Greetings,
Starting this morning, my a2billing from my 2 Elastix servers are starting to bomb my e-mail account with this e-mail:
Subject: Epayment Gateway Security Verification Failed
Body:
Dear Administrator
Please check the Epayment Log, System has logged a Epayment Security failure. that may be a possible attack on epayment processing.
Time of Transaction: $time Payment Gateway: $paymentgateway Amount: $amount
Kind regards, EST Telecomm, INC
-POST Var Array ( [transactionID] => 12 [sess_id] => 324345 [key] => 35434 [mc_currency] => 345 [currency] => 325 [md5sig] => 35 [merchant_id] => 345 [mb_amount] => 01 [status] => [mb_currency] => [transaction_id] => 54646' [mc_fee] => 4356456 [card_number] => 2343235345 [x] => 51 [y] => 8 )
Transaction ID does not exist, merchant ID does not exist, card number does not exist... This certainly is an attack. Has someone stumbled with this before? I have a firewall blocking pretty much everything... A2B is 1.9.5 because I run it over Elastix 2.4.0 and due to the PHP version they use (5.1.6) I cannot upgrade A2B to version 2.0.x
Please help, I have had to stop the postix service to avoid dealing with thousand mails about this...
Paul
|