Credit Card Hack...

94 Replies

I would also like a pm letting me know of the original company please. I would greatly appreciate it. Thanx in advance.

Login or sign up to post a message.

It’s been 5 days since Ost E-mailed the company. Did they ever respond? Did they fix whatever the security problem was that allowed the breach to occur?

ashmanra said

I got the impression that several people deduced from the nature of the hack that it must be on her end, happening at her own computer. I could be wrong.

Uniquity said

If the issue is with Ost’s computer or personal banking security, people should really stop sharing the company via PM. I better appreciate her initial reluctance to share the company name given the loss of business this thread may result in. At least we have all been reminded to be vigilant about who we give our information to and how we share it – including the security of our own devices.

Ost said

I emailed the company and it seems more of a paypal problem. They forwarded my email to someone who would look into it and all. Really there’s nothing to worry about. If you are that worried then you should not buy much online because it can happen with any website.

Thanks for the PM and following up. The username isn’t entirely serious, I’m not that worried. It definitely can happen with any website, however most customers do like to make sure that when it does the company then checks their system over, is responsive to the problem, etc. I was just checking back here to make sure they were doing so. Good to know they apparently are.

Login or sign up to post a message.

would someone please be kind enough to pm me the name of the company?

Login or sign up to post a message.

id like to know the company as well….please PM. I think we could all use all the help we can get keeping our identity info safe in this day and age of cybertheft. thank you in advance to whoever steps up to PM me!

Login or sign up to post a message.

apt said

Stop worrying, it’s more than likely not the vendor’s fault, I checked their site and they use https and process payments through PayPal. The vendor doesn’t even see your CC info at all, let alone store it and get hacked.

Login or sign up to post a message.

I think that the identity of the company should be made public. That way they will definitely have the motivation to address the problem for once and for all. Repeat offenders? Sounds like an employee issue….

Let me say that the credit card which I recently used to purchase something at MYHABIT was used several times over the weekend by someone else. I had not used the card for anything else in a while, so I deduce that the offender accessed their data.

The credit card company noticed suspicious activity and declined all but one of the attempted charges. They cancelled the card and issued me a brand new one with a different number.

Login or sign up to post a message.

I think the issue is that it is a circumstantial accusation. Someone could have hacked the card number long before and just happened to use it when the tea orders were made. I think there is a potential legal liability with posting an accusation that costs someone business if it’s not a rock solid fact.

Really all of this PMing has gotten out of hand too, and has possibly damaged a company who is likely innocent.

Shouldn’t the thread just be deleted, then?

cookies said

Agreed x2 I do think it would be good to consider deleting this thread. It’s been confirmed they process through Paypal, which means that if the credit card was compromised in those two purchases it is Paypal’s fault, and not the company’s. And it’s not even been confirmed that the compromise happened during those purchases.

PMing dozens of people is barely better than airing the company name in the open. And it seems very unfair to do so without confirming some sort of guilt. I think it was very nice to alert people to the fact that they should be checking their statements, but I think this thread is possibly doing harm to the reputation of the company.

Ost said

Not really sure why anyone is taking it as an attack….It was literally meant to be a friendly reminder to make sure you check your credit card bills. It goes for any purchase.
I emailed the company and I even mentioned that I was the one that started this thread and they didn’t feel attacked whatsoever. They think it was more of a PayPal fault.
No one was getting attacked. And anyone who knows which company I used didn’t think of it as an attack either or thought badly of the business.
These things happen. This thread was only a reminder. Not an attack.

cookies said

No one said it was an attack. I think we all realize it was meant to be a CC warning, which was a very nice thing to do. But there have been a dozen PMs + who knows how many behind the scenes, and the company name is getting around. This thread keeps getting bumped to the top as more people want to know the company in question. It’s been clarified that they use https and process through Paypal which means that the company is not to blame.

This could possibly damage their business when they are not at fault and there has been no conformation as to whether or not this is in fact where they card was compromised.

Of course you’re welcome to do what you think is right, and it was wonderful that you wanted to help people out. But, personally, I think at this point it would be a good idea to consider deleting the thread to avoid the spreading of possible misinformation about the company.

Login or sign up to post a message.

Login or sign up to leave a comment.