[Hidden-tech] Credit Card Fraud attempts at Charity site

Heidi Stanclift heidi at 4webinc.com
Sat Jan 15 08:30:34 EST 2011

Previous message: [Hidden-tech] Credit Card Fraud attempts at Charity site
Next message: [Hidden-tech] Credit Card Fraud attempts at Charity site
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Things you can do:

   - Be sure you have the latest release of the component installed.
   - Report these attempts to the developer of the component (in this case
   Joom Donation).
   - Take any action the developer suggests.

Harm to the site:
These people are interested in CC info not hacking sites.  If that was the
case your site would be hacked already.  They are testing for valid CC #s.

On Fri, Jan 14, 2011 at 6:22 PM, Christine Takacs <
christine at raptcreative.com> wrote:

>   ** Be sure to fill out the survey/skills inventory in the member's area.
>   ** If you did, we all thank you.
>
>
>
> Hi All You Smarties,
> I wonder if anyone is familiar with the problem of stolen credit cards
> being tested on Charity sites? A website I am managing is currently a target
> of such attempts. A person is repeatedly trying to charge $.01 on hundreds
> of different cards.
>
> It is a Joomla site, utilizing the Joom Donate plugin. We are using SSL and
> Verisign security certificates and requiring address matches. Also we are
> using Authorize.net and have set fraud filters so no fraudulent
> transactions are succeeding. I've read that this scheme happens on other
> more high-profile sites too- like Haiti Relief and Obama Campaign, etc. But
> it is still a concern and an annoyance to my client. There doesn't seem to
> be a way to capture this person's IP address to block it.
>
> Researching the site's Google analytics, it looks to me like the frauds
> have used the following keywords to find the site:
>
>    - inurl:index.php intext:cvv donate
>    - allinurl:="view=donation"
>    - inurl:index.php intext:donate cvv
>
>
> Although I've done lots of web design, I'm fairly new to the back end and
> am by no means an engineer, so I wanted to ask a few dumb questions:
>
>    - Can these credit card fraud attempts do any harm to a site or
>    donation system?
>    - Is there something we can do to dissuade attempts like this?
>
>
> Thanks in advance for any helpful advice!
>
> Best Regards,
> Christine
> ................................................
> Christine Takacs
> Rapt Creative
> 82 Oak Grove Avenue
> Brattleboro, Vt. 05301
>
> 802-221-4692
> www.raptcreative.com
>
>
> _______________________________________________
> Hidden-discuss mailing list - home page: http://www.hidden-tech.net
> Hidden-discuss at lists.hidden-tech.net
>
> You are receiving this because you are on the Hidden-Tech Discussion list.
> If you would like to change your list preferences, Go to the Members
> page on the Hidden Tech Web site.
> http://www.hidden-tech.net/members
>



-- 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Heidi Stanclift
4Web, Inc.
Creators of Highly Customized Joomla Websites
www.4webinc.com
603-903-0793 office
heidi at 4webinc.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20110115/e8fa402a/attachment-0001.html

Previous message: [Hidden-tech] Credit Card Fraud attempts at Charity site
Next message: [Hidden-tech] Credit Card Fraud attempts at Charity site
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Hidden-discuss mailing list