Fake/Fraud order attack

  • Resolved roystonsimmons

    (@roystonsimmons)


    2 years, 9 months ago

    Hi,

    Hello, approximately two months ago, I came across a discussion regarding the occurrence of fake order attacks. Unfortunately, my website is currently experiencing a similar problem. Despite having activated AVS, CVV, and premium fraud settings, I’m still encountering a significant influx of 20 to 30 fake orders. These fraudulent attempts involve the use of fabricated credit card information to gain access to the payment gateway. Notably, my website’s checkout form incorporates a reCAPTCHA feature. However, a noteworthy challenge is that a certain bank, which does not support AVS, managed to circumvent these security measures. I’m in urgent need of a solution or guidance on how to effectively prevent these fake and fraudulent orders from appearing on my Braintree dashboard.

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Clayton R

    (@mrclayton)

    2 years, 9 months ago

    Hi @roystonsimmons

    Despite having activated AVS, CVV, and premium fraud settings, I’m still encountering a significant influx of 20 to 30 fake orders. 

    Did you enable the advanced fraud option within the Braintree plugin? That is located within the Advanced Settings tab of the Braintree plugin.

    Are the fake orders actually being process or rejected by the Braintree gateway? If they are being rejected, then that’s good because it’s preventing the payment from actually going through. To prevent a build up of failed orders in your WooCommerce dashboard, I’d recommend implementing some additional checks in your checkout process.

    1. You could install a plugin that blocks IP address that make too many requests to your site in a specific amount of time.
    2. Notify your hosting company and see if they have any suggestions on blocking offending IP addresses.

    Kind Regards

    Thread Starter roystonsimmons

    (@roystonsimmons)

    2 years, 9 months ago

    1. Yes, the Advance setting are enabled on the backend.
    2. And yes, few transactions are being rejected by Braintree, but then few are getting accepted too (after the person is doing many tries with different cards). I am not able to add screenshot here.
    3. I will look into the recommendations you provided too.
Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Fake/Fraud order attack’ is closed to new replies.