Explore Problems
Showing 5,535 of 6,862 problems · matching your filters
Banks denying fraud claims when scam victims authorized the charge
Consumers defrauded by sophisticated impersonation scams — where attackers had PII from the original transaction — find their fraud claims denied because the charge was technically "authorized." Card issuers treat authorization as proof of legitimacy regardless of deceptive circumstances. This leaves victims of social engineering with no recourse through standard chargeback processes.
Bank Impersonation Scams Exploit Zelle for Irreversible Fund Theft
Fraudsters impersonating bank fraud departments instruct consumers to make Zelle transfers to recover allegedly stolen funds, causing the actual theft. Banks refuse to reverse these payments despite clear evidence of social engineering. The combination of real-time payment finality and inadequate bank fraud detection creates an unaddressed consumer protection gap.
AI agents can leak credentials without a security checkpoint
AI agents operating autonomously can inadvertently expose sensitive credentials during task execution, with no built-in guardrail to catch this before damage occurs. A builder created a checkpoint tool after experiencing this firsthand, highlighting a systemic gap in agentic AI security tooling.
Small Businesses Cannot Afford Security Guidance or Risk Assessment
Small businesses routinely handle sensitive customer data without any security program, policy, or expert guidance because enterprise security consulting is priced out of reach. Without a dedicated CISO or consultant, SMBs have no way to prioritize risks, respond to incidents, or meet client security expectations. A gap exists between free generic checklists and expensive enterprise compliance tools.
Netlify Takes Down Live Sites (Not Just Deploys) When Credits Expire
Netlify penalizes free-tier users by taking down live sites entirely when deploy credits run out, with no warning and no way to purchase credits without upgrading to paid plans. Two-factor authentication bugs can then lock developers out of their own accounts with no recourse. This creates a developer hostage scenario where the only escape is paying or losing access permanently.
Intercompany Matching and Eliminations Consume 3-5 Days of Every Financial Close Cycle
Multi-entity finance teams spend 3-5 days per close cycle manually matching intercompany transactions and performing eliminations across multiple rule types. This bottleneck delays financial reporting and creates significant error risk, with no purpose-built AI automation addressing the full workflow.
Banks Lack Adequate Fraud Reversal for Wire Transfers Initiated via Hacked Devices
Consumers whose computers are compromised and used to initiate unauthorized wire transfers face inadequate bank fraud recovery processes. Banks treat these as authorized transactions despite evidence of computer compromise, leaving victims with no recourse for significant financial losses.
Small businesses waste hours answering repetitive customer questions
Small business owners repeatedly answer the same customer questions weekly, consuming disproportionate time that should go toward core operations. The pain is universal across retail, services, and trades — any customer-facing SMB faces this. Easy-setup FAQ automation with genuine SMB-friendly UX remains underserved despite crowded tooling.
Lender Falsely Claims Confirmed Payments Were Reversed, Demands Months of Repayment
An auto lender's system records show payments as reversed despite the borrower having confirmed bank withdrawals showing the funds left their account. The lender demands repayment of three months as overdue without being able to reconcile the data mismatch. Consumers are left unable to prove payment to a lender whose internal records contradict verified bank statements.
Allstate Accepts Premium Payment But Silently Fails to Reinstate Canceled Policy
A customer whose auto insurance was canceled submitted a reinstatement payment that Allstate accepted without activating coverage or notifying the customer of the failed reinstatement. The customer continued to receive insurance cards showing a future expiration date, creating a false sense of coverage that persisted until an accident revealed they had been uninsured for months. The silent processing failure combined with misleading card issuance represents a critical gap in policy status communication that creates direct financial and legal harm.
FHA trial modification plans increase payments, then loss mitigation is denied
FHA mortgage servicers design trial modification plans that increase rather than reduce monthly obligations, pushing borrowers deeper into delinquency, then deny loss mitigation citing the failed trial plan — creating a structural trap that leads to preventable foreclosures.
AI systems leak user data through indirect prompt injection
LLM-integrated applications can expose user data to third parties even when users provide no malicious input, due to prompt injection via untrusted content or model memorization. This is a structural vulnerability in how AI is embedded in SaaS products. Every team deploying LLMs without robust output filtering is at risk.
African developers blocked from AI APIs by Stripe-only payments and regional access barriers
Developers across Africa cannot access major AI APIs due to Stripe's limited African card support, regional access blocks requiring VPN workarounds, and high minimum payment thresholds. The barrier is payment infrastructure, not capability or demand. As Africa's developer population grows rapidly, the exclusion from global AI tooling compounds disadvantage.
Subscription charge continues after bank-confirmed payment method removal
Consumers remove payment methods through bank customer service but merchants retain pull authorization and continue charging. Bank confirmation of removal does not revoke merchant-stored payment credentials. The subscription economy lacks a reliable consumer-side cancellation enforcement mechanism.
Users Want Capable AI Without Cloud Subscriptions or Internet Dependency
Recurring subscription costs and mandatory cloud connectivity frustrate users who want reliable AI tools they can own outright. Existing local AI options like Ollama require significant technical setup, leaving non-developers without a practical offline alternative. Demand is growing as subscription fatigue intensifies across the consumer AI market.
Fraudulent Debt Collection Scams Exploiting Personal Data
Scammers impersonating legitimate debt collectors use personal information to threaten consumers with fabricated legal consequences. Victims are pressured into payment for debts they never incurred, with callers refusing to provide debt validation as required by law. Regulators and financial institutions lack effective real-time verification tools to stop these schemes.
Bank tellers processing large cash withdrawals without identity verification
Bank employees allow unauthorized individuals to withdraw thousands in cash without checking ID, leaving account holders with no in-branch security backstop. Once cash is handed over, banks have no recovery mechanism and often refuse to accept liability. This physical security failure exposes customers to insider-facilitated theft.
Banks Deny Valid Fraud Claims Without Proper Investigation, Leaving Victims Without Recourse
Consumers experiencing identity theft and unauthorized account openings face a systemic failure when banks deny fraud claims without requesting supporting evidence or providing case tracking. The lack of transparency and proper escalation paths leaves victims unprotected despite having legitimate claims.
TransUnion Violates FCRA by Maintaining Inaccurate Credit Report Data
TransUnion and other major credit bureaus violate the Fair Credit Reporting Act by maintaining inaccurate information that directly harms consumers' access to credit, housing, and employment. The bureau dispute resolution process is inadequate, with bureaus rubber-stamping furnisher data without conducting meaningful investigations. Systematic FCRA enforcement tools that identify violations and generate regulatory complaints at scale could shift the power dynamic.
Scammers Impersonate Debt Collectors and Threaten Fraudulent Lawsuits
Fraudsters posing as debt collectors call consumers from spoofed local numbers demanding immediate payment under threat of fabricated lawsuits, targeting people with actual past debt to add credibility. Victims cannot distinguish real collectors from scammers when both use high-pressure tactics. The growing sophistication of collector impersonation scams exploits real debt anxiety and FDCPA ignorance.