This is not at all my area of expertise--but 1) Have you talked to the cc processor about how to capture enough data to ID and block? 2) What about setting a higher transaction threshold ($5?) without saying that's what you're doing? At 6:22 PM -0500 1/14/11, Christine Takacs wrote: > ** Be sure to fill out the survey/skills inventory in the member's area. > ** If you did, we all thank you. > > >Hi All You Smarties, >I wonder if anyone is familiar with the problem of stolen credit >cards being tested on Charity sites? A website I am managing is >currently a target of such attempts. A person is repeatedly trying >to charge $.01 on hundreds of different cards. > >It is a Joomla site, utilizing the Joom Donate plugin. We are using >SSL and Verisign security certificates and requiring address >matches. Also we are using <http://Authorize.net>Authorize.net and >have set fraud filters so no fraudulent transactions are >succeeding. I've read that this scheme happens on other more >high-profile sites too- like Haiti Relief and Obama Campaign, >etc. But it is still a concern and an annoyance to my client. There >doesn't seem to be a way to capture this person's IP address to >block it. > >Researching the site's Google analytics, it looks to me like the >frauds have used the following keywords to find the site: > >inurl:index.php intext:cvv donate >allinurl:="view=donation" >inurl:index.php intext:donate cvv > >Although I've done lots of web design, I'm fairly new to the back >end and am by no means an engineer, so I wanted to ask a few dumb >questions: > >Can these credit card fraud attempts do any harm to a site or donation system? >Is there something we can do to dissuade attempts like this? > >Thanks in advance for any helpful advice! > >Best Regards, > >Christine >................................................ >Christine Takacs >Rapt Creative >82 Oak Grove Avenue >Brattleboro, Vt. 05301 > >802-221-4692 > ><http://www.raptcreative.com>www.raptcreative.com > > > >_______________________________________________ >Hidden-discuss mailing list - home page: http://www.hidden-tech.net >Hidden-discuss at lists.hidden-tech.net > >You are receiving this because you are on the Hidden-Tech Discussion list. >If you would like to change your list preferences, Go to the Members >page on the Hidden Tech Web site. >http://www.hidden-tech.net/members -- _________________________________________________ Shel Horowitz - 413-586-2388/ shel at frugalfun.com -->Join the Business Ethics Pledge - Ten Years to Change the World, One Signature at a Time (please tell your friends) <http://www.business-ethics-pledge.org> Marketing consulting * copywriting * publishing assistance * speaking How to market ethically/effectively: http://www.frugalmarketing.com Ethics Blog: http://www.principledprofit.com/good-business-blog/ Books: http://www.frugalmarketing.com/shop.html _________________________________________________ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.hidden-tech.net/pipermail/hidden-discuss/attachments/20110115/0c9c65d8/attachment.html