Multiple orders attack

Hi @kimaldis

Thank you for reaching out!

I can only imagine how frustrating this is to get all these spam orders!

In general, sites and stores can indeed trigger scammers and spammers, and that is especially true when your site starts to grow. If you want extra security for your store, I would suggest a few things you can start with to prevent spammy orders:

• Update your WooCommerce to the latest version for better security
• You could add a Terms and Conditions checkbox. It depends on if the thing doing the spam is checking for that field, but similar to ReCaptcha, it needs to be manually clicked before trying to process: https://woocommerce.com/document/configuring-woocommerce-settings/#terms-and-conditions
• You can also use our WooCommerce Anti-Fraud extension, which will help you pick up fraudulent transactions and catch them as they happen.
• reCaptcha for WooCommerce is another extension that will help prevent spammy orders.

I also recommend the best practices mentioned in the below articles:

• How to prevent spam and fake orders in WooCommerce
• Managing Fraud Orders in WooCommerce

And finally, is there a quick way of deleting several thousand customers and failed orders, without deleting the legitimate ones

You can use the Bulk actions option to delete failed orders and users.

For the failed orders, you can navigate to WooCommerce > Orders > Failed and select the orders you want to delete and then select Move to Trash > Apply.

For the customers, you can delete them from WooCommerce > Users > All Users page.

I hope this helps.

Brilliant answer. Thanks very much.

Hi @kimaldis

Brilliant answer. Thanks very much.

You are welcome! ??

I am marking this thread as resolved, but please let us know if any additional issues arise!

Thank you!

There doesn’t seem to be a way to delete users in the Woocommerce user page?

Hi @kimaldis

Please navigate to WP Admin > Users > All Users > Customer and then select Delete and click on Apply button as shown in this screenshot: https://d.pr/i/TZYxGz

Let us know how this goes.

I’m talking about WooCommerce customers here. I have 153 rows of customers under WooCommerce->customers but only 13 WordPress users. There’s nothing in the Customer page that lets me to delete customers.

Looking through the timeline of this event, it looks as though a very large number of purchases was made in only a few minutes. I have 3,747 new orders accepted in less than 2 minutes. Doesn’t WooCommerce check for this kind of thing when orders are created?

Hi @kimaldis

I’m talking about WooCommerce customers here. I have 153 rows of customers under WooCommerce->customers but only 13 WordPress users. There’s nothing in the Customer page that lets me to delete customers.

Can you please share with us a clear screenshot of what you see on your end so that we could address you more effectively?

If you don’t already have a screenshot service installed, you can try https://snipboard.io or https://skitch.com/. You can share the direct link to the image as a response to this topic.

Here’s how it shows on my end:

Image Link: https://snipboard.io/QIaRtH.jpg

Looking through the timeline of this event, it looks as though a very large number of purchases were made in only a few minutes. I have 3,747 new orders accepted in less than 2 minutes. Doesn’t WooCommerce check for this kind of thing when orders are created?

Orders are created when a customer completes the checkout process. As mentioned by Rafy, you could follow the best practices above in order to prevent spam and fake orders on your site.

Again, you’re showing me the WordPress Users page, where I have 10 users. I’m concerned about the page shown at WooCommerce->Customers which shows over 3000 users

first image shows my User page, second two show top and tail of WooCommerce->Customers page:

https://www.dropbox.com/sh/vcwt1o6ohblex4l/AAAsueB531SRLiQwz-ZNm_cUa?dl=0

sorry, “WooCommerce->Customers which shows over 3000 customers“

Hi @kimaldis

Thank you for providing the screenshots, these are really helpful! ??

In order to delete Customers on your site, please go to WooCommerce > All Users > Customers.

Image Link: https://snipboard.io/7ympqr.jpg

Based on the screenshots you provided here, these newly registered spam customers have the same name but different email addresses. In addition, they do not have any orders on your site.

Image Link: https://snipboard.io/AgSnfM.jpg

Aside from the helpful tips mentioned above, you could check these blogs for helpful tips to avoid spam registrations on your site:

– 5 ways to stop spam orders and registrations in WooCommerce
– How To Stop Spam On Your WooCommerce Store

All 10 of the customers listed in the WP Users->customers page are legitimate customers that were added long before this attack took place. I should not delete these.

None of the customers “asdas asdas” listed in the WooCommerce customers page have equivalent users in the WP Users page.

the reason none of the customers listed in the WooCommerce->Customers page have orders is that I’ve delted all all suspicious orders.

Hello,

I understand your point, if you would like to delete customers in bulk, you can check this thread below, it includes a way to delete the customers with no orders from the database:

How do I delete customers with no orders?

Please note before running this workaround, please create a backup of your data.

Also, you can check this:
How to Bulk Delete all WooCommerce Customer Accounts

I hope this helps.

Thanks. I’d pretty much worked that out but I’d hoped I wouldn’t have to use it.

Since it seems orphaned customers can appear, not being able to remove them seems like an odd omission?

Hi there @kimaldis ??

Thanks. I’d pretty much worked that out but I’d hoped I wouldn’t have to use it.

Since it seems orphaned customers can appear, not being able to remove them seems like an odd omission?

Feel free to navigate to WooCommerce > Customers and use the advanced filters, targeting the specific date, for filtering them out, and subsequently deleting them from the system.

Here is a screenshot of what looks like: https://snipboard.io/1jLMQp.jpg

With kind regards