Software for Party Rentals, Events, and Services
 
New Topic
SupportTopicQuestionPayments

HELP! FRAUD

Austin B. shared this question 22 days ago
Answered

I use GPI as IO recommends them as a payment processor. I got a call from someone today saying their credit card was charged and it matches a job from 3 weeks ago.


What do people do in these situations?! Do I just get screwed? If so, how do I make sure this NEVER happens again?


This was way too easy for them to do, and I had zero clue that it was potentially fraud...


Any help is greatly appreciated.


Thank you,

1 The same question

Comments (2)

photo
1
Cameron K. 22 days ago

How much did the customer get charged for and what is the name of the customer so I can see if anything happened on our end! If you have the lead number for the event that would be helpful too! If there is any other information that you think we might need to know let me know!

Reply
photo
1
Austin B. 11 days ago

It was $900. The lead ID is #51530447


I checked the transaction log on GPI and they attempted to charge 20 different credit cards, all declined except for one. I honestly can’t believe that there are no safe guards for something this blatant. The lead contact info is real too, they’re not trying to hide their identity.

photo
1
Cameron K. 11 days ago

Was the $898.17 payment made on 8/29 the payment that shouldn't have been made or did the customer get charged on top of this $898.17 payment they made?

226921c001cbbb9205205e27a59bfc96

photo
1
Austin B. 10 days ago

Yeah, that’s the amount that should not have been able to be charged. The client also paid a rebooking fee and additional distance fee of $50 and $35 respectively, but it appears those got declined as well so we ate the cost. The job was performed as contracted. The lead and the business that it was rented under have a legitimate online presence with the name, phone number and email that all match.

photo
1
Cameron K. 10 days ago

Our developers are looking into this issue right now, so I will update you as soon as I get information! Thank you for your patience while we handle this situation urgently.

photo
photo
1
Tim B. 10 days ago

Here is what we found.

- the IP address that made payment was (172.226.36.36) and is from your geographic area.

- we would not consider an excessive amount of attempts to have been made.

- automatic emails mentioning the payment being received were sent to the customer and read.

- the credit card that went through had the same name as customer.


Based on this information we would recommend the following:

- ask global what settings they can change to make credit card submission more strict. Ask whether they are verifying the card name, zip code, and other address information is required to be accurate before processing. You can have them toggle these on or off to protect yourself from fraud. If they are already verifying the card name, then it's likely your customer used their own card for this transaction or the wrong name was given by the real person that contracted the event with you.

- ask your customer to pay for the event. If you did the event and they truly didn't pay, they should, right? If they refuse, it's more likely that they are the ones that used a stolen card. If we had to guess, this is what we would guess. And if this is the case, there is nothing we can do to resolve it. It's not possible for us to know when someone is using a card they stole.

- some attempts made after the event occurred showed your account was logged in. If you were not doing these or are unsure, you should take a couple actions. First reset your password. Second, make sure no one in your company is doing this for any reason, whether accidental or intentional.

Reply
Leave a Comment
 
Attach a file
Powered by: UseResponse - Ideas Management Software
You can't vote. Please authorize!
You can't vote. Please authorize!
You can't vote. Please authorize!