Adding a top level comment so it's easier to find in case this gets any bigger. This is the response I got from WL-

Hello,

Thank you for your recent order with Wizard Labs. We are sorry to hear about your experience with your credit card. However, we do not store credit card information on file. We have added a 3rd party firewall up to discover any malicious attack on our website. So far we have not found any breach of security but we are going to keep investigating. We will contact you to let you know what the investigation find. I hope this information is helpful and if you have further questions or concerns please e-mail and we will be happy to assist you.

Best Regards,

Maria

Wizard Labs

Well... I did just have my number stolen... and I put in an order to Wizard Labs just the other day...

Sounds like their credit card processor has security issues. Your should email them and let them know ASAP because they may be unaware of the issue.

I did, it was literally the only online order I had done with that card, two or three days later bam, fraudulent charges from about 5 states away, contacted the merchant and they refunded me immediately, but still. Cancelled the card, got a replacement, and will be only using virtual cards from now on and deleting them after the order processes

Wizard Labs takes the privacy of customer information very seriously; your confidence and trust are important to us.

We have been notified by several of our customers that they have experienced fraudulent transactions on their payment card statements. We made it our top priority to examine our systems and began an investigation. Our third-party merchant services provider and server hosting provider conducted vulnerability scans of our system, both resulting in a clean bill of health. Further, our merchant stated that we are currently PCI compliant. Our server hosting provider performed a sweep and scan on our system and have no verified findings. They also confirmed that our SSL is up to date and functioning with AES encryption and SHA-2. As an extra security measure, we engaged a cyber security firm to perform a more in depth screening of our website. They will continue to monitor our website 24/7/365 for any malicious attacks or malware on our system. In addition, we have deployed a third-party firewall adding to Wizard Labs’ primary firewall to provide another level of protection.

It is recommended that you review your payment card account statements closely and report any unauthorized charges or suspicious activity to your card issuer immediately. Contact information is usually on the back of your payment card and included on the account statement. If you believe that your personal information has been compromised please provide any information that will help us further this investigation by contacting us at, admin@wizardlabs.us. Thank you for your letting us know of any issue you have experienced and for your patience as we continue our investigation. We will update this post as soon as we have additional information.

My credit card info has also been stolen twice in the past few months and I use wizard labs regularly.

Yep this happened to me too. I was unsure of where the problem originated but it was just a couple days after ordering from them.

Same here.

Like /u/gutter22 said WizardLabs should be notified.

This happened to me also! I was wondering if it might have been wizard labs. I've never purchased from them before until the other day then I noticed some odd charges on my card. Now I'm sure it was the wizard labs purchase! I'm sure it's just a lapse in their privacy/security and not that wizard labs themselves are out to get us.

How about we all email wizard labs explaining how our cc info was stolen after using them.

Just checked my card. Had a 6 dollar charge I never did, a week after buying from WL

I received an Ancestry.com charge after purchasing from WizardLabs... Thankfully my bank denied the charge before it took anything :)

Yep... same. Soon after my WL order, card had a fraudulent charge.

Just made a purchase from wizard labs on 6/23. Sure enough by 6/30 I had 4 pending fraud charges and 1 fraud charge that went through. Pretty scary seeing this post, as it cannot be a coincidence. I will email them now.

I saw the sale post the other day and ordered from them. Next day I had an email alert from my CC saying suspicious charges...this clears it up. Thanks.

I ordered from them on Saturday June 24th. They charged my card on Tuesday June 27th. The next day a $.01 charge was made against my card (I guess to see if the card still worked) and then several charges to Adidas and Forever 21 were made. Sadly my bank was slow to notify me until my account was wiped out. I called Wizard Labs after talking to my bank and they took my phone number and said they would call me in two to three days, when they find something out. I have not heard anything from them yet. I have no doubt that my card info was stolen after my Wizard Labs purchase.

I ordered from them 6/21, fraudulent adidas.com charges showed up 6/25. I've ordered from them a couple times before (been several months now, typically use ECX) and not had an issue. It's odd that someone else on this thread also had charges from adidas.com.

I've had my card number stolen four times in the past year. All of the purchases I'd made online with it during that time period were at Bull City, ECX, Nic River, Heartland, and CTX (no Wizard Labs) -- I wasn't able to pinpoint which one was to blame. I think a bunch of people had their stuff stolen due to a security breach when buying directly from FW recently. So WL isn't the only one who has had problems with their credit card processing. This probably won't be happening to me again, since I've learned that my bank offers an authentication service, but it would be nice to see these merchants better job for people who don't have that option.

I am definite that Wizard Labs had somehow something to do with getting my cc number stolen to, especially after reading all these posts. I placed an order in 6/23 and on 7/3 there was an unauthorized charge for $.01 from a FRIENDS PHOENIX PUBLIC in Phoenix AZ, just like what happened to some of the other posters on here. That's a real shame because I love their products and three day shipping. And I was just getting ready to place my second order with them. I absolutely will NOT be buying from them again. Sounds like their trying to dodge the problem too. I haven't called or contacted them, but sounds like other members here have and either got a canned response or nothing back from them at all. That's not good. I would expect them to be all over the problem. Because it sounds like maybe an internal issue.

Wow man! The exact same thing happened to me exactly placed a wizard labs order on 6/30 and 2 days later got a call from my banks fraud department, card was only used on wizard labs. I love wizard labs and always have used them, but they definitely have an issue and need to stop with the copy pasted response.

Thank you for the heads up. Just got off the phone from cancelling my card since various gift card and online purchases I never made had begun to post to my account.

Anyone that's made a purchase over the last couple of months should check their statements sooner rather than later to make sure they're not compromised.

I was just about to place an order with Wizard today. Thinking twice now. I had this happen to me with myfreedomsmokes last month. Shucksters made off with $600 out of my account.

I have made several orders with WL lately during their 12 hr flash sales. I also placed orders in the previous months and my card was hit this weekend. My bank shut it down and a new one is on the way in 7-10 days. It usually takes awhile for charges to appear most people say. However in this case it looks like Wizard Labs may be the common denominator. Hard to say as I have used Element Vape, Ecig.com, Nic River etc. but this may be a breach at Wizard labs. I signed up for Privacy.com yesterday and plan to use it for all my online purchases from here on out.

There are only a few processor that will deal with vape related stuff online and they seem to be target for hackers.

Yep. On Saturday morning. My bank corrected multiple charges without even notifying me. The charges were to H&M MAIL, labeled Chicago.

Hey, the same thing happened to me a few days after I placed an order on Wizard Labs about 4 weeks back (the only other recent purchase I'd made with this particular card was with Nicotine River). Fraudulent purchase made was for a Roku subscription.

Handled through my CC company, I did not contact Wizard Labs.

I'm glad I found this thread. I couldn't figure out how my card number had gotten stolen. Not knowing how worried me more than it getting stolen.

The only online purchasing I've done outside PayPal are Amazon, WL, and Bull City. Since I didn't suspect any of them, I was at a loss to explain it.

I called wizard labs yesterday to ask what the status was because i emailed and called and was told i would get a call in 2-3 days. they told me that they had posted on Reddit that they were hacked, so that comment on this thread is how theyre stating theyre compliant. I filed a complaint with IC3.org because this is ridiculous, no transparency at all, i called over a week ago and wasn't allowed to talk to anyone other than the customer service associate who picked up because 'other people had already called and reported their cards being used for fraudulent purchases'. They switched to the third party(from the manager said yesterday) since the hack.

they should have took down their site the moment a hack was reported and sorted it out instead of allowing more people to order and get stung like this.

nope.. i have ordered there a few times without issues myself.

Well, shit. I just made a Wizard Labs order two weeks ago. Time to check the credit card statement.

Damn. This last Thursday. Didn't even think about them. Seriously I don't even have my money back yet. What places did they use it at?

How about we all send this to them and ask for a response?

When was your card compromised? }

ive never had any problems and ordered from them 06/05/17 but that's anecdotal

Wow check out this thread. Won't be buying there...

>Anyone else have their card stolen when purchasing from Wizard Labs recently?

purchase made 4/19, one person drained my bank account 6/07 for some sims DLC on origin. it was only 12$ but it meant i rode a bike to work for that week. there's also been many attempts to log in to my various accounts since then. paypal, origin, steam, gmail, discord (but why though?). most have been outside of the US.

Just an FYI it looks like the batch of cards that were stolen are still out there being used. I thought I was ok. Just got a probe charge of .01 cents on my card, called my bank and it is shut down. I will never do business with this company again.

My card was compromised yesterday with a $.01 transaction to that same trophy shop and then 2 purchases to adidas online store, 1 for $130 and 1 for $170. $300.01 total out of my account. I contacted my card company and adidas online store as well as soon as i seen it before it cleared my account. Adidas online store said that they would be reporting it to the police. I order from WL a lot. I hope they can bounce back from this and keep their business as usual

Bringing back a old post but I just got this.

Please read this email in its entirety.

Wizard Labs is committed to maintaining our customers’ privacy and confidential information. We recently became concerned that an unauthorized person may have accessed our systems in an attempt to acquire confidential information. These systems process customer orders and include such information as names, addresses, payment account numbers, and/or email addresses.

While we have no evidence that any of your personal information was accessed or misused in any manner, we are taking appropriate precautionary measures to ensure your financial security and help alleviate concerns you may have.

What are we doing to address this situation?

We have long employed a wide range of security measures to ensure the confidentiality of everyone’s personal information. Since becoming aware of the attempt, on July 7, 2017, we retained the services of a computer forensics company to investigate potential unauthorized access and advise us on additional precautions we may implement. We believe if any information had been accessed, it would have been during the period of May 25, 2017, through June 26, 2017. Please rest assured that we are taking this matter very seriously and are continuing to actively investigate this incident. We have notified law enforcement and will continue taking steps to prevent such an incident from occurring in the future. We have already implemented new security measures to ensure the confidentiality of the personal information of those we serve and continue providing the level of service you expect from us.

In addition, Wizard Labs is providing you with access to Credit Monitoring* services at no charge. These services provide you with alerts for twelve months from the date of enrollment when changes occur to your credit files. This notification is sent to you the same day that the change or update takes place with the bureau. These services will be provided by CyberScout, a company that specializes in identity theft education and resolution.

It was followed with a link and a code to get the free monitoring.

Chances are it happened somewhere else. I know you said you haven't used it in over a year, but when cards get compromised, it initially happens a good while before they try to use it.