They done stoled my cc

[skeedo]

And charged about 800 bux to it. I was checking out the site that I suspected it got stolen from and they are using /cgi-bin/ssl.pl for their backend cc processing.

Last i checked cgi-bin wasn't the most securest of shopping cart gateways, am i right?

 

[globalcitizen]

Just call up the CC company, let them know number has been stolen and refute charges.

 

[MrChad]

/cgi-bin/ is just a common location for server-side executables on a website. It offers no indication about whether or not your data is secure. You can evaluate the security of a website in two ways:

1. They use a Secure Socket Layer (SSL) connection for receiving credit card information (the url will usually say https:// instead of http://).
2. The site has a good reputation for safe and honest business practices. Reseller Ratings is a good resource for evaluating "unknown" online retailers.

 

[KB]

It is secure if it goes over SSL(https). Did you get the lock in the corner with browsing?

It is far more likely that the credit card information was stolen from their database by an employee or hacker than intercepted during the transaction.

I would do what globalcitizen recommends.

 

[AnyMal]

Originally posted by: globalcitizen
Just call up the CC company, let them know number has been stolen and refute charges.

What he said. As long as you do it in timely manner you liability will be $0

 

[skeedo]

I hate how ppl think i'm somekinda nooblar cuz I don't have a lot of posts!

I didn't even have to call my bank they called me, i won't be liable for any of it.

Of course it was running https, but it was on what looked to be shared SSL.

It's also the only site i've made a purchase on with that CC in the past 2 months.

All of this isn't really a big deal, I just want somebody to point fingers at.

 

[mechBgon]

Is your system running with all the latest Windows/browser patches, and up-to-date, current-generation antivirus software? I'm asking because another possiblility is that your system's being monitored by a keystroke-logging proggie.

If you want a quick second opinion, run Norton's free online virus detection scan tonight and see if it comes up clean.

 

[skeedo]

Yes I've already considered that, but I'm pretty secure. I have SMC Barricade router with only game ports open, AVG Anti-virus, Bulletproof Adware Remover, Spybot, and Lavasoft Adaware.

Btw I really hate Norton 😀

 

[jterrell]

Originally posted by: skeedo
Yes I've already considered that, but I'm pretty secure. I have SMC Barricade router with only game ports open, AVG Anti-virus, Bulletproof Adware Remover, Spybot, and Lavasoft Adaware.

Btw I really hate Norton 😀

If you run a Microsoft OS you are no where near secure.
If you run a Microsoft OS and login and use an account with full rights you might as well turn off the security you do have because its useless.

I run all the same stuff you list on my windows box minus the firewall and can get into it easily from my linux box and run programs at will. I freaked over that so run a linux firewall now and use a very limited windows account for any net surfing on that box. Its still not really secure because when you open the tcpip ports to your windows box you are allowing all the access that is required to steal your info.

No on eis assuming you are a noob but we are all essentially noobs compared to the hardcore scamming POS's that live on the computer stealing from others.

 

[Nothinman]

Of course it was running https, but it was on what looked to be shared SSL.

What exactly is "shared SSL"?

 

[mechBgon]

Originally posted by: skeedo
Yes I've already considered that, but I'm pretty secure. I have SMC Barricade router with only game ports open, AVG Anti-virus, Bulletproof Adware Remover, Spybot, and Lavasoft Adaware.

Btw I really hate Norton 😀

You may really hate Norton, but I have a system with AVG 7 Free Edition and there is a beaYOUtiful Gaobot worm file in a folder on that system that AVG has never managed to detect to this day. Norton does, and so does McAfee. Get that second opinion from Norton or TrendMicro Housecall or Antivir or someone. What've you got to lose, eh? 😉