Things you can do: - Be sure you have the latest release of the component installed. - Report these attempts to the developer of the component (in this case Joom Donation). - Take any action the developer suggests. Harm to the site: These people are interested in CC info not hacking sites. If that was the case your site would be hacked already. They are testing for valid CC #s. On Fri, Jan 14, 2011 at 6:22 PM, Christine Takacs < christine at raptcreative.com> wrote: > ** Be sure to fill out the survey/skills inventory in the member's area. > ** If you did, we all thank you. > > > > Hi All You Smarties, > I wonder if anyone is familiar with the problem of stolen credit cards > being tested on Charity sites? A website I am managing is currently a target > of such attempts. A person is repeatedly trying to charge $.01 on hundreds > of different cards. > > It is a Joomla site, utilizing the Joom Donate plugin. We are using SSL and > Verisign security certificates and requiring address matches. Also we are > using Authorize.net and have set fraud filters so no fraudulent > transactions are succeeding. I've read that this scheme happens on other > more high-profile sites too- like Haiti Relief and Obama Campaign, etc. But > it is still a concern and an annoyance to my client. There doesn't seem to > be a way to capture this person's IP address to block it. > > Researching the site's Google analytics, it looks to me like the frauds > have used the following keywords to find the site: > > - inurl:index.php intext:cvv donate > - allinurl:="view=donation" > - inurl:index.php intext:donate cvv > > > Although I've done lots of web design, I'm fairly new to the back end and > am by no means an engineer, so I wanted to ask a few dumb questions: > > - Can these credit card fraud attempts do any harm to a site or > donation system? > - Is there something we can do to dissuade attempts like this? > > > Thanks in advance for any helpful advice! > > Best Regards, > Christine > ................................................ > Christine Takacs > Rapt Creative > 82 Oak Grove Avenue > Brattleboro, Vt. 05301 > > 802-221-4692 > www.raptcreative.com > > > _______________________________________________ > Hidden-discuss mailing list - home page: http://www.hidden-tech.net > Hidden-discuss at lists.hidden-tech.net > > You are receiving this because you are on the Hidden-Tech Discussion list. > If you would like to change your list preferences, Go to the Members > page on the Hidden Tech Web site. > http://www.hidden-tech.net/members > -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Heidi Stanclift 4Web, Inc. Creators of Highly Customized Joomla Websites www.4webinc.com 603-903-0793 office heidi at 4webinc.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20110115/e8fa402a/attachment-0001.html