A small number of our merchants are experiencing “carding” via Payment Link - an increase in fraudulent card-not-present transactions.
Incident Report for PayTrace
PayTrace has made several security updates to address the fraudsters that were bringing their cards in and testing them on our site. We have seen the attempted fraud cases drop to virtual zero daily incidents since the releases of our security updates. One of the major updates was improving our URLs with the Payment Link. Your security is our top priority, and this is just one example of the ways we’re consistently working to keep your accounts secure.

We understand that fraud is an ongoing battle, and PayTrace is more determined than ever at tackling any future incident the comes our way. We will continue to monitor all accounts and raise the flag when needed moving forward.

Stay on top of our platform updates by subscribing to our blog. We’re posting regular updates on how merchants can stay vigilant against fraudulent transactions. For additional information, please connect with the PayTrace Client Support team.


The PayTrace Team
Posted Nov 18, 2021 - 08:29 PST
To mitigate this we recommend you confirm the admin email listed on your account. This is important, because when a security feature is triggered, our system emails the account admin. Merchants should also review transactions daily prior to settlement. As fraudsters become more sophisticated, we will continue to adapt security features. PayTrace and the entire payment industry are experiencing carding attacks as a result of fraudsters bringing in their own cards and testing them on public sites, resulting in fraudulent transactions being processed. Carding is not a data breach. Most of these transactions are being declined, with small amounts approving and settling. Feel free to contact support if you have additional questions.
Posted Sep 30, 2021 - 09:20 PDT
This incident affected: Virtual Terminal.