(not knowing anything) - wouldn't it be possible to give the cc company a white list of clients that can continue to use it and block all other requests?