Popup stealing customer info?

  • Resolved psalterproject

    (@psalterproject)


    1 year, 7 months ago

    Hi there,

    I am concerned that a newly appearing popup is stealing customers’ credit card info. A few days ago, someone bought something off our website. After clicking “Place Order”, a popup appeared asking for credit card information. She filled it out. The next day, there were unauthorized charges on her card.

    There’s no other evidence of the site being hacked. Additionally, our hosting provider (shared hosting) says there have been no recent data breaches on the server, and there are no malicious/corrupted files either on the server in general or our website files specifically.

    The way I see it, there are two options: 1) The popup is legit, an update of which I was unaware, and the fraudulent charges were unrelated to the customer’s purchase on our website. 2) Someone hacked our website from the front end (i.e. stole a password) and manually edited the code of either the Woocommerce plugin or Woocommerce PayPal Payments (I’ve crossposted to that support forum also).

    Either way, I’m at a loss for the best next step. Any help would be greatly appreciated!

    The page I need help with: [log in to see the link]

Viewing 7 replies - 1 through 7 (of 7 total)

  • Hi @psalterproject

    Thanks for reaching out!

    If I understand you correctly, the popup appeared after a customer placed an order on your site. You thought that this popup stole customers’ information since there were unauthorized charged on the customers’ card the following day?

    I checked your site, added this product to my cart, proceeded to the checkout page and this is my final order:

    Since this is a $0 or free order, no payment methods are needed to proceed with the order, and clicking the Place Order button should create the order successfully as you can see on the screenshot below (this is on my personal site):

    Now, going back to your site, when I click the Place Order button for the $0 order, this is what I’m seeing on my end.

    Is this the pop-up that you are referring to here? If so, for us to investigate this further, can you please try to switch to the default Storefront theme and only WooCommerce plugin is enabled, create a test order and see if you are still seeing the popup dialog box after?

    If so, then this kind of problem is usually caused by your theme or a third-party plugin present on your site. We can run a conflict test to verify this. I’d recommend cloning your site to a staging environment and performing the tests described on this guide without modifying your live site or impacting customers. Many hosts provide staging facilities, so it’s worth checking in with them. It’s also possible to do it using the free WP Staging plugin.

    If this was caused by a third-party plugin present on your site, it would be best to reach out to the developers for further assistance here.

    If this did not resolve the issue, please share your System Status Report, that will help us further troubleshoot.

    You can find it via WooCommerce > Status. Select Get system report and then Copy for support. Once you’ve done that, you can paste it into your reply here.

    If you could also provide the fatal error logs (if any) under WooCommerce > Status > Logs.

    You could copy and paste your reply here or paste it via https://gist.github.com/ and send the link here.

    Let us know how it goes!

    Thread Starter psalterproject

    (@psalterproject)

    Thanks for your response! Yes, you have correctly identified the issue. Apparently the button “Proceed to Paypal” is being incorrectly replaced with a custom “Place Order” button which leads instead to the popup (as you encountered).

    The theme Storefront seems to be causing the issue. This is very surprising to me, since I thought Storefront was designed to work with Woocommerce. However, when I went to troubleshoot, I started with the theme Twenty Twenty Three and only Woocommerce enabled. The issue was resolved. So I started enabling plugins one by one to try to find the culprit, and nothing happened – all plugins enabled worked correctly with the theme Twenty Twenty Three. Then, I switched to the Storefront theme, and the problem popup reappeared, regardless of whether I had only the Woocommerce plugin enabled.

    I will reach out on the Storefront support forum next…

    Hi @psalterproject

    Thanks for your confirmation that this is the popup that you are referring to here.

    Apparently the button “Proceed to Paypal” is being incorrectly replaced with a custom “Place Order” button which leads instead to the popup (as you encountered).

    The Place Order button is the default button when placing an order on your site. The Proceed to Paypal button is being added by the Paypal plugin you are using same below:

    The theme Storefront seems to be causing the issue. This is very surprising to me, since I thought Storefront was designed to work with Woocommerce. However, when I went to troubleshoot, I started with the theme Twenty Twenty Three and only Woocommerce enabled. The issue was resolved. So I started enabling plugins one by one to try to find the culprit, and nothing happened – all plugins enabled worked correctly with the theme Twenty Twenty Three. Then, I switched to the Storefront theme, and the problem popup reappeared, regardless of whether I had only the Woocommerce plugin enabled.

    This is quite strange that the default Storefront theme is causing this issue as I am using this on my site and I am not able to replicate the popup on my end.

    For us to investigate your issue further, I’d like to understand your site properly. Please share your System Status Report that you can find via WooCommerce > Status. Select Get system report and then Copy for support. Once you’ve done that, you can paste it into your reply here.

    If you could also provide the fatal error logs (if any) under WooCommerce > Status > Logs.

    You could copy and paste your reply here or paste it via https://gist.github.com/ and send the link here.

    Thanks!

    Thread Starter psalterproject

    (@psalterproject)

    I reinstalled the Storefront theme and the issue disappeared. I thought I had the most recently updated version, but it must have been hacked/edited since. I will reply here if the issue comes up again. Thank you for all your help!

    Hi @psalterproject

    You are most welcome and we’re glad that reinstalling the Storefront theme fixed the issue here! ??

    Meanwhile, if you have a moment to spare, we would love it if you could share your thoughts with us by leaving a review or feedback. Your experience and feedback are important to help us improve and ensure we’re always providing the best possible support.

    Thanks!

    Thread Starter psalterproject

    (@psalterproject)

    Hi there! Wondering if I could reopen this topic along a different theme. Since I reinstalled Storefront, I’ve noticed most product images are not showing up correctly and some product download links are also not working. Could this be related, and if so, is there an appropriate fix that doesn’t involve manually re-uploading every product download/image?

    Hi @psalterproject

    Since you are referring to a different issue/topic here already, kindly create a new topic here. Please provide as further information or screenshots if possible.

    Additionally, please include your System Status Report that you can find via WooCommerce > Status. Select Get system report and then Copy for support.

    If you could also provide the fatal error logs (if any) under WooCommerce > Status > Logs.

    Once you’ve created a new forum topic, you can include the contents of your SSR and logs within your message on that forum topic.

    We’ll be more than happy to help there ??

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘Popup stealing customer info?’ is closed to new replies.