FingerprintJS Rate Limiting

Task

FingerprintJS Rate Limiting

Tech Gadget Hub, an online retailer of electronics and accessories, was struggling with repeated checkout submissions from the same device. They needed a way to curb bots that were repeatedly testing stolen credit card details while still allowing genuine customers to shop without disruption.

Challenge

Bots were repeatedly attempting orders with different stolen cards, sometimes hundreds of times per hour, all from the same device or using similar browser profiles. Traditional IP-based blocking proved ineffective because attackers were using proxy servers to rotate IP addresses, making detection difficult.

Solution

The team implemented FingerprintJS Rate Limiting from Checkout Protection Pro, setting a limit of three checkout attempts per device fingerprint within a 2-minute window. This meant that even if bots changed their IPs, their device fingerprints would still be tracked and restricted.

Results

Tech Gadget Hub saw a 95% reduction in suspicious repeat attempts while legitimate customers continued to check out without any noticeable impact. The support team reported fewer chargebacks and fewer manual review cases, freeing up resources for business growth