Skip to content

Fraud Protection


With our Fraud Protection for Magento 2, you'll stop fraudsters on the spot. This extension by Aitoc uses the popular MaxMind minFraud service, which identifies risky orders. A detailed report of transaction verification is also available in the Magento Admin Panel.

Key features:

  • Automatically detect fraudulent orders
  • Show Fraud Score and validation details in the Magento Admin Panel
  • Keep suspicious orders automatically (optionally)
  • Get Admin and email notifications of fraudulent orders
  • Editable risk settings
  • Affordable customer order history
  • Integration with Google Maps
  • Order status and Payment method conditions

Find out how to install the Fraud Protection for Magento 2 via Composer.


All Aitoc extensions can be customized to fit particular business needs. If you have questions about any customization, please drop a message at [email protected]


The fraud Protection module is compatible with the following Magento platforms:

Community Edition (Open Source) Enterprise Edition (Commerce) Cloud Edition
2.3.0 - 2.4.* 2.3.0 - 2.4.* 2.3.0 - 2.4.*



Go to STORES → CONFIGURATION → AITOC EXTENSIONS → FRAUD CHECK (MaxMind) → GENERAL to configure the extension.

Here you can Enable/Disable it.

Choose 'Yes' to use the extension features. Also, you can 'Add Score Column to Grid'.

MaxMind Settings

In this section, you're able to configure MaxMind. Please indicate the following here: 'MaxMind account ID', 'MaxMind License Key' and 'Request Type'.

There are 3 types of Request:

Fraud Detection Settings

The riskScore, returned by the minFraud service, represents the likelihood that a given transaction is fraudulent. Merchants use the riskScore to determine whether to accept, reject, manually review, or submit transactions to complementary services for further screening.

Field Specification
Score Threshold Enter values from 0.01 to 100.
Overflow Threshold Action Choose between two options: 'Do nothing' or 'Hold order'.
IP Address Exceptions Suspicious orders from these IP addresses will not be held. RegEx is supported. You can use value like 127.0.0.*, for example.

Notification Settings

Here you can set Admin and email notifications of fraudulent orders.

Field Specification
Is Enabled Set 'Yes' to enable email notifications.
Email Sender Choose sender from the dropdown list:
Email Template Choose your preferred template from our dropdown menu:
Send To Select from the list email addresses to which you want to send notifications.

Please set 'Yes' in Admin Notification Settings to enable it.


After configuring, don't forget to click on