Credit Card Hack...
OK. i was checking my junk folder and noticed several messages from Paypal. they were like, we need an additional info to verify, otherwise you want be able to do any transactions, blah,blah
I have an acct from 2005(i think). non of my info changed. and they werent using my name, just email address. I went to paypal but not from the link they provided. everything is fine, no alerts, no messages. If anybody will get anything similar please do not go to Paypal thru link they provide. I think this is what they try to do with Chase bank not long time ago.
Yeah I noticed one of those in my Spam folder not to long ago…I noticed that the email didn’t contain the Paypal logo and all my official Paypal email comes thru my regular inbox. Sneaky, if I had been less awake I might of fallen for it.
Hi, could you please PM me the company’s name as well? I normally just lurk on the steepster forums to look for sales and whatnot, but if there is a company I should take extra precautions ordering from due to an unintentional security hole on their end, I’d like to know.
I’m going to jump in with a different warning. I received an email seemingly from Paypal. It looks very legit. BUT the email address is e.paypal.com Notice the extra e added? It is an attempt to get my bank numbers supposedly tied to Paypal. Of course the URL of the page they link has a lot of suspicious added letters even if it is an https address. This is almost certainly fake.
My point is be careful. Maybe the tea company mentioned was hacked. Maybe some of you did it to yourself by clicking a legit looking email.
If you want to make an account changes involving your bank cards and numbers always go to the actual site yourself. Don’t let an email lead you astray.
Although, we are not the original company the tread was about (at least I don’t think so since I did not get any emails, but correct me if I’m wrong) I did get a message from Steepster customer that it looks like our site was hacked as well. I can not say that I’m 100% sure it was not, but it’s very unlikely since we take the following procotions:
1. We are too small of a company to safely store and manage your financial info, so we use PayPal for ALL our transactions, regular PayPal as well as credit card paymnets.
2. Our check out page is SSL secure.
3. The only info that is passes thru our website and is stored is your name, your address (so we know where to ship it), your email and phone number(so we know how to contact you if needed). Transaction ID number from PayPal. Also your method of payment so it’s either “PayPal” or “Credit Card”. When paying with credit card we also get info for your credit card in the form of “XXXX XXXX XXXX 1234” where only your last 4 digits are visible to use or anyone hacking into our webiste. This is done by default to keep your CC info safe. Last 4 digits are needed where contacting PayPal in case of some issues. Surely with that limited CC info, no one can use it to make additional purchases.
The only way we know if the payment went thru is when PayPal sends us confirmation that the order was “Paid”. Even is someone was to hack into our website, there is not financial info to steal since we do not store any, simply for that reason – so it can not be stolen. We know we are not a really secure place, that is why we use PayPal to take care of it all. Nevertheless, I will contact PayPal if they have any info on this, but if there is a problem at their end, I’m sure we’ll all hear about on the News soon.
Anyway, my apologies to that person for going thru this problem. I personally had to replace our business credit card 3 times this year for the same reason so I know it’s frustrating.
Red Leaf Tea
Thinking about this, it might be possible that this persons computer itself has been hacked. I know that my antivirus programming has a safe pay function that is supposed to make it harder for hackers to read key strokes etc. I was wondering if these types of programs are actually effective? So far I’ve been lucky. My Aunt once had her card skimmed at a gas station, the credit card company thankfully noticed and reported irregular activity within a day.
I always wiggle the card reader thing at gas stations because I’ve heard about people replacing the real one with a fake one that records the info for the hackers to then steal. I probably look paranoid, but better safe than sorry, haha.
I know people who only psy inside for that reason. Unfortunately in the north of the city, many of the gas station have had a spat of people taking off without paying so they’ve converted to a pay first system. It’s a good idea to rake a good look at any card reader!
Kudos for immediately letting people know there might be a problem. Although, if your payment is processed through Paypal, there’s really next to no chance the compromised card was because of your site. But thanks for actually alerting your customers so they can check for themselves.
If I’ve heard right you weren’t the original company in question.
Don’t know if this will help anyone, but I wanted my Paypal account to be verified and have it linked to a checking account so sellers would feel safer selling to me and I would feel safer buying because I get Paypal protection.
I set up a special checking account that has very, very little money in it – just enough to keep the account open. That is what my Paypal is linked to, and that way, if there is ever a paypal hack, I won’t be even temporarily inconvenienced waiting for my money back because there is so little of it they can get.
Ost (or whoever knows), can you PM me the name of the company that was originally the issue in this thread?
I will say that I’ve had my CC info stolen quite a few times now, mostly because I used to have a CC that was very unsecure (I have far less problems now that I cancelled that card). But it’s all been in-person problems; one time there was definitely a gas station skimmer, and other times the CC databases of companies where I had bought things in-store (Michael’s, Target, Teavana). I do tons of online shopping and so far have never had a theft that was relatable to an online vendor!
Login or sign up to leave a comment.