Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Paypal IPN Module Got Hacked


kenle

Recommended Posts

Hi all,

 

I currently have the Paypal IPN module running. Just few days ago, I keep got hacked by a guy. Somehow, he placed the order, but when he checked out, he only paid 1 cent for paypal even though the invoice still said full amount. Anyone got something like me?

 

In this case, do you think I can report him to authority for fraud? If so, how?

 

thanks all

Link to comment
Share on other sites

Hi all,

 

I currently have the Paypal IPN module running. Just few days ago, I keep got hacked by a guy. Somehow, he placed the order, but when he checked out, he only paid 1 cent for paypal even though the invoice still said full amount. Anyone got something like me?

 

In this case, do you think I can report him to authority for fraud? If so, how?

 

thanks all

 

He was able to intercept the info transfer between Oscommerce and Paypal and change the price.

You should have an SSL connection between Oscommerce and Paypal.

Note this will NOT give a padlock symbol in the bottom right hand of the browser as the SSL connection is between Oscommerce and Paypal rather than Oscommerce and the user.

 

Paypal have a dispute resolution center but I have no idea how it works. It would also depend on whether he comes from the same country as you then you might be able to ask your local department of Fair Trading.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...