Seems like most of the fraudulent charges are being made in Florida, as were mine. Shouldn't be too hard to catch that thief.
This was actually posted in reply to a diff thread. Hard to keep up. But I re-posted it on this thread. The question on the other thread was "I bought over a year ago, so was my card taken back then" something close to that anyway........reply
No, that is why when you log-in at a later date you have to re-enter your CC number. Your account/log-in/password, address, history and other data comes up when you log in, but your CC does not. Because it is not "stored for use at a later date." Anything historical is dropped after 30 days and during the 30 days it is encrypted with a 256 bit encryption. Even at that, the temporary storage was not accessible from the Web Server, different part of the network for security reasons. We only even hold it that long because not all orders ship immediately and it saves us from having to get the card again because we really don't process the card to cash until the Item ships. And it facilitates refunds etc etc.
We see Credit cards go "fraud" daily. Unfortunately, it is a common event. That means that we use a service named Kount to protect us from taking stolen cards. When a card goes "fraud" that means that we took it, and at the time we took it the card had a "score" indicating it was good. But has subsequently been "re-scored" because downstream in the flow it turned up bad. From someone else also using Kount. They literally watch them for multiple addresses, countries, any change subsequent to the cards history. As well as they get that information from the Banking world. Amazing, but they basically watch CC's move around and track changes.
And we've had people tell us that our date range is incorrect but unless Bailey's was the ONLY place the card has ever been used there is no way to know where the card # was taken from. We don't even know that the cards we are notifying were taken, we just know that it was possible during those dates and someone was actively in the server because they left "tracks." The event was not a "grab historical data" it was a "I can see you type" event.
There is a lot of discussion on whether our dates were accurate. Personally, I'm not that smart. But Bailey's is currently paying of lot of people way smarter than me to go thru this. The Forensic company we hired says there is not much chance we will ever know who or where....did it. The attempts have come from Africa, all over Asia, the U.S., Vietnam and on and on. But none of that really means the person(s) were actually sitting in any of those places. Could have all been sitting in "Denver" or across the street.
But the dates are not "Bailey's dates," they were the dates given to us by people way smarter than me.
And making way more money than me
Bob
Bailey's C.O.O.