#jay_m_11

To prevent card testing, I'd recommend including captcha in your checkout page

For more card testing prevention informtion, you may refer to the guide here: https://stripe.com/docs/disputes/prevention/card-testing#prevent-card-testing

sry for the delay

i have already integrated google captch v3, i have managed to reduce the frequency with it

but small number of payments are still being tried

stripe blocks them

will that still cause issues ?

As long as the payments are being blocked, then it will be fine

i recieved a mail from stripe to fix this issue few days back to bring this to reasonable level or else they would limit our stripe account, i updated my rate limiters, fixed my captch integration.

is 2000 - 3000 tests reasonable level ?

not sure how to bring this down to 0

please advice

Have you checked the doc above for the prevention measures?

yes i have

In addition to rate limiter and captcha, you could also introduce IP address check that if payments from the same IP address attempting multiple payments within short period should be blocked

With regards to the reasonable level of card testing, I'd recommend following up with the email and check whether the current measures are good enough

i had added ip checks earlier, the test then became from multipe ip addresses ,that did not help as well

the issue also is the v3 captch score is 0.9 for these sometime, so hard to detect

Thanks for providing the information. Unfortunately, we don't have much insights of the threshold of the card testing for restricting a Stripe account. Our support should be able to provide more insights with you

ok thank you for your inputs. Have a great day ahead!