equilibrium_unexpected | Stripe Developers | Page 1

broken sunBOT Jul 1, 2024, 9:27 AM

#

charred daggerBOT Jul 1, 2024, 9:27 AM

#

Below are links to other discussions we've had with you in the past week in case you want to review that information. If your question is related to one of these previous discussions, please provide a comprehensive summary of the current state and what you need help with now. We help many users simultaneously, so a summary allows us to resolve your issue as soon as possible.

equilibrium_applepay-clickevent, 2 days ago, 102 messages

broken sunBOT Jul 1, 2024, 9:27 AM

#

👋 Welcome to your new thread!

⏲️ We'll be here soon! We typically respond in a few minutes, but in some cases we might need a bit more time (e.g., server's busy, you've got a complex question, etc.).

⏱️ We close idle threads, which makes them read-only. Once a thread is closed it won't be reopened, but you can start a new thread if you have another question.

🔗 This thread will always be available, even after it's closed. You can find it again using Discord's search, or you can save this link: https://discord.com/channels/841573134531821608/1257266334350180443

📝 Have more to share? Add details, code, screenshots, videos, etc. below.

still plank Jul 1, 2024, 9:31 AM

#

Can you please share the requestId of the confirm APi calls you are referring to ?

sand bone Jul 1, 2024, 9:31 AM

#

let me double check

still plank Jul 1, 2024, 9:31 AM

#

And in general, here are the options that you can follow to protect your self from card testing:
https://docs.stripe.com/disputes/prevention/card-testing

sand bone Jul 1, 2024, 9:33 AM

#

Request 1:

https://dashboard.stripe.com/logs/req_7d5DHvq8tT9wnt

Request 2:

https://dashboard.stripe.com/logs/req_Vb7IiTZt1by0wz

still plank Jul 1, 2024, 9:35 AM

#

And what make you says that the PaymentIntent confirm request without the hcaptcha_token was a card testing request ?

#

Because as far as I see, the customer complete the purchase via 3DS: pi_3PXaVcCewIvxqYAm0a4iz3Ys

#

req_mJtbhoIX0XDs6W

#

But yeah in general you need to tofllow the link I shared above in order to prevent your self from card testing attacks.

sand bone Jul 1, 2024, 9:38 AM

#

as you can see the customer tried many cards on the same payment intent

still plank Jul 1, 2024, 9:39 AM

#

Or maybe they have multiple valid cards...

#

Because at the end they passed through 3ds.

sand bone Jul 1, 2024, 9:39 AM

#

I get you, but this has been happening alot

many payment intens with many cards used, we never had that before

still plank Jul 1, 2024, 9:39 AM

#

In all cases, this channel is for technical integrations question only ,sorry. For fraud, you should be reaching to Stripe Support at https://support.stripe.com/contact

sand bone Jul 1, 2024, 9:40 AM

#

i get you, no worries and thank you for your time

#equilibrium_unexpected