Is there any simple, clean solutions to someone trying multiple credit cards on checkout?
We recently received a ton of failed orders in the wee hours from what appears to be someone trying to run a bunch of credit cards to find a "good" card to scam.
We were hoping to avoid reCAPTCHA (assuming it to be applied here: Checkout (user information) form) as it can sometimes upset legitimate customers. I did just active V3 hoping that would not effect good people from getting blocked and negatively impacting sales.
I also saw "Anti fraud add-on", but I'm not sure if that will do the trick either. (?)
Just thinking out loud, but I'm thinking we need something like if someone attempts to process a credit card more than 3-7 times during the same session, it times them out for at least 15 minutes (or some settable time limit) and then blocks for progressively longer period after another repeat session.
Any thoughts on what would help here?
Thanks!