Recent Fraudulent Use Of Credit Card

[BiilyBlavk]

So for my part I don't feel it necessary to drop names. Remember something:
Once said, the damage is already done. Retractions after the fact are wasted.

Stating the last legitimate transaction is not making accusations. Was basically looking for a pattern: common credit card processors, who is supplying the security, who is issuing the certificate.

Is GoDaddy as good as VeriSign or Comodo. Is all shopping cart software equally safe?

Seems there has been a breach somewhere along the line. The breach may be a factor common to many vendors.

[GreenGrape]

Hi Everyone. I work in the Bankcard industry and trust me this type of stuff happens all the time. If fraud occurs on your account, you will get the money credited back to your account. It will just take some time. It's just not a good feeling when it happens. I always suggest making online purchases through a major 'credit' card, stored value credit card and never a real Debit card that is linked to your personal checking account. Let the hackers fool with credit, and not your real checking account money. That could take days or weeks to obtain credits and you would be out the money until that occurs. Many times the payment processing platform itself gets hacked, like Heartland Payment Systems, RBS Worldpay and others have in the past two years (Google it.) The vendors are correct that when we submit our Credit Card information the PAN (Personal Account Number) is truncated. They don’t even know what number it is. To support what the supplier indicated, Authorize.net is an outstanding payment processing gateway. The industry is now moving to end-to-end encryption and transactions are becoming safer with the PCI Council compliancy standards become more and more strict. More information on the security standards can be found here: www.pcisecuritystandards.org

If you have any question, Consumer or Merchant-based questions on rates, chargeback’s, standards, compliancy or any industry related question - please let me know. I have worked for most of the payment platforms, gateways and alike for many years. I'll be glad to help answer any questions that you might have on the subject

[vapn]

A few months back I had someone get into my paypal account and then into my bank account directly. I am thinking it must have been a purchase I made on ebay. The way I was tipped off was an email from paypal saying there had been fraudulent activity in my account and it had been frozen. I then went directly to my online bank account and found a few more transactions there that were made while I was sleeping. I called the banks 24 hour hotline for stolen credit cards and they immediately canceled that debit card used to verify my identity on paypal. I had all my funds back in two days time but it was sure a shock to say the least. Since then I have gone to a pre-paid card and I feel a bit safer but you just never know how these people get your account information in the first place. I was told by the bank to make sure I do regular scans on my computer for spy ware.

[Heartisan]

My card got hit too, but since I've been reading about this on different forums I've been calling my banks automated line and checking for odd transactions. $1.25 charge from the UK showed up, and bank changed my account number immediately after I called.

So thank you for posting about this!

4 years ago my identity was stolen - never found out how - and they charged $10,000 to Macintosh for computers. No one contacted me until I got a bill for non-payment. Since then I thought I was being safe. I even have an old closed bank account on my Paypal, and use my CC instead.
Just asked my hubby to pick me up a prepay MC from Walgreens... It's a pain, but worth it not to worry.

Lori

[KEITH97M3]

Yay Lori ,
nice to see you here and I am glad to hear you stopped the fraudulent charges before the big damages started. Everyone should go over their statements either online or at the bank before it is too late. By the time the monthly statement arrives, the damage could already be done and the thieves could already have the goods in hand.

Hope this helps others as well.
Aloha, Keith

[blindsoup]

I also just had my accounts hacked after buying from a reputable vendor, so I doubt that they are at all to blame.
The main issue is being completely without funds until this clears up.

I honestly wonder why we in the Vaping community seem to be hit like this so frequently.
What is is that is consistantly making us such an easy target?

I don't know for sure, but my guess is the Vaping Companies do not have thousands of dollars invested on secure servers, so they are easily hacked -

[vapethis]

Hey. Pretty new to the vape scene. I found this particular topic googling the term.
3 weeks ago I was issued a brand new charge card. I used it with only three online vendors and one local restaurant.
Those 3 vendors were all Vape related. One of them makes smokejuice and is a 30 million dollar company. I would imagine they have some pretty good security but you never know. I have emailed the other 2 vendors to nicely inform them of the issue.

I can tell you with certainty that online vendors, depending on the shopping cart system they use, can have access to your full credit card info. When I used pro stores for my etail business I could see the entire card along with the expiration date, etc.
I have since gone back to paypal as I feel they have the best security in place for both the seller and buyer. In fact i don't even want to buy from a vendor unless they use paypal.

With Paypal a vendor will get an unconfirmed status so the risk is on us, the etailer, to send the goods. If they are confirmed, both the seller and buyer are insured to get their money back. About a week ago, I had an order come through my site for about $15 and it was unconfirmed. I took the risk and shipped it and the bank reversed the charges and sure enough I am out the money.

But it takes nothing for hackers to get into a system and get that charge card info. Especially if these etailers are using the same computers to go online and view websites. They can have keyloggers, screen grab software, etc and can grab your CC number and use it to by goods or services at other sites.
In my case it is fairly easy for me to narrow down where mine may have been compromised because I just got the card 3 weeks ago and have only used it a few times and the 3 that were online vendors, again, were all vape related.

Granted, I would order from these places again but it would have to be using some other kind of method than a charge card. I have contacted these vendors to let them know what happened. It's awful peculiar that this thread even exists. So, vape vendors beware, check your system, put in firewalls, antivirus stuff etc because one or more of you may have a problem.

Personally I use a Mac, while they aren't impenetrable, mac hacking is pretty rare as are having keyloggers etc, on a mac.

[BiilyBlavk]

Hey. Pretty new to the vape scene. I found this particular topic googling the term.
3 weeks ago I was issued a brand new charge card. I used it with only three online vendors and one local restaurant.
Those 3 vendors were all Vape related. One of them makes smokejuice and is a 30 million dollar company. I would imagine they have some pretty good security but you never know. I have emailed the other 2 vendors to nicely inform them of the issue.

I can tell you with certainty that online vendors, depending on the shopping cart system they use, can have access to your full credit card info. When I used pro stores for my etail business I could see the entire card along with the expiration date, etc.
I have since gone back to paypal as I feel they have the best security in place for both the seller and buyer. In fact i don't even want to buy from a vendor unless they use paypal.

Well using PayPal pretty much eliminates buying from any US vendor.

[vapethis]

Sadly this is true except for totally wicked.

[Shadowlife]

Not so. PayPal USA will not allow sale of any Vaping related goods. Period.
The only way you could is if you were located in the UK where they (PP) will not interfere.