Description

I am reporting suspected coordinated SaaS fraud and payment-token misuse involving Spocket (Innovation Labs Inc.) and associated domains Alidrop.co, Felex.co, and Stylesi.co. I believe these domains act as SaaS shell companies running a backlink-and-payment relay network scheme. How the Scheme Operates 1. Store creation via AliDrop / Felex / Stylesi (Innovation Labs ecosystem). Users connect Stripe for payments and authorize limited access. That layer lets them retain tokenized payment data and checkout permissions. 2. Exploitation via hidden “link insertions.” Each connected store becomes a host for affiliate or SaaS routing. Links run through Spocket’s backend, Felex, or SEO networks, generating micro-revenue from crawlers, customers, or ads. In practice, it turns verified merchant profiles into passive trust nodes for their network. 3. User data sustains legitimacy. User Stripe merchant ID, domain reputation, and verified tokens raise the trust score for linked domains. They avoid deleting user data because live tokens keep their link economy active. Key Indicators Persistent Stripe connection after cancellation. Cross-domain billing between AliDrop, Felex, and Spocket. Support routed via Innovation Labs / Intercom, masking shared backend. Timeline of charges (via Stripe): 1. 3 Sep 2025 – $49.99 USD Stylesi.co 2. 13 Sep 2025 – $109.99 USD Alidrop.co (Empire plan) 3. 4 Oct 2025 – $109.99 USD duplicate Alidrop.co 4. 14 Oct 2025 – $39.99 USD Alidrop.co after cancellation Multiple reps (“Kevin,” “Leah” – Innovation Labs Inc.) confirmed data removal, yet billing continued. Dashboard was silently downgraded before last charge, triggering new billing cycle. All messages came from innovation-labs-inc.intercom-mail.com, routed via Mailgun IPs (143.55.229.125 / .140) and SparkPost (192.174.84.113) — confirming shared infrastructure. Invoices show Felex.co / Alidrop.co, not Spocket, revealing alias storefronts. Stripe automatically linked stored tokens across domains, enabling new subscriptions without reauthorization — suggesting API misuse and a potential PCI DSS / Stripe Data Policy breach. Supporting Pattern: Dozens of Trustpilot complaints describe identical unauthorized billing, duplicate charges, and being redirected between these entities. Requested Action: Investigate shared Stripe merchant + API token environment between Innovation Labs Inc., Spocket, Felex.co, Stylesi.co, and Alidrop.co for possible recurring-billing fraud, API abuse, and token misuse.