Great way to start a Sunday morning - not!

[Papillon61]

No, no explosions this time - although it seems Sundays are my unlucky days!

I don't know whether you read my post the other day about an email I received from a flavour vendor in the UK telling me their servers had been compromised for about an hour on the 26th. I don't know whether what happened just a few minutes ago is in any way related to this but I received a text from my Bank saying that a payment of GBP1,315 had just been made to some computer company and if this was not authorized I was to call them straight away. This is something that happens regularly when I make payments to online stores connected to the 3D banking system. Naturally I called them straight away even if it was only 6:30 am here - luckily I was awake already.

The card has now been cancelled and in any case it would not have honoured the payment since I only use one credit card with a small limit for online purchases. I am a little perplexed and don't know who to trust any more. The vendor who said their server had been breached gave an assurance that no payment details are held on their servers and that they are only stored on Paypal's servers via a 128-bit encrypted connection, but who knows. Like I said, I can't know for sure that this is how my details got out and it would actually be a good thing if I were sure because as it is I have no clue as to where the hacking happened. If it was not their server was it Paypal then?

 

[dbrandt01]

1315? I looked up conversions for US Dollars because I'm clueless like that haha
Roughly $2070 in US Dollars damn.

Sucks all of this is happening to you, but glad your bank is paying attention. My bank here always said we have a pattern and if something breaks that pattern they are alarmed about it. For example, it happened to me once using my card on a soda vending machine and some person bought groceries somehow in Florida.

The second time, not exactly sure how. Either from an online purchase or from the gas station. I had 2 $50 charges on google wallet when I have never used it. After an hour on the phone, they verified they found the activity from a different computer than mine and cancelled it.

I wouldn't blame paypal personally, I've used them for a while and never had a problem with that I don't believe. It always makes me hesitant to order stuff online and I'd rather be ripped off at a B&M sometimes than have the fear of ordering online.

 

[cloud.nine]

The vendor who said their server had been breached gave an assurance that no payment details are held on their servers and that they are only stored on Paypal's servers via a 128-bit encrypted connection, but who knows. Like I said, I can't know for sure that this is how my details got out and it would actually be a good thing if I were sure because as it is I have no clue as to where the hacking happened. If it was not their server was it Paypal then?

Something similar happened to me. My Paypal got hacked (I think because I used my paypal debit card at a gas pump that was rigged), and they drained the funds I had stored in my paypal account. If my paypal account had been connected to my bank account they would have been able to make a charge on my bank account too. You can connect a real bank account to your paypal account, to use as a back-up funding source in case your paypal funds run out while you're making a purchase. Maybe this is what happened to you? You might need to disconnect your bank account from your paypal account.

 

[issy]

This is awful...I'm really sorry that these things happened to you all. I'm barely living paycheck to paycheck right now, I couldn't imagine the panic I would go into if even a small amount was stolen. Best of luck to you and anyone this happens to.

 

[crxess]

Never been compromised using Paypal and I make literally Dozens of purchases through the service monthly.
PayPal acts as a shield and no C.C. info is ever exposed to any Vendor.

 

[Papillon61]

No. my Paypal account is connected only to this one credit card I use and it is the only credit card I ever use online. It has a limit of €700 which is roughly $780, so even if my bank had not warned me about the purchase the transaction could never have gone through - there were only around $600 in credit since I had used the card a couple of days before. And to be honest, in the past months, when I have been doing a lot of online purchases, far more than I have ever done before, most if not all the payments were made through Paypal. I always thought that was more secure than a direct debit to my card. Even so, I never actually type my card number. I have the number hidden away in a document so I always copy and paste the number.

I've been shopping online for at least 15 years and this has never happened. All of a sudden, in these past couple of weeks I've had two Paypal scam emails in a row, several phone calls from someone with an East Indian accent saying they are calling from Microsoft about my computer (whom I naturally tell to go and get st....ed) and now this. Are people becoming so desperate. The level of fraud seems to be very much on the rise.

 

[Papillon61]

WOW - another text from the Bank - another transaction of GBP 907.16 to EXPANSYS. This guy is not trying to buy Coke on the internet!!

 

[Rixsta]

No, no explosions this time - although it seems Sundays are my unlucky days!

I don't know whether you read my post the other day about an email I received from a flavour vendor in the UK telling me their servers had been compromised for about an hour on the 26th. I don't know whether what happened just a few minutes ago is in any way related to this but I received a text from my Bank saying that a payment of GBP1,315 had just been made to some computer company and if this was not authorized I was to call them straight away. This is something that happens regularly when I make payments to online stores connected to the 3D banking system. Naturally I called them straight away even if it was only 6:30 am here - luckily I was awake already.

The card has now been cancelled and in any case it would not have honoured the payment since I only use one credit card with a small limit for online purchases. I am a little perplexed and don't know who to trust any more. The vendor who said their server had been breached gave an assurance that no payment details are held on their servers and that they are only stored on Paypal's servers via a 128-bit encrypted connection, but who knows. Like I said, I can't know for sure that this is how my details got out and it would actually be a good thing if I were sure because as it is I have no clue as to where the hacking happened. If it was not their server was it Paypal then?

This company you bought off when their servers were "compromised", this is where your details have been leaked, a back door hack was probably applied and this wouldn't have been directly through paypal themselves..(it isn't really possible on many levels but I wont go into that, don't be afraid to use Paypal again is what I'm saying, this would of happened if you used your card directly too)

You have done the right thing now, getting a new card with a new account number, that will be the end of it. You were just shopping in the wrong place at the wrong time...

As for you having two Paypal scam emails in a row in a short amount of time, this is very common if they hold you details, scammers and hackers share details in their community, they will flag you as "new target" and share the information with each other,each usually trying different scams but sharing the profits if successful. They have your address, probably some personal details too, like your date of birth, old bank details and telephone number, you would be shocked at just how much info you can recover from these kind of hacks. Keep your eye out for a postal scam too, you may start receiving junk mail saying you have won hundreds of thousands of pounds ect, although, they are dated scams now and not used much since the Internet took off but they are still about.

 

[Rixsta]

WOW - another text from the Bank - another transaction of GBP 907.16 to EXPANSYS. This guy is not trying to buy Coke on the internet!!

They are in different locations, different countries but all work together, they will be like a pack of wolves with a "new targets" details.. This isn't one guy !...don't worry though, if you have cancelled the card, not even the best key encrypted key logger programmers can hack a cancelled one, unless they hack the bank itself which well, that wont happen any time soon..Not unless your dealing with a genius which these crooks are certainly not.

 

[Cowboy192]

If it's the same UK vendor as I think it is I've had no problem since the server breach and I even ordered more with the 20% off code the day the email went out, I'd be looking at any orders you have placed online with vendors you haven't dealt with before,

As for the phone call from microsoft that's an old one that's been going on for years, they phone up to tell you your pc has a virus and they need you to give them remote access to fix it in the hopes you will give them access to your computer (one of the oldest hacks around) I've had it many times over the years, I tell them I am a Microsoft certified engineer and funnily they hang up on me......

 

[Rixsta]

As for the phone call from microsoft that's an old one that's been going on for years, they phone up to tell you your pc has a virus and they need you to give them remote access to fix it in the hopes you will give them access to your computer (one of the oldest hacks around) I've had it many times over the years, I tell them I am a Microsoft certified engineer and funnily they hang up on me......

Yes it's an old scam but was definitely used due to leaked details and failed transactions from her account, they basically just shared her details within the scamming community and tried to get control of her computer to acquire more information. The Microsoft scam is only ever put into place if you make their target list in the first place, where as, some kind of personal details have already been acquire and is definitely not a random call. What she is experiencing is a snowball effect where the community share their information and profits on an underground network of thieves.
The Microsoft scam is still being used today as it is a very affective way to instantly gain information to not only bank details but also online passwords, gmail accounts, ebay, and whatever else you use. How the scam works.....Once they gain access to your personal computer, they don't automatically get all the information, they will place a key logger on the system (IF your system is vunerable to begin with, depending on what spyware protected is in place) and monitor it, so when he or she does her, lets say, online banking, ever key stroke is recorded and BAM, they have everything they need. Many people don't even know it happened or how and there are thousands of unreported incidents...especially people aged 60 plus.

 

[Papillon61]

It is very strange because like I said, I almost always use Paypal and when that option is not available I don't key in my CC number -I just copy and paste. What is is more strange is that this happened since I installed Malwarebytes!! The Paypal scams don't really worry me - I just delete. The phone calls I have also gotten used to. The last time he called I pretended to be a recorded message. Verry calmly I said: You have just reached the Malta Police Headquarters. If you would like to continue in English please press 1.If you would like to continue in Maltese please press2. For reasons of quality and security this message is being recorded. After a few seconds of silence he said: Are you crazy ma'am? Then I changed my tone and very brusquely told him that no I wasn't, that I had his number and if he called again I would report him to the Police. The next day they called again but this time it was a woman not the old familiar voice.

I guess this means I take a break from online shopping for a bit and see how things develop.

 

[Rixsta]

It is very strange because like I said, I almost always use Paypal and when that option is not available I don't key in my CC number -I just copy and paste. What is is more strange is that this happened since I installed Malwarebytes!! The Paypal scams don't really worry me - I just delete. The phone calls I have also gotten used to. The last time he called I pretended to me a recorded message. Verry calmly I said: You have just reached the Malta Police Headquarters. If you would like to continue in English please press 1.If you would like to continue in Maltese please press2. For reasons of quality and security this message is being recorded. After a few seconds of silence he said: Are you crazy ma'am? Then I changed my tone and very brusquely told him that no I wasn't, that I had his number and if he called again I would report him to the Police. The next day they called again but this time it was a woman not the old familiar voice.

I guess this means I take a break from online shopping for a bit and see how things develop.

They will get bored and move onto their next mark but it is so annoying and down right disgusting that anyone would try and steal another persons hard earn cash. Scum of the earth. At least they didn't get anything which is good news. It's just the world we live in and the internet has become a breading ground for them.

 

[Rixsta]

Malwarebytes is a good program so I wouldn't of thought it was that..

 

[Thrasher]

Itsnot the front end, somewhere a vendor was compromised, and the information was in a file dump from someone.
When you get underground you can see batches of files for sale on tor ( or the darknet) usually several 100 contacts for as little as 6 bucks. Each person who buys a batch will then try to hit all the names in the file.

Its not paypal that is compromised its who they sent it too.

As for cut and pasting a number, this only works against key loggers, and very few malware programs even use that method anymore. If your number was on the form the number is there to see.

I was hit twice last year, both times were traced to the one vendor I used that didnt offer paypay. And sadly they are very trusted here. But I will never buy there again

 

[Sir2fyablyNutz]

I went into Kmart one morning to buy some things and when checking out I was told my credit card was cancelled. Luckily I had cash and went directly to the bank to find out why. My card had been compromised from an online purchase (vape related). The bank stopped it because it seemed suspicious. I had to order a new card from the bank, and reset my automatic payments.

Then I got a prepaid card from my bank tied to my accounts. When I make an online purchase I find out the amount, go to my bank online in another tab and make a money transfer. Now if I get compromised there isn't any money to steal because I keep less than 10 dollars in the prepaid card. The money transfer from my accounts to the card is immediate and works like a charm. After I transfer the money I go back to the vendor and complete the transaction. It costs me 5 bucks a month for this, but saves any possible compromise and hassle. Works like a charm. Sorry for your troubles.

 

[miamc12321]

They will get bored and move onto their next mark but it is so annoying and down right disgusting that anyone would try and steal another persons hard earn cash. Scum of the earth. At least they didn't get anything which is good news. It's just the world we live in and the internet has become a breading ground for them.

Exactly! It's sick, and I don't understand why people do these things to others. I'm so sorry this has happened to so many. I'm glad, though, that your bank caught it. Now, I just wish the crooks themselves could be caught.