I've only been running WooCommerce for a couple of months, and things went OK for the first couple of weeks but since then my store has been flooded with the same low-value fake PayPal orders, presumably for testing credit cards. OOPSpam successfully kept them out for a day or two and then the free trial was done, and a subscription is $40/month - as much as I'm paying for hosting. I've seen mention of Cloudflare rules to stop it, but I'm not clear on what plan I need to be able to do that and whether it'll properly integrate with my store - I've tried all of the common captcha plugins but none of them work 100% with my Flatsome checkout process and I don't know if Cloudflare will have the same problem. Surely it can't be *that* hard to have a plugin reject these based on some recognition criteria? Even if I could just silently ignore every order under $2 that would be fine with me. What are my options short of paying $40/month?