Yeah... any e-commerce system with significant volume's likely to end up with a deny-list for basically all these sorts of services. You lose one real order for every 1,000 fraud attempts, at worst. Easily worth it.
Similar reason lots of US servers used to (? still do ?) block entire IP blocks representing large parts of Asia. If 1% of your legit traffic is coming from those blocks, but 95+% of abuse, brute-force, and exploit attempts, it's a no-brainer to just blackhole them, unless you're at such a huge scale that 1% of legit traffic is still a very large number in absolute terms.
Similar reason lots of US servers used to (? still do ?) block entire IP blocks representing large parts of Asia. If 1% of your legit traffic is coming from those blocks, but 95+% of abuse, brute-force, and exploit attempts, it's a no-brainer to just blackhole them, unless you're at such a huge scale that 1% of legit traffic is still a very large number in absolute terms.