Posted by ReneeK_MI on 3/10/07 12:11pm
Msg #179386

CC/Paypal hacked ...

What a major PITA, but I must say I'm quite impressed with the speed and dilegence of both my bank and Paypal. They were all over this before I even became aware.

I've never been paranoid about e-commerce, was out there doing on-line commerce WAY back when, and have been very fortunate. I think I'm pretty savvy about what to do, what not to do, when/where/so forth and so on.

I thought it was pretty funny though - the CC bank said "Well, we DID call and leave you a message on your phone ..." Yep, they did. I had listened to someone saying they were from my bank, and for me to call and have my acct info ready ...that's right about where I deleted the message, thinking "you really think I'm THAT dumb?"

Reply by christiSocal on 3/10/07 12:39pm
Msg #179388

It is nice that the banks work fast when this type of thing happens, but they should figure that people (hopefully) are getting savvy to scams and don't want to call and give away their info. This happened to us too. I did call, but used my regular bank phone number. It took them a lot longer than it should have to check into and it was my bank, just a different department. Glad it's being taken care of for you...

Reply by Lee/AR on 3/10/07 1:13pm
Msg #179394

Gee... we have PINs & Passwords & secret questions and, and, and. Maybe we need to set up same for all the co's we deal with. I won't talk to you, bank, unless you can provide your password... LOL Maybe secret decoder rings, too. Crazy world we live in these days.

Reply by Gerry_VT on 3/10/07 2:21pm
Msg #179405

Customers forcing banks to provide password

Don't laugh Lee, it's here. When I log on to my credit union's web site, it displays about 20 passwords, one of which is a password I created (the other 19 change every time). If I don't see the password I created, I know it's a spoof site. To make sure I read the list, I have to click the correct password.

Reply by Charles_Ca on 3/10/07 1:44pm
Msg #179398

Re: CC/Paypal hacked ...This scenario confirms the solidity

of internet commerce. I too have been involved in internet commerce since about 1982 when we used to have BBS and Sysops instead of the WWW. I have only had one problem and it was of my own making. I was in the midst of a heavily disputed transaction and received and e-mail for an item I did not have listed and instead of carefully reading the e-mail I logged on and immediately realized that it was not a legitimate e-mail from PayPal. I quickly went through and changed my log on for PayPal and for my financial stuff. One thing I learned from that is one should use different log-ons for different financial processes and that's what I do now. It was evidently quick enough so that nothing was disturbed. I still do e-commerce and love it, my e-commerce stuff works 24 hours a day all over the world and just keeps churning out filthy lucre.

Reply by MikeC/NY on 3/10/07 10:27pm
Msg #179435

Any idea how it happened?

Reply by Sharon Taylor on 3/10/07 11:20pm
Msg #179438

Is it only CC or bank accounts too?

I have only a bank account attached to my PayPal, no credit card. Did this hack affect accounts like mine too, or only accounts that have a credit card attached to them?

Reply by ReneeK_MI on 3/11/07 3:48am
Msg #179440

Details ...

No worries, Sharon - this only affected ME (well, as far as I know). The CC was affiliated with the Paypal account - but nobody could figure out which got hit first, though it would seem logical it was Paypal, and THAT'S where the CC info was obtained.

The CC bank didn't dink around - they immediately cancelled that card/account number (and THAT'S how/when I found out about it!). HOW they KNEW the charges were bogus, I don't know - but they knew, and they knew THAT day. A total of 4 charges were made, the sum of which was pretty insignificant, only 1 of which transacted through Paypal. Seems like they got into Paypal, THEN got the CC info, THEN tried to take off with that ball.

Reply by Sharon Taylor on 3/11/07 8:45am
Msg #179450

Thanks for the update, Renee

I have always worried about PayPal's security, but then no site is truly secure from a determined and expert hacker. Just look at the problems eBay is having right now. I follow the standard practice of deleting without opening any and all emails that are about any CC or eBay or PayPal or bank accounts and instead go directly to the website by typing in the URL to check the account and make sure it hasn't been tampered with. There have been some very very sophisticated emails that I was sure were legitimate, but I still never opened them, and later it turned out they were indeed phishing emails. "Just because I'm paranoid doesn't mean someone is not out to get me." LOL