Do you think they're manually entering cards into your forms or using a script?
If it's some sort of automated process possibly checking the time between steps in the checkout as well as protecting against CSRF might help. http://cfformprotect.riaforge.org/ http://www.google.com/search?q=csrf On 2/25/11 9:21 AM, Casey Dougall wrote: > Hi, > > This comes up from time to time and it's truly been a pain to > stop completely. I'm wondering what some of you are doing that could help me > fight this type of fraudulent activity. > > I've got checks in place for ipAddress, use of similar names on or addresses > on multiple decline attempts, blocking when I can but still people continue > to prob card numbers to see if they are valid. I had one guy today try from > 4 separate ip addresses. All different names and addresses and credit card > numbers but similar enough to know it was same person. > > What else can be done here? > > This is a services related website so nothing shipped which I'm assuming > makes it a better target. > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:342593 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
