[IkmoIkmo]

That's a good point. I guess creditcard are just horribly unsecure right now. They're literally pieces of paper (plastic) with a password (credentials) written on them. Usually without any form of 2FA.

Anyway, have you spoken to some other company's about this? It's a very common issue of course, you'll usually have an part of an entire department dedicated to it at larger company's like AirBnb. For shipping there's usually a pretty decent flagging process (check IP, compare shipping address vs creditcard address, flag certain countries as high risk, flag first-buyers for high-price items as high risk etc etc. Once something is flagged you follow up with a phonecall. If someone is spending $30k or $100k and has to wait days to wire it, usually a phone call or an ID selfie (getting popular) isn't such a big deal to arrange everything within 24h.

Anyway, I guess the most important question right now is... did you see bounce rates spike once you started showing people the 'wire only' page? Very curious!

Btw, I generally condone posting information of the scammer on the condition the scammer was warned of the fact the information would get posted and that if he complies, even years later, and returns the money, the info is removed. And on the condition the information was publicly available. And part of that could have been done just fine without illegal access to his email. I sympathise (was scammed two months ago) and in all honesty I'm 99% sure I would've entered the email accounts if I got scammed, but that doesn't mean it's right. At the very least I'd strongly consider taking down those facts, not just for your own protection but also because it glorifies something illegal. Criminals are not alienated from their right to privacy, particularly not at the hands of citizens, as much as it sucks.