WooCommerce Anti-Fraud automatically detects potential fraud every time an order is placed on your store. Each order is assigned an Order Risk Score along with tailored risk assessment advice. Additionally, the plugin integrates seamlessly with MaxMind’s AI-powered MinFraud services, providing an extra layer of robust security for your store.
OPMC released the Card Attacks section to help with increased Velocity and Card attacks. You can learn more about how to strengthen your security posture against e-Commerce credit card fraud.
Problem with repeated fake orders? Velocity Attacks / Card Testing is on the rise.
If you have noticed a significant increase fraud orders from the December 2024 your store is likely open to a known vulnerability with a specific Payment Gateway that can is currently being exploited.
The OPMC Support team will be happy to help and can advise how to configure the Antifraud plugin to stop this. Additionally, a new release is in development to ensure your site is even more secure moving forward.
Installation
↑ Back to top- Download the .zip file from your WooCommerce account.
- Go to: WordPress Admin > Plugins > Add New and Upload Plugin with the file you downloaded with Choose File.
- Install Now and Activate the extensions.
More information at Install and Activate Plugins/Extensions.
Quickstart with the Plugin
↑ Back to top- The Antifraud settings page is under WooCommerce > Settings > Antifraud. In Antifraud settings, you can adjust rule weights and define actions based on various Risk Scores.
- By default, the plugin will automatically protect your store using the baseline options. Some of these preset options include canceling fraud orders, holding suspected orders, and email notifications for flagged orders.
Advanced Features
↑ Back to topIn Anti-Fraud Settings, you can enable rules, update rule weights, and set automated actions based on the Order Risk Scores including:
- Automation Actions: Trigger actions based on score including Cancelling Fraud, Placing Suspected Orders on hold, or notifying the administrator with an email notification.
- Velocity Attack Prevention: Tools to protect against rapid, fake orders, including reCAPTCHA, card testing protection, and order delay settings. Unlike other plugins, OPMC’s reCaptcha integration automatically revalidates each time the ‘Place Order‘ button is clicked.
- Advanced Blacklisting: Filtering based on Geolocation, IP, Email address, and Order Attempts.
- Advanced Whitelisting: By Payment Methods, User Roles, Email and IP Address.
- Address-based Rules: Based on Billing and Shipping, Phone Number, IP and VPN Check.
- Integration with Paypal: Verify PayPal before sending the order for fraud prevention.
- MaxMind Integration: Utilize MaxMind’s AI-powered fraud detection, with automatic recording of key MaxMind data points for comprehensive analysis.
- MinFraud Integration: Assess fraudulent activity by integrating minFraud® AI-based service by MaxMind.
- Trust Swiftly Integration: Enhanced identity verification.
- Customer Pre-Purchase Assessment: Score potential orders before payment is accepted.
- ReCaptcha V2 Compatibility: Works with Woo Checkout Blocks and Classic Woo Checkout.
- Multilingual Support: Support for over 32 Languages, including English, Mandarin, Spanish, and Arabic.
- Manual Order Check Button – Allows individual orders to be manually checked for fraud.
- Antifraud Dashboard: High-Level overview of fraud-related information and order information.
Learn more about the Setup and Configuration in the Antifraud Plugin.
Automating Actions
↑ Back to top
Trigger actions based on score including Cancelling Fraud, Placing Suspected Orders on hold, or notifying the administrator with an email notification.
Configure and work with the Order Risk Score.
Getting started using the Antifraud plugin: Using Antifraud Order Risk Score
Set up actions based on the Order Risk Score.
Setting thresholds: Antifraud Threshold and Notification Settings Page
Velocity Attacks and Credit Card Testing
↑ Back to topVelocity Attacks and other types of Credit Card fraud is on the right. The Antifruad plugin has features specifically designed to address the challenges of hundreds or thousands of false orders being put through your store.
Some of the Antifraud Velocity Attacks and Credit Card Testing Features include:
- Dedicated Settings Tab for Velocity Attack Management / Credit Card Testing.
- Integration with Google ReCaptcha.
- Card Testing Protection via API.
- Compatibility with WooCommerce Classic Checkout / WooCommerce Checkout Blocks.
- Order Processing Delay Setting.
- Detection Across Orders and between Payment Attempts.
Find out more about preventing Velocity Attacks and other types of credit card fraud prevention and the features of the Antifraud Plugin: Velocity Attacks
Advanced Blacklisting
↑ Back to top
With the Antifraud Plugin you can filter and prevent fraudulent users based on Geolocation, IP, Email address, and Order Attempts.
Learn more about how the Antifraud Plugin uses advanced Blacklisting Features to prevent fraud orders before they are placed including:
- How does the Blacklisting Feature work?
- Can you Blacklist orders based on Email / IP?
- How to Automatically Blacklist fraudulent user details?
For more details and configuration instructions read: Blacklisting Settings.
Address Based Rules
↑ Back to topIdentify threats based on IP, Geolocation, Phone number, VPN/Proxy, Billing and Shipping addresses, and more.
The Antifraud Plugin adds additional layers of fraud detection to your WooCommerce Checkout process. Filter and prevent fraudulent orders based on a variety of order information, including:
- Physical and IP Address Comparison Rules
- Billing and Shipping Address Mismatch Rules
- Geolocation and Billing / Shipping Address Comparison Rules
- VPN / Proxy Detection
Expand fraud prevention with Advanced Integrations
↑ Back to top
The Antifraud for WooCommerce Plugin allows you to integrate with advanced Third Party fraud detection and prevention services. Learn how to strengthen your store’s security posture by integrating with the leading service providers including:
- AI / ML Fraud Detection:
- MaxMind – Powerful machine learning technology developed to better identify fraudulent orders. Learn more about Integrating with MaxMind
- Advanced Order Detail Verification:
- Bigdatacloud.com – Validate customer addresses based on precise location intelligence
- Quickemailverification.com – Advanced email verification service
- Advanced Identity Verification:
- TrustSwiftly – Flexible & accurate identify verification using 15+ methods
- Leading Automated and Security Service Providers
- Google reCAPTCHA – Require additional verification to deter velocity attacks
- Paypal – Additional tools for merchants accepting Paypal payments
Integrate with MaxMind
↑ Back to topIntegrating with MaxMind and MinFraud: Integrating Antifraud with Maxmind
Integrate with Big Data Cloud
↑ Back to topHow to integrate the BigDataCloud with Antifraud: Antifraud BigDataCloud Integration
Integrate with Trust Swiftly
↑ Back to topHow to integrate the Trust Swiftly with Antifraud: Antifraud TrustSwiftly Integration
Integrate with Google reCAPTCHA
↑ Back to topHow to integrate the Google reCAPTCHA with Antifraud: Antifraud Google reCAPTCHA Integration
Configuring Your Store Order Status Process
↑ Back to topAssess customers for potential fraud before payment is processed. If the fraud score falls within a high-risk range, the order will be declined, and a customized message will be displayed on the checkout page, informing the buyer of the reason for the denial.
Learn how to configure the Anti-Fraud Plugin to effectively stop fraudsters at the right moment, minimizing their impact on your store, suppliers, and payment gateways.
Plugin scans and blocks fraudulent activities in real-time.
- Order information is checked by an automated Risk Scoring system and can be configured to run pre or post-payment.
- Risk Scoring assigns a risk to each order, the order can be assigned a new status based on the level of risk.
- Notification options alert the store owner when pre-configured thresholds are exceeded for specific orders.
Analytics Dashboard
↑ Back to topThe Antifraud Dashboard can be accessed from the following: WP Admin > Anti Fraud
The Antifraud Analytics Dashboard provides a clear high-level overview of orders and order risk scoring details based on the fraud rules within the Antifraud Plugin. These include but are not limited to:
- Discover recent fraudulent activities
- View Trends over a week
- What’s going on with the latest orders
- Emails blocked in 24 hours
- PayPal accounts under verification
- Complete, unified information on fraudulent activities in one place.