We receive frequent false positive "Unwanted Access" alerts when users are on airplanes, trains and cruise ships. The geolocation is incorrect because it reflects the provider's location (e.g., USA) instead of the user's travel route (e.g., within Europe). For example, a user traveling from Portugal to Norway was flagged for a login from the USA via Panasonic's in-flight WiFi. Please use IP intelligence, like ipinfo.io 's API, to identify and tag these "transit IPs", to add context and reduce unnecessary alerts.
