Discussion in 'Video Games' started by MotionBlue, Feb 28, 2018.
Just received this email:
Good thing I didn't make any purchases as of late.
Seems that the european online store hasn't been affected at least. Hope that nothing bad happens to american customers though.
Was just about to post this... My credir card I use on there just got a fraud charge 2 weeks ago. I got my new card and was trying to contact them on updating my number, but they removed the phone number off their site! After they had extended maintenance the other day, it explains why.
I need to upgrade info (safely) for my pre-orders and I still have new ones to make :x (looks like they are sending out emails for a "pay when you want" basis via Paypal).
Really crappy breach though... Always thought of NISA as one of the safer sites.
Whew, good thing I only ever used Paypal on there.
Man, I'm glad I didn't pre-order anything within this time-frame. Sorry to all of those affected. :(
I guess this is further reason to switch over to PayPal entirely, whenever it's available.
So shady though... I NEVER think of double-checking for redirects when checking out :x
That would explain i got my card clone the other day after i pre-order 2 collector's.... they tried to buy 3800 dollars in a Italien Cloth Store.... no way it would have pass. It would be nice for them to contact us to make change for changing number card and not us running for them to charge us in this case.
Looks like I’m good since I haven’t been on that website since V3 came out. Sucks for those who are affected by this.
I think I might just start doing Paypal more when available. It sucks, but this sucks more...
OK, in the UK the Nisa name is associated with low-rent convenience stores. The thread title confused me for a moment.
I can't really blame them i'm working as a programmer in security for my bank, i know exactly how these thing work, it actualy pretty easy to replicate, this why i use credit card 100% of the time because assurance that they give for that kind of fraud.
Oh man, I'm lucky. I placed my SNK Heroines order on January 11th and with PayPal.
Sorry for all those affected. It fucking sucks.
I got the special edition of danganronpa v3 from them when it came out, so I panicked for a sec, but thankfully thats outside of the date range
Sorry about that situation you find yourself in, I hope you're able to switch over your pre-orders (if any) to your new card when it comes.
Fuck my life. Pre-ordered Coven limited edition without using Pay-Pal.
I'm probably going to never touch nisa online store again.
also the second time in 5 years i've had to get a new card due to fraud. pretty sure the last two times were both because of amazon.
And nope, it's still recommended to use PayPal on VGP. As for whether it's safe or not...I'm not willing to take that risk, haha.
Phew, I'm safe. Sucks for those affected and I hope they get things resolved quickly.
I didn’t get an email. Am I safe?
This lines up with what happened with a card I had JUST got a couple of weeks ago. I thought I was going crazy since I only used it IRL one time and online one time. Never imagined the perp would be from this.
Well, whoever it is got their car fixed and purchased about $800 worth of groceries all on the same day... What a guy
And this is why I use stuff like NoScript. Yeah it breaks the internet, but... safety first! :)
I guess that’s why I found an unauthorized transaction on one of my cards just this morning. Already cancelled that one and will probably cancel a second one as a precaution.
I'm honestly surprised it took this long for NISA's store to get hit, for a long time they didn't even have https. Last thing I ordered from them though must have been the Neptunia Victory LE from back in 2013 lol.
Luckily I haven't made a NISA purchase since Ys 8. Still that sucks.
That $5 discount though. Totally makes up for possible identity theft and credit card fraud.
I put an order in on Feb 15 for Fallen Legion LE using PayPal so I'm good I think. Haven't received an email from NISA and I don't see any suspicious charges. However, I think they may have gotten my email address because I've received few emails in past couple weeks that basically go like "Here is a receipt for a transaction made through apple app store etc. Please click on this link to review or cancel order". I'm guessing that this will take me to a fake storefront and I'll be prompted to log-in with my info.
I work for a small local credit union, it's insane how much card fraud we have seen in the last two years. Stuff like this is all too common these days, unfortunately. Luckily our automated system is fairly good at catching unfamiliar charges, but in a situation like this we obviously recommend changing your card number ASAP and being vigilant for any potential fraudulent charges, since it's not always large amounts they try to get away with and something like a $4.99-9.99 charge is far easier to slip by you than a huge amount. Also, kinda random, but if you happen to use Uber, double check any charges to verify they're yours... a large trend lately has been using stolen card numbers to pay for transportation services.
Wow, this one is pretty horrifying. I mean I understand compromised databases and stuff like that, but to have a rogue script and redirect on your page for a month? Ouch.
To avoid my CC number from being harvested in situations like this, I actively try to limit the number of online stores which has my CC number. Apart from Amazon, I pretty much have to enter my card # again each time I make a purchase. Visa has a 2FA feature for purchases larger than a certain amount but I don't think every single store has the means to implement it.
I placed an order during that time but so far nothing on my credit card activity
Wow this sucks. I don't make purchases off their store, but this sort of thing would make me think twice before doing so.
I haven't been able to order from the NISA store in years as a European customer, but this is a bummer to hear. A month without noticing is pretty rough.
So...things are ok going forward right? Safe to place orders again or do you guys think we should still wait?
Would have been nice for NIS to actually sent out an email alert to everyone to change their account passwords.
Even if you haven't bought anything on NISA Webstore, I'd change your password anyways if you have an account there folks.
Not everyone got an email from NISA about this issue, I certainly didn't. The point I'm making is when it comes issue to a security vulnerability, you don't just warn your most recent customers with account, they need to warn EVERYONE who has an account on their store.
Oh boy... I pre-ordered a couple of games, just after changing my CC two months ago... Now I have to do it again. :(
NISA sent out another email about this today. Apparently the malicious process reinstalled on the 28th, so anyone who used their credit card and purchased between Jan 23 and Feb 25, and then again on Feb 28, had their account information compromised.
Think I'm done ordering directly from NISA after all this. $5 is not enough to get me to order from their store again (pre-ordered Coven as soon as it was announced).