Fake Woocommerce Spam Orders

  • Resolved dadadmin

    (@dadadmin)


    2 years, 6 months ago

    For a few weeks, my online store has been getting hundreds of fake orders from the following

    [ Name and address redacted, it’s a real address ]

    Each order he somehow by passes creating an account and uses a new email to create the order.

    I have followed all of the steps on “protecting my shop” I also have another shop on the same server with all of the same plugins installed, same theme, same set up that is NOT getting attacked so I can’t narrow it down to being a plugin or vulnerability somewhere.

    1. I have wordfence installed
    2. I have a captcha on my checkout/signup.
    3. They have to be a registered user to make a purchase
    4. Comments on my site are turned off and the settings are that a user must be registered to make a comment anyway
    5. I have my wp-admin area locked down via IP address
    6. All of my plugins/WP/themes are up to date

    I recently installed WooCommerce Anti Fraud, they’re flagging him as a medium risk, but also now flagging actual customer as medium risk, so there’s no way to filter him out without filtering out actual customers.

    Each order is placed from a different IP address so I can’t even block flag him via wordfence. I have cloudflare on the server and that seems to be blocking attacks after a while, but he’s still getting through every few days.

    All of the plugins are doing their jobs, and his orders are getting automatically failed, but its creating a larger issue outside of WP. The payment gateway I am using is connected to an on property POS system. When the system gets overflooded with these fake online orders that it has to keep trying to process and then ultimately failing, it causes the whole POS system to stop being able to process cards on property.

    Is there any way to stop this from happening?

    • This topic was modified 2 years, 6 months ago by Jan Dembowski.
Viewing 4 replies - 1 through 4 (of 4 total)
  • Saif

    (@babylon1999)

    Hi there!

    Since you mentioned using WooCommerce Anti Fraud, then please open a request about this from here: https://woocommerce.com/my-account/create-a-ticket/

    I will go ahead and mark this thread as solved, you can add the thread’s link in your request as well and we’ll move it to the plugin developer to investigate this further.

    Cheers!

    • This reply was modified 2 years, 6 months ago by Saif.

    Hi dadadmin,

    Did you manage to solve this issue? I’m experiencing the same problem today and it’s driving me crazy. I tried to alter the product permalink (each order was the same product) which didn’t help, then I changed the part to out of stock, but now the orders are placed with a different product.
    All post addresses are the same: 99 Wall Street in NY. All emails and names are gmail addresses.

    Roy

    Thread Starter dadadmin

    (@dadadmin)

    Hi @roygilsing

    I reinstalled the plugin WooCommerce Anti Fraud, and add reCaptcha for WooCommerce to EVERY instance of a login/purchase form. I had it on my main checkout page, but I guess somehow they were getting around it. I can’t say exactly which thing completely solved the issue, but it seems with the combination of fresh files and the right settings on the Anti Fraud, reCaptcha and Wordfence, I haven’t had the issue since.

    Here is a screenshot of all my Anti Fraud threshold settings if that’s helpful.

    View post on imgur.com

    Thanks for replying to me so quickly. I appreciate you taking the time.
    In the meantime I have installed the reCaptcha for Woocommerce and that seems to help already. No new fake orders since then. I hope that solves it. If not I will also install the anti-fraud plug-in.
    I discovered these fake orders are called Card Testing Attacks and a quick search offered me these solutions as well.

    Best, Roy

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Fake Woocommerce Spam Orders’ is closed to new replies.