Explore Problems
Showing 262 of 6,914 problems · matching your filters
Bank of America Debit Card Compromised Four Times in Three Months
A Bank of America customer had their debit card compromised four separate times in three months, with the bank's only remedy being card replacement each time. There is no root cause investigation or proactive protection, leaving customers in a loop of account intrusion. The repeated failures indicate a systemic gap in fraud detection and real-time account protection.
Banks hold deposited checks for months with no transparency or resolution timeline
Customers report banks freezing check-deposit funds for extended periods without a clear timeline or consistent guidance to resolve the hold, in one case causing eviction. The funds-availability dispute process lacks accountability.
Crypto Exchanges Force-Liquidate Delisted Assets at Distressed Prices
When exchanges delist tokens, investors receive only cursory notice and a narrow withdrawal window that offers no viable sell venue, resulting in forced conversion at near-zero prices. Holders of illiquid assets have no meaningful way to protect capital during delisting. This structural flaw costs investors thousands and exposes exchanges to regulatory and civil liability.
Mortgage servicers give inconsistent, undocumented loss-mitigation info
After a foreclosure sale was legally vacated, a homeowner working through FHA loss-mitigation options received defective documents, contradictory answers, and discovered their mailing address had been changed without consent, blocking required notices from reaching them.
Wells Fargo Restricts Account for Fraud Alert Then Charges the Disputed Transaction Anyway
After a customer flagged an unrecognized transaction, Wells Fargo restricted their account and issued a new card — then processed the disputed charge anyway. The fraud prevention process caused double harm: account disruption plus no actual protection. Customers are left worse off for engaging with the bank's fraud reporting system.
FHA trial modification plans increase payments, then loss mitigation is denied
FHA mortgage servicers design trial modification plans that increase rather than reduce monthly obligations, pushing borrowers deeper into delinquency, then deny loss mitigation citing the failed trial plan — creating a structural trap that leads to preventable foreclosures.
The Web Is Built for Human Fingers, Not AI Agents
AI agents capable of autonomous work are blocked at every turn by human-centric web infrastructure: CAPTCHAs, browser-rendered UIs, 2FA flows, and modal-heavy signup gates that assume a human is present. This is a structural gap between agentic AI capability and the web stack it must operate on, creating a compounding bottleneck as agent usage scales.
AI Chatbots Hallucinate Bookings and Promises in Service Businesses
LLM-based customer service bots in high-ticket businesses (clinics, salons, restaurants) frequently hallucinate compromises, confirm impossible bookings, and promise nonexistent discounts because they are optimized for helpfulness rather than business rule enforcement. This creates liability, lost revenue, and damaged reputation.
Unbundled Admin Gaps in Professional Services Costing Revenue
Professional service firms in dental, legal, CPA, and property management lose significant revenue and time to repetitive admin tasks that off-the-shelf software handles poorly. Specific unmet gaps include missed-call text-back, prior authorization tracking, scope creep monitoring, and tenant communication logging. These businesses have budget and are willing to pay for focused, lightweight standalone tools.
Debt Collectors Report Accounts to Credit Bureaus Without Required Consumer Notification
Collection agencies place debts on consumer credit reports without providing the legally mandated written notification, preventing consumers from exercising their FDCPA right to dispute within 30 days. The resulting credit damage is difficult to reverse and consumers lack tools to systematically identify and challenge these violations.
Hardened self-hosted servers are compromised via unknown attack vectors with no forensic tooling
Self-hosters and small teams running hardened VPS configurations face server compromises from novel attack vectors — potentially kernel exploits or init system vulnerabilities — that bypass all standard defenses including disabled password auth, fail2ban, and locked root accounts. Post-incident forensics are extremely difficult without enterprise-grade SIEM tooling, leaving self-hosters unable to understand the attack vector or prevent recurrence. This gap between enterprise security tooling and self-hoster budgets is widening.
Hardcoded API keys and PII leaks in client-side code go undetected
Developers routinely accidentally embed API keys, tokens, and personally identifiable information directly in browser-accessible code repositories. Standard CI/CD pipelines and code review often miss these leaks before deployment. A local, privacy-first scanner that identifies credential and PII exposures without transmitting code to external services addresses a high-severity security gap.
Teams Outgrowing Spreadsheets Need Database-Like Tools with Permissions
Large organizations with 200+ employees struggle to manage complex data in spreadsheets. They need structured database solutions with spreadsheet-like interfaces, granular permissions, and file management capabilities.
No Unified SDK for Object Storage Across Cloud Providers
Developers must use separate, incompatible SDKs for each cloud storage provider (S3, GCS, Azure Blob, R2), creating vendor lock-in and requiring rewrites when switching or supporting multiple backends. A unified abstraction layer is missing in the JavaScript ecosystem. 229 HN upvotes validates strong developer demand.
Business automation pipelines silently fail with no reliable observability
Companies running critical automations via tools like Zapier, Make, or internal scripts lack reliable monitoring — failures are silent or produce subtly wrong data that is hard to catch. Existing solutions focus on infrastructure monitoring, not business process health. The gap causes real financial and operational harm when automations break undetected.
Sophisticated Bank Impersonation Scams Cause Large Unrecoverable Cash Losses
Fraudsters armed with detailed account transaction data convincingly impersonate bank fraud teams, directing victims through legitimate branch or ATM channels to extract large sums. Banks deny reimbursement by classifying these as authorized transactions despite documented coercion. The gap between transaction authorization mechanics and real-world coercion creates a victim accountability mismatch with no institutional safety net.
Mortgage Servicers Proceed with Foreclosure While Ignoring Documented Errors
Homeowners facing foreclosure find mortgage servicers issue loss mitigation denials based on inaccurate records, then ignore formal Notices of Error and appeals while foreclosure proceedings continue. Regulatory response timelines are too slow relative to foreclosure sale dates. There is no effective mechanism for borrowers to halt proceedings while servicer errors are being corrected.
Identity Theft Discovered Too Late During Mortgage Application
Multiple fraudulent accounts were opened using a consumer's identity and went undetected until a mortgage lender pulled their credit report. Existing credit monitoring failed to alert the consumer before significant damage was done.
SaaS Cancel Flows Produce Gamed Data Instead of Real Churn Reasons
SaaS companies lose customers without understanding why because static cancel flows are easy to game — users click random reasons or skip the feedback box entirely. Without real churn signal, product teams cannot fix the root causes. Dynamic, conversational cancel flows with AI trend detection can recover customers and surface actionable attrition insights.
Bank Phone AI Systems Block Access to Human Agents for Real Issue Resolution
Major banks including Bank of America deploy phone AI systems that intercept calls and route customers through automated flows that cannot resolve complex account issues. Customers who need a human agent face persistent gatekeeping with no clear override path. This forces customers to abandon service calls unresolved or use workarounds that should not be necessary.