test content
What is the Arc Client?
Install Arc

Newly linked PW Account TRIBBLE and credit card info stolen

SystemSystem Member, NoReporting Posts: 178,019 Arc User
edited March 2012 in Ten Forward
A friend of mine recently linked her Cryptic account to PWE. Recently, as in a day ago.

This morning (PST time) her account was compromised and $100 was charged to her credit card.

As of now I'm terminating my STO subscription and with the recent keylogging threat on STOWiki, I would advise others to take the necessary security measures immediately.

She has submitted a PWE ticket but as usual, I don't expect any quick reply to said report.
Post edited by Unknown User on

Comments

  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    So the thread starts with pointing a finger at the linking of accounts being the bad guy.
    Then ends with the blame being put on STOWiki.

    Kinda weird, but it's hip and fashionable so I like it. :p


    Beside that... Send a ticket named TRIBBLE to support.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    carmenara wrote:
    As of now I'm terminating my STO subscription

    *sigh* Well, luckily I have no idea how to link my account. :rolleyes:

    If you'd like to keep chatting with several of the people here, you can register on 10ites.com.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Hi carmenara,

    I am so sorry to hear your friend had their account TRIBBLE; we take the security of your payment information very seriously.

    Let me reassure you that there is no way for credit card information to be compromised. If you have a card on your account, and a hacker gets in, they can never view the full card number. The only damage they can do is purchase a subscription or points using the payment method on file. Since these transactions would be through Cryptic, we can take care of it as soon as we receive notification (i.e. a ticket or an email sent to customerservice@perfectworld.com).

    Cheers,

    Brandon =/\=
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    carmenara wrote:
    As of now I'm terminating my STO subscription

    :(
    are you going to be comming back at some point?
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Hi carmenara,

    I am so sorry to hear your friend had their account TRIBBLE; we take the security of your payment information very seriously.

    Let me reassure you that there is no way for credit card information to be compromised. If you have a card on your account, and a hacker gets in, they can never view the full card number. The only damage they can do is purchase a subscription or points using the payment method on file. Since these transactions would be through Cryptic, we can take care of it as soon as we receive notification (i.e. a ticket or an email sent to customerservice@perfectworld.com).

    Cheers,

    Brandon =/\=

    Thanks. I'm getting her to do that and other things to help prevent such things from happening on her end again. Hopefully the account can be restored soon.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Another reason to never link accounts?

    Either way, I truely hope you friend's account is restored.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Hi carmenara,

    I am so sorry to hear your friend had their account TRIBBLE; we take the security of your payment information very seriously.

    Let me reassure you that there is no way for credit card information to be compromised. If you have a card on your account, and a hacker gets in, they can never view the full card number. The only damage they can do is purchase a subscription or points using the payment method on file. Since these transactions would be through Cryptic, we can take care of it as soon as we receive notification (i.e. a ticket or an email sent to customerservice@perfectworld.com).

    Cheers,

    Brandon =/\=

    The full card number has to be stored somewhere, correct? I assume you mean that the full card number is encrypted in your database, and if the database is compromised, decrypting it is unrealistic, so that's what you mean by they can never have the full card number...

    But really, if someone does get in, it's always possible they can get access to the key to, and can decrypt whatever they want. Makes the whole thing more difficult, but it's possible.

    In any case, the fact that the OPs friend's card number was stolen very likely has nothing to do with linking the account. Your friend may have visited a restaurant that same night, why aren't you blaming the waiter that server you for copying the number down.. that (and similar incidents) does actually happen, and is far more likely than your credit card number being stolen online...
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Hi carmenara,

    I am so sorry to hear your friend had their account TRIBBLE; we take the security of your payment information very seriously.

    Let me reassure you that there is no way for credit card information to be compromised. If you have a card on your account, and a hacker gets in, they can never view the full card number. The only damage they can do is purchase a subscription or points using the payment method on file. Since these transactions would be through Cryptic, we can take care of it as soon as we receive notification (i.e. a ticket or an email sent to customerservice@perfectworld.com).

    Cheers,

    Brandon =/\=

    All characters and items restored in the span of one day.

    Thanks PWE :)
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Hi carmenara,

    I am so sorry to hear your friend had their account TRIBBLE; we take the security of your payment information very seriously.

    Let me reassure you that there is no way for credit card information to be compromised. If you have a card on your account, and a hacker gets in, they can never view the full card number. The only damage they can do is purchase a subscription or points using the payment method on file. Since these transactions would be through Cryptic, we can take care of it as soon as we receive notification (i.e. a ticket or an email sent to customerservice@perfectworld.com).

    Cheers,

    Brandon =/\=

    They can if they click manage payment method. They will see everything. They already got the password didn't they?
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    no its blocked in hash marks
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Kerayu wrote:
    no its blocked in hash marks

    Nope I could see my own payment detail when I click manage then edit payment method.

    Well but it is PW account not Cryptic's
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Nope I could see my own payment detail when I click manage then edit payment method.

    Well but it is PW account not Cryptic's

    Well I consider it compromised then.

    Best defence for anyone - use paypal, not direct credit payment. You have to login to paypal for each and every transaction, and that is a big added layer of security in case a PWE account is compromised.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    carmenara wrote:
    Well I consider it compromised then.

    Best defence for anyone - use paypal, not direct credit payment. You have to login to paypal for each and every transaction, and that is a big added layer of security in case a PWE account is compromised.

    Or use credit payment then deleting the info right away. It's really stupid for PW not to provide the option for not saving our credit information. Steam gave us that option you know.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Have to say the VISA/Mastercard deal with the enter such and such letters/digits from password to buy online is a REALLY good idea. With all hope if mine ever became compromised this would stump them!
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    carmenara wrote:
    Well I consider it compromised then.

    Best defence for anyone - use paypal, not direct credit payment. You have to login to paypal for each and every transaction, and that is a big added layer of security in case a PWE account is compromised.

    Hasn't Paypal been TRIBBLE into before? I know their Twitter account was TRIBBLE.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    I deleted my credit card information from my CRYPTIC account because of how the company handles things and their Shady practices. Then a week later, the card information was put back on even though I haven't bought anything so I had to delete it again.

    I no longer trust this or PWE with credit card information.
  • Archived PostArchived Post Member Posts: 2,264,498 Arc User
    edited March 2012
    Everyone should make sure to delete this card information before the inevitable PWE/Cryptic account merge.
Sign In or Register to comment.