• The TUGBBS forums are completely free and open to the public and exist as the absolute best place for owners to get help and advice about their timeshares for more than 30 years!

    Join Tens of Thousands of other Owners just like you here to get any and all Timeshare questions answered 24 hours a day!
  • TUG started 31 years ago in October 1993 as a group of regular Timeshare owners just like you!

    Read about our 30th anniversary: Happy 31st Birthday TUG!
  • TUG has a YouTube Channel to produce weekly short informative videos on popular Timeshare topics!

    Free memberships for every 50 subscribers!

    Visit TUG on Youtube!
  • TUG has now saved timeshare owners more than $23,000,000 dollars just by finding us in time to rescind a new Timeshare purchase! A truly incredible milestone!

    Read more here: TUG saves owners more than $23 Million dollars
  • Sign up to get the TUG Newsletter for free!

    Tens of thousands of subscribing owners! A weekly recap of the best Timeshare resort reviews and the most popular topics discussed by owners!
  • Our official "end my sales presentation early" T-shirts are available again! Also come with the option for a free membership extension with purchase to offset the cost!

    All T-shirt options here!
  • A few of the most common links here on the forums for newbies and guests!

How Was Credit Card Account Hacked

JoeMO

TUG Review Crew
TUG Member
Joined
Jul 1, 2006
Messages
304
Reaction score
0
Location
Florissant, MO
I got some emails yesterday from one of my credit cards (CC) thanking me for changing my phone number, address and other information. I had not changed anything. When I went to sign on my CC account my password had beed changed. I called the CC company and they asked if I had made a $1,500 purchase and a $4,500 purchase a few minutes ago. I told them no and they cancleded the charges. Someone had hacked my account and was trying to charge. Glad I caught it so quick.

I understand how someone could get your CC number and even your three digit code, but how did they get into my account? My ID and password were not just my name and date of birth. It wasn't so simple that they could ahve guessed. Did I not use a strong enough log in and password? Even if I didn't it would not have been easy for them to guess. Doesn't the CC web site kick you out after a few tries? I know that someone could copy my CC number and code everytime I use it, but I wonder how they got into my account on line.

Thanks,
Joe
 

T_R_Oglodyte

TUG Lifetime Member
Joined
Jun 6, 2005
Messages
16,670
Reaction score
8,694
Location
Belly-View, WA
I got some emails yesterday from one of my credit cards (CC) thanking me for changing my phone number, address and other information. I had not changed anything. When I went to sign on my CC account my password had beed changed. I called the CC company and they asked if I had made a $1,500 purchase and a $4,500 purchase a few minutes ago. I told them no and they cancleded the charges. Someone had hacked my account and was trying to charge. Glad I caught it so quick.

I understand how someone could get your CC number and even your three digit code, but how did they get into my account? My ID and password were not just my name and date of birth. It wasn't so simple that they could ahve guessed. Did I not use a strong enough log in and password? Even if I didn't it would not have been easy for them to guess. Doesn't the CC web site kick you out after a few tries? I know that someone could copy my CC number and code everytime I use it, but I wonder how they got into my account on line.

Thanks,
Joe
My first suspicion is that you have a keystroke logging worm on your computer.

Other thoughts - have you logged in from a computer other than your primary computer? There could be keystroke capture? Have you ever logged into the account while you are using your computer in a public place, such as a coffee shop? Someboby could have taken a video of you as you logged in and deduced your keystrokes from that.

*****

This also raises security questions about your financial institutions. My BofA accounts not only requires ID and password, but also track the identity of the computers used t login (I assume it stores the MAC address or some such). If I ever access my account from a computer other than one BofA has previously associated with my account, I have to answer my security questions even after providing correct name and password. That's a good feature, as it would prevent exactly the situation you are describing.
 
Last edited:

donnaval

TUG Review Crew: Veteran
TUG Member
Joined
Jun 7, 2005
Messages
960
Reaction score
92
Location
Western PA
So happy that you were able to catch it so quickly! This is very frightening.

Is there any really really good ID protection plan out there?
 

chalee94

TUG Member
Joined
Jan 3, 2009
Messages
1,055
Reaction score
151
Location
NC
Have you ever logged into the account while you are using your computer in a public place, such as a coffee shop? Someboby could have taken a video of you as you logged in and deduced your keystrokes from that.

wifi is not secure in the first place. from what i understand, it's not that hard with the right equipment to pick up your ID and password over wifi as you are sending it...
 

JoeMO

TUG Review Crew
TUG Member
Joined
Jul 1, 2006
Messages
304
Reaction score
0
Location
Florissant, MO
Computer

I have the Norton suite of protection on my home computer and my work computer has lots of protection. I did just come back from a two week timeshare vacation. Drove there and back, stayed at hotels wwhilke traveling and used the internet.

I paid my MF a few days ago. Did it over the phone and gave them the CC number, 3 digit code on back and expiration date. I would suspect them but it was Trading Places, that is who manages my home resort. They are a very reputable company, but maybe they have a bad employee. NOT accusing them, just trying to think of what I have done out of the ordinary recently with that CC.

Thanks for everyones input.
 

riverdees05

TUG Member
Joined
Jun 6, 2005
Messages
4,025
Reaction score
35
Location
Middle TN
We had three different cards hi jacked in a period of a couple of months late last year. Lucky all were covered by the card companies.
 

Talent312

TUG Review Crew: Veteran
TUG Member
Joined
Jul 4, 2007
Messages
17,829
Reaction score
7,676
Resorts Owned
HGVC & GTS
Naively, there was a time when I kept all my ID's, passwords and security Q+A's on a single sheet of paper, the product of an Excel file.

On one trip, after checking out and on my way home, it occurred to me that I had left this doc in a drawer at the TS. I had visions of my entire life being stolen and quickly contacted the resort.

The new guest allowed them to check every drawer, but no-joy. I quickly changed all my ID's (if possible), passwords, and security questions. I also had the credit reporting agencies put a fraud alert on my files.

When I got home, I found that that the doc was still in its hiding place and had never left the house. Needless to say, the doc was shredded and the Excel file password-protected.
 
Top