Blocking Multiple Attempts on the same oder

  • Resolved Joe G.

    (@webgmclassics)


    4 years ago

    Does this plugin block multiple attempts to pay on a single failed order?

    We had a complex carding attack recently (rotating IP addresses, email, etc.).
    The attacker used the guest check out and exploited the payment gateway by trying thousands of cards on a single order.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author prasidhda

    (@prasidhda)

    Hi @webgmclassics,

    Yes, this plugin tracks the attempts on the single failed order and blocks the respective details (IP address, email etc). however, If hacker is rotating all those values, I suppose they will pass the blacklisting features of this plugin too.

    Thread Starter Joe G.

    (@webgmclassics)

    @prasidhda Thank you for the reply.

    Yes, the attacker was rotating several different data points.

    If an order status is set to cancelled, will WC still allow for payment attempts to be processed? If WC will not allow that, then a great feature to add would be: set order status to ‘canceled’ IF number of payment attempts > X. Putting a limit in place would at least prevent a single order from being abused.

    Plugin Author prasidhda

    (@prasidhda)

    hi @webgmclassics ,

    If an order status is set to cancelled, WC will not allow to process the same order. And this plugin will indeed the set the order status to “cancelled” after certain number (as set up in plugin setting) of failed attempts.

    Thanks

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Blocking Multiple Attempts on the same oder’ is closed to new replies.