Fraudulent card charge today...

[dymrip]

So I received a call today telling me I had a suspected fraudulent charge on my new credit card. I've only had this thing for about 3 weeks and have barely used it! I've used it to order ecig supplies online from TPA once and ecig express twice, and other than that I have only used it at a couple ATMs and a few stores near my home.

Well, I noticed last week that ecig express's Website was completely down for a good day or two. I figured it was just a routine maintenance type deal. Well, today I tried to login to my account there and I received this message:

We have redesigned our website and added tons of new features! For your protection, existing passwords have been reset. If this is your first time logging in on the new site, please press the "Forgot Your Password?" link and enter your email address. You will immediately recieve an email containing a link to select your password. Please check your spam box or junk folder if it does not appear in your inbox.
This process should take no longer than a 60 seconds. We apologize and appreciate your understanding. Again, this is for the protection your protection.

I also tried calling their customer service number and received a message saying they have unusually high call volumes today and wait times would be extended. I understand things like this happen, but if they knew of anything like this happening (which the resetting passwords thing leads me to believe they did) one would think they would at least give customers who have placed recent orders a heads up. A quick phone call or an email would suffice.

I hate to point any fingers unjustly, but this smells fishy to me...

 

[KraKsX]

Been seeing this keep popping up
Every time eCig express is always listed, Iv never ordered from them, but seeing this, I also won't ever start

Hope all works out

 

[zero7starz]

Sure. But that's why we have fraud protection. I'm happy it exists and why I try to order everything on my Amex because theirs is top notch.
Sucks to hear man.

 

[lynch]

The hackers must be hitting all the e cig sites, I ordered from 3 e cig sites last week and had 5 charges for about $160.00
that were not from me. The first charge was for $1.00 then I guess they figured they got that then had 4 other charges.
Bank will cover them and that will be the last time using a credit card other than a prepaid card.

None of my orders were from ecig express.

 

[Sdh]

Ecigexpress did open a new website. Password resets are common when changing to a new website/online store.

 

[darkhood]

same thing happened to me, twice...gonna be using prepaid credit cards from now on for all ecig purchases.

 

[cherrycakes]

crap. should i call for a new debit card x(

 

[the_vape_nerd]

i like ecig express too...just checked card....no odd activity yet

 

[Sdh]

So I received a call today telling me I had a suspected fraudulent charge on my new credit card. I've only had this thing for about 3 weeks and have barely used it! I've used it to order ecig supplies online from TPA once and Ecig Express twice, and other than that I have only used it at a couple ATMs and a few stores near my home.

Well, I noticed last week that Ecig Express's Website was completely down for a good day or two. I figured it was just a routine maintenance type deal. Well, today I tried to login to my account there and I received this message:

We have redesigned our website and added tons of new features! For your protection, existing passwords have been reset. If this is your first time logging in on the new site, please press the "Forgot Your Password?" link and enter your email address. You will immediately recieve an email containing a link to select your password. Please check your spam box or junk folder if it does not appear in your inbox.
This process should take no longer than a 60 seconds. We apologize and appreciate your understanding. Again, this is for the protection your protection.

I also tried calling their customer service number and received a message saying they have unusually high call volumes today and wait times would be extended. I understand things like this happen, but if they knew of anything like this happening (which the resetting passwords thing leads me to believe they did) one would think they would at least give customers who have placed recent orders a heads up. A quick phone call or an email would suffice.

I hate to point any fingers unjustly, but this smells fishy to me...

Are you basing your allegation because of a new website/password reset?

 

[cherrycakes]

darkhood had their credit card hacked.
and it was either aquavapor or ecigexpress.
so there's that...

 

[lynch]

The top e cig sites should have their own credit card, like a Madvapes visa or discount vapors master card
Then when you order just check a box for DV credit card

 

[wandawag]

i too had fraud happen to me. glad about fraud protection. now awaiting my new card as well as a new prepaid card i will be using for these sites.

 

[nahoku]

This topic is showing up more and more and every time I read one, I log into my CC and check my balances. Not good, but where there's high percentage of CC usage, there's going to be high incident reports too. Imagine how much money is flying around on ecigs! I guess I should go looking at pre-paids too... but what a hassle!

 

[roygodbold]

Got hit today also. CC luckily noticed and cancelled. Only used this particular card once. Ecigexpress about a week ago.
I've ordered from them quite a while back with no problem on other cards. I do understand that its not someone at Ecigexpress, but
at the card merchant. Guess I was lucky and will use other means in the future.

 

[crxess]

darkhood had their credit card hacked.
and it was either aquavapor or ecigexpress.
so there's that...

or the cardholder bank/ processing center - unless tracked and told - no one actually knows.

 

[Dvx67]

This seems to be happening a lot. I notice many vaping sites use a similar format and I wonder if several of them are using the same credit processing service. I think this is where it is most likely happening and the site you are ordering from doesn't even see your cc info. I have only ordered from 2 with my actual credit card. For the rest I am using a "shopsafe" service that one of my cards has. It gives me a temporary card number that can only be used at one vendor and with a limit I set in advance. I only have one card with this feature but it give me peace of mind.

 

[ThunderPumpkin]

We have redesigned our website and added tons of new features! For your protection, existing passwords have been reset. If this is your first time logging in on the new site, please press the "Forgot Your Password?" link and enter your email address. You will immediately recieve an email containing a link to select your password.

This's what sites do when their password database has been compromised. The only other reason for doing it is losing the password database due to some catastrophic failure and not having backups.

Both reasons to run away without looking back.

 

[crxess]

This's what sites do when their password database has been compromised. The only other reason for doing it is losing the password database due to some catastrophic failure and not having backups.

Both reasons to run away without looking back.

Calls BS - Web site consist of 2 sides. back side you never see - inventory/billing/etc. Frontside> Store Front exposed to all for viewing ,saving, making purchases. Either end can be upgraded/updated without the other being effected.

Stormy's did a Total site upgrade - long needed. All passwords were reset. Hacking passwords would rarely get you CC info if the site is using proper secured processing. They would never have/store the CC info.
Some sites offer a choice for easy reordering. I would hope they are using encrypted storage.

 

[adws]

This happened to me on Sunday. My wife check account last night and saw way too much money gone. I've ordered from several different e cig sites so I can't say it was one or another. I have contacted not only my bank but all the sites that I've bought at lately. I contacted the sites not for anything other than to inform them that this happened. It's prepaid for me from now on.

 

[cags]

from what i understand, ecig vendors have trouble getting and keeping CC processors, thanks to the uncertainness of the status of ecigs. and most likely the breach is with the processors.
I use a "virtual" CC #, like the safeshop someone else mentioned. mine is for a one time use. it is really the best protection I think