Received 1000s of Spam Orders on my Store within hours

This topic has 5 replies, 2 voices, and was last updated 1 years, 2 months ago ago by Rose Tyler

  • Avatar: yuvi
    yuvi
    Participant
    October 18, 2023 at 21:18

    Hey someone attacked my store and totally messed up my inventory and flagged payment gateway.

    My store received spam messages from random names and random emails. THat are definitely bots.

    Was there a security breach? What you recommend I do next?

    I am a little confused as to how to prevent this. I have upgraded to the latest theme version.

    Please, contact administrator
    for this information.
    4 Answers
    Avatar: yuvi
    yuvi
    Participant
    October 19, 2023 at 06:22

    What? That’s no solution. Shopify has its own demons.

    Avatar: Rose Tyler
    Rose Tyler
    Support staff
    October 19, 2023 at 07:59

    Hello, Yuvi,

    Thank you for contacting us and for using XStore.

    We would recommend you contact the support of the WooCommerce plugin – https://wordpress.org/support/plugin/woocommerce/ , because our theme doesn’t affect it and can be a reason for the problem.

    We hope this information is helpful.
    If you have any additional questions or concerns, please do not hesitate to reach out to us. Our support team is always available to assist you.

    Kind Regards,
    8theme team

    Avatar: yuvi
    yuvi
    Participant
    October 19, 2023 at 08:28

    No, not helpful at all.

    You think I didn’t check their support forum for similar topics and the resolutions offered there. I did and was of no use.

    Make some efforts to help the people who bought from you. Or else how you expect people to continue using WordPress. With such bugs, WooCommerce has become a poor person’s choice who cannot afford Shopify for some reason.

    Nothing changes if no efforts are made. RIP woo-commerce and WordPress.

    Avatar: Rose Tyler
    Rose Tyler
    Support staff
    October 19, 2023 at 09:21

    Hello, Yuvi,

    We appreciate your prompt response.

    We are always pleased to assist our customers, but it is important to understand that our assistance is limited to issues directly related to our area of expertise. It is crucial to identify which issues are not related to our theme so that you can promptly find high-quality, specialized support elsewhere.
    Although it is not our specialty, we have the following recommendations for you. We hope you find them useful:

    1. We suggest installing an additional plugin on your site to check whether it is bots or real people visiting. The system is not complicated – it checks whether there have been any cursor or keyboard movements in the last period, indicating a real person. We cannot recommend a specific one, you will need to search for it (there are definitely free ones). Consider the following – https://wordpress.org/plugins/wordfence/

    You can also use Google Captcha from the following:
    https://wordpress.org/plugins/recaptcha-woo/
    https://woocommerce.com/products/google-recaptcha-for-woocommerce/?gclid=CjwKCAjwp8OpBhAFEiwAG7NaEshfFMvoztzidjmTi4aEuaiCpRLsHXtudY5toke6n8x7AuWXLEJReBoCqOoQAvD_BwE
    https://woocommerce.com/products/recaptcha-for-woocommerce/

    2. Given that you are using Hostinger, you should inquire about the bot protection capabilities they provide and how effective this protection is.

    3. To ensure higher quality purchases (from verified customers), you can configure the following in WooCommerce:
    3.1/ In the WordPress dashboard, go to WooCommerce → Settings → Account & Privacy.
    3.2/ Untick the ‘Enable guest checkout’ boxes (https://prnt.sc/5_pmSYUK1Bhy).
    This will force users to create an account when they buy from your WooCommerce store.

    4. If you plan to use a CDN, consider the following:
    https://www.cloudflare.com/application-services/products/bot-management/

    Kind Regards,
    8theme team

  • Viewing 5 results - 1 through 5 (of 5 total)

You must be logged in to reply to this topic.Log in/Sign up

We're using our own and third-party cookies to improve your experience and our website. Keep on browsing to accept our cookie policy.