My credit card number was stolen just a few hours after making a purchase from Amazon, someone made a fake card and had some fun at Walmart. I was able to prove it and the money is being refunded by the credit card co but is that fair? I use ONE card for Amazon and don't use it for anything else, so I know it happened there. Trying to decide what to do so I can actually purchase a book. The credit card company suggested purchasing Amazon gift cards at retail stores (and use cash to purchase them). I guess I'll see if that works.

I have Amazon Prime and my husband like to rent movies. I'm sooo annoyed. Even my shampoo was cheaper there.

I know it happened there.

No, you think it happened there. Running around bad-mouthing Amazon may make you feel better, but you have zero proof that they compromised your card.

Seems more likely you have some sort of malware on your computer than Amazon's security has been breached.

I'd have to agree that the chances are MUCH greater that the source of your problem lies with your device(s) than with Amazon's servers. I'll assume you're correct that the card you use for Amazon is not used for any other purpose. Do you carry it with you? If so, it's possible that your card info may have been compromised even if the card was not stolen. And rather than signing your card, enter "SEE ID" on the back. It's not a foolproof method but it does discourage use of a stolen card.

Or do you use a public wifi network when ordering from Amazon (e.g. McDonald's, Starbuck's, etc.) If so, it's far more likely that your credit card information was lifted while you were using the card online than that Amazon's own security has been breached. I make it a practice NEVER to use any device on a public network if I have to enter a credit card number. It's risky enough to enter login and password information on a public wifi network but entering a credit card number in McDonald's is equivalent to announcing it in a loud voice.

You can, of course, use a gift card to purchase from Amazon. But as I recall, you cannot attach a gift card in place of credit card on your Amazon Account. And without a credit card, you cannot download digital content (even free content) to your Kindle Fire. An alternative is to purchase a prepaid credit card (My local grocery has them) and place a limited balance on the card.

I agree that the most likely scenario is someone getting your info while you were transmitting it over a network. But if you only use it for Amazon purchases, isn't it on file with Amazon where you don't have to enter it each time you make a purchase?

I agree that the most likely scenario is someone getting your info while you were transmitting it over a network. But if you only use it for Amazon purchases, isn't it on file with Amazon where you don't have to enter it each time you make a purchase?

YES!! It was stored at Amazon and ONLY at Amazon. I haven't transmitted it in YEARS, maybe five or more.

I don't carry it with me. I never used it at Mcdonald's, I never use credit cards of any kind at a public network. I can't think of the last time I even used a public network. It is possible I haven't done that in years. The bank knows it was Amazon and eventually, after penetrating many layer of customer service and security--Amazon admits that it was Amazon. It just takes time to sort these things out. I don't suspect my devices at all. The KF is the only "device" I use except for my Mac. The numbers were stored at Amazon, not on the Kindle and weren't transmitted. It is highly unlikely that I have any suspicious software on the Mac. I know it is becoming more common but it remains unlikey. Good Lord, you folks wouldn't believe you were on fire if your shoes were burning and your a** was catching.

Well You NEED a Cr Card to get Prime! MOST Everything else you can use Gift cards for! I buy mine in the local stores!

More than likely you got hacked in Walmart!

Good Lord, you folks wouldn't believe you were on fire if your shoes were burning and your a** was catching.

Well, let's see, I can take the word of a random person on the internet, or I can trust Amazon. For me that is not a tough choice.

As for your bank "knowing" it was Amazon, that's BS. Unless the police have somebody in custody, they have ZERO idea how your card was compromised. As for Amazon admitting to a security breach, let's just say I'll believe it when I hear it from them.

I'm sure you believe what you are saying, but I don't.

YES!! It was stored at Amazon and ONLY at Amazon. I haven't transmitted it in YEARS, maybe five or more.

I don't carry it with me. I never used it at Mcdonald's, I never use credit cards of any kind at a public network. I can't think of the last time I even used a public network. It is possible I haven't done that in years. The bank knows it was Amazon and eventually, after penetrating many layer of customer service and security--Amazon admits that it was Amazon. It just takes time to sort these things out. I don't suspect my devices at all. The KF is the only "device" I use except for my Mac. The numbers were stored at Amazon, not on the Kindle and weren't transmitted. It is highly unlikely that I have any suspicious software on the Mac. I know it is becoming more common but it remains unlikey. Good Lord, you folks wouldn't believe you were on fire if your shoes were burning and your a** was catching.

beej,

Didn't mean to offend you. As you no doubt realize, questions like the ones raised above are legitimate in cases like yours. I suspect Amazon asked you the same questions.

It IS possible that the problem exists at Amazon. Although I don't recall any case of a large scale breach of security for Amazon's servers (and I'm sure it would have made national news if it has ever occurred), it is certainly possible that an individual Amazon employee may be the culprit.

I've had three similar experiences over the years though none of them involved Amazon and each was caught by my credit card company as a "suspicious" transaction. In each of those cases I'm not sure whether deliberate fraud or simply mistakenly entered credit card numbers were at fault. My most recent experience occurred only three months ago. Had to close the credit card number and have a new number issued to me. PITA but other than having to change a few numbers with merchants who draw automatically from my account periodically no long term problem.

If you use a MAC, 600,000 of their users were infected with this trojan which could compromise credit card numbers:

http://www.huffingtonpost.com/2012/04/05/mac-flashback-trojan_n_1405766.html

In addition, one must never give their credit card number to any customer service employees. Any one of them could use it improperly. Also, never give your credit card number to 3rd party vendors at Amazon. Those folks could also have their database compromised.

If Amazon did have their database compromised, it would make headlines and we'd all see it in the news.

The solution, in any event, is have the bank issue a new credit card to you and then change the number at Amazon.

I doubt it was amazon's fault. I buy from there almost every day.

Typing this while on fire but not noticing.

This isn't aimed at the OP. Just a general comment about credit card security and people's attitudes about it. One should, of course, be careful in entering a credit card number and other personal information online. But I'm amazed at the number of people who are paranoid about internet security yet hand their credit cards over to a waiter at a restaurant and never think twice about it. In the five minutes between handing the waiter/waitress the card and getting a bill, virtually every piece of information on the card can be copied or used.

yet hand their credit cards over to a waiter at a restaurant and never think twice about it. In the five minutes between handing the waiter/waitress the card and getting a bill, virtually every piece of information on the card can be copied or used.

This has happened to us twice now in restaurants. You would've thought we'd have learned the lesson the first time, but now when I am in a restaurant I follow the server to the CC machine and wait for my card.

Well You NEED a Cr Card to get Prime! MOST Everything else you can use Gift cards for! I buy mine in the local stores!

More than likely you got hacked in Walmart!

I wasn't at Walmart and I didn't use the card at Walmart EVER. The darn thieves used it at Walmart.

This isn't aimed at the OP. Just a general comment about credit card security and people's attitudes about it. One should, of course, be careful in entering a credit card number and other personal information online. But I'm amazed at the number of people who are paranoid about internet security yet hand their credit cards over to a waiter at a restaurant and never think twice about it. In the five minutes between handing the waiter/waitress the card and getting a bill, virtually every piece of information on the card can be copied or used.

Yes. It's mind boggling. We order take out twice a week and use another card for that. We give them that credit card over the phone. I would have expected it to happen there or at a restaurant. We've decided to do it the old fashioned way. Keep cash for things we might need. But tonight we forgot and hubby handed over his credit card to the waitress.This is going to take some getting used to.

If you use a MAC, 600,000 of their users were infected with this trojan which could compromise credit card numbers:

http://www.huffingtonpost.com/2012/04/05/mac-flashback-trojan_n_1405766.html

In addition, one must never give their credit card number to any customer service employees. Any one of them could use it improperly. Also, never give your credit card number to 3rd party vendors at Amazon. Those folks could also have their database compromised.

If Amazon did have their database compromised, it would make headlines and we'd all see it in the news.

The solution, in any event, is have the bank issue a new credit card to you and then change the number at Amazon.

Yes, I checked for the Trojan and don't have it. I know that Mac users need to stop thinking they are immune. The bank issued me a new card but I'm not using it at Amazon. How patient do you think the bank will be if it happens again and they already warned me?

If Amazon's databases were hacked, and they have DISCOVERED it it would be in the news. Like I said, it takes a while to sort these things out.

Which card did hubs hand over? The compromised one?

What browser do you use on your Mac?

beej,

Didn't mean to offend you. As you no doubt realize, questions like the ones raised above are legitimate in cases like yours. I suspect Amazon asked you the same questions.

It IS possible that the problem exists at Amazon. Although I don't recall any case of a large scale breach of security for Amazon's servers (and I'm sure it would have made national news if it has ever occurred), it is certainly possible that an individual Amazon employee may be the culprit.

I've had three similar experiences over the years though none of them involved Amazon and each was caught by my credit card company as a "suspicious" transaction. In each of those cases I'm not sure whether deliberate fraud or simply mistakenly entered credit card numbers were at fault. My most recent experience occurred only three months ago. Had to close the credit card number and have a new number issued to me. PITA but other than having to change a few numbers with merchants who draw automatically from my account periodically no long term problem.

They grudgingly admitted, and I believe it was an individual employee. While they carried on about their online transactions being safe, when the representative at the bank asked about individual employees--they were stymied and had to admit that was far more likely. When we explained about it being a card used only for Amazon shopping and had been stored there for a number of years, all got quiet on their end and they admitted it.

Which card did hubs hand over? The compromised one?

God no, that was closed on Monday when the credit card company called and asked if we had really spent $538 at Walmart and were trying to spend another $600 and another Walmart. When I nearly passed out, they closed the card.

What browser do you use on your Mac?

Safari

How patient do you think the bank will be if it happens again and they already warned me?


A bank that issues Credit Cards warned you not to keep a credit card on file with Amazon?

Or it may be someone employed by the bank or financial institution that issued the card.

A bank that issues Credit Cards warned you not to keep a credit card on file with Amazon?

They "advised" me. And told me lots of horror stories.

I agree that the most likely scenario is someone getting your info while you were transmitting it over a network. But if you only use it for Amazon purchases, isn't it on file with Amazon where you don't have to enter it each time you make a purchase?

No, you think it happened there. Running around bad-mouthing Amazon may make you feel better, but you have zero proof that they compromised your card.

Seems more likely you have some sort of malware on your computer than Amazon's security has been breached.

These. Not likely Amazon caused.


Amazon must follow pci standards. employees would not have access to cc numbers.

These. Not likely Amazon caused.


Amazon must follow pci standards. employees would not have access to cc numbers.

I respect all of your opinions but I'm gonna go with what the bank told me and Amazon finally admitted to them. SInce this card was used nowhere else, it's kind of hard to believe it happened somewhere else. From here on out, the bank handles the process and I'm out of it. I just have to decide how to make additional purchases at Amazon.

beej,

Didn't mean to offend you. As you no doubt realize, questions like the ones raised above are legitimate in cases like yours. I suspect Amazon asked you the same questions.

It IS possible that the problem exists at Amazon. Although I don't recall any case of a large scale breach of security for Amazon's servers (and I'm sure it would have made national news if it has ever occurred), it is certainly possible that an individual Amazon employee may be the culprit.

I've had three similar experiences over the years though none of them involved Amazon and each was caught by my credit card company as a "suspicious" transaction. In each of those cases I'm not sure whether deliberate fraud or simply mistakenly entered credit card numbers were at fault. My most recent experience occurred only three months ago. Had to close the credit card number and have a new number issued to me. PITA but other than having to change a few numbers with merchants who draw automatically from my account periodically no long term problem.

I'm not offended just astounded that everyone is so complacent about Amazon. Mind boggling, really.

[QUOTE=beej231;2067962How patient do you think the bank will be if it happens again and they already warned me?[/QUOTE]

This happens to me, on average, about once every 1.5 yrs (and it always seems to be WalMart where the card is used!)... never once has the bank warned me to do/not do anything, and with $0 liability I continue to use a CC without fear... something about your story isn't smelling right.

I've noticed a significant number of threads started by people who come in claiming to be completely innocent parties (lost CC, locked out of accounts, etc) and then warn us not to deal with Amazon. It almost starts to feel like a concerted effort, a conspira-- oh, wait... I'm starting to sound like those posters. :rofl:

I respect all of your opinions but I'm gonna go with what the bank told me and Amazon finally admitted to them. SInce this card was used nowhere else, it's kind of hard to believe it happened somewhere else. From here on out, the bank handles the process and I'm out of it. I just have to decide how to make additional purchases at Amazon.

I don't believe it for a second.

I've been involved in the credit industry for most of my career starting back in the 80's

I'll leave it at that.

Safari

Safari has an autofill feature, do you ever use that? The only reason I ask is that I'm always very suspicious of it since it can remember information from other forms and use them later.

This happens to me, on average, about once every 1.5 yrs (and it always seems to be WalMart where the card is used!)... never once has the bank warned me to do/not do anything, and with $0 liability I continue to use a CC without fear... something about your story isn't smelling right.

I've noticed a significant number of threads started by people who come in claiming to be completely innocent parties (lost CC, locked out of accounts, etc) and then warn us not to deal with Amazon. It almost starts to feel like a concerted effort, a conspira-- oh, wait... I'm starting to sound like those posters. :rofl:

I'm not a new poster and if my job was to trash Amazon I would have done it before now. You all make me laugh. Besides that I LOVE Amazon. I buy darn near everything there.

Safari has an autofill feature, do you ever use that? The only reason I ask is that I'm always very suspicious of it since it can remember information from other forms and use them later.

The Safari auto fill always want to use old information which I swear I'll correct but never do.

I' a lurker. I've only posted once. I have to say that I've had credit card numbers stolen just about everywhere including Amazon. I used to be an agoraphobic which means I never left the house. I even got my groceries online. It's a PIA but it happens. I once switched my book ordering account from Amazon to Barns and Noble only to have it happen there a week later. The truth is, your credit card info isn't safe anywhere. All you can do is report it when it happens. The credit card companies investigate as best they can but only get their panties in a bunch over large amounts of money. My cousin is a Senior VP at Citibank and switched from fraud to anti-money laundering because she was so frustrated. I can't imagine that being any less frustrating but apparently they actually catch and prosecute a lot of people in that devision.

So really all you can do is use your cards and hope it will be awhile before you get hit the next time.

I' a lurker. I've only posted once. I have to say that I've had credit card numbers stolen just about everywhere including Amazon. I used to be an agoraphobic which means I never left the house. I even got my groceries online. It's a PIA but it happens. I once switched my book ordering account from Amazon to Barns and Noble only to have it happen there a week later. The truth is, your credit card info isn't safe anywhere. All you can do is report it when it happens. The credit card companies investigate as best they can but only get their panties in a bunch over large amounts of money. My cousin is a Senior VP at Citibank and switched from fraud to anti-money laundering because she was so frustrated. I can't imagine that being any less frustrating but apparently they actually catch and prosecute a lot of people in that devision.

So really all you can do is use your cards and hope it will be awhile before you get hit the next time.

I've been so lucky up till now. It was a shock.

I'm not offended just astounded that everyone is so complacent about Amazon. Mind boggling, really.

It's not mind boggling at all. The popular mantra is: Amazon is my friend and will do me no harm. Consequently, whenever Amazon does someone harm or might be the culprit, the mantra chanters rise to its defense. The thinking is that if the mantra is repeated often enough and loudly enough, it will be true. There is no need to get bogged down in facts or the idea that sometimes bad turns of events are, indeed, Amazon's fault. It is always the person who was harmed who is at fault -- or one of Amazon's nefarious competitors.

There is no need to get bogged down in facts or the idea that sometimes bad turns of events are, indeed, Amazon's fault. It is always the person who was harmed who is at fault -- or one of Amazon's nefarious competitors.

I have NEVER heard a credible report of someone having their credit card compromised by Amazon, and I still haven't.

It's not mind boggling at all. The popular mantra is: Amazon is my friend and will do me no harm. Consequently, whenever Amazon does someone harm or might be the culprit, the mantra chanters rise to its defense. The thinking is that if the mantra is repeated often enough and loudly enough, it will be true. There is no need to get bogged down in facts or the idea that sometimes bad turns of events are, indeed, Amazon's fault. It is always the person who was harmed who is at fault -- or one of Amazon's nefarious competitors.

Oh, now I get it.

I have NEVER heard a credible report of someone having their credit card compromised by Amazon, and I still haven't.

Good Lord.

It's not mind boggling at all. The popular mantra is: Amazon is my friend and will do me no harm. Consequently, whenever Amazon does someone harm or might be the culprit, the mantra chanters rise to its defense. The thinking is that if the mantra is repeated often enough and loudly enough, it will be true. There is no need to get bogged down in facts or the idea that sometimes bad turns of events are, indeed, Amazon's fault. It is always the person who was harmed who is at fault -- or one of Amazon's nefarious competitors.

Going around in circles like that kept me trapped in the house for 7 years. LOL

Yes, I checked for the Trojan and don't have it. I know that Mac users need to stop thinking they are immune. The bank issued me a new card but I'm not using it at Amazon. How patient do you think the bank will be if it happens again and they already warned me?

If Amazon's databases were hacked, and they have DISCOVERED it it would be in the news. Like I said, it takes a while to sort these things out.

Honey just use another card. Those people won't know it already happened before and cover it just like these people did. Online shopping is what makes the world go round right now. They'll find a way to make it all very safe until the hackers figure that out too. When we shopped only at malls we were afraid of pickpockets and people who would yank your purse off your arm. Where is it really safe? <--hides in closet

Fraud is a cost of doing business for Credit Companies and they will continue to cover it. They already have the technology to make it much harder to steal cards, but it also makes the cards harder to use, which reduces their use which is counter to what the banks want, so they absorb the fraud cost.

In the US I can simply wave a card near a card reader and I'm done. No pin number, no signature, zero verification. In the UK I need a card with an embedded smart chip and the associated PIN to make any transaction. It's all about the balance between use of use and ease of fraudulent use.

My bank changes the expiration date every few years for security. Then I have to change it at Amazon.

Does your bank change it also periodically?

Most sites require the 3 digit validation code to be entered. Amazon does not do this and that is a unique weakness at the Amazon site.

By the way, your credit card information could also be stolen by a bank employee. Do you use a major bank or a local bank? Local banks are notorious for weakened security since they have less revenue to cover the expense of advanced procedures and may take more short cuts.

We once had a local bank discard old customer records into an outside garbage bin without shredding it first. Luckily, someone found it and turned it back to the bank. Any criminal could have easily compromised it. I also once saw in the local newspapers that a bank employee had his laptop stolen with all the customer records on it. The bank offered free identity protection to all it's customers and many did have their credit card numbers used improperly.

My bank changes the expiration date every few years for security. Then I have to change it at Amazon.

Does your bank change it also periodically?

Most sites require the 3 digit validation code to be entered. Amazon does not do this and that is a unique weakness at the Amazon site.

By the way, your credit card information could also be stolen by a bank employee. Do you use a major bank or a local bank? Local banks are notorious for weakened security since they have less revenue to cover the expense of advanced procedures and may take more short cuts.

We once had a local bank discard old customer records into an outside garbage bin without shredding it first. Luckily, someone found it and turned it back to the bank. Any criminal could have easily compromised it. I also once saw in the local newspapers that a bank employee had his laptop stolen with all the customer records on it. The bank offered free identity protection to all it's customers and many did have their credit card numbers used improperly.

Major bank and thy change cards and numbers every 3 years or so. I have no idea if that is often enough.

beej, it doesn't matter who you think compromised your card or even, in fact, who did. The fact is that you are vulnerable even if you NEVER use a credit card. It's trivial to collect enough information about you to qualify for a credit card and someone paying the minimum due can rack up a lot of debt before you ever find out.

It's only a little worse if you have bank accounts (they can steal your money plus your credit rating). The good news is that everyone knows this and the banks would go out of business if we all just used cash, so they take all of the responsibility in most cases.

Don't drive yourself crazy trying to figure this out. Use reasonable care and let the lenders worry about the rest.

beej, it doesn't matter who you think compromised your card or even, in fact, who did. The fact is that you are vulnerable even if you NEVER use a credit card. It's trivial to collect enough information about you to qualify for a credit card and someone paying the minimum due can rack up a lot of debt before you ever find out.

It's only a little worse if you have bank accounts (they can steal your money plus your credit rating). The good news is that everyone knows this and the banks would go out of business if we all just used cash, so they take all of the responsibility in most cases.

Don't drive yourself crazy trying to figure this out. Use reasonable care and let the lenders worry about the rest.

Thank you Wizwor and iPatty. I tend to think I have to take control of something when in reality, it's totally out of my hands.:thanks:

I have NEVER heard a credible report of someone having their credit card compromised by Amazon, and I still haven't.

I suspect that until it happens to a particular person that we know or until it is a massive problem, rather than an occasional person involving one or two people, that is widely reported in the press (assuming you believe the particular media that reports it), one will never hear what one considers a "credible" report of it happening. OTOH, I have not heard any credible reports of why I should disbelieve the person reporting the problem.

I have had my share of problems with retailers over 60 years of buying, retailers from whom I would never buy again, while others praise those same retailers. For example, I would never knowingly buy a GE made appliance after the experiences I had, yet I know people who think they are the greatest.

I find it interesting how everyone believes Amazon, who does not release any solid data about Kindle or ebook sales, finding those reports credible, yet don't extend the same courtesy to people who report problems with Amazon. I guess like Apple fans, there are those who believe Amazon walks on water.

I don't know whether the OP's story is true or not; I simply see no reason to doubt the story or the OPs credibility. It is quite possible that the OP's experience is limited to a handful of people and thus not widely reported.

Most sites require the 3 digit validation code to be entered. Amazon does not do this and that is a unique weakness at the Amazon site.

Can't possibly be an Amazon weakness. It must be the credit card companies' fault for not insisting that Amazon ask or the buyers' fault for buying at a place that doesn't ask for those digits.

I read a few news article about a major credit card processor being compromised a few months back. I think they said alot of card numbers were stolen. So you could of been compromised that way.

They were suppose to notify everyone involved but it's always a possibility. :chinscratch:

I find it interesting how everyone believes Amazon, who does not release any solid data about Kindle or ebook sales, finding those reports credible, yet don't extend the same courtesy to people who report problems with Amazon. I guess like Apple fans, there are those who believe Amazon walks on water.

I'm not a "fanboy", and I have never said I don't believe the original poster. I have no doubt that her credit card was compromised, what I don't believe is the logical leap she made that it is Amazon's fault.

I don't believe that someone at Amazon waited until a purchase was made, grabbed her credit card number and immediately sold it to someone else who ran down to Wal-Mart all within a few hours. It just doesn't ring true. In the unlikely event it was one of the very few people who have access to un-encrypted card numbers within Amazon, do you really think they'd need to wait until a purchase was made before stealing a card number? Do you really think they would risk it all for a few numbers rather than the thousands if not millions that were available to them?

I'm sure something bad happened, I just think there are far more likely scenarios than a data breach at Amazon

The credit card number could have been compromised by someone opening the mail and copying the card information when it was mailed out. If they then knew the expiration date, they could wait to use it until nearly expired.

There are so many ways for credit card numbers to be compromised that, blaming it on Amazon, makes no sense unless Amazon, itself, went public with information that their database was broken.

The best approach is to just cancel the credit card and have the bank issue a new one. Its highly unlikely the experience will be repeated.

I have had my share of problems with retailers over 60 years of buying, retailers from whom I would never buy again, while others praise those same retailers. For example, I would never knowingly buy a GE made appliance after the experiences I had, yet I know people who think they are the greatest.

I had a Craftsman air compressor, manufactured by Campbell Hausfeld, using an electric motor made by GE. When a small part of the motor broke I called Sears... they wouldn't sell me the part, wanted to sell me the entire motor. I called CH, they also said that they couldn't do anything about it because it was a Craftsman labeled compressor, so I called GE, who also said that they couldn't do anything about it since they don't deal directly with customers for those non direct-to-consumer parts. I finally gave up and made a bracket that held the original part in place well enough that it worked.. a few weeks later I receive an unmarked box. In tiny print on the shipping label I see that it came from GE and when I opened it up I found the part that I'd been looking for. I didn't even remember giving them my address. Apparently somebody decided to do something about it and just sent me the part (worth about $60+) without any payment or anything. I was, and still am, very impressed.

I don't believe that someone at Amazon waited until a purchase was made, grabbed her credit card number and immediately sold it to someone else who ran down to Wal-Mart all within a few hours. It just doesn't ring true.

Not only does that not ring true, but it supports the hypothesis that the leak wasn't at Amazon. Nobody has access to your credit card number when you make a payment. The timing doesn't rule out Amazon, but if it was Amazon's leak the timing would be only a coincidence.

I'd say an Amazon employee is the least likely of the suggested leaks. The bank will tell a customer whatever they want to hear in these circumstances, and most likely the bank's customer service (and Amazon's for that matter) know less than the average person about how credit cards and online purchasing work.

Regardless, online buying via credit card is extremely safe. By far the best way to defraud a credit card holder is through social engineering. The chances of having your credit card compromised online is unimaginably small, and if it happens you usually have ZERO liability.

Glad you got it fixed.

No online or retail purchase is totally immune from compromising a credit card. The vectors for fraud exist in both methods. I think that the majority of us realize that it's only a matter of time before some bit of our credit data is compromised somewhere.

The funny thing is, is that years ago I switched from making purchases in cash in department stores to putting them on a credit card because in one store I gave the sales clerk a twenty dollar bill for a purchase, she gave me change for a ten and then swore that I had only given her a ten dollar bill. I never trusted a sales clerk in that store again because of that experience.

Just using currency also subjects one to risks of holdups, muggings, lost wallets and pickpockets.

Just using currency also subjects one to risks of holdups, muggings, lost wallets and pickpockets.

But then u don't get a letter of apology which I got today from Amazon. Ur quite right. I'd much rather get mugged on line than hit over the head so someone can steal my purse. Credit cards ARE safer.

YOU GOT A LETTER FROM AMAZON STATING THAT THEIR CREDIT CARD SYATEM HAS BEEN COMPROMIZED!!!!

Call the news papers! Call the TV stations! THIS IS NEWS!

I don't think that you are Amazon bashing, but it's kinda hard to believe some of the things that you want us to believe.

It's far more likely that your computer was compromised sometime in the past. Even if it has no malware on it now, that's a more likely suspect than an Amazon employee dipping their hand in to the data stream and getting your numbers.

Whatever.

If you want to be VERY safe just get a debit card. Some banks still have a "no minimum" debit account. Most have some kind of limits though.

I keep a minimum in a bank unrelated to my normal account. When I'm about to make a purchase I deposit the amount needed to cover that purchase. This card is ONLY used for internet purchases.

If that debit card is compromised, no big loss.

I have been getting a LOT of spam lately and found a nasty trojan on my wifes laptop I just cleaned off.
I highly suggest you all do virus and spyware checks ASAP to clean out whatever is on there.

Here are my favs to use and that have been very successful for me to keep my pcs clean over the yeards:
all of these are free and can be downloaded from CNET downloads or the actual software mfg site.

for Spyware:
- Spywareblaster (sets up protection/blocks from spyware. Doest scan or clean anything)
http://www.javacoolsoftware.com/spywareblaster.html

- Malwarebytes AntiMalware
http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button

- SuperAntiSpyware Free Edition
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE


For Viruses:
(Choose only ONE of these. Dont run more than 1 antivirus software at any one time. Uninstall built in virus software if your PC came with it preloaded like Symantec or McAfee as sometimes these are not as powerful as the free ones and not as updated).

- Avast
http://www.avast.com/en-us/index

or
- AVG Free 2012
http://download.cnet.com/AVG-Anti-Virus-Free-Edition-2012/3000-2239_4-10320142.html?tag=dropDownForm;pop

A must for any PC owner.

Also great is Advanced System Care which does a lot of things for soyware and keeping your PC running like new:
http://download.cnet.com/Advanced-SystemCare-Free/3000-2086_4-10407614.html?tag=contentMain;contentBody;1d

[QUOTE=SameOldStory;2071517]YOU GOT A LETTER FROM AMAZON STATING THAT THEIR CREDIT CARD SYATEM HAS BEEN COMPROMIZED!!!!

Call the news papers! Call the TV stations! THIS IS NEWS!

I don't think that you are Amazon bashing, but it's kinda hard to believe some of the things that you want us to believe.

It's far more likely that your computer was compromised sometime in the past. Even if it has no malware on it now, that's a more likely suspect than an Amazon employee dipping their hand in to the data stream and getting your numbers.

Whatever.

I said I had a letter of apologizing that MY credit card, not all their servers had been compromised. Followed by all the stuff they do to make it safe yada yada and things I can do to make it safer on my end (which I was already doing). This arrived with a $50 gift certificate, like that would replace the $538.92 that was stolen from me. Well, why not? The credit card company is on the hook for that

When you guys here something you don't wish to believe, you either over react with a loud hue and cry or just continue to function in that foreign land called DENIAL.

You sound like a bunch of drooling idiots.

I have been getting a LOT of spam lately and found a nasty trojan on my wifes laptop I just cleaned off.
I highly suggest you all do virus and spyware checks ASAP to clean out whatever is on there.

Here are my favs to use and that have been very successful for me to keep my pcs clean over the yeards:
all of these are free and can be downloaded from CNET downloads or the actual software mfg site.

for Spyware:
- Spywareblaster (sets up protection/blocks from spyware. Doest scan or clean anything)
http://www.javacoolsoftware.com/spywareblaster.html

- Malwarebytes AntiMalware
http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button

- SuperAntiSpyware Free Edition
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE


For Viruses:
(Choose only ONE of these. Dont run more than 1 antivirus software at any one time. Uninstall built in virus software if your PC came with it preloaded like Symantec or McAfee as sometimes these are not as powerful as the free ones and not as updated).

- Avast
http://www.avast.com/en-us/index

or
- AVG Free 2012
http://download.cnet.com/AVG-Anti-Virus-Free-Edition-2012/3000-2239_4-10320142.html?tag=dropDownForm;pop

A must for any PC owner.

Also great is Advanced System Care which does a lot of things for soyware and keeping your PC running like new:
http://download.cnet.com/Advanced-SystemCare-Free/3000-2086_4-10407614.html?tag=contentMain;contentBody;1d

I use a MAC. ON my PC, which I wouldn't use to purchase a paperclip, If have lots of great protection. ON the Mac, have everything that is recommended to make it safe.

I have no idea why everyone would choose to believe that **I** must have screwed up but I see that it is a pervasive attitude here. I was trying to be helpful with a warning to be careful but I'm SO sorry I bothered.

I said I had a letter of apologizing that MY credit card, not all their servers had been compromised. Followed by all the stuff they do to make it safe yada yada and things I can do to make it safer on my end (which I was already doing). This arrived with a $50 gift certificate, like that would replace the $538.92 that was stolen from me. Well, why not? The credit card company is on the hook for that

When you guys here something you don't wish to believe, you either over react with a loud hue and cry or just continue to function in that foreign land called DENIAL.

You sound like a bunch of drooling idiots.

Well thanks for that. I guess that explains how you have managed over 250 posts without receiving any karma :smack:

It was nice of Amazon to apologize, but I'm not at all surprised that the apology was for your inconvenience, not because there was any reality to your accusations. If I was you I'd be happy that you wound up getting $50 from a company that did nothing wrong and get on with your life. As for any theft, your credit card company was the victim, not you.

[QUOTE=SameOldStory;2071517]YOU GOT A LETTER FROM AMAZON STATING THAT THEIR CREDIT CARD SYATEM HAS BEEN COMPROMIZED!!!!

Call the news papers! Call the TV stations! THIS IS NEWS!

I don't think that you are Amazon bashing, but it's kinda hard to believe some of the things that you want us to believe.

It's far more likely that your computer was compromised sometime in the past. Even if it has no malware on it now, that's a more likely suspect than an Amazon employee dipping their hand in to the data stream and getting your numbers.

Whatever.


I said I had a letter of apologizing that MY credit card, not all their servers had been compromised. Followed by all the stuff they do to make it safe yada yada and things I can do to make it safer on my end (which I was already doing). This arrived with a $50 gift certificate, like that would replace the $538.92 that was stolen from me. Well, why not? The credit card company is on the hook for that

When you guys here something you don't wish to believe, you either over react with a loud hue and cry or just continue to function in that foreign land called DENIAL.

You sound like a bunch of drooling idiots.

Well, many of us are. Are you trying to say that you are normal and have a social life? <g>

Well thanks for that. I guess that explains how you have managed over 250 posts without receiving any karma :smack:

It was nice of Amazon to apologize, but I'm not at all surprised that the apology was for your inconvenience, not because there was any reality to your accusations. If I was you I'd be happy that you wound up getting $50 from a company that did nothing wrong and get on with your life. As for any theft, your credit card company was the victim, not you.


I must admit I was a little surprised by the crazy reaction you guys had to a
simple warning about a problem with online shopping. You don't sound like blithering idiots but you do sound a little like me till I got on the proper medication. <g>

One day my wife was pounding on her keyboard yelling that her computer was way too slow.

I did several scans without booting her computer and found OVER 360 instances of viruses and malware on her hard drive. UNTIL THEN she thought that the ONLY way that you could get viruses on you computer was by going to web sites that you shouldn't be going to (such as porn sites).

Now, she knows better.


So let me reiterate - You MAY have had something on your computer, AT SOME TIME, that recorded your credit card number. Your computer MAY be clean now.

People who write virses write them to get past anti-virus programs.

Companies that write anti-virus programs write new programs to block the latest viruses.

This is the most probable cause of your card info getting out.

You can bet your life that NO ONE hacked Amazon's transaction servers just to steal a few card numbers. And no one walked over to one of those servers and had free access to the credit card info. As someone mentioned you are far more likely to have credit card info theft while buying something with your card.

One of the things that I work on is security systems, including card access systems. I have the equipment to copy all 3 tracks on any mag stripe card in one quick swipe. AND to duplicate it on a blank card, or store it for later use. This is part of my job. Think of a collage setting where the staff at a counter encode an ID card for students. What the criminals have is MUCH smaller that those.


Back in the '70 I was invited to a co-workers house for dinner. A few days latter they noticed that something they had shown me was missing and accused me of stealing it. A month later they found it between the couch cushions and tried to apologize. HELL NO.

You are doing the same thing. You DON"T know.

I must admit I was a little surprised by the crazy reaction you guys had to a
simple warning about a problem with online shopping. You don't sound like blithering idiots but you do sound a little like me till I got on the proper medication. <g>

My credit card number was stolen just a few hours after making a purchase from Amazon, someone made a fake card and had some fun at Walmart. I was able to prove it and the money is being refunded by the credit card co but is that fair? I use ONE card for Amazon and don't use it for anything else, so I know it happened there. Trying to decide what to do so I can actually purchase a book. The credit card company suggested purchasing Amazon gift cards at retail stores (and use cash to purchase them). I guess I'll see if that works.

I have Amazon Prime and my husband like to rent movies. I'm sooo annoyed. Even my shampoo was cheaper there.

There are so many inconsistencies in her story that I find it very objectionable. I'm willing to believe that her credit card info was used, but the rest??? Not so much.

I'm confused as to why you would find any of it inconsistent or objectionable. She could be wrong about where her credit card got screwed up--COULD be wrong. Was it the shampoo? Her husband watching movies? Really, there was nothing objectionable till the drooling idiots statement. That wasn't nice.

It's not mind boggling at all. The popular mantra is: Amazon is my friend and will do me no harm. Consequently, whenever Amazon does someone harm or might be the culprit, the mantra chanters rise to its defense. The thinking is that if the mantra is repeated often enough and loudly enough, it will be true. There is no need to get bogged down in facts or the idea that sometimes bad turns of events are, indeed, Amazon's fault. It is always the person who was harmed who is at fault -- or one of Amazon's nefarious competitors.


Umm...no, that's not it.


Well, let's see, I can take the word of a random person on the internet, or I can trust Amazon. For me that is not a tough choice.


That's it.

And it's not so much trusting Amazon, it's knowing who they are, knowing their reputation, and knowing their accountability.
To paraphrase some MR member's Isaac Asimov signature quote, it is not so much that I have confidence in Amazon being right, but that I have so much in anonymous strangers on the Internet being wrong.

Umm...no, that's not it.




That's it.

And it's not so much trusting Amazon, it's knowing who they are, knowing their reputation, and knowing their accountability.
To paraphrase some MR member's Isaac Asimov signature quote, it is not so much that I have confidence in Amazon being right, but that I have so much in anonymous strangers on the Internet being wrong.

Well, I see your point but doesn't Amazon have QUITE a motive to insist their site is safe even if there are perhaps a few holes here and there?

Well thanks for that. I guess that explains how you have managed over 250 posts without receiving any karma :smack:

It was nice of Amazon to apologize, but I'm not at all surprised that the apology was for your inconvenience, not because there was any reality to your accusations. If I was you I'd be happy that you wound up getting $50 from a company that did nothing wrong and get on with your life. As for any theft, your credit card company was the victim, not you.

Honey, no karma with this group of social misfits is a good thing.

and odds are even her bank that issued or processed the card is at the same risk of being the cuplrit as amazon.

And I think her last statement above is very telling.

Honey, no karma with this group of social misfits is a good thing.

Wait!! Wait!! I meant ANGRY social misfits.

Well, I see your point but doesn't Amazon have QUITE a motive to insist their site is safe even if there are perhaps a few holes here and there?

Certainly. It COULD have happened, but they also have a strong motive to prevent it from happening, and there are plenty of other explanations, even if we assume for the sake of discussion the whole thing isn't an outright lie.. We consider our experience with Amazon, our knowledge of how they have handled mistakes in the past, our knowledge of how companies handle both data security and security breaches.
We weigh that against the unsubstantiated anonymous posting of an unknown who says stuff like:

Honey, no karma with this group of social misfits is a good thing.

So, seriously, you don't have to post your answer, but if you had to bet the grocery money on one or the other.....?

ApK

Wait!! Wait!! I meant ANGRY social misfits.

Keep digging

Wait!! Wait!! I meant ANGRY social misfits.

Just a question. Why do you stay amongst us ANGRY social misfits? You've made your point about your feelings about Amazon's security. Most here aren't impressed. And yet you remain still trying to make your point. If it were me, I'd just throw up my hands and move on.

Amazon doesn't really seem to care about fraud done on their site. There are a lot of bad merchants that use their services to sell counterfeit goods and steal money from consumers who they never send orders to. They even let people place orders with stolen details.

But they also seem to be one of those companies that say the customer is always right. No other company will let you take TWO months to ship back a faulty Kindle (it's in the box, I've just been lazy and need to go to the store and buy tape to seal it :rofl:), or even ask for an extension to do so. No other company will take back a device for wear and tear, and most will argue with you over a refund. Amazon on the other hand seems to enjoy handing out money to just about everyone.

I recently had to get a new card because the database was breached at the card issuer's servers (so for example, it could have been breached at Discover Card, Visa or Mastercard.) I have and continue to use the new card issued--I've had a card there for many, many years. Some young folks might say eons.

There was a news article on the breaches for both Discover and...I think Visa databases. That is another "hole" where your card info could have been stolen.

It also could have been stolen if Amazon's servers were breached. Various retailers have been having problems with this for quite a while. No one is immune really. All of us have to watch the charges on our cards and our statements.

My mother had a waiter add and "2" to the front of a tip. The tip was supposed to be 4 dollars and suddenly it went to 24 plus the bill. She caught it on the statement.

If you like the service, get a new card and continue to monitor things. If you don't like the way it was handled or don't want to deal with the very real reality of stolen data, go to cash whenever possible or always.

Yeah. It's a pain in the rear.

The other thing that happens often is Amazon phishing. I've noticed my email account has had an Amazon phishing email almost every day for a week. It's been awhile since this has happened, but it would be another way they could get your account information.

The email comes from "orders-amazon" and says your order has been cancelled. I've never clicked on their link, but I'm guessing it would take you to a fake Amazon login page to get your login and password and then they could use the credit card attached.

So just as a point of information.

CC info stored internally at Amazon is encrypted and not stored in plain-text.

Anyone wanting to decrypt the data would require the encryption key OR several years to crack it.

Customer service agents DO NOT have access to the full card number in their systems.

So a CS agent stealing it is not possible, and even if data were stolen from Amazons servers it would be useless without the key or years of computing time.


In essence, it's possible but HIGHLY unlikely that it occurred at Amazon.

It's much more likely to have occurred via another method...and since it was used at a physical store location it required that a physical card be made.

In all honesty it sounds like someone that works for the CC company made a duplicate of your card, or someone that knew enough about you requested a replacement be sent to their address.


I worked in a fairly high-profile job at one of the biggest software companies on the planet...thus I've been a target for this type of behavior. Trust me odds are they got it from some source outside Amazon.

So just as a point of information.

CC info stored internally at Amazon is encrypted and not stored in plain-text.

Anyone wanting to decrypt the data would require the encryption key OR several years to crack it.

Customer service agents DO NOT have access to the full card number in their systems.

So a CS agent stealing it is not possible, and even if data were stolen from Amazons servers it would be useless without the key or years of computing time.


In essence, it's possible but HIGHLY unlikely that it occurred at Amazon.

It's much more likely to have occurred via another method...and since it was used at a physical store location it required that a physical card be made.

In all honesty it sounds like someone that works for the CC company made a duplicate of your card, or someone that knew enough about you requested a replacement be sent to their address.


I worked in a fairly high-profile job at one of the biggest software companies on the planet...thus I've been a target for this type of behavior. Trust me odds are they got it from some source outside Amazon.

Exactly. Thanks.

you know, just 'cause your card was only recently used doesn't mean that someone didn't have the number for a while. a friend of mine had a card number stolen, only the folks that used the card waited for months to use it so it wouldn't look like they did it.

also it's pretty common that a particular spyware can only be caught by 1 or 2 antivirus/antimaleware programs - the rest just don't seem to see it. some very well known antiviruses seem to be the least likely to catch them, too.

So just as a point of information.

CC info stored internally at Amazon is encrypted and not stored in plain-text.

Anyone wanting to decrypt the data would require the encryption key OR several years to crack it.

Customer service agents DO NOT have access to the full card number in their systems.

So a CS agent stealing it is not possible, and even if data were stolen from Amazons servers it would be useless without the key or years of computing time.


In essence, it's possible but HIGHLY unlikely that it occurred at Amazon.


Exactly. This data is stored encrypted and not easily accessible at any non-fly-by-night company. It's not as easy as *random CSR grabs the credit card number*.

There's a lot of ways easier to get the data. Like someone mentioned previously about the breaches at the credit card processor companies.