Rakuten /Buy.com Fraudulent Use of Credit Card Info within Company
USERS REPORTING FRAUD AFTER RAKUTEN ORDER: 244 (AND GROWING)
# OF DAYS RAKUTEN ALERTED TO THIS SECURITY BREACH BY SD USERS WITHOUT ANY RESOLUTION: 22
Many posts within SlickDeals have multiple threads about fraudulent credit card account transactions occurring within a few weeks of placing an order at Rakuten Buy.com. If you have been affected, please post your experience here so the magnitude of Rakuten Buy.com's security breach and the impact on the affected Rakuten customers may be known. (Please save other issues, either regarding Rakuten, or other issues with credit card misuse to other posts.)
If you are one of the affected Rakuten customers and you haven't already made a post in this thread, and you're further worried about giving any specific details, please at least be counted in the group (with a brief post) so that the running tally of affected SD Users can be more known. For all users, please use caution and verify company e-mail addresses (or user histories) before responding to private messages and e-mails and providing any potentially sensitive information.
Summary of the conclusions made by the contributors of this forum:
(1) Identity thieves have obtained SSN #'s from Rakuten Customers
[Ref: News Story & NJ Police Interview
http://www.northjersey.com/news/B...l?page=all -- 'AnnoyedwithRakuten']
[Ref: Additionally
http://www.bergendispatch.com/art...arges.aspx]
[Ref: 'scotthall3411' Post #462, etc.]
(2) Many other users have been affected outside of the SlickDeals community
[Ref: Specialized Site Now Available:
http://rakutenfraud.com/]
(3) The security breach is not limited to just customers who placed orders. Several have reported credit card details were taken from their Rakuten My Account screen.
[Ref: 'Cletus81' Post #435, 'missmex1' Post #445]
(4) The security breach was not at the credit card payment processing agent.
[Ref: 'mirai' Post #437]
(5) Customers using credit, debit cards and Gift Cards have been affected.
[Ref: Thread postings and external sites.]
(6) Almost 100% of all fraud reports are from customers who gave Rakuten their credit (or debit) card directly (rather than using payment gateways or other payment methods (gift cards, etc.)
[Ref: Thread postings.]
(7) Many customers were able to uniquely identify Rakuten as the source of the credit card theft.
[Ref: Many thread postings from customers using a one-time Virtual Credit Card Number, a new credit card only used at Rakuten, or a new Gift Card.]
(8) Rakuten Buy.com has yet to admit to any security breach having occurred, though they are "cooperating with police".
[Ref: News Story & NJ Police Interview
http://www.northjersey.com/news/B...l?page=all -- 'AnnoyedwithRakuten']
(9) Using a Virtual Credit Card Number or Gift Cards at Rakuten may not be the best alternative.
[Ref: 'GPz1100' Post #205, Post #447, etc. Several affected customers posted their VCCN's later breach caused the credit card company to reissue a new card.]
[Ref: 'namlook' Post #449, etc. Hacker's later emptied the gift card or sold the balance on eBay.]
[Ref: 'bargainfinder09' Post #449
Must close VCCN out afterwards.]
(10) Using PayPal at Rakuten may possibly pose a risk -- awaiting additional responses.
[Ref: 'contraium' Post #504, 'Krystm' Post #471
For PP Verified customers, consider the idea from 'anatolygol' Post #503 (End PP bank link, order PP Secure ID.)
[Additional idea from 'mirai' Post #486 & 'Chuck Lunch' Post #493. PayPal - settings - payment preferences - my preapproved payments - anything suspicious there?
Apparently you don't mind going through the hassle of identity theft. You don't mind waiting days for a new credit card number, don't mind the downtime, don't mind identity thieves using your same personal information to gain other sensitive information. Its OKAY because you can dispute it with your CC company.
Facebook
Twitter