General discussion

Locked

Do you like buying things on line? If you do, how secure are you???

By sleepin'dawg ·
The U.S. Secret Service does it's best to hunt down cybercriminals, at all levels but in Canada the job is left to local law enforcement, which is next to useless. The Secret Service does the best it can but they are only playing catch-up.

Should you transact business on the internet??? Do you really believe organisations like Verisign or PayPal are secure and able to protect you??? What recourses do you have if you get ripped off??? EBay and Amazon and others offer the convenience and comfort of online shopping from your home or office but at what cost to your financial security and safety???

Sure it's convenient but should we really trust on line banking and bill paying services??? Follow the attached links before you make up your mind and before you decide, know this; "The Shadowcrew" are only the tip of the iceberg.

http://www.ctv.ca/servlet/ArticleNews/story/CTVNews/20050113/US_wirelesshacker_20050113/20050113/

http://www.ctv.ca/servlet/ArticleNews/story/CTVNews/20051021/wfive_cred_card_051021/20051022/

In case anyone thinks this is all a fantasy this is the link to The Shadowcrew AFTER being busted by the Secret Service; still up and running, somehow, it seems. This seems to be an all purpose site for scumbags right down to and including, it appears, paedophiles. It could be dangerous opening any of the links or forums inside.

http://www.shadowcrew.com/

If you live in the US you're a little bit safer than Canadians but not by much. You do have the Secret Service doing its best to protect you but they are having difficulties keeping up.

Everytime you transact business online you are increasing your exposure to risk. Don't think it can't happen to you because it certainly can,that is, if it hasn't happened already. The links are Canadian in origin but the stories apply to both Canada and the US equaly.

Dawg ]:)

This conversation is currently closed to new comments.

65 total posts (Page 1 of 7)   01 | 02 | 03 | 04 | 05   Next
| Thread display: Collapse - | Expand +

All Comments

Collapse -

In Australia

by mjwx In reply to Do you like buying things ...

I think the AFP (Australian Federal Police) as well as local law enforcement (Sometimes) is charged with the investigation of cyber crime and identity theft (don?t quote me on this).

The banks themselves are also charged with monitoring fraudulent transactions.

I tell everyone (especially the non-computer savvy), when buying online to take basic self preservation measures:
1) Only deal with reputable stores (If you can?t call them and talk to a person don?t deal with them).
2) Make sure you are running Anti-Virus/Firewall/Anti-spyware (I don?t consider the MS variants of either to be secure).
3) Keep records of what you do, always, always, always keep a record.
4) Avoid using a public computer as you dont know whats on them (An anonymous unprotected computer is worse than anonymous unprotected sex).
5) My personal favourite don?t use IE.
and a good general purpose rule
If you don?t know what you are doing, don?t do it especially with a credit card.

<Edited to add this> I don?t buy online if I can go to a store to get it, There?s something to be said about face to face transactions with cash (My cash has never been rejected, anywhere)</edit>

Collapse -

They accept your money because you do

by Deadly Ernest In reply to In Australia

such quality forgeries, much better than mine.

OK where ever possible I will place the order and then use BPAY or call them to provide credit card details on the phone.

I do NOT use PayPal, eBay or the like as I do not trust them. Some time back a friend rang me direct to ask about something I was selling on eBay, got very confused when I informed them that I did not even have an eBay account. Checks with eBay resulted in a fake account in my name being closed down - that was great security and checking on their part - and they had already had a number of complaints about 'my' not deliverying goods. And people wonder why I do not trust them.

Collapse -

I very regularly

by jardinier In reply to Do you like buying things ...

purchase items online -- mostly the USA -- from the vendor's secure website. There has never been a problem of any kind. It is mostly software and DVDs that I purchase.

I avoid PayPal because I have been on the receiving end of several phishing atttempts related to that website.

I refuse to do my banking online because I know that the security is not 100 per cent.

Collapse -

i pretend its OK

by Shellbot In reply to Do you like buying things ...

I shop online for almost all gifts for family back in canada. The Exchange rate is in my favour and generally free shipping.

In UK I buy books/ dvds. 99% of my music is purchased online by downloading.
I haven't seen the inside of my bank in 4 years, I do it all online.

I know there is a good chance i will get hit some day. I am slightly ashamed to say, I just close my eyes and hope for the best. I am not even aware of who polices it in Ireland. Based on how they handle everything else..I'd say no one.

I tell myself its ok and check my VISA statement thoroughly. Go on..tell me how stupid i am :)

Collapse -

Tell you you're stupid??? Why???

by sleepin'dawg In reply to i pretend its OK

Too trusting and naive perhaps but why would I call you or anyone stupid??? What I do suggest is, that you keep all personal records that are on your computer, either encrypted or password protected. Ensure that your anti-virus and anti-spyware is up to date. Better yet, do not mantain any personal info on your computer and keep records on removable media.

I am still not impressed by anything that anyone has ever bought me over the net. I'm not even impressed with the stuff I've bought for myself or others. I don't know why this is so, it's just the sensation I get that the whole process is lazy and impersonal and I don't like the feeling that someway, somehow, somebody is going to try to rip me off.

I know I'm pretty good with a computer and could wreck havoc on the net if I were so minded but I'm not, so I don't. However, just because I won't doesn't mean others are similarly ethical, plus they may be and quite possibly are, possessed of better computer skills than mine.

Due to the rapidity of change in the markets, I am forced to transact some business on line but I have a varied mix of secuity precautions I take to ensure my privacy isn't breached, too severely and that if it should be, the effects will be minimal. Admittedly this requires a bit of effort on my part but if I 'm going to be ripped off, it won't be because I was too lazy to have taken any precautions to maintain my security.

I limit my online shopping to items I cannot possibly locate by any other means. The credit card that I use is not a credit card but a debit card that I maintain for the purpose of online buying and there is never more money deposited to the card than is required to complete the specific transaction. This limits any losses to that transaction specificly and to the amount of the transaction in the event anything turns sour.

Dawg ]:)

Collapse -

same card policy

by Jaqui In reply to Tell you you're stupid??? ...

as I use, a pre-paid credit card, which only ever has the amount of the purchase on it to stop over charges and debt load from unethical persons screwing me.

Most people I know still only shop in person, in local stores.

Collapse -

Yes and I am on of them

by Aaron A Baker In reply to same card policy

Would you believe that I'm not even comfortable when I go to a Dept Store and use my Visa knowing that somewhere along the line it will have to cross over onto the net to finalize the transaction and the same thing at the Bank etc? I always rely on my hopes that their security is up to par but always have that gut feeling that "What if someone else get's this?" I don't mean to sound Paranoid, [Boy it's hard not to be] but we all know the Visa info doesn't stay in the store, it goes to their central I would imagine, so naturally I'm thinking "Hope it makes' it". :)
That'd where we've gotten, not good.
Regards
Aaron

Collapse -

ID Theft

by Tig2 In reply to Do you like buying things ...

Having been the victim of Identity Theft, I can tell you that it changes your life.

I no longer bank. Anywhere. I deal in cash alone.

As my idiot cell provider refuses to accept cash in payment of a bill(!) I have discovered pay as you go MasterCard. This is a fee based service but is quite secure. I put what $$$ I need on the card, use it- even online- to pay my cell bill or, occaisionally, make a purchase from an online retailer. The card points back at my name within the provider system but no where else unless I create the linkage. And if the number is stolen, I just call the provider and get a new number assigned. The worst case is that I lose only that money that I have put on the card.

I will spend the rest of my life trying to deal with the impact of ID theft. Until we do a better job of protecting ourselves, I don't think that on-line is any too safe.

Shell- you aren't stupid. You are very trusting. Please consider that when you see it in your card statement, it is too late. Find out what your bank is committed to doing to help in the event that you are the victim of theft. If you don't like the answer your bank provides you, start shopping banks.

Collapse -

Credit card fraud

by jardinier In reply to ID Theft

I was a victim of credit card fraud (not online). I just happened to check my balance at the ATM and found there was just over $1,000 less than there should have been.

I went into the bank and checked the transaction. It was from a panel-beating shop that I had never heard of. The bank allowed me to ring the card department on the bank's phone. I explained what had happened.

Later in the day I found that no action had been taken. The idiot had taken the panel-beater's word that he would call back later. By the time I got the card cancelled, there was another smaller transaction. This was in the days of manual transactions (before EFTPOS) so that some merchant must have recorded my details.

The logical thing to do I would have thought was to ask the panel beater the registration number of the alleged car, which he would not have known, and that would be that. But no. Nothing as obvious as that. As my card was almost maxed out the bank temporarily credited me for the amount, after which I was assumed the guilty party until proven otherwise. There was a considerable interval of time (like weeks) before my claim was validated.

I was not happy about that.

Now with EFTPOS the merchant can only record your details by looking at the card, which never happens. However there is so much credit card fraud that any merchant who doesn't know you very well will check your signature against the one on the card.

When internet banking was first introduced, I signed up with three banks, not to make transactions but just to check my balance and details of payments. With bank A, I could never access my details. With bank B, they only provided transaction history up to one month prior.

Bank C actually gave me the information I wanted.

HOWEVER, after a very short interval in order to access my details I had to agree online to a long disclaimer which (a) said the bank could change any of the rules at any time without informing me and (b) the bank accepted no responsibility for breaches of security.

Well that ended my internet banking very smartly.

I believe now that the banks do accept liability for anything above a nominal amount, but too bad Charlie.

There was a great "joke" that at one point in time, with one particular bank, customers were accessing other customer's accounts by accident. That made the newspapers.

BUT, one bank (not one of the aforementioned) actually did something useful. They suspended my account. When I enquired why, it was because of "unusual activity" in the form of frequent purchases from America. So they had protected me against possible shonky dealings.

[Edited to add a nice story]

Collapse -

What gets t o me is...

by Tig2 In reply to Credit card fraud

In the US we have set all kinds of legislation in place, presumably to fight this kind of problem. But getting appropriate levels of compliance in place is almost impossible. Instead what you get is a lot of posturing by companies that cannot pass an audit of their privacy and compliance regulations. No buy-in from senior levels means no traction for the initiative.

It will get worse as off-shoring gains speed. It is very difficult to get Indians to understand the concept of protecting personal non-public information. They don't have Social Security numbers, or indeed any number that identifies them uniquely. So it is very difficult for them to understand why protecting that information is vital.

It gets worse when it comes to not sharing information in teh work environment. Most companies have some kind of policy in place to regulate information sharing but few companies actually enforce the policy. Simply marking a document "Confidential" should be sufficient to communicate that the circle with whom you share the information should be controlled. Most Indian out-sourcers share so much data internally that "Confidential" means nothing.

ID Theft has been an ongoing problem for some time. Why then are there not better rules governing who carries the burden of responsibility and what levels of notification should be enforced?

Until we place a level of importance on this issue, corporations will consider being out of compliance and the associated fines as merely the cost of doing business. Until we effectively communicate to FIs that we MUST have a better system of checks and balances, we must continue to safe-guard everything and trust no one.

Back to Community Forum
65 total posts (Page 1 of 7)   01 | 02 | 03 | 04 | 05   Next

Related Discussions

Related Forums