizens?

Yes, well, the people you mention would not qualify as "otherwise legitimate," now would they?

I suspect that there is probably a law requiring you to use your real name for disclosure purposes, but if anonymous donations under $200 are allowed, I'm not sure that a psudeonymous donation would be illegal.

My point, repeated often, is that contributing $5 under a fake name, provided you own the card and don't intend to dispute the charge, is probably not illegal, and definitely not fraud. So Kleiman is wrong.

I didn't say I didn't think it couldn't be more transparent. But I don't think it sounds like there's been a lot of abuse. We'll see if anything comes of it. It kinda surprises me to see so many calling for more regulation and transparency on this site. I'm all for it, though.

I just hope those big-government 'conservatives' don't look at this as an opportunity to over-regulate.

I think David Mathers has said enough to prove that this is a non-issue.
This sort of initial "Weeding out" of ilegal donors by matching address to billing address not only is insufficient, but irrelevant given that the real auditing goes on after the fact. Marc Ambinder searched through McCain's data base and found plenty of fishy donors.

In any case, lets also not be naive here:
McCain was just as secretive about his donations as Obama up until the point when it became clear that Obama would vastly outraise him

http://www.nytimes.com/2008/07/11/us/politics/11bundlers.html?_r=1&ref=politics&oref=slogin

Then, of course, it became politically interesting for him to raise that issue, since no matter how many fishy donors McCain had, Obama was likely to have more simply because he had more donors overall.

By the way, open secrets ranks obama as having a higher "quality of disclosure" than McCain.

So much for that talking point:
http://www.opensecrets.org/pres08/scoffall.php?cycle=2008

David Mathers,

You know, you left one tiny, but really useful bit of information out of your diatribe. Of course, the problem with that tiny bit of information is that it completely destroys your claims:

outsidethecode.com/faq/mid_qualified_rate.aspx

A Mid-Qualified rate fee is the best rate that a merchant processing credit cards online can get. Any online transaction is going to have some risk associated with it compared to card present transactions. Because the card is not present, the processing rate is going to be higher.

In order for an online retailer to get the Mid-Qualified rate they must use AVS and AVS must pass.

Now, you are correct, AVS only checks addresses. However, it would be embarrassing for the Obama campaign to have 500 $199 donations coming from the same address. So letting people enter fake addresses makes things much easier.

And, of course, you have to have a US Credit Card to pass AVS. So requiring AVS would cut down on the number of illegal foreign donations Obama received.

As for AVS charges, MasterCard does AVS for free. Some others may charge for it. However, consider this:

www.merchantseek.com/merchant_accounts_rates.htm

Address Verification System (AVS): $0 - $0.05 per transaction

The AVS service checks to see that the billing address given by the customer matches the credit card. If you opt not to use AVS, VISA and MasterCard will not support your transactions and will charge you an additional 0.17% to 1.25% on those sales.

Let's assume Obama got the 0.17% rate increase. His average donation in September was $86. He paid an extra 15 cents on each order, to "save" 5 cents. By disabling AVS, best case is he lost money on every donation > $30.

Big deal? Well, 0.17% of $150 million (his take last month) is $255,000. Having AVS on would have cost, at most, a third of that.

You don't lose hundreds of thousands of dollars on an "innocent mistake" that you had to work hard to get done.

JonF

Did you actually read any of the comments concerning how this process actually works?

So I guess requiring the AVS information would stymie Obama's Gazan donations? Well, that would be a tradgedy given the guge community of American Expats living in Gaza.

"...having worked in technology, I can easily imagine half-a-dozen scenarios in which a lazy tech overrode the security rather than actually fix some annoying bug."

Have you worked in technology in the last 10 years?

The lazy tech worker in question, had administrator rights over the fundraising website of a major US candidate (with revenue and transaction activity that dwarf most online retail outlets). A candidate whose managerial judgment is one of the primary reasons we are told we should vote for him. A candidate whose only meaningful qualification for the presidency is his likely successful run for president. If said lazy tech worker was trying to fix a bug, unchecking all the security settings as the "fix" implies that the person wasn't the best person to hire. You are being way too kind giving them the benefit of the doubt.

In the world of Sarbanes Ox and Verisign, no person who would administer such a system would be unaware of the security implications. There is an entire cottage industry dedicated to roasting company's like Microsoft for lack of security and any tech worker in system administration knows that security is a bit important in 2008. Given the load on this system, administration is not being done by light weights.

This was not ignorance or trying to fix a bug. This was a straightforward exercise of "its better to ask forgiveness than permission." Given the free ride by the news media that the Obama campaign enjoys, floating by on some fraudulent transactions is a perfectly rational choice for the Obama campaign to make. If they were to get caught, they simply fire the lazy tech worker in question, which will be a display of Obama's humility and leadership. Or something. But until they get pressed, its a wide open insecure system that would get the heads of any public corporation (as opposed to their lazy tech workers) thrown in jail if they were as "careless."

"Republicans got caught in bed with a naked financial crisis."

Chris Dodd (against stricter regulation of Fannie and Freddie) is a Republican?

Maxine Waters: "Through nearly a dozen hearings, we were frankly trying to fix something that wasn’t broke." is a Republican?

Gregory Meeks: "I’m just pissed off at OFHEO [the regulators trying to warn Congress of insolvency at the GSEs], because if it wasn’t for you, I don’t think we’d be here in the first place. … There’s been nothing that indicated that’s wrong with Fannie Mae, Freddie Mac has come up on its own … The question that then comes up is the competence that your agency has with reference to deciding and regulating these GSEs." is a Republican?

Lacy Clay: "This hearing is about the political lynching of Franklin Raines." is a Republican?

Barney Frank: "I don’t see anything in this report that raises safety and soundness problems." is a Republican?

Rahm Emmanual, who served on the Board of Freddie Mac after leaving the Clinton White House, is a Republcian?

And, who knew? The four cosponsors of Federal Housing Reform Regulatory Reform Act in 2006 -- John McCain, Chuck Hagel, John Sununu, and Elizabeth Dole -- these heroes are all Democrats!

From a letter (May 5, 2006) demanding action concerning the looming crises with regards to Fannie and Freddie:
"...vitally important that Congress take the necessary steps to ensure that [Fannie Mae and Freddie Mac]...operate in a safe and sound manner.[and]..More importantly, Congress must ensure that the American taxpayer is protected in the event that either...should fail."

This letter was signed by John McCain, Chuck Hagel, John Sununu, Elizabeth Dole, Chuck Hagel, Wayne Allard, Jim Bunning, Rick Santorum, Conrad Burns, Larry Craig, Jim Inhofe, Jeff Sessions, Mike Crapo, Jon Kyl, Mel Martinez, John Thune, John Ensign, Jim DeMint, Tom Coburn (and two others whose signatures I can't read) -- 20 signers in all -- I had no idea they are all Democrats!

Yep, those Republicans sure got themselves caught in bed with a naked financial crisis, all right.

The only thing the Republicans got caught with in regards to the financial meltdown was a media so intent of fixing an election that they report the Newspeak Goodfact from the DNC Ministry of Truth rather than, you know, the actual truth: Republicans, including John McCain and George W. Bush, tried to fix the problems at the heart of the financial mess, and Democrats played see-no-evil obstructionist.

Sad to see certain Atlantic columnists fit the Orwellian mold, as well.

Kleiman should know that people have been prosecuted for doing things like this (mainly when making "joke" voter registrations), so of course his statement would have been taken that way.

That's the truth, journalists do this all the time. But when a journalist employed by a newspaper does it, it's "free speech" and "investigation". When a blogger or concerned citizen does it, it's a "crime". Ridiculous.

And yes, I get more and more worried when the Obama campaign doesn't respond, or instead uses ad hominem, attacking the messenger as Kleiman did. Or responding to concerns about Acorn with "you're just trying to suppress votes!" Hey I live in Chicago I'm no naive fool, I know Democrats are just as likely to engage in crime as Republicans because I've seen it my whole life.

I wish Obama would reassure me that he is concerned and will prosecute any voter tampering no matter who is doing it.

"Fraud" was a word before the lawyers declared that they owned it. We all know what it is. This is fraud.

According to the Washington Times, Obama's campaign has received 4.6 M from overseas.

http://gopachy.com/foru/comments.php?DiscussionID=37716

Your comment "Obama isn't winning because of his massive pocketbook, but because the Republicans got caught in bed with a naked financial crisis." is ironic. You can't make a reasonable election decision if you don't know who or what to blame.

Which is more believable:
() All of the big banks together, along with the GSE's (Government Sponsored Enterprises) Fannie Mae and Freddie Mac, decided that they could make money by making or buying risky loans, against government advice and regulation, and contrary to all past banking practice, OR
() They followed government policy, regulation, and incentive to make loans and sell them to Fannie and Freddie, under the loan terms that Fannie and Freddie found acceptable.

The current housing and financial crisis was produced by the Government, by Rep. Barney Frank (D, MA, Chairman of the Financial Affairs Committee) and Sen. Christopher Dodd (D. CT, Chairman of the Senate Banking, Housing, and Urban Affairs Committee), and supported by most of Congress.

The current cry is "not enough regulation", by the congressmen and senators who were in charge of the current regulation. Where is the deregulation that fed the current crisis? Fannie Mae and Freddie Mac were directly regulated by the Congress through a special regulatory authority OFHEO reporting to the House Financial Affairs Committee (Chairman Barney Frank presiding for the last two years). The claim is that people calling for less government and more freedom are misguided -- they just don't understand the threat of big business and Wall Street.

The failure of "regulation" in this financial crisis is the failure of Congress to regulate its own desire to buy votes with easy mortgages. The financial markets did just what most of Congress wanted. They lent money to Fannie Mae and Freddie Mac (off budget) so that FanFred could do the bidding of Congress. The financial markets traded in the mortgage securities that Fannie and Freddie were buying and selling in the market.

Congress is now saying "Yes, FanFred offered to buy up those risky loans, but you mortgage lenders should have had restraint and not made them so risky. How could you expect FanFred (or Congress) to look at the loans we were buying to see if they were good? You are greedy, bad men."

Most of the risky loans were bought by FanFred during the last two years, when Democrats were in majority control of the oversight committees that held hearings, and then ignored the testimony of their financial regulator OFHEO.

These two companies ruined world financial markets with the power and credit to buy up 90% of all U.S. prime mortgages and 20% of all subprime. Fannie and Freddie together guaranteed $5.4 trillion of housing debt (that is $5,400 billion, or $5,400 thousand million). Compare that to the previous $5.5 trillion budget debt of the US.

Many big banks jumped on the bandwagon. They lost sight of the risk in holding subprime loans. Hey, they could always sell their inventory to Fannie and Freddie. Except, when home prices fell a little, they couldn't sell these loans to anyone.

The market value of subprime loans fell in half when Fannie and Freddie collapsed and could not support that market with its increasing borrowing and purchases. That caused massive losses for institutions worldwide holding the other 80% of subprime mortgage bonds.

Congress ran Fannie Mae and Freddie Mac into the ground, plucking presents along the way. Congress set up Fannie and Freddie, took full responsibility by effectively (but unofficially) guaranteeing repayment of its debts, removed it from private market discipline, staffed it with the highly paid political elite, funded it through massive private borrowing outside of Government budget accounts, commanded it to do risky business below usual standards, restricted its regulation to a special office set up by Congress (OFHEO), and then ignored that regulator.

Any opposition came from some Republicans and the Bush administration, who were ineffective.

Blame the corruption of Congress, mostly the Democrats. They assumed oversight of a huge off-budget operation to grant risky loans, and ignored all corruption and warnings.

This is a failure of IN PLACE regulation, actively suppressed by congressional committees who looked the other way, because it was in their political interest for Fannie and Freddie to do just what they were doing. Their motto was "So far, so good".

Andrew Garland
EasyOpinions

Michael said: "So when a 20 million dollar donation comes in from Rezko's Iranian friend not to worry right."
that's right, bucko. as long as it comes in 200 bucks at a time. but not to worry, no doubt the obama admin will look into allegations of fraud very thoroughly once the election is over :)

The fact that the crisis clearly began after GW took office and before the 2006 election might have something to do with how the public assesses who to blame.

As a lawyer, I have to say it would be very interesting to haul before a grand jury all the people who put the Obama web site together and ask them what they did and why. It's possible that this was all an innocent mistake. But having read the technical explanations up thread, it looks to me like a deliberate effort to faciliate illegal contributions, which might even add up to a RICO violation. The way to find out is through a grand jury investigation. Let's hope that the Attorney General appoints a special prosecutor to investigate here.

Greg Q:

It is possible that, as Mr. Mathers and I stated, that the AVS check is being done, but that a particular result is not being flagged as fraud.

The Republicans got caught in bed with a naked financial crisis? And I thought you were an economist. So it was the just the evil Republicans whilst Barney Frank, Chris Dodd, Maxine Waters, Franklin Raines, et al, are blameless.

That's objective of you. I guess blogging for the Atlantic is close enough to the MSM that I shouldn't be surprised ... but I am disappointed.