*Rather, that should say "at Trademore;" sorry, can't edit the title.
This is a card I only have used for diy vendors and for paypal for ebay; I'm not pointing fingers but Somebody is having data breaches and appears unable to deal with them and I don't think it's paypal or ebay.
When we were talking a couple weeks ago about how a lot of us had been hit with cc fraud, I did make a privacy.com account but this card number was already out there (cancelled it, obviously). So just wanted to mention it in case anyone hadn't looked at their accounts yet.
One suggestion I have after having had my CC stolen 4 separate times in the last 2 years (I have 1 card I use absolutely everywhere, and for everything as I dont use cash).
Some companies will let you put a spending limit on your card that requires manual approval via text message for large purchases, if your card allows you to do this, its a big headache saver to setup.
I set mine up for $500, they text me for approval for anything over that. Its saved me twice since setting it up.
That's a good layer, I have my accounts set up to notify me of any purchases over $1 no matter what, so every charge I always see immediately after it occurs. Not as proactive as having a hard cap of purchase size as well but lets me see essentially every charge that ever goes to either of my cards.
I ain't scared. Ecig Express get your shit together. /u/CloudAcademics
https://www.reddit.com/r/DIY_eJuice/comments/a0bis1/credit_card_number_stolen_two_fraudulent_charges
https://www.reddit.com/r/electronic_cigarette/comments/9ofdj9/psawarning_check_your_bank_statements_potential
Howdy and thanks for reaching out. I just want to reiterate that we DO NOT store credit card information. In addition, all of our pages are HTTPS and are hosted on shopify. This is not to minimize any of our customer's unfortunate online shopping experiences. We just know that on our end we do our best to make sure our customers have a SAFE and secure shopping experience.
Here is a link to explain how shopify maintains PCI compliance:
https://www.shopify.com/pci-compliant
Sorry but boilerplate responses shifting the blame to your chosen hosting/vendors is not the answer. Your site was also just redone shortly before these threads started popping up. It's time for a full audit not "it wasn't us we use shopify".
Honestly, what is a vendor supposed to do if the problem is not on their head but an outside service? Would you chastise a vendor if cc information was compromised from something PayPal was responsible for? Plenty of vendors use shopify. Is it the vendor's fault if shopify doesn't have their shit together? There are a lot more areas for vulnerability than that vendor's website. Payment gateways and payment processing are not in their control. Don't be that guy.
Check if you've gone though elementvapes.com - which is a major site, as not only did they get hit, but the malware was installed in their system for about a year too.
Privacy.com is the way to go or setup a paypal account and add your credit card number there.
Also be safe on your side too. Here are some extensions that should be mandatory:
- Ublock Origin -- The only ad-block to use -- If you know how to modify your hosts file and add the filters you want manually that would be the best way to go.
- HTTPS Everywhere
- Decentraleyes
- CanvasBlocker
- Privacy Settings
- Privacy Possum
- Cookie AutoDelete
That should be a good start. For advanced users Policy Control & Noscript.
- A VPN obviously. If you want a reputable service that's cheap and has an easy windows/phone GUI for a newbie go with either Nord or PIA. More advanced would be Mullvad.
Firefox isn't what it used to be which was the only browser back in the day to use. If you must, go with their ESR version but look into Waterfox or Pale Moon which both support the old add-ons before they fucked everything up.
Speaking about the elephant in the room, but .5% will do. Dump Windows and install Linux and while at it get a capable dd-wrt/tomato router. If you have an Asus I'd just go with Merlin, which you can get the Asus AU68 T-Mobile version for $40 brand new instead of the regular $150+ and do some trickery.... That way you can load your VPN on the router side which is what you want and then use Open VPN, DNS over TLS, DNSSEC... Ok, I'll stop.
Happen to know what vendors you used the card at recently?
ecigexpress, bullcity, nicotine river, and wizard labs
Meh. I had a tingling feeling it was one of the ones listed there which really sucks.
Hopefully you get everything squared away and hopefully they do too.
Had my debit card info stolen a few months ago. The card has only ever been used offline, so it had to have been a skimmer or something.
Anyways, dipshit spent $200 on a dating website. If you're going to commit debit card fraud, maybe don't do it to pay for a service with a whole bunch of personally identifying information. All you're going to do is make it easy on the police when I file a report.
It's also a hassle, but for vape stuff, I use a debit card. Then when I want to buy something, that's when I only load it up. I tend to keep a few dollars there in case I see a good deal, but overall I try to limit my credit card exposure online to only trusted sites like Amazon.
That's the exact opposite of what you should be doing. Credit card companies are legally required to forgive fraudulent charges over $50. Your bank is not.