Shodan is an online search engine and security platform that indexes internet-connected devices and services, providing tools for cybersecurity research, asset discovery, and attack-surface monitoring.
Shodan is an online search engine and security platform that continuously scans the public internet and indexes internet‑connected devices and services. Security professionals, researchers, IT teams, and companies use Shodan for asset discovery, vulnerability assessment, and attack‑surface monitoring. Through shodan.io, users can search for exposed devices, access historical scan data, use developer APIs, and set up automated monitoring for IP ranges and networks. Shodan offers both free and paid access tiers, including a one‑time “Membership” upgrade, monthly/annual API and enterprise plans, and specialized monitoring products for ongoing security operations.
A Shodan charge may appear on your bank or card statement when you pay for a Shodan Membership upgrade, subscribe to an API or enterprise plan, purchase additional query credits or data exports, or enable Shodan Monitor or other add‑on services. Some charges are recurring (for example, monthly or annual subscriptions for API access or monitoring), while others are one‑time (such as lifetime Membership upgrades or on‑demand data purchases). You might also see a small temporary authorization hold when you first add or update a payment method; these pending checks are typically reversed automatically by your bank within a few days and never settle as actual payments.
If you’re unsure about a Shodan charge, start by signing in at shodan.io and checking the “Account” or “Billing” section for your active plans, invoices, and payment history under the email address tied to your card. Look for order confirmation emails from Shodan in your inbox (and spam folder) for details on the product, billing cycle, and amount. For unresolved questions, you can contact Shodan support via the help/contact options on shodan.io or by using the support link in your account dashboard; include the last 4 digits of your card, the exact amount, date of the charge, and the email(s) you might have used. If you still don’t recognize the payment after checking your accounts, ask your bank about possible card misuse and consider requesting a new card.
Bank Statement Variations
1 known variations
These are the raw merchant codes that appear on bank and credit card statements that we've identified as belonging to Shodan.
What types of Shodan purchases commonly show up on bank or card statements?
Most statement entries for Shodan come from one of four things: a one‑time Shodan Membership upgrade, a recurring API or enterprise subscription, charges for Shodan Monitor or similar monitoring products, or pay‑as‑you‑go items like extra query credits or data exports. Your statement description typically includes “SHODAN” or “SHODAN.IO” along with the amount and date of the transaction.
Is Shodan billed as a one‑time purchase or a subscription?
Shodan offers both one‑time and recurring billing, depending on what you bought. The Shodan Membership upgrade is usually a one‑time lifetime purchase tied to your account, while API plans, Shodan Monitor, and enterprise features are billed on a recurring monthly or annual basis until you cancel. Check your shodan.io account under Billing to see which charges are one‑time and which are subscriptions.
What are typical amounts for Shodan charges?
Amounts vary by product and currency, but many individual users see a single one‑time Membership fee (often around the cost of a mid‑range software purchase) or modest monthly fees for API access. Organizations may see higher, regularly recurring charges for enterprise, corporate, or large‑scale monitoring subscriptions. For current pricing, sign into shodan.io and view the Pricing or Billing page, as plan costs and promotions can change over time.
How do I cancel a recurring Shodan subscription so future charges stop?
Log in to your account at shodan.io, go to your Account or Billing section, and review your active subscriptions (such as API plans, Shodan Monitor, or enterprise tiers). From there, you can manage or cancel each subscription; cancellation stops future renewals but typically does not refund the current billing period. After you cancel, you should receive an email confirmation—keep this for your records and verify that no new renewal date is listed in your dashboard.
How can I request a refund or dispute a Shodan charge I don’t recognize?
First, verify whether you or a team member signed up for Shodan using the card or a company email; many “mystery” charges turn out to be legitimate work‑related subscriptions. If you still believe the charge is incorrect, contact Shodan support through the help/contact link in your shodan.io account and provide the transaction date, amount, last 4 digits of the card, and any related email addresses. Shodan reviews refund requests case‑by‑case, and if they confirm an error or unintended renewal, they may reverse or credit the charge; if you suspect fraud, also notify your bank immediately.
Why do I see a small or duplicate Shodan charge that later disappears?
Shodan or its payment processor may place a temporary authorization hold (often for a small amount) when you add or update a card, or when a subscription renews, to confirm the payment method is valid. These appear as pending on your statement and are usually released automatically within a few business days, never posting as completed transactions. If a pending entry remains for more than a week, contact your bank and, if needed, Shodan support with a screenshot of the transaction.
How can I find the invoice or receipt for my Shodan payment?
Sign into your shodan.io account and open the Account or Billing/Invoices section, where you can typically see a list of past payments, downloadable receipts, and VAT/tax information. Each invoice shows the product (for example, Membership, API plan, or Monitor), the billed period, and the exact amount charged. If you can’t access your account or don’t see a receipt, contact support with the email used at signup and the transaction details so they can locate and resend your invoice.
Could this Shodan charge be from a shared or company account I forgot about?
Yes, many unexplained Shodan charges come from shared work accounts, security team tools, or an old personal email used during a trial or conference promotion. Check with colleagues who manage security tools, review password managers or email accounts for Shodan login details, and search your inbox for “Shodan” or “shodan.io” to find old confirmations. Once you locate the account, you can adjust or cancel the subscription and update billing contacts so future invoices go to the right person.