BBS MONTHLY BUZZ

A monthly email newsletter from Best Business Strategies

May 2024

In this issue:

  • -Sage 50 HR Feature
  • -LOGICIM Sage 50 Custom Reports
  • -What is a Carding Attack & Prevention 

I'm Kara and typically work behind the scenes at Best Business Strategies. I have a masters from WVU in Industrial Labor Relations/ Human Resources and have held human resource positions ranging from a department store to a hospital. I was beyond excited when Sage added Human Resource features in 2024. 

While the free HR features included in Sage will save you time, the true superstar is the core HR Add-on for Sage 50.  I know from experience that scheduling and attendance can take up a significant amount of time in your busy schedule. I was very impressed with Sage HR’s  Leave Management/Absenteeism Module & Scheduling Module. The platform is easy to use and cloud-based, meaning you can use it from home. I could also see the Expense Module being a real-time saver. See how Sage HR can save you time.⌚Sign up for a demo or a free trial. 

Sage 50 2024 Recap

 

Sage HR Integration for Employee Self-Service

Free your time by skipping manual HR tasks while also keeping employee records organized and secure!

To continue our investment in our cloud-connected solutions, we have integrated Sage 50 with our Sage HR solution to enhance your payroll experience. This is available to those with a Sage 50 cloud-connected subscription with payroll. After you download and install 2024.0, you can connect your business to Sage HR.

 
ratio 

Sage Free HR Employee Self-Service functionality includes:        

  • Employee profile management
  • View paystubs online
  • Mobile app access  

You can customize your Sage HR with the Core HR Add-On  ($5.50 per Employee)

 

  • Org charts
  • A database of employee information
  • The ability to post company announcements in one place
  • Electronic document management and eSigning
  • The ability to automate alerts and reminders
  • Leave management

The features that are included:  

For further customization, you can add additional modules at an additional monthly cost:

  • Performance: Set goals, schedule 1-to-1's and manage 360 feedback ($3.00 per employee)
  • Shift Scheduling: Flexible & functional shift planning module ($3.00 per employee)
  • Timesheets: A fast, easy way for employees to track hours worked and overtime ($3.00 per employee)
  • Expenses: Submit and manage expenses from the mobile app ($1.50 per employee)
  • Recruitment: Create job ads, manage applicant pipeline and schedule interviews ($200 a month)
SIGN UP FOR A DEMO or a 30 DAY FREE TRIAL

Are You Tired of  Wrestling With Spreadsheets?

 

LOGICIM, the SAGE 50 reporting experts, can HELP!

 

Trust Logicim to create reports that meet your specific needs.


Now starting at just $199.  

 

Tell us about your dream report, and we'll send you a quote.

Click here to fill out form

What is Carding and How to Prevent it in Your Online Store 

Carding is an automated form of payment fraud in which fraudsters test a bulk list of credit or debit card data against a merchant’s payment processing system to verify breached or stolen card details. Here’s what happens:
1. The fraudster procures a trove of card details from the dark web or other channels.
2. They use a bot to attempt to make small online purchases with the card data across multiple sites, in order to validate them. This could happen thousands of times until they are successful.
3. They filter the validated card details from the rest, and either use them for high-value fraudulent purchases or sell them onwards on another underground site.

 

We are sharing this latest scam with you because we fell victim to carding in March. The beauty of having an e-commerce store is that it can be open 24-7. One early morning, our credit card processing company processed 8,000 orders within one hour. As soon as we arrived at the office and aware of this situation, we canceled all the orders and charged back the credit cards to make it right with the victims. We currently owe thousands of dollars in processing fees.

 

We are bewildered that this happened to us. Our website is hosted through Rocket.net using Cloudflare Enterprise Edge security, the same protection used by Doordash, Revlon, & Dropbox. Furthermore, it is inconceivable that our credit card processing solution allowed 8,000 orders to go through. Unfortunately, during my research for this article, I discovered that carding is rising, and small businesses are particularly vulnerable.

 

Here are some steps you can take to protect yourself:

1. Add a reCAPTCHA feature

A CAPTCHA is a system that enables web hosts to distinguish between a human and a robot accessing a website. In other words, it protects websites from spam and abuse.

2. Ensure your website is validating on both the frontend and backend

Your website frontend is where your customer enters their credit card information. The backend is the programming that processes credit card transactions. It handles the direct communication to the payment gateway where transactions are processed, typically via API token. An effective way to deter credit card testing is to require a login or session validation when your customers perform specific tasks—such as making a payment or creating an account.

3. Create a velocity logic ruleset

Velocity checks monitor specific data elements occurring in specified intervals within a brief period and are critical in enforcing fraud prevention for merchants. To reduce incoming fraudulent activity, create a velocity logic ruleset that filters card authorization test attempts by IP address, dollar amount, and repetition, then blacklist any IP addresses that meet your criteria.

4. Identify illegitimate traffic and behavior

Another tactic to assist in identifying fraudulent activity is to view backend server logs, where you’ll most likely see a significant increase in declines when attempted fraud happens. Credit card testing declines are usually identified as failed request logs or 402 errors. This error code indicates that payment cannot be processed for a particular reason—either the transaction was declined by the processor, the payment gateway, or even the issuing bank. A high volume of failed requests is indicative of credit card testing.

5. Partner with a secure payments provider

 

We purchased an anti-fraud plugin that overall let us set stricter transaction rules. It seems like a new scam is born every day. As small business owners, we must look out for each other!

 

Best Business Strategies Communication Schedule

  • First of the month Sage 50 Renewal Reminders🐘
  • Six months after renewal Sage 50 Check-Up🥼
  • The 15th of the month The BBS Buzz Monthly Newsletter🐝
  • Any urgent Sage 50 news will be sent anytime of the month and will be marked with this emoji: ❗

304-233-2612

 

Shirley@BestBusinessStrategies.com

BestBusinessStrategies.com

{CONTACT.COMPANY} 

Click Here to Unsubscribe