WHMCS is designed to automatically run checks on orders to help ensure only valid clients get through and prevent fraudsters from abusing your system.
From checking the details of the person placing the order against their billing details down to automatically calling and verifying their identity.
Currently, the following fraud protection services are supported:
- FraudLabs Pro - Order Verification Services
- MaxMind - Risk Scoring Services
By far the most popular fraud detection service used by customers of WHMCS is MaxMind.
MaxMind offers a risk scoring service that will run automatically each time an order is placed.
It calculates a score instantly for the riskiness of a particular order based on both the data captured from a customer during signup and the IP Address they are connecting from.
WHMCS then allows you to use this score to automatically block orders that you deem to be too risky to allow through for payment.
But you still have the option to manually override upon manual review if required.
You may only have one fraud module enabled at a time.
This tutorial assumes you've already logged in to your WHMCS admin panel.
Now let's learn how to set up fraud protection.
Click the Setup tab.
Then click Fraud Protection.
Note that you must already have an account with the provider of your choice before you can enable its module.
Choose your fraud module, and click Go.
Click here to enable MaxMind fraud protection.
Then enter your MaxMind license key.
You can reject orders that trigger any of these 4 flags by clicking their checkbox.
Let's enable them all.
Then specify the fraud risk score, above which orders will be considered fraudulent and blocked.
When all settings are the way you want, click Save Changes.
That's it!
You've successfully set up fraud protection.
