When looking at my orders in my admin section, I saw a couple that were incomplete - this is usually when a potential customer starts an order to see how much shipping will cost.

One of these entries appears to be someone entering code in one of the fields (but over and over again)
Is there something I should do to protect against something like this? Is it possible that they could have used this to get information?
Attached is a screen shot of some of the order page (the person actually added approx 140-160 items like this).

We get those about once a year.
Likely shipping address Laguna street in San Francisco.

The good news is you have a solid shopping cart with the proper protections to prevent the attempted attacks.
Usually they go away in short order and you can just delete the orders - at least that's what we do.

Thanks,
David