Hey guys We have a WPP donation portal for a charity. It looks like someone in the span of 1 day committed 40+ transactions under $10.00 as donations. Normally we're happy to accept these for our charities. In this case, they were all fraudulent and all were charged back. This was a huge amount of fees - 20+$ ea, and all sorts of fees along the way. We're still getting additional $2.00 per transaction fees. This is very frustrating - but it looks like somone was laundering stolen cards, maybe testing them for validity before using them for larger purchases? In the end, we exist to collect money for our charity. If the user completes the transaction with all required attributes, and it clears, what else can we do? I know some sort of IP lock might have helped, but these transactions came from multiple client IP's. They all had gibberish names, but proper addresses and zips. My customer is very upset and rightly so. Paypal is offering no assistance except siezing their funds. Can anyone think of a good course of action here? Let this also serve as a warning to anyone accepting any sort of "tip" or donation with WPP.
... View more