I got scammed a few weeks back on face book market place.
Recently I found my email address and password got hacked.
Stupidly I used same password for lots of different websites.
I managed to get in quick with ebay and changed my email address and password before any money was taken.
I got caught out on Ali Express as theye didnt ask for cvv number before making a payment.
I was down about £300 which HSBC are sorting out for me. Again got in quickly to block the card but still some damage done.
I guess the lesson is use different passwords for each website you buy from or use.
Recently I found my email address and password got hacked.
Stupidly I used same password for lots of different websites.
I managed to get in quick with ebay and changed my email address and password before any money was taken.
I got caught out on Ali Express as theye didnt ask for cvv number before making a payment.
I was down about £300 which HSBC are sorting out for me. Again got in quickly to block the card but still some damage done.
I guess the lesson is use different passwords for each website you buy from or use.
And even then…
My bank had the alarm ringing when my card got used from far away, small amount in short intervals, amounting to ≈ € 350.– even though I changed my simple-password habit a long long time ago…
Cross my fingers for you
My bank had the alarm ringing when my card got used from far away, small amount in short intervals, amounting to ≈ € 350.– even though I changed my simple-password habit a long long time ago…
Cross my fingers for you
Sorry to hear this.
Touch wood, I haven't been scammed yet. I would never buy anything from FB marketplace.
No issues so far with ebay or Aliexpress but I always use PayPal, never a card.
I came close to being scammed last year by stupidly clicking on an "endorsement" by Elon Musk for Bitcoin. Fortunately my bank blocked the transaction. I was then phoned several times everyday including weekends from the scammer. I blocked about 20 phone numbers but eventually had to change my phone number. (that was advice from the police after logging a complaint to Action Fraud as they can't stop overseas scammers)
I also use preferentially Paypal. I also get a 100% refund in case the item does not arrive. My creditcard has a 50€ "own risk" in such a case.
US protects CC surprisingly better than EU I guess. Zero liability here. I do use virtual card numbers for iffy purchases though just to avoid hassle factor. I too would never use FB, not even a member. Social media is not your friend.
Ali Express stores your CVV number for your card and so you dont need to input it at checkout.
This is very wrong, the CVV should always be asked for at each check out.
This is very wrong, the CVV should always be asked for at each check out.
I got ripped off on usaudio mart by a guy that goes by audio949 orange county stereo, Chris Whitson. He clicked buy it now on the vintage Barney Oliver amp I had for sale. Never talked to me before hand or anything. Never asked questions etc. The amp was listed as needing TLC and when he got it, he complained that it was dirty and had been repaired before. Then reversed charges on his credit card!!! Paypal then overdrafts my account $1250 and they can't do anything about it. Even though it was done through goods and services etc through the usaudio mart payment system. I'm screwed. Beware
That's why you should use Paypal but I agree, I've never come across a website that stores' the cvv, which is wrong.
There usually is a checkbox where you are asked if they should store CC data for convenience at next purchase.
Always refuse this, or even better do not pay with CC or PayPall on Aliexpress.
I doubt that, my card issuer takes full responsibility for anything that's not my fault.
I even got a new phone from them when I stepped on it during sailing. Had paid for it with my card, several months before the damage.
In USA we have zero liability on credit cards when not our fault.
But if you send money by Zelle, good luck.
But if you send money by Zelle, good luck.
Had to look it up "Zelle", had no idea of it's existence.
I use iDEAL for Aliexpress, an advanced payment system that requires me to approve every payment in direct contact with my own bank, not the sellers bank. It's all done in real time, no delay. High security.
I use iDEAL for Aliexpress, an advanced payment system that requires me to approve every payment in direct contact with my own bank, not the sellers bank. It's all done in real time, no delay. High security.
Don't all browsers have password managers built in these days? That makes it pretty easy to have different random passwords for the various sites.
Tom
Yeah.
I dont trust browser password managers as far as I can throw them. I use an offline password manager for this stuff, with a password database that I can move/sync between devices as necessary.
Is it infallible? Almost certainly not. But so far I've not been hacked, to my knowledge anyway.
And thats an invitation to Karma right there. I'll stop now. 😁
Cheers, and regards,
Ant
I was thinking visa/mc prohibited storing cvv. So searched and sure enough, "This information is not permanently stored because that action is prohibited by law. The Visa USA Inc. Operating Regulations explicitly prohibits merchants and/or their agents from storing the CVV-2 data." So merchant should not be storing cvv, although maybe only in US. Contact visa if you find someone that is. I expect visa might take punitive actions against the merchant.
I don't trust them with passwords to financial institutions either. But the password for my newspaper subscription can be in the browser password manager.
Can you recommend one?
Tom
Hi Tom,
In security etc, I dont want to recommend, I'm thoroughly unqualified to do so.
But with that caveat: I use Keepass2 for my password manager, across IOS, Android and Windows devices. The database can be shared via OneDrive / Dropbox etc, or offline. .Perhaps it is a bit clumsy in use, but it is acceptable to me.
Cheers, and regards,
Ant
I used to use mSecure until my version was no longer supported with Android 14 and required an update with a subscription. I researched and ended up with Bitwarden that I use on Windows and Android which imported all my mSecure data so was easy to setup. Not as slick as some but does the job well and it syncs across my Windows desktop, Android tablet and phones.
Last edited: