OT--cc theft--need advice

[MZB]

This is slightly OT, but maybe not.

I need some advice. Today I received a product that I didn't order. I called
the company and found out that it was ordered over the internet with my
name, address, and VISA card (it's a card that I pretty much use for online
purposes).

I then went to my credit card site and found all sorts of purchases made in
the last month -basically subscriptions made online (eg: Blockbusters). I
haven't even received that credit card bill yet. I called VISA and they
canceled the card and will send me a new card. Meanwhile, I am of course
very concerned as to what is going on. I called Blockbusters and found that
a subscription was opened using my name, address, and cc. The security
questions/answers were wrong. The email address left was a phony (well, not
mine, of course). So far, no DVD's or anything was shipped/ordered. I am
trying to figure out what the perpetrator was to gain?? Is the person
waiting to see if I discover it and cancel the card? If not, would they then
change the address or maybe just order stuff shipped to a different address?

I checked my credit report and it is clean so far. Nothing new set up. I
worry about identity theft but hopefully I can take the right steps to
prevent that. I also wonder how the heck my card got stolen like this. I don't
open email attachments; I don't visit questionable web-sites; and I use
up-to-date firewall, spyware, and anti-virus programs (Zone Alarm, ad-aware,
avg). I just now added a rootkit checker. So far, everything has been clean.
Of course, I guess thieves have ways of getting into sites and stealing this
information.

I would appreciate any advice and answers to my questions above?

MB

 

[James Morrow]

This is slightly OT, but maybe not.

I need some advice. Today I received a product that I didn't order. I called
the company and found out that it was ordered over the internet with my
name, address, and VISA card (it's a card that I pretty much use for online
purposes).

I then went to my credit card site and found all sorts of purchases made in
the last month -basically subscriptions made online (eg: Blockbusters). I
haven't even received that credit card bill yet. I called VISA and they
canceled the card and will send me a new card. Meanwhile, I am of course
very concerned as to what is going on. I called Blockbusters and found that
a subscription was opened using my name, address, and cc. The security
questions/answers were wrong. The email address left was a phony (well, not
mine, of course). So far, no DVD's or anything was shipped/ordered. I am
trying to figure out what the perpetrator was to gain?? Is the person
waiting to see if I discover it and cancel the card? If not, would they then
change the address or maybe just order stuff shipped to a different address?

I checked my credit report and it is clean so far. Nothing new set up. I
worry about identity theft but hopefully I can take the right steps to
prevent that. I also wonder how the heck my card got stolen like this. I don't
open email attachments; I don't visit questionable web-sites; and I use
up-to-date firewall, spyware, and anti-virus programs (Zone Alarm, ad-aware,
avg). I just now added a rootkit checker. So far, everything has been clean.
Of course, I guess thieves have ways of getting into sites and stealing this
information.

I would appreciate any advice and answers to my questions above?

MB

You may want to keep a close eye on your mail. If the thief doesn't
have access to steal incoming mail then I don't see how the scam pays
off. Nobody goes to all this work for nothing. Most on-line merchants
will only ship to the CC billing address which they always verify.
Something doesn't add up here.

 

[MZB]

That's what I thought.

OTOH I have purchased gifts for my daughter via Amazon. They will ship to
her address.

Mel

 

[Phil Weldon]

'MBZ' wrote, in part:
| I need some advice. Today I received a product that I didn't order. I
called
| the company and found out that it was ordered over the internet with my
| name, address, and VISA card (it's a card that I pretty much use for
online
| purposes).
_____

There are a number of ways your name, credit card number, and card code can
be stolen that have nothing to do with computers. In a restaurant, for
example, if there are no controls, it is only necessary to write down the
information from your card when it is out of your sight. Or at a hotel or
motel when an impression is taken upon check-in.

The lifted information can then be used, for example, to open an internet
account, open an internet gambling account, transfer cash, then close out
both accounts.

The Blockbuster account may just be the results of an amateur working up to
larger things than used DVDs.

I'd think back over any possible uses of that credit card that were made by
you in person as the possible point where the information was lifted. On
the other hand, with the number of credit card account records that have
been stolen from a processor lately ....

Phil Weldon

| This is slightly OT, but maybe not.
|
| I need some advice. Today I received a product that I didn't order. I
called
| the company and found out that it was ordered over the internet with my
| name, address, and VISA card (it's a card that I pretty much use for
online
| purposes).
|
| I then went to my credit card site and found all sorts of purchases made
in
| the last month -basically subscriptions made online (eg: Blockbusters). I
| haven't even received that credit card bill yet. I called VISA and they
| canceled the card and will send me a new card. Meanwhile, I am of course
| very concerned as to what is going on. I called Blockbusters and found
that
| a subscription was opened using my name, address, and cc. The security
| questions/answers were wrong. The email address left was a phony (well,
not
| mine, of course). So far, no DVD's or anything was shipped/ordered. I am
| trying to figure out what the perpetrator was to gain?? Is the person
| waiting to see if I discover it and cancel the card? If not, would they
then
| change the address or maybe just order stuff shipped to a different
address?
|
| I checked my credit report and it is clean so far. Nothing new set up. I
| worry about identity theft but hopefully I can take the right steps to
| prevent that. I also wonder how the heck my card got stolen like this. I
don't
| open email attachments; I don't visit questionable web-sites; and I use
| up-to-date firewall, spyware, and anti-virus programs (Zone Alarm,
ad-aware,
| avg). I just now added a rootkit checker. So far, everything has been
clean.
| Of course, I guess thieves have ways of getting into sites and stealing
this
| information.
|
| I would appreciate any advice and answers to my questions above?
|
| MB
|
|

 

[Heather]

_____

There are a number of ways your name, credit card number, and card
code can
be stolen that have nothing to do with computers. In a restaurant,
for
example, if there are no controls, it is only necessary to write down
the
information from your card when it is out of your sight. Or at a
hotel or
motel when an impression is taken upon check-in.

Or that other favourite......a gas station. (double swiping). Happens
a lot in this area. I have ordered things over the internet, but
usually just the one place and I have used Paypal which seems to be OK.

Heather

 

[Offbreed]

I would appreciate any advice and answers to my questions above?

Random theft of /your/ info is easier to prevent than targeted theft,
but random theft of /someone's/ info is easier than targeted theft. Your
info could have gotten in the wrong hands many different ways, either
random or targeted.

What happened?:

Fake subscriptions leave too much a trail for thieves to risk, but are a
favorite for jokes and attacks. You have any dumb assed relatives or
neighbors? Recent divorce or break up? Obnoxious jerks at work?

If someone ordered it for personal use, then what was ordered will
provide clues. If it was ordered to bug you, then consider who is likely
to think up that sort of trick.

You mentioned a daughter, have you checked with her? She have a new
boyfriend/girlfriend? (Aside from other motivations, controller types
sometimes try to force a fight between their victims and the victims'
families, and that's a bitch to counter.) Got any other kids?

Has anyone in your household changed personality recently? You need
specialized advice for dealing with that.

Of course, a "net nanny" type could be "teaching you a lesson" about
credit card security, and be a complete stranger.

 

[Virus Guy]

There are a number of ways your name, credit card number,
and card code can be stolen that have nothing to do with
computers.

Your name, card expiry date, card number, and 3-digit security code
are all visible on the card.

How do they get the billing address?

Does the billing address show up on a computer screen at, say a
restaurant, or hotel?

 

[Phil Weldon]

'Virus Guy' wrote, in part:

Your name, card expiry date, card number, and 3-digit security code
are all visible on the card.

How do they get the billing address?

_____

Good question: "How do they get the billing address?"

Good answer; with the 'White Pages' on the internet. Name in, address &
telephone number out. Works for Canada and the US.

Scary, isn't it?

Phil Weldon

 

[MZB]

Thanks for all your answers. I pretty much use this (VISA) card for internet
purchases. But it is not used often at all.
I guess I'll never find out what happened. It is just my wife and I at home.
We are close with our son and daughter. While stranger things have happened,
I doubt if it would be family.

As someone said, perhaps theft.

Mel

 

[Slarty]

Good answer; with the 'White Pages' on the internet. Name in, address &
telephone number out. Works for Canada and the US.

The majority of people here are ex-directory, and the numbers seem to be
growing. Telephone directories seem slimmer to me now than they used to be.

Cheers,

Roy

 

[Virus Guy]

The majority of people here are ex-directory, and the numbers
seem to be growing. Telephone directories seem slimmer to me
now than they used to be.

Maybe I didn't think of the telephone directory, because my own info
isin't in it.

When the telco asked what name I wanted to appear in my listing,
instead of paying extra for an unlisted number, I just made up a name
("Joe Public" for example).

When telemarketers call, and I pick up and say "hello?", they
immediately say "hello - Mr. Public!" and I immediately say "sorry,
you've got the wrong number" and hang up. It's a very fast and easy
way to shut down a telemarketer call. And they seem to have no
come-back for it. They say "sorry" and we both hang up.

When junk mail is delivered, stuff like credit-card offers, etc, it's
always addresses to "Joe Public".

 

[Slarty]

When telemarketers call, and I pick up and say "hello?", they
immediately say "hello - Mr. Public!" and I immediately say "sorry,
you've got the wrong number" and hang up.

I can, and do on the very rare occasion that we get one, threaten them with
prosecution. Not an idle threat, and they know it.I also registered with
the telephone Preference Service. Both that, and the ex-directory listing,
cost nothing extra.

Cheers,

Roy