online credit card theft August 04, 2009, 11:18:30 am Yahoo Message Number: 104475We've just discovered that our credit card number has been stolen. I got a suspicious email supposedly from Amazon. We contacted the issuing bank and found that there were pending charges from restaurants and retailers in Chicago. I haven't visited Chicago in over 20 years. I had used the card to make two recent online purchases rverscorner.com's and Andy's Eureka2. So it's likely one of those two sites ordering systems has been compromised. We've cancelled the card so we're OK. This is just a heads up to others.Richard
Re: online credit card theft Reply #1 – August 04, 2009, 11:35:45 am Yahoo Message Number: 104476wrote: I had used the card to make two recent online purchases rverscorner.com's and Andy's Eureka2. So it's likely one of those two sites ordering systems has been compromised. --- Thanks for the heads-up. I imagine that you notified Andy -- or, at least, he knows now! ;-) -- but did you also alert Les Doll at RVers Corner?Joan
Re: online credit card theft Reply #2 – August 04, 2009, 01:51:04 pm Yahoo Message Number: 104481QuoteI had used the card to make two recent online purchases rverscorner.com's and Andy's Eureka2. One suggestion when making an online purchase: almost all credit card companies allow you to generate a "virtual" CC number at their website. This virtual number is good only for one purchase, so if it is stolen, it won't do the thieves any good. I always go to my credit card account and generate a virtual CC number when making an online purchase.Linda Hylton http://map.datastormusers.com/user1.cfm?user=1167 http://earl-linda.blogspot.com/
Re: online credit card theft Reply #3 – August 04, 2009, 03:39:51 pm Yahoo Message Number: 104489Yes, this can easily happen, when buying an an unknown website, or a subscription that will automatically renew and charge your card, I like to use a Shop Safe Number. It is a temporary card number with a limit that you specify, and also a date that you specify, so that after the sale, no more charges can be made. I know both Bank of America and Chase offer this option on their websites. Mari in Las Vegas "richardg1952" wrote:
Re: online credit card theft Reply #4 – August 04, 2009, 05:07:45 pm Yahoo Message Number: 104493Quote I had used the card to make two recent online purchases rverscorner.com's and Andy's Eureka2. " One suggestion when making an online purchase: almost all credit card companies allow you to generate a "virtual" CC number at their website. This virtual number is good only for one purchase, so if it is stolen, it won't do the thieves any good. I always go to my credit card account and generate a virtual CC number when making an online purchase."Linda Hylton http://map.datastormusers.com/user1.cfm?user=1167 http://earl-linda.blogspot.com/ Good tip, Linda. I've never noticed that option before. Where does it usually show up on the site or are they all different?Chris
Re: online credit card theft Reply #5 – August 04, 2009, 07:25:51 pm Yahoo Message Number: 104506Quote from: Linda & Earl Hylton One suggestion when making an online purchase: almost all credit card companies allow you to generate a "virtual" CC number at their website. This virtual number is good only for one purchase, so if it is stolen, it won't do the thieves any good. ========================= Linda - What a fabulous suggestion! Never heard of a virtual cc but be assured that will become our future in online ordering.Thanks for that.Anne JohnsonHot and muggy La Verne, CA
Re: online credit card theft Reply #6 – August 04, 2009, 08:09:30 pm Yahoo Message Number: 104508Sorry to hear about your stolen card number, Richard. I know what a pain that can be! For the record, the Eureka purchasing page has no ordering system--I never see anybody's credit card numbers--because all payments are handled via PayPal. I haven't seen any reports of PayPal being compromised, and it's big enough that that kind of news would be widely reported, so I think you can probably rule that out. On the other hand, that doesn't mean you can assume that rverscorner.com is guilty of a security breach (although you should let them know what happened). There are many ways that credit card numbers can be compromised. For example, it's possible to *make up* credit card numbers, and I've read that it's been done many times. The simple four-step algorithm for verifying that a 16-digit string is in a valid format for a credit card number is a matter of public record... so one can have a random-number generator spit out thousands of 16-digit sequences, automatically check to see which ones are valid, and use those in fraudulent purchases. Unfortunately, there are more ways to commit credit card fraud than most people imagine. But getting back to the subject of stolen numbers, PayPal is a good way to pay for online purchases, because instead of giving your credit card number to every individual merchant, you only give it to PayPal. You can make purchases from a dozen different online sellers, but as long as you pay via PayPal, none of them will ever see your credit card information. In short, PayPal is one of the safest ways to do business online, because it limits your credit card information to a single entity--PayPal--instead of handing it over to all and sundry.Andy Baird http://www.andybaird.com/travels/
Re: online credit card theft Reply #7 – August 04, 2009, 08:34:50 pm Yahoo Message Number: 104509In a message dated 8/4/2009 5:09:57 P.M. Pacific Daylight Time, writes:For the record, the Eureka purchasing page has no ordering system--I never see anybody's credit card numbers--because all payments are handled via PayPal. I haven't seen any reports of PayPal being compromised, and it's big enough that that kind of news would be widely reported, so I think you can probably rule that out. I wouldn't be so sure. We have had two problems with PayPal. About 3 years ago a charge came thru on our bill and it was generated by PayPal for one of their "authorized venders. The bank removed the charges and said they were going to investigate. Then ..... Two years ago we got a call from the bank about suspicious activity on our account and the bank immediately issued us a new account, cancelling the old one we had had since the beginning of time.. As it turned out, we were told the activity was generated thru someone who used PayPal for their payments biut we never heard anything more after that. PayPal never verified anything with us and after that incident, I removed our Visa number from our account with them. I only have a bank account link with them now.It's safer that way, LouAnne in CA 96 RB 26.5 "Rosie"[Non-text portions of this message have been removed]
Re: online credit card theft Reply #8 – August 04, 2009, 08:50:52 pm Yahoo Message Number: 104510"I removed our Visa number from our account with [PayPal]. I only have a bank account link with them now." I'm not going to try to claim that PayPal is infallible. Nothing is. But let's consider what would happen if PayPal itself were compromised. In your present situation, an attacker could drain your bank account, and you'd have absolutely no recourse. Once money has been transferred that way, it's gone forever. On the other hand, if a fraudster with access to your PayPal information used it to run up bills on your credit card, the issuing bank would stand behind you. In other words, what you're doing now is essentially the same as using a debit card to make online purchases. That's a very dangerous practice, because if anything goes wrong, you have no recourse. It's much safer to use a credit card, either directly or (preferably) via PayPal, as the funding source for online purchases, because the card is guaranteed against out-of-pocket losses due to fraud, as long as you report the fraud promptly. There are no such guarantees on bank-account transfers.Andy Baird http://www.andybaird.com/travels/
Re: online credit card theft Reply #9 – August 04, 2009, 09:09:55 pm Yahoo Message Number: 104511Quote Sorry to hear about your stolen card number, Richard. I know what a pain that can be! For the record, the Eureka purchasing page has no ordering system--I never see anybody's credit card numbers--because all payments are handled via PayPal. I haven't seen any reports of PayPal being compromised, and it's big enough that that kind of news would be widely reported, so I think you can probably rule that out. On the other hand, that doesn't mean you can assume that rverscorner.com is guilty of a security breach (although you should let them know what happened). There are many ways that credit card numbers can be compromised. For example, it's possible to *make up* credit card numbers, and I've read that it's been done many times. The simple four-step algorithm for verifying that a 16-digit string is in a valid format for a credit card number is a matter of public record... so one can have a random-number generator spit out thousands of 16-digit sequences, automatically check to see which ones are valid, and use those in fraudulent purchases. Unfortunately, there are more ways to commit credit card fraud than most people imagine. But getting back to the subject of stolen numbers, PayPal is a good way to pay for online purchases, because instead of giving your credit card number to every individual merchant, you only give it to PayPal. You can make purchases from a dozen different online sellers, but as long as you pay via PayPal, none of them will ever see your credit card information. In short, PayPal is one of the safest ways to do business online, because it limits your credit card information to a single entity--PayPal--instead of handing it over to all and sundry.Andy Baird http://www.andybaird.com/travels/ I agree Andy. It seems our digital age requires greater and greater personal vigilance. The card I used for both purchases had been unused for months with no outstanding charges, then I received an email from Amazon telling me someone had attempted opening a new account with them using that card. As the fraudulent activity occurred directly after these two purchases I assumed a connection, but there are a staggering number of ways to have cc number stolen. Curse you random number generators! If only you would use you powers for good.regards, Richard
Re: online credit card theft Reply #10 – August 04, 2009, 09:13:56 pm Yahoo Message Number: 104512In a message dated 8/4/2009 5:51:27 P.M. Pacific Daylight Time, writes:I'm not going to try to claim that PayPal is infallible. Nothing is. But let's consider what would happen if PayPal itself were compromised. In your present situation, an attacker could drain your bank account, and you'd have absolutely no recourse. Once money has been transferred that way, it's gone forever. On the other hand, if a fraudster with access to your PayPal information used it to run up bills on your credit card, the issuing bank would stand behind you. ********* this cannot happen because they need permission to withdraw from my bank accout. They do NOT need permission from you should a vender with no scruples give them you full cc info including the "secret" number - that's assuming they even ask for that number. All that aside, I only use that bank account to add to my PayPal balance or withdraw from my paypal balance. they cannot do that with out me.[Non-text portions of this message have been removed]
Re: online credit card theft Reply #11 – August 04, 2009, 10:54:28 pm Yahoo Message Number: 104513On Wed, 05 Aug 2009 00:09:00 -0000, "Andy Baird" wrote:QuotePayPal is a good way to pay for online purchases, because instead of giving your credit card number to every individual merchant, you only give it to PayPal I would like to second that. Good advise Andy.While I do also use my AE card online, sites that require the CCC number that is printed on the card add an additional layer of security as possession of the card or knowledge of that number is required. If you want to worry about unauthorized use of your card, start with wondering what is done with it when you give it to a waiter or anytime it is out of your sight. It's fast and easy to swipe it through a private card reader for later use. I see this subject as on topic here as traveling wo a card would be a hassle. We pay cash for a lot of things, but not for gas and eating out.Cheers, Don
Re: online credit card theft Reply #12 – August 04, 2009, 11:51:54 pm Yahoo Message Number: 104515Quote wrote: I had used the card to make two recent online purchases rverscorner.com's and Andy's Eureka2. So it's likely one of those two sites ordering systems has been compromised. --- Thanks for the heads-up. I imagine that you notified Andy -- or, at least, he knows now! ;-) -- but did you also alert Les Doll at RVers Corner?Joan Thanks Joan! and thanks Richard for the email. Like Andy, all my credit card sales are through Paypal or Clickbank secure services. No credit card info is gathered on my websites at all. I hope Richard can resolve this issue and would love to hear the outcome, if and when that happens.PS: good info posted on this thread!
Re: online credit card theft Reply #13 – August 05, 2009, 04:27:50 pm Yahoo Message Number: 104537"this cannot happen because they need permission to withdraw from my bank accout." Take another look at your PayPal agreement. I think you'll find that if you should make a purchase exceeding your current PayPal balance, they will *automatically* make up the deficit by withdrawing from your designated primary funding source--in your case, your bank account. You gave PayPal permission to do this when you signed up with them.Andy Baird http://www.andybaird.com/travels/
Re: online credit card theft Reply #14 – August 05, 2009, 04:38:55 pm Yahoo Message Number: 104538QuoteGood tip, Linda. I've never noticed that option before. Where does it usually show up on the site or are they all different? Bank of America CC: The ShopSafe link is on the left-hand side of the page when you log in. Chase CC: Once signed in, click on the "Products & Services" tab at the top of the page and then click on "ChaseSecure."Citi CC: Once signed in, go to the bottom of the page and click on "Generate a Virtual Account Number." These are the only CCs I have, so don't know where the option for a virtual CC number is on other CC websites...but with a little looking, it shouldn't be too hard to find. I can't imagine any CC company today not having the option to generate a virtual number.Linda Hylton http://map.datastormusers.com/user1.cfm?user=1167 http://earl-linda.blogspot.com/
Re: online credit card theft Reply #15 – August 06, 2009, 01:35:33 am Yahoo Message Number: 104550Quote Good tip, Linda. I've never noticed that option before. Where does it usually show up on the site or are they all different? =========================== Try as I may I cannot find where Wells Fargo might be offering this for their CC's and this is the major one we use. Curses!Anne Johndon Cooler La Verne, CA
Re: online credit card theft Reply #16 – August 06, 2009, 10:26:00 am Yahoo Message Number: 104552QuoteTry as I may I cannot find where Wells Fargo might be offering this for their CC's I can't imagine that they wouldn't, particularly considering Wells Fargo is one of the major banks. Why not give them a call...or email them...and ask them?Linda Hylton http://map.datastormusers.com/user1.cfm?user=1167 http://earl-linda.blogspot.com/
Re: online credit card theft Reply #17 – August 06, 2009, 10:50:55 am Yahoo Message Number: 104553I could not find this feature at BofA either. Some time ago I looked into this at another bank and all they offered was a "dummy CC number" for use for a certain time period, like a month or so.I had a strange experience with one of my credit cards. Three successive cards were compromised and received fraudulent charges from the same firm. I never used the third card, or gave its number to anyone, or activated it. Nevertheless the fraudulent charges were made. I have not opened the fourth card envelope, or activated it, or in any way even know its number. I also substantially strengthened my online log in. No problem with this card for over three months. The security folks for those issuing the cards that were compromised told me hackers are able to guess/hack CC numbers.After thinking about it a bit I concluded a one time use CC number would take more of my time than frequently monitoring charges and bouncing any fraudulent ones. Best of all, no fraudulent charges for months now.OTOH, those who use credit cards less might find one time use CC numbers more to their liking.As always, YMMV.best, paul"Thriving not surviving" - Paul Schaye (at 2008 NYC Marathon)
Re: online credit card theft Reply #18 – August 06, 2009, 11:26:28 am Yahoo Message Number: 104554QuoteI could not find this feature at BofA either. As I stated in my post of yesterday: "Bank of America CC: The ShopSafe link is on the left-hand side of the page when you log in." Unlike Citi Bank, BoA apparently lets you set an amount and a date of expiration. With Citi Bank (the only CC we've used to generate virtual CC numbers), the virtual number is good for only one purchase regardless of the amount.Linda Hylton http://map.datastormusers.com/user1.cfm?user=1167 http://earl-linda.blogspot.com/
Re: online credit card theft Reply #19 – August 06, 2009, 12:12:03 pm Yahoo Message Number: 104556Nope. No ShopSafe link when I login. Of course, YMMV. Not everyone sees the same page or website when they login to many modern websites. But in my case, it's No hay problema. I'm not interested in the feature.best, paul"Thriving not surviving" - Paul Schaye (at 2008 NYC Marathon)
Topic: online credit card theft (Read 3 times)
previous topic - next topic
Topic: online credit card theft (Read 3 times)
previous topic - next topic