Chain Reaction Cycles : credit card fraud

madguern wrote:The fact is

madguern wrote:

The fact is 90% of people on the web use the same account across the board. Do you use a different password for every site and service?

Yes, I do. I use a long, randomly generated password for each site. Passwords 12 characters or shorter can be vulnerable if the encrypted form of the password (which is what is typically stored on web servers) is obtained. I use a password manager (Keychain on my Mac) to remember the random passwords. There are password managers available for Windows too, such as [url=http://keepass.info/]KeePass[/url], which includes a function which generates random passwords.

Quote:I feel that there is

I feel that there is something personal and slightly nasty about the above

i don’t really think that’s what he meant, Erneside, I think he was just saying he doesn’t have any particular axe to grind.

The anecdotal evidence from the STW forum looks like a pattern, but the only pattern is that cyclists went to CRC and after that their cards were used fraudulently. That doesn’t mean that CRC is to blame: their whole business model – and that of any online retailer – stands or falls on their reputation, and they go to great lengths to make sure their operations are secure.

Personal computers are much more likely to be compromised than the servers of big operations like CRC or Wiggle. If you get malware on your PC at home that scans keystrokes for likely credit card transactions, and you’re a keen cyclist, the chances are pretty good that the CC transaction will be at CRC, or Wiggle, or another big internet store.

madguern wrote:Turns out

madguern wrote:

Turns out forum I used stored my account details, I forgot to change password. Paypal is actually very easy to crack.

Sorry, are you saying that you used the same password in an internet forum that you used for Paypal? That isn’t actually an attack on Paypal.

I’ve used CRC for several
I’ve used CRC for several years and not had any problems. Always had very good service from them too.

I’d recommend using the Paypal option if you’re worried about DD payments. 😉

If it was news we’d publish a
If it was news we’d publish a story, at the moment what we have here falls in to the category of gossip and supposition – the only actual facts are that some people have had unauthorised transactions on their credit cards and that there are a number of possible explanations one of which might, or might not, involve CRC.

If that changes you’ll read about it on our news pages – whether CRC is an advertiser won’t be a consideration because our reputation is worth more to us than a bit of ad revenue. Not that I think CRC would make any such connection – their reputation is obviously worth a great deal to them, as is Squadra’s to him- so maybe we should all calm down on that score too. He was entitled to start the thread.

SQUADRA wrote:It makes no

SQUADRA wrote:

It makes no difference to me, whether CRC website or business practices are correct, flawed or compromised.
I dont have any reason or inclination, to buy from their website.

After visiting your website, I certainly don’t have any inclination to buy from it. It appears to be filled with empty pages and broken links.

They should check their CCTV
They should check their CCTV for any dodgy characters hanging around their offices…

[url=http://road.cc/content/news/31602-vitus-team-sean-kelly-again-2012-road-range][/url]

(I’m not so worried about Sean. The person behind the camera on the other hand…)