Quantcast

Not oredering from Nashbar ever again & you shouldn't either

TN

Hey baby, want a hot dog?
Jul 9, 2002
14,042
1,257
Jimtown, CO
Here is the story.

Last year I ordered a rack for L's bike. Got it from Nashbar because they had the best price.

Fast forward a few months....the credit card company sends us new cards (with the same #'s :confus3ed: ) due to a security breach with a merchant & won't say who the merchant was a month or so later our bank does the same thing with our debit cards & once agian the bank won't disclose the merchant. Now ee have been getting weird charges from a software company that has my email address on file....I know what you are thinking & no, it was not internet porn. Last week we got a letter from Nashbar saying that their security had been compromised by a former employee (i think, la read it & i skimmed it, so she may correct my details), yadfa yada yada...

I am tying all the weird credit & debit card activity to Nashbar & will no longer let them have my important #'s.
 

ire

Turbo Monkey
Aug 6, 2007
6,199
4
You won't do business with them because an employee who had access to sensitive information screwed them? Thats a little stupid if you ask me...
 

drkenan

anti-dentite
Oct 1, 2006
3,443
0
west asheville
This happens to some of the largest corporations in the world. I can understand boycotting because of bad service but not from some disgruntled employee - who is probably in jail now - screwed the company over.
 

TN

Hey baby, want a hot dog?
Jul 9, 2002
14,042
1,257
Jimtown, CO
i got the same letter but i dont remember it saying it was done by an employee. not sure if i'll use the 30% coupon code they offered.
I was hoping L would get on & correct me cuz the more I think about it the more I think it was not an employee.

I will have to check.

If so.....
Take that Ire & Dr.Don'tPoopOnMySteps! :p
 

Austin Bike

Turbo Monkey
Jan 26, 2003
1,559
0
Duh, Austin
The key is when you order from any site, NEVER EVER EVER click on the "save my credit card number to make future purchases easy" box.

Credit card numbers are basically used for a second, until the transaction clears. Then the card # is masked 5*** **** **** **65 and stored in the file, along with the authorization number.

Then, if someone hacks their files, they have access to your address along with 3-4 digits of a 16-digit card number. It's worthless to them.

If you want to worry about online security, you're barking up the wrong tree. The odds of having your card # lifted by a hacker are infinitely lower than the odds of having it lifted by, oh, let's say A WAITER WHO TAKES YOUR CARD INTO THE BACK OF A RESTAURANT FOR 10 MINUTES.

People always fear the unknown and never fear the know, but the known is more likely to screw you in the long run. Most credit card fraud does not happen over the internet because it is difficult to obtain the numbers. It is much easier to get your number when you hand them the card.

Sometimes people will have a fake swiper, swipe your card, and it records everything on the magnetic strip, allowing them to make a card for themselves.

The internet is where all of the stolen card information is traded and distributed as well as were all the purchases happen, but it is generally not the source of the card numbers in the first place.
 
...
Credit card numbers are basically used for a second, until the transaction clears. Then the card # is masked 5*** **** **** **65 and stored in the file, along with the authorization number.

Then, if someone hacks their files, they have access to your address along with 3-4 digits of a 16-digit card number. It's worthless to them...
Only if the site is PCI compliant - I would expect that Nashbar is, haven't checked.
 

TN

Hey baby, want a hot dog?
Jul 9, 2002
14,042
1,257
Jimtown, CO
Only if the site is PCI compliant - I would expect that Nashbar is, haven't checked.
Do you know if Nashbar (or hell, any online merchant) retains your #'s after the transaction takes place?

QuoFan- Don't fall for it. They are profiteering swine, swindling every vulnerable cc acct. they come across, they seem to have it out for RM msg. board members too. I bet they hire Nigerians. They deserve to die a slow painful death. :D
 
Do you know if Nashbar (or hell, any online merchant) retains your #'s after the transaction takes place?

QuoFan- Don't fall for it. They are profiteering swine, swindling every vulnerable cc acct. they come across, they seem to have it out for RM msg. board members too. I bet they hire Nigerians. They deserve to die a slow painful death. :D
I know about the commerce sites that we have designed and maintain. Our current designs do not retain credit card information - aside from it being the right thing to do, there is a lot of pressure from credit card companies to do it correctly.
 

eaterofdog

ass grabber
Sep 8, 2006
6,947
144
Central Florida
I got my very own Nashbar letter yesterday. I haven't ordered anything from them since mid 2007. Data breach was supposedly about Dec 2008. Those dumbasses were saving CC numbers in the system.
 

nelsonjm

Monkey
Feb 16, 2007
710
1
Columbia, MD
Wow, this is the 3rd place I have read about the nashbar cc theft issues. The first place had some guy complaining that he had to replace his credit card. After he did that he ordered from them again and guess what happened? :eek:
 

I Are Baboon

Run, Forrest, Run!
Aug 6, 2001
29,457
2,029
MTB New England
MBC's credit card number was lifted by a Best Buy employee. It can happen pretty much anywhere you use your card, be it by intarwebs, telephone or in person. Your only real way to avoid this is to pay by cash.
 

TN

Hey baby, want a hot dog?
Jul 9, 2002
14,042
1,257
Jimtown, CO
MBC's credit card number was lifted by a Best Buy employee. It can happen pretty much anywhere you use your card, be it by intarwebs, telephone or in person. Your only real way to avoid this is to pay by cash.
And risk looking like a criminal!? :D
 

C.P.

Monkey
Jan 18, 2004
547
8
SouthEastern Massachusetts
When I shop online, I get a temporary credit card number that's set up for the single transaction and linked to your account, most credit card companies do this for free...yeah it's a PITA extra step, but I can still shop Nashbar or anywhere else online worry free...
 

Austin Bike

Turbo Monkey
Jan 26, 2003
1,559
0
Duh, Austin
Let's just say that credit card companies put a lot of pressure on the retailers to keep their security up. There is a lot to lose on all ends.

If someone scams the site with a stolen card, and the customer comes forward, the customer doesn't pay, the credit card company doesn't pay. Nope, the retailer is holding the bag.

There is an incentive not to screw it up, which is why online ordering is fairly safe.
 

TN

Hey baby, want a hot dog?
Jul 9, 2002
14,042
1,257
Jimtown, CO
Let's just say that credit card companies put a lot of pressure on the retailers to keep their security up. There is a lot to lose on all ends.

If someone scams the site with a stolen card, and the customer comes forward, the customer doesn't pay, the credit card company doesn't pay. Nope, the retailer is holding the bag.

There is an incentive not to screw it up, which is why online ordering is fairly safe.
This makes sense.