Phishing email or links

  • Profile Image
    medicyan
    Asked on March 20, 2019 at 05:53 PM

    Someone made several small payments on our form - hoping, it seems, for us to clic on a link attached in the information sent with the payment - is there something to do?

     

     

    Screenshot
  • Profile Image
    jherwin
    Answered on March 20, 2019 at 08:33 PM

    I tried to open the emails provided in your form but nothing happens. Perhaps, the submitters of your form just spam you with random email?

    My anti-virus and browser did not recognize any malicious or phishing attacks on the links so I think they are safe.

  • Profile Image
    medicyan
    Answered on March 20, 2019 at 09:43 PM
    They paid $5 every times… that is weird

    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    medicyan
    Answered on March 20, 2019 at 09:43 PM
    we received another 16….
    ...
  • Profile Image
    jherwin
    Answered on March 20, 2019 at 11:15 PM

    Woah they're sending you free money. Do you receive the money in your PayPal account? What do I think weird is how they can verify their email? Is that even a legit email address?

    I cloned your form and I was unable to replicate the random email. I think the e-mail has been encrypted. Also, the IP address is different from each submission.

    Did you enable the encryption of your form before?

  • Profile Image
    medicyan
    Answered on March 21, 2019 at 12:43 AM
    not free money - we have now the refund all those stolen credit cards - they use the form to test them is they had money available on them…
    never knew about encryption - how do i do this
    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    jherwin
    Answered on March 21, 2019 at 02:13 AM

    Yes, it seems like they're making a transaction to your form to test cards if it's live or not. Well, that's a problem. I'm thinking of creating a new form but it will not work because your form is embedded in a webpage so they can see it and continue what they're doing.

    For encryption, it will encrypt your submissions and the notifications sent to your email. However, it cannot prevent spammers from performing test transactions in your forms.

    Guide: Encrypted Forms and How to Use Them

    Could you please list all IPs used in the submission and we'll blacklist them on our end.

  • Profile Image
    medicyan
    Answered on March 21, 2019 at 10:43 PM
    is there a way to add captcha to our jotform forms
    Also can we limit to the people registering to canadian based IPs only?
    Thanks
    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    jherwin
    Answered on March 22, 2019 at 12:14 AM

    Good idea!

    Here's a guide on how you can add captcha field to your form: How to Add a Captcha Field.

    Also, can we limit to the people registering to Canadian based IPs only?

    We have a Get Visitor Location widget that gets all the location details of the respondent of your form.

    Here's a workaround how we can prevent the user from submitting your form if the location is not Canada.

    1.) Add Get Visitor Location widget to your form: https://widgets.jotform.com/widget/get_visitor_location
    2.) Configure the widget to get the Country.
    1553227753widget.png
    3.) Then add this condition to your form:
    1553227810cond.png

    Only Canadian users can submit your form now.

    Please test this demo form (clone version of your form). I was not able to submit it since I'm not based in Canada.

    Demo Form: https://form.jotform.com/90798670715975

    The error when users trying to submit the form does not use a Canadian based IP.1553227940error.png

  • Profile Image
    medicyan
    Answered on April 03, 2019 at 09:43 PM
    Hi again,
    We are trying to go back online and keep getting surprises.
    if you look below under condition (#3).
    You asking us the choose “disable submit” but in the drop box I see that’s not available - See the screen shot attached.
    Thanks

    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    jherwin
    Answered on April 03, 2019 at 10:36 PM

    The image you included in your response did not reach our forum. Can you upload it again? Please open this thread: https://www.jotform.com/answers/1767133 and follow the guide below to make sure the image reaches our forum.

    Guide: How-to-Post-Screenshots-to-Our-Support-Forum

  • Profile Image
    medicyan
    Answered on April 03, 2019 at 10:42 PM

    155434575311111.png

  • Profile Image
    jherwin
    Answered on April 03, 2019 at 11:17 PM

    Unfortunately, disable submit button is not available for classic forms. What you can do is hide the submit button. In that case, if the country is not equal to CA then the submit button will not be displayed.

    Alternative condition:
    If "Get Visitor Location Widget" Does not contain "Canada"
    then "Hide" "Submit Button"

  • Profile Image
    medicyan
    Answered on April 04, 2019 at 02:43 PM
    Hide doesn’t appear either…
    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    Victoria_K
    Answered on April 04, 2019 at 04:00 PM

    Hello,

    To create a HIDE condition, you would need to select different type of statement:

    But, as far as I know, captcha should be the best solution agains spam bots. Please consider adding it to the form.

  • Profile Image
    medicyan
    Answered on April 04, 2019 at 04:43 PM
    I just did - since you are oversee can you test it?
    The condition are that the payment form is hidden if outside of Canada
    https://www.partnersafety.ca/course-registration-and-payment.html
    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    Victoria_K
    Answered on April 04, 2019 at 05:30 PM

    Nope, the payment field is still shown. However, form header is hidden. Please apply the 'hide' condition to payment field #4 instead of #1:

    It should work afterwards.

  • Profile Image
    medicyan
    Answered on April 04, 2019 at 05:43 PM
    Done - ket me know if it worked
    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    Victoria_K
    Answered on April 04, 2019 at 05:48 PM

    Now it works, here is a screenshot:

    Please also keep the captcha on the form.

    Also, it seems your form is missing Submit button for some reason? 

    Please add the button for users to be able to perform a submission:

  • Profile Image
    medicyan
    Answered on April 09, 2019 at 06:43 PM
    We are getting a message PCI :: Security error
    Security header is not valid
    What the cause for this?
    Thanks
    Partner Safety
    31-1435 Bonhill Rd, Mississauga
    www.partnersafety.ca
    info@partner-rescue.ca
    Office: 905.670.5230
    ...
  • Profile Image
    jherwin
    Answered on April 09, 2019 at 07:17 PM

    Considering that your other concern is about another topic, I have moved it to a new thread to avoid confusion.

    https://www.jotform.com/answers/1788034

    Please refer to that thread for any related questions and/or follow-ups.