Warning - card fraud after buying a car stereo

[chriswt]

I bought a new car stereo from www.caraudiosecurity.com and a couple of days later my card was used Fraudulently a few days later at an online store and Amazon (steer clear of Amazon).

Luckily the bank rang me to ask if I'd used my card to make a high value internet purchase and I said "no" so that cancelled the transaction as well as the card. Well done bank!

Today the manager of the online shop where the fraudulent purchase was attempted called me and after a chat he gave me the address where the fraudulent order was to be sent to and what details the thieves had provided them with which included my address and 3 digit security code.

Somehow the thieves had obtained all my card details, address and security code. So that ruled out the thieves using stolen receipts and/or bank statements because neither hold the security code and I shred everything anyway.

I always make purchases online using a credit card and this was the 1st time I'd ever used my debit card online so it was strange that shortly after giving over all my details of this card the details were then stolen. Purely coincidently the thieves’ address was only a few miles from the caraudiosecurity shop.

Now I want to make absolutely clear that I am not accusing caraudiosecurity as I have no evidence whatsoever and the manager says he only has access to the card holders details and will happily talk to the police. It could have been that the details may well have been stolen from them if at all! I am purely stating all the facts and want to warn others that you cannot trust anyone these days so online purchases form anywhere but completely automated websites are risky. – I guess you all knew that already.

The thieves also tried to buy items from Amazon. Now this place is a fraudsters dream as you don’t need to confirm the security code, or the card holders billing address and you can have items sent anywhere, all you need is a name and account number, it beggars believe. Just pick up a receipt of the street guys and getting shopping!!!!

A simple solution would be that purchases can only be sent to a card holders address. The guy at the online store even told me that since the delivery to alternative addresses card fraud has shot up!


P.S - I'd love to make use of the thieves address but that's what the police are for.

 

[recycled]

register with visasecure and you will need to provide a password on line, or a staff of the sales team could be dodgy without the company knowing .
happens all the time.

 

[Dieselman]

Was your purchase via a website or over the phone?

 

[Rory]

It's very annoying but apart from some minor inconvenience, it's not really your problem. This might be being done in an organised way by a bunch of not very nice people and you really don’t want to get mixed up in that.
It's not even your card – it belongs to the bank. I don't think the Police will even accept a report from you – the bank has to report it.

Both me and a colleague had our company Amex cards used to buy flights – I found that amazing as clearly someone has to turn up and take the flight, and you’d imagine ticket and passport details could be tied together, but apparently it’s very common. The perps must consider that they have virtually no chance of being caught.

 

[chriswt]

The purchase was done over the internet but with these small traders its almost the same as sending a email with your card details.

I guess my frustration is that you can't do anything without having to watch your back or someone trying to de-fraud you.

There are some great ways of making online payments secure but if the likes of Amazon don't use them then its pointless.

 

[crockers]

Sorry if this soundt trite -- but why did you use a debit card over the internet? No protection for fraud whereas most credit cards do have this...

 

[crockers]

register with visasecure and you will need to provide a password on line, or a staff of the sales team could be dodgy without the company knowing .
happens all the time.

Do you have a link? When I googled it all i got were traders websites etc

Thanks:bannana:

 

[robert.saunders]

Do you have a link? When I googled it all i got were traders websites etc

Thanks:bannana:

I think you go via your issuer (Verified by Visa); I'm with HSBC for example:

http://www.hsbc.co.uk/1/2/personal/...ssionid=0000OuIGW_LKgrDn0eo7FZ9gGpT:11j5bfvdu

Rob

 

[television]

Did the address bar say https showing that it a secure site, never give card details without the s in the bar,it is the only system where it is safe

 

[recycled]

and a padlock below right

 

[television]

and a padlock below right

Yes I agree, but the padlock has now been copied and must have both as you say

 

[comports]

Being and internet consultant and involved in many secure site setups I am VERY careful about where I submit my details. But these guys are very clever these days though and I nearly got had the other day.

I got a call from my CC company who asked me to verify some online transactions. 2 were from me/the Mrs but another one was for £1.00 with iTunes. It is a very common way for these guys to check card details. They register a card online for a minimal sum to see if it goes through and if succesfull then they go out on a spending spree. My CC company told me the £1.00 transcation took place some 8 minutes before the call to from them to confirm. Their systems are now geared up to flag transactions like these and they then check them out.

Great work by the CC company..

All of my cards are now Verified by Visa which is a lot safer..

If any of you remember Hill Street Blues... Hey, Hey... Let's be careful out there..!

 

[recycled]

verified by visa means that you wil need a password even if you have stolen the cards details from the supplier.
The only way to get you then is if they have installed a stroke logger virus on your PC.

 

[recycled]

Sorry if this soundt trite -- but why did you use a debit card over the internet? No protection for fraud whereas most credit cards do have this...

I use a debit card too.better for me as the account is always empty.
only when i need to make a purchase do i fill it in with money.
make the purchase and it goes empty again.
anythief will only get a max of 1p

 

[comports]

Hey Recycled,

That's an interesting way to combat it. I just don't think I would have the patients to do all of this transferring. I guess you have to two accounts with the same bank/branch to do instant transfers over the web/phone and use the account kinda like paypal..

Good on ya though..

 

[recycled]

spot on exactly. three accounts actually.
has to do with the insurance over £30000 stuff.
i do not want to lose any money if the bank goes bust

 

[timskemp]

It's another reason to try and stick to shops that use a third party transaction processor - paypal / google checkout / worldpay all have their own problems but they help prevent staff at the store harvesting details.

 

[Rumble]

Sorry if this soundt trite -- but why did you use a debit card over the internet? No protection for fraud whereas most credit cards do have this...

Debit cards are covered for fraud, you are only liable for the amount written somewhere on the debit card eg 50 pounds etc.

Alot of the time your bank won't even charge you that fee and will return all your money aslong as you weren't grossly negligent ie you gave someone your card and pin number.



Also, just because a website has 'https://' in the address bar and a padlock doesnt mean its not dodgy, anyone can create a 'secure' website, it just means that maybe thrid party people can not access the information that you pass to the website operators. BUT it doesn't mean the website operators themselfves are not dodgy or one of their employees. Would you buy anything from https://www.wewillemptyyourbankaccount.com?

 

[recycled]

sometimes i do not even trust the banks and their staff as well.
Remember the ones that stole man city football players accounts and sold the details to organised criminals?
A bank can not vouch for every staff being honest so i always look after my own.

 

[recycled]

well i got a call from my well known card provider trying to sell me PPi insurance on my card.
I said sorry not needed as i always pay in full by the due date. after hassling me for minutes i had to drop the phone on him.
My card was due for renewal at about the same time and i told the provider, please do not post it. send it to a local branch and i will collect it in person. after i destroyed the expired one.
I specifically said so as the mail services were a bit suspect at that time.

Two days later i get a call saying someone is spending my new card in the shops. is it me?i said no as i have not got it yet. They now said it was posted and must have been stolen.
i said well coming so soon after your PPI call and my specific instruction not to post is a bit too hollywood for me.