Shop Defender for WooCommerce

Key Benefits

• Stop Fraud Before Payment – Block fraudulent orders at checkout before any money changes hands
• 100% Local — No External APIs – All fraud checks run on your server. No data leaves your site, no third-party dependencies, no per-transaction fees
• Flexible Response Actions – Block suspicious orders outright, place them on hold for review, or flag them for attention — your rules, your call
• Intelligent Risk Scoring – Automatic fraud detection with disposable email detection, IP tracking, country mismatch analysis, and more

Main Features

• Custom Blocking Rules – Create rules targeting emails, domains, phones, IPs, countries, addresses, names, payment methods, and shipping methods
• 4 Matching Modes – Exact match, contains, wildcard patterns, and full regex support
• Automatic Risk Scoring – 6 configurable risk signals with adjustable weights and thresholds
• Classic & Blocks Checkout – Full protection for both WooCommerce checkout experiences
• Order Risk Metabox – Color-coded risk badges, scores, and detailed risk factors on every order
• Complete Audit Trail – Every fraud check logged with context, action, trigger, score, and metadata
• WooCommerce Analytics Integration – Security Logs report directly in the WooCommerce Analytics dashboard
• GDPR & Privacy Ready – Built-in privacy policy integration with transparent data handling

How It Works

1. Install & Activate – Upload the plugin and activate it alongside WooCommerce
2. Enable Protection – Navigate to WooCommerce > Settings > Advanced > Shop Defender and enable the plugin
3. Configure Risk Thresholds – Adjust signal weights and set your block/hold score thresholds
4. Create Rules (Optional) – Add custom rules for known bad actors, risky domains, or suspicious patterns
5. Monitor & Review – Review flagged orders, check risk scores, and refine your rules using the audit log

Comprehensive Rule Types

Target fraud from every angle:

• Email & Domain – Block specific addresses or entire domains (e.g., *@disposable.com)
• Phone Number – Normalized matching strips formatting differences automatically
• IP Address – Block known bad IPs with exact or pattern matching
• Country, State, City & Postcode – Geographic restrictions for billing and shipping
• Billing & Shipping Address – Catch suspicious address patterns like PO boxes
• Customer Name – Block known fraudulent names with case-insensitive matching
• Payment Method – Restrict specific payment methods for flagged contexts
• Shipping Method – Route orders based on chosen shipping options

Configurable Risk Signals

Fine-tune fraud detection with six adjustable signals:

• Disposable Email Detection – Bundled database of 5,000+ known disposable email domains (default: +30 points)
• Failed IP Tracking – Flag IPs with a history of blocked orders in a configurable lookback period (default: +20 points)
• Country Mismatch – Detect when billing and shipping countries differ (default: +15 points)
• Suspicious Address Keywords – Configurable keyword list for risky address patterns like PO boxes (default: +10 points)
• New Account Detection – Flag orders from recently created accounts (default: +10 points, configurable age threshold)
• High-Value Order Alerts – Extra scrutiny for orders above a configurable amount (default: +15 points, $300 threshold)

Three Response Actions

Choose the right response for every situation:

• Block – Hard deny at checkout. Payment is never processed. The customer sees your customizable error message. Draft orders are automatically deleted.
• Hold – The order is placed on hold for manual review. An admin note is added with full risk details. You decide whether to approve or cancel.
• Flag – The order completes normally but is marked with a warning. A note and risk score are attached for your review when fulfilling.

Complete Audit Trail

Every fraud check is logged for accountability and analysis:

• Full Context Logging – Context (checkout, order), action taken, trigger type (rule or heuristic), risk score, and metadata
• Advanced Filtering – Filter logs by context, action, email, IP address, or order ID
• Automatic Retention – Daily WP-Cron task prunes logs older than your configured retention period (default: 90 days)
• Analytics Integration – Access a dedicated Security Logs report in WooCommerce > Analytics with date filtering and sorting
• Manual Management – Delete specific log entries or prune by age at any time

Powerful Admin Interface

Everything you need, right inside WooCommerce:

• Modern React UI – Fast, responsive settings interface built with WordPress components
• Risk Metabox – Color-coded badges, visual score bars, and risk factor breakdowns on every order
• Orders List Column – Optional fraud risk column with risk level badges and scores
• Customizable Messages – Edit the customer-facing block message and admin hold note templates
• Capability-Based Access – Configure which user role can manage Shop Defender settings
• Debug Mode – Enable detailed logging to the WooCommerce debug log for troubleshooting

Privacy & GDPR Compliance

Transparent data handling built into the core:

• Privacy Policy Integration – Automatic suggested privacy policy text added to WordPress Privacy settings
• Local Processing Only – No data sent to external services. All checks run entirely on your server.
• Configurable Retention – Set how long logs are kept (1–365 days) with automatic daily cleanup
• Data Transparency – Clear documentation of what data is collected, why, and how long it is stored
• Clean Uninstall – Optional removal of all plugin data (tables, options, order metadata) on uninstall

Seamless Integration

Works with your existing WooCommerce setup:

• WooCommerce HPOS – Fully compatible with High-Performance Order Storage
• Classic & Blocks Checkout – Full protection for both checkout experiences
• Multisite Ready – Per-site rule and log isolation on WordPress multisite networks
• WooCommerce Analytics – Dedicated Security Logs report in the Analytics dashboard
• REST API – Full CRUD API for rules, logs, and settings for programmatic management
• Developer Hooks – Actions and filters to extend fraud decisions, risk signals, and disposable domain lists
• Any Theme – Admin-only plugin with no frontend output — works with any theme