Had an urgent message from one of my e-commerce website clients just after 7am this morning.
There had been well over 100 orders placed (for the same item) that had failed.
On went the “Deerstalker” and into Sherlock modeβ¦.
After a little investigation, I noticed that every order had the same I.P Address, meaning they all came from the same location.
Another thing was that every email address, although different, were constructed in the same way Customers Name 4x numbers @ whatever.com.
This means the email addresses were probably set up via a poorly written bot’ or naughty AI program.
That way, the dodgy git would then change the delivery address via the fake email, so they can get they’re hands on your goods.
You may of heard about lists of stolen card details circulating on the “Dark Web”, this is an example of how they are used.
Thankfully Bluesdigital, PayPal & the cardholders companies are wise to this type of low I.Q attack.
All sorted before my first coffee too!