unknowncat | Stripe Developers | Page 1

vague garden Jun 30, 2022, 5:49 AM

#

hi there! if you check the logs in your Dashboard, you should be able to view the IP address that the API requests are coming from

glad glade Jun 30, 2022, 5:49 AM

#

hi! not seeing ip address, just says woocommerce

#

vague garden Jun 30, 2022, 5:50 AM

#

it's right there on the left

glad glade Jun 30, 2022, 5:50 AM

#

ah sorry, now i see ip address to the left of that

#

sorry! thank you!!

vague garden Jun 30, 2022, 5:50 AM

#

np!

glad glade Jun 30, 2022, 5:52 AM

#

okay so looks like lots of bot signups from a server in ukraine. any way to block?

vague garden Jun 30, 2022, 5:55 AM

#

i'll recommend that you add a captcha to your page for customer sign ups. I'm guessing that they're doing this via your site?

glad glade Jun 30, 2022, 5:56 AM

#

is coming from different ip than the site

#

strange too because creating many customers WITH payment methods!

vague garden Jun 30, 2022, 5:57 AM

#

Can you share your account id so that I can take a look? You can find your account id by logging in to https://dashboard.stripe.com/settings/account. It'll be in the upper right hand corner and looks like acct_123

glad glade Jun 30, 2022, 5:57 AM

#

acct_1HOqzrLCs453BFHJ

#

thank you Alex

vague garden Jun 30, 2022, 6:04 AM

#

looks like card testing - https://stripe.com/docs/card-testing

I'd suggest you roll your secret key first. They're making the requests with your secret key and if you don't recognize the IP address that it's coming from, it's entirely possible you've had a secret key leak

#unknowncat