Support » Plugin: WooCommerce » Strange random Shipped woocommerce order?

  • Resolved zskyla

    (@zskyla)


    A very strange random order showed up as “shipped” under my “woocommerce > orders” section.

    The order has my email address, and my name, but the shipping of:

    Thai Nguyen city
    Thai Nguyen
    Vietnam

    The random “shipped” order also has 2 of the same latest items from my shop which is $128, but comes to a total of $0 and has no payment method associated with it, no coupon code, and no IP address (which is very strange since all of my orders—including my own—has an IP address associated with it, and a payment method). The order only shows up on the backend of the website under “woocommerce > orders”.

    No confirmation email was sent to me, and no webhooks fired to push the ordered item details to my print on demand partners like it’s suppose to. Outside of “woocommerce > orders” this order doesn’t actually exist. Is there a reason why this random order was created in the backend of my website under woocommerce or why this might be happening?

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support Hannah S.

    (@fernashes)

    Automattic Happiness Engineer

    Hey there @zskyla,

    That sounds very, very odd. I’d start by deleting the order and finish by locking down your site:

    * Change admin passwords
    * Update all plugins
    * Update all themes
    * Run a Sucuri check: https://sitecheck.sucuri.net/

    I’m not sure where the order came from – it could have been a strange hack, or it could have been a plugin with malware.

    Stef

    (@serafinnyc)

    I would also recommend you use Activity Plugin so you can view where, who, what.

    This will help you also see IP addresses and pinpoint the ghost.

    @fernashes I did all security, and malware checks the same day I received the order using sucuri, virus total, and several others.

    I did a full malware scan for all my WordPress plugins. My site came up clean for all of them I checked my security logs. Nothing out of the ordinary came up.

    Checked to see if any plugins were installed without my knowledge. None were.

    Changed all my passwords. Deleted unnecessary themes, and plugins. Enabled two factor authentication. Enabled stricter firewall.

    Nothing made sense…until I checked my WP email log for anything that came through, and saw that an email confirmation was sent but to my “Wordpress.com” email that is linked to Jetpack (not my business email that gets all the order confirmations).

    It seems the problem occurred through Jetpack, and WordPress.com

    I’m taking additional measures to rectify this issue.

    @serafinnyc thanks, that plugin is really helpful.

    Thank you all for your help.

    Stef

    (@serafinnyc)

    You’re welcome. It is. Has saved me several times in the past. LOL Enjoy.

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.