I am using Magento 2.4.7-p1 hackers are trying to place order using guest cart REST API carding attacks
tried cloudflare , rate limit magento and captcha also, but no use in braintree created so many rules, but no use.
As per our analysis, this request will be used while making orders from APIs not from the front end if we disable this API from the code level under this file.
vendor/magento/module-quote/etc/webapi.xml
Code to comment is below.
###############################################
################################################
disabled above code still carding attack is running.
can any one please tell how to stop guest order rest api