Constant Fraud

[Sny]

I have a guy from France who signs up as a different name every single week who is constantly running CC through through WHMCS and he always gets set up. After getting set up, he is attacking my server and sending mass amounts of spam. How do I protect against fraud from someone who uses multiple names, multiple cards, and basically simply will not get off my back?

[m00]

Take a look at the "Fraud Protection" options of WHMCS: http://wiki.whmcs.com/Fraud_Protection

[Sny]

I have fraud protection enabled, but as this is an automated system and this guy is using real information of stolen cards, what else can I do?

[laszlof]

I know at least with MaxMind, if the person submitted the orders IP address doesnt match up with the billing address, it kicks back a fraud score. I highly doubt that he is using a proxy in each city that he steals a CC from.

 

You actually need to configure the fraud protection for it to work effectively.

 

Alternately, you could just manually approve orders.

[Skeptical]

We're getting the same guy too. Always from France it seems.

[sparky]

I had the same problem... make sure that you refund the CC as stolen card numbers are used.

I haven't had any for quite some time now since I added this to my .htaccess file

order allow,deny

deny from 172.187.

deny from 172.208.

deny from 172.204.

allow from all

It blocks quite a range of ip's unfortunatly but have had no more genuine fraud orders

Most of the ip range is from aol I believe

[mylove4life]

I use a call back feature that stops it all as no one doing the fraud is going to use there real number at home. It will also not allow them to use voip numbers ect...

[ws4210]

I have to do every thing automatic.

[ernestmcoy]

Hi there,

 

I could use this fraud protection even if there are no attackers on our system. Thanks for sharing the link.

[easyhosting]

I have a guy from France who signs up as a different name every single week who is constantly running CC through through WHMCS and he always gets set up. After getting set up, he is attacking my server and sending mass amounts of spam. How do I protect against fraud from someone who uses multiple names, multiple cards, and basically simply will not get off my back?

 

I use maxmind and also their telephone verification service, I also use this http://forum.whmcs.com/showthread.php?t=4640 yes some people wonder why they are marked as fraud orders, but once you manually approve and then explain the reason they all understand.

 

as this person keeps ordering from you i gues he will be using free email addresses, well using this mod and even setting maxmind to reject free emails then this will stop him setting orders up.

[smokindss]

We had the same problem with this idiot who keeps using France, what we did was remove France from our list of countries, and this seemed to have helped for awhile, but now it seems they have improved things and are getting back through our system. We have set things to be manual, for the time being.