Consequences of card testing on $0/$1 authorizations

Fraudsters gain the same “success” vs “decline” responses from $0/$1 authorizations as they do from charges. Card testing on $0/$1 authorizations typically occurs when tokenizing a card source or adding a card source to a customer object. This tells the fraudster whether or not a card is active. These attempts will not show up on a cardholder’s bank statement, which eliminates the possibility of disputes. However, if your integration automatically attempts a live charge after the authorization step, you will then be exposed to disputes and need to refund successful charges.