Fraudulent access to paid membership?

[toofast1]

Hello,

I've used this repository to create a paid membership system in my app. Specifically, who buys one of the packages will get access to the VIP section which contains different content, coming from JSON API. I wasn't adding content into the VIP section yet since the app is new and I thought nobody was going to buy VIP at this moment, therefore this section had outdated content, however I've started receiving reviews/emails that the content in my app is outdated, even if on the free side of the app, everything was up to date, the only reason for their comments was that they actually can see the content of the VIP section. What is more strange, is that Facebook Analytics is logging purchase events every day, but I don't see any order inside Play Console, only my test orders, and I've just checked my Merchant Account and didn't received any purchase.

I also tried replicating in any way to get access to the VIP section and I couldn't get it done without actually paying (tried with test decline order too, I couldn't get access and the order instantly appeared in Play Console).

Now I'm wondering if there's any chance that they could actually get access to the paid section using fraudulent orders, but if they're doing this, I could see the orders in Play Console. Can you please let me know if bypassing the order may be possible?

I'm also thinking that they may be some haters or the competition, however I've received both reviews and emails and they look to be from real persons.

Thanks for the help!

[j3k0]

It's been a while. Closing for inactivity. Reopen if the issue is still ongoing.

[toofast1]

The issue persists.