Beware!! Credit Card Thieves

[MaryJean]

This thread is pretty timely. This Monday I had to cancel my card due to several attempted charges to Vueling Airlines in Spain. My bank declined the charges as the fraud detection caught it. Over 750 usd combined in the two charges.

My gaming deposits have been limited to iNetBet, Slotocash, and Desert Nights for this year.

They seem to use Airlines frequently. I had two cards hit, as I stated in the beginning of this thread. One had an airline from Dublin Ireland, and one had an airline from Africa. I live in USA--a long way from both.

Although there were other charges, including flowers from 800-flowers.com and Target Stores, the common thread are Airlines.

Interesting.

By the way---I did contact Slotastic to let them know what was going on (not to accuse them) and their fraud department has contacted me a couple times to let me know that they are investigating the problem. Maybe they will catch something that the banks are not looking for.

MaryJean

 

[tat00]

this is just getting crazy

 

[cpdnd31]

add me to the list- went to check cc acct on line it said acct suspended I called they said a company tried to charge on card a vill roma inn in FL for 8.90 they blocked it. Was told it was a fraud company and a test charge- Card now cancelled - only casino card has been used at is club world, Im done. Last year my bank got hit for over 10 grand. I'm not going through that crap again.

Now if you remember all the updates they went thru last month - they were having issues left and right I am wondering if club world security was fed up and now we are all getting hit.


pissed off customer big time.

 

[anniemac]

Got an email from Slotocash today requesting a copy of my card statement for the card that got hit. Got to give them kudos for still looking into it.

I'm going to lay low for now and do a little bank guarding because I can't afford to have a big hit get thru security.

 

[MaryJean]

Got an email from Slotocash today requesting a copy of my card statement for the card that got hit. Got to give them kudos for still looking into it.

I'm going to lay low for now and do a little bank guarding because I can't afford to have a big hit get thru security.

The casinos had better wake up REAL soon and FIX what is wrong. It is still their responsibility or they will lose ALL of our business and they will be OUT of business.

A lot of us are living on fixed incomes, including me, and can only afford small amounts to play with.
So---lose it---cancel it!

I have never played at Slotocash nor CWC and I have been hit twice, two days apart.

So it looks like it is rampant, and probably with the processors or it probably wouldn't be so widespread.

MaryJean

 

[MyDogMick]

I just got notified that one of my cards was also hit. There was a test charge for $7.64 attempted for John T. Mather Memorial. My most recent uses on this card have all been online, almost exclusively at Lucky Red and Manhattan Slots. Card cancelled, yada yada yada.

 

[tat00]

Are there any reps for RTG such as cwc or sloto that can fill us in on how the process works, to clear themselves of anything wrongdoing? because at this point i blame all of them for not securing our information very well .

anyone?

 

[anniemac]

I posted on my original thread but I'll let everyone know that CW contacted me regarding more information on the charge on my card. Karolina told me that they were working on finding out if the problem was with them.

So now I have been contacted by Sloto and CW requesting further information.

 

[BMWSTACK]

I posted on my original thread but I'll let everyone know that CW contacted me regarding more information on the charge on my card. Karolina told me that they were working on finding out if the problem was with them.

So now I have been contacted by Sloto and CW requesting further information.

I am not sure that a problem will ever be found. You could have 2 breaches, 1)Clubworld Database-- Clubworld does have card info stored on their end 2) Processor--- Processor had breach or theft.

I so lean toward the processor being the problem. Especially since it is happening at what seems a few RTG casinos. I believe that some of the RTG's will share a processor or two.

I mean quite honestly is anyone going to admit a breach? Its even more difficult if its at the processor end because there are multiple and of course all are going to be saying there is no problem.

Either way these RTG's need to get on it. I do see that a lot of people saying they play Clubworld only and a few people that do not play Clubworld. Looking like it could be Clubworld and another one or two others.

 

[clubworld]

Hi All,

As several people have mentioned we do not store customer credit card details (the information we store excludes several key parts for data security purposes), we simply transmit details on to 3rd party payment processors. We ensure all of these 3rd party payment processors are PCI compliant (Payment Card Industry Data Security Standard) and store customer details in line with industry standards, we want your data to be safe!

We are working very hard with the other groups mentioned in this thread to isolate and identify the 3rd party payment processor involved.

I can assure everyone that we have ceased trading with any 3rd party payment processors under suspicion.


Kind Regards,
Karolina

 

[Googobucs]

Hi All,

As several people have mentioned we do not store customer credit card details (the information we store excludes several key parts for data security purposes), we simply transmit details on to 3rd party payment processors. We ensure all of these 3rd party payment processors are PCI compliant (Payment Card Industry Data Security Standard) and store customer details in line with industry standards, we want your data to be safe!

We are working very hard with the other groups mentioned in this thread to isolate and identify the 3rd party payment processor involved.

I can assure everyone that we have ceased trading with any 3rd party payment processors under suspicion.


Kind Regards,
Karolina

It's nice to see a casino say that there are 3rd party processors under suspicion and being investigated instead of pointing fingers back at the players and saying "we are great and can do no wrong". Honesty and transparency like this goes a long way toward earning player trust.
Things like this are why I am your customer.
Kudos to you and the others you are collaborating with !!

 

[MaryJean]

SOMEONE IS STILL AT IT

MY SECOND CARD HAS BEEN HACKED-----ALREADY!!!

I received my new card (following the fraud attempt mentioned earlier in this thread) on July 7, 2014.

I attempted to use it at JPC using 'PayDirect' and received a 507 error---whatever that is.
I sent a question regarding the error, but never got a reply.

I then went to PasteandPay and registered the new number with them on July 8, 2014 and deposited $100 at Slotastic.

Also on July 8, I deposited through P&P $100 at JPC.

On July 9 I deposited $200 at Inetbet the "Secure Payment Voucher" (Mr. Token).

Yesterday, July 10 I again deposited through P&P $100 at Slotastic.

Today, I get a phone call from the bank with the NEW number asking if I had made any charges from:---COMSERV from of the country GEORGIA($200.00) and $206.37 at MALLDAOJ Bejing, China.-------dated July 10, 2014

Now lest you think that the $200 might be the same as Mr. Token---Mr. Token processed correctly, but-----

They waited a WHOLE 3 DAYS !

Here again, this card has not been used anywhere else. So this has to be from one of those processors.

I hate to think it, but could Paste and Pay be compromised?

Unless they find the culprits and make secure accounts this will be the end for me.

Due to my banks vigilance I have not been personally damaged, but enough is enough.

MaryJean

 

[spintee]

MY SECOND CARD HAS BEEN HACKED-----ALREADY!!!

I received my new card (following the fraud attempt mentioned earlier in this thread) on July 7, 2014.

I attempted to use it at JPC using 'PayDirect' and received a 507 error---whatever that is.
I sent a question regarding the error, but never got a reply.

I then went to PasteandPay and registered the new number with them on July 8, 2014 and deposited $100 at Slotastic.

Also on July 8, I deposited through P&P $100 at JPC.

On July 9 I deposited $200 at Inetbet the "Secure Payment Voucher" (Mr. Token).

Yesterday, July 10 I again deposited through P&P $100 at Slotastic.

Today, I get a phone call from the bank with the NEW number asking if I had made any charges from:---COMSERV from of the country GEORGIA($200.00) and $206.37 at MALLDAOJ Bejing, China.-------dated July 10, 2014

Now lest you think that the $200 might be the same as Mr. Token---Mr. Token processed correctly, but-----

They waited a WHOLE 3 DAYS !

Here again, this card has not been used anywhere else. So this has to be from one of those processors.

I hate to think it, but could Paste and Pay be compromised?

Unless they find the culprits and make secure accounts this will be the end for me.

Due to my banks vigilance I have not been personally damaged, but enough is enough.

MaryJean

Sorry to hear its happens again, THIEF'S, I was thinking that the actuall site it self was dodgy by adding card details, I must of missed somewhere as I did not relize you was buying vouchers from other sites, May be you can let us no, I could nether trust 1 of them sites,

 

[dcpam39]

I hate to think it, but could Paste and Pay be compromised?

MaryJean

I also had to have two visa debit cards replaced due to fraudulent charging attempts. These charges occurred June 26th-30th; I believe by processers under investigation, as indicated earlier in the thread.

For paste and pay, I use a mc debit card, and I have not had any fraudulent charging attempts for this card. Not sure if Paste and Pay has been compromised, but wanted to pass on my experience.

Pam

 

[Nicola]

Having horrible problems with Capital One, this is putting me off gambling again

Form filling and damn Indian Call Centres 'You're Safe, Don't Worry!!' but when do I get my money back lol

 

[MaryJean]

BULLETIN!----SECOND ONE ALREADY

Well on July 4th, when I couldn't get one card through, I decided to try one different card that actually had a little credit on it that needed to be spent. I had never used it on line before---for anything!

It went through ok with Mr. Token at InetBet.

Last night I attempted to use it again, and payment was denied!
I checked with the bank and Lo and Behold!----They had the SAME FRAUDULENT CHARGES on that card as did the one I wrote about previously.

Two different banks----not connected in any way.

Both had a charge from COMSERV, Georgia for $200.00 and both had a charge from MALLDAOJ, Bejing China for $206.37!

Identical charges!

Both cards now cancelled!

MaryJean

 

[Nicola]

Could someone PM me the casino(s)/payment processors under suspicion. Thanks

 

[dunover]

Well on July 4th, when I couldn't get one card through, I decided to try one different card that actually had a little credit on it that needed to be spent. I had never used it on line before---for anything!

It went through ok with Mr. Token at InetBet.

Last night I attempted to use it again, and payment was denied!
I checked with the bank and Lo and Behold!----They had the SAME FRAUDULENT CHARGES on that card as did the one I wrote about previously.

Two different banks----not connected in any way.

Both had a charge from COMSERV, Georgia for $200.00 and both had a charge from MALLDAOJ, Bejing China for $206.37!

Identical charges!

Both cards now cancelled!

MaryJean

And these DEFINITELY aren't re-routed processor names relating to your deposits? I only ask as sometimes I get odd names on my debit card statement that bear no similarity to where I actually deposited, but the amounts + fees DO pertain to those deposits. Plus they do appear 2-3 days AFTER making the deposits.
Once a player has any issues on their cards and cancels them this invariably leads to problems in the future regarding gaming, even if a legit reason for doing so.
NICOLA - Capital One are an American company and don't like gaming transactions anyway, even with their UK card holders. Same as EGG and a couple of other card companies.

 

[MaryJean]

And these DEFINITELY aren't re-routed processor names relating to your deposits? I only ask as sometimes I get odd names on my debit card statement that bear no similarity to where I actually deposited, but the amounts + fees DO pertain to those deposits. Plus they do appear 2-3 days AFTER making the deposits.
Once a player has any issues on their cards and cancels them this invariably leads to problems in the future regarding gaming, even if a legit reason for doing so.
NICOLA - Capital One are an American company and don't like gaming transactions anyway, even with their UK card holders. Same as EGG and a couple of other card companies.

These are definitely NOT the extended names of the processors. These are charges from some thief.

The odd thing is the same charges coming up on two different cards. One card had not even been used that many times. It couldn't have been a processor name, and the other was only 3 days old when it was hacked the second time.

MaryJean

 

[dunover]

These are definitely NOT the extended names of the processors. These are charges from some thief.

The odd thing is the same charges coming up on two different cards. One card had not even been used that many times. It couldn't have been a processor name, and the other was only 3 days old when it was hacked the second time.

MaryJean

I see. Like I said, these aren't being hacked, but the details are being compromised and passed on by a bent employee it would appear.

 

[MaryJean]

I see. Like I said, these aren't being hacked, but the details are being compromised and passed on by a bent employee it would appear.

I concur but it appears to be a joint processor not a particular casino. Except for perhaps JPC and Slotastic, I don't see that they use mutual employees within the casino itself, therefore there isn't likely to be the same charges used if it were employees of the casinos.

MaryJean

 

[anniemac]

MaryJean,

What is Mr. Token? Reason I asked is that, I believe it was Sloto, asked me if I had ever used Mr. Token. None of the descriptors have had anything like that so I told her no.

I only deposit via cards or PasteandPay.

 

[MaryJean]

MaryJean,

What is Mr. Token? Reason I asked is that, I believe it was Sloto, asked me if I had ever used Mr. Token. None of the descriptors have had anything like that so I told her no.

I only deposit via cards or PasteandPay.

Mr. Token is the name that Secure Payment Voucher uses. I usually use it at InetBet. It is the only place that I play that uses that processor, but it has always been secure as far as I know. Up until now I have only used two different cards and Secure Payment Voucher has always accepted either, and the banks have accepted it. Like Paste and Pay, you purchase a voucher ID number and then paste it in the cashier's page to deposit.

The problem I have with Paste and Pay is that they highly restrict the number of times it can be used--per day--per week--per month.

It would seem to me that the places where you only enter a card number as a Visa or MC deposit are the suspect, because you have no idea who this is sent out to.--Just my guess---it could be any of them.

My curiosity gets up with the new card I used. On the very first entry, I tried to use PayDirect at JPC and got this weird error "Declined-Error 507". No answer as to what 507 meant. THEN I only used Paste and Pay at Slotastic and JPC and Mr Token at Inetbet. Then it was hijacked again.

So either that "PayDirect" actually hijacked it right away, or the other two become suspect.

Sorry, I guess this was longer than you requested, but right now I am just a wee bit upset with all of this, and tend to rattle on.

MaryJean

 

[dunover]

I concur but it appears to be a joint processor not a particular casino. Except for perhaps JPC and Slotastic, I don't see that they use mutual employees within the casino itself, therefore there isn't likely to be the same charges used if it were employees of the casinos.

MaryJean

Yes, that's what I meant sorry, a bent employee at the processor. Should've made it clear. Comserv are a telecoms retailer in the USA and MALLDOAJ are a large Chinese online retailer/supermarket that sell everything from toothpaste to tea. Bit of an odd combination.

 

[spintee]

So in all fairness it may have nothing to do with the casinos If I am reading the right lines? Its just that casinos accept these type of payments which again clubworlds mention they will stop using that payment type if found to be true which is more than fair, I could nether trust them sort of compaines (3rd party handlers), Far as I would go is nettler or skrill,

But do not get me wrong any company can have a dodgy person or two working for them, Let it be banks, online retailer or casinos as alow companys say all details are secrure I really canot see how if emailing docs in,

 

[MaryJean]

So in all fairness it may have nothing to do with the casinos If I am reading the right lines? Its just that casinos accept these type of payments which again clubworlds mention they will stop using that payment type if found to be true which is more than fair, I could nether trust them sort of compaines (3rd party handlers), Far as I would go is nettler or skrill,

But do not get me wrong any company can have a dodgy person or two working for them, Let it be banks,

online retailer or casinos as alow companys say all details are secrure I really canot see how if emailing docs in

,

I agree that e-mailing docs is extremely insecure in my estimation. That is why I have stayed with the 4 casinos that I now have established for my docs. I hesitate to open a new one and have to send new ID. It is even more precarious these days than earlier.

I wish that casinos would establish a "secure line" (https) for us to send in the docs--it would at least help. Open e-mail not only can hacked it can be snooped by---other 'agencies' now.

MaryJean

 

[Deanna]

MaryJean,

What is Mr. Token? Reason I asked is that, I believe it was Sloto, asked me if I had ever used Mr. Token. None of the descriptors have had anything like that so I told her no.

I only deposit via cards or PasteandPay.

I used Mr. Token 3 times today and quite a few times this last week. My bank just called for a suspicious charge that came through while I was sitting here on the couch. It's pending for $1.22 and listed as 9G Enterprises. The small amount was an alert to them. We shut my card down. Grrrr...

 

[Deanna]

I used Mr. Token 3 times today and quite a few times this last week. My bank just called for a suspicious charge that came through while I was sitting here on the couch. It's pending for $1.22 and listed as 9G Enterprises. The small amount was an alert to them. We shut my card down. Grrrr...

Well, 30 minutes later they got my other Capital One card. $1.67 at Animae Productions - they cancelled that one too. This sucks!

 

[anniemac]

Deanna

Did you use your Capital One card at Mr. Token? Just wondering.

 

[MaryJean]

Deanna

Did you use your Capital One card at Mr. Token? Just wondering.

Also Deanna,

Is Mr. Token the ONLY place you used your cards?

I have only used Mr. Token at InetBet this week. I am watching it like a hawk.

I haven't even attempted Paste and Pay.

Its important that we whittle this down to one place.

I have two more replaced cards coming, and I am going to try to use each one at only one place with only one method at each. Then see what happens.

Someone is getting these cards mighty FAST!

MaryJean

 

[spintee]

Pleases bear in mind that alot of theses 3rd partys own each oter, Just like alot of casionos do, There was a tv program the other week about theses payday loans and there was alot, After investigation it wihittled down to 3 big companys and even them 3 had connections

 

[MaryJean]

Pleases bear in mind that alot of theses 3rd partys own each oter, Just like alot of casionos do, There was a tv program the other week about theses payday loans and there was alot, After investigation it wihittled down to 3 big companys and even them 3 had connections

All we can do from this end is to keep track of what we are doing and the results, and then contact whatever casino we are playing when we run into it again.

By using our cards at individual casinos for awhile (if that is possible) we can sort of trace it down to a point that they can investigate.

Some of them are already doing some investigating, but no word if they have found anything.

MaryJean

 

[spintee]

All we can do from this end is to keep track of what we are doing and the results, and then contact whatever casino we are playing when we run into it again.

By using our cards at individual casinos for awhile (if that is possible) we can sort of trace it down to a point that they can investigate.

Some of them are already doing some investigating, but no word if they have found anything.

MaryJean

Yes, Its seems that by thread its pointing to 1 or 2, I was glad to see 1 of the casinos mentioned to join in, I pesronaly have had no bother but I not use them 3rd parties, Just bank details which I do not mind, What I do not like is send I.D threw emails, Only testoday I send docs by email to luckydino only to be told they need a rescan of my photo I.D which every other site accepted, So had to rescan it, Point being is that they new who I was, so why send 2nd time? Unnecessary if you ask me

 

[Deanna]

Deanna

Did you use your Capital One card at Mr. Token? Just wondering.

One casino, Paste and Pay and Mr. Token, all 3.

 

[MaryJean]

One casino, Paste and Pay and Mr. Token, all 3.

I'm sorry to hear that---they are supposedly the best there is. This is the response I received from Paste and Pay when I questioned them---not surprising.

On Mon Jul 14 1:57 , sent:

Good day,



Paste and Pay is PCI DSS level one certified and is audited by the card association on an annual basis. We ensure that our site is fully secure and that your details were not compromised from our site.



Regards,

The Support Team

 

[dunover]

I'm sorry to hear that---they are supposedly the best there is. This is the response I received from Paste and Pay when I questioned them---not surprising.

On Mon Jul 14 1:57 , sent:

Good day,



Paste and Pay is PCI DSS level one certified and is audited by the card association on an annual basis. We ensure that our site is fully secure and that your details were not compromised from our site.



Regards,

The Support Team

Well that's pretty blasé and doesn't even offer the possibility of fault on their part, and no matter how secure it doesn't stop or explain that human involvement will nullify all their online security...

 

[Deanna]

Well that's pretty blasé and doesn't even offer the possibility of fault on their part, and no matter how secure it doesn't stop or explain that human involvement will nullify all their online security...

I'd say it's almost impossible to figure out who's to blame. I have two cards cancelled and am seriously trying to decide whether I want to put myself in that position again. Or if I do I'm not using Paste and Pay or Mr. Token again on either of those cards. I hate that feeling, that phone call, it's so invasive and scares the crap out of you for all the accounts you have. I bet I've checked every account 15 times today.

 

[The Viking]

I bet I've checked every account 15 times today.

well that sucks that would take all the fun out of gambling for sure, if i was so scared every time i was to use my credit card
thankfully only site that gets my card is Neteller, so i sure hope i dont have to through this.

 

[Deanna]

well that sucks that would take all the fun out of gambling for sure, if i was so scared every time i was to use my credit card
thankfully only site that gets my card is Neteller, so i sure hope i dont have to through this.

It absolutely takes the fun out of it, especially when you're losing anyway. It sucks being in the US. We are set up to fail!

 

[cheetahwind]

The real problem with gambling in the US or any country that has restrictions on online gambling or payments.
Is basically the casinos willing to take players from these countries basically are using dodgy processors from the beginning anyways. Anyone who in the right mind will tell a credit card company with a straight face, that there selling sports equipment, vacation packages, or whatever they claim to be selling. To basically allow our credit / debit card transactions go through without any suspicion has already won a dodgy point in my book.
So of course if there willing to lie to the banks that performs there transactions, of course there going to lie to the casino as well. Saying all is well, no issues. We haven't been hacked, had any rogue employees, or whatever might have caused the breach and so on and so forth.
So really this has caused me to really stop using a real bank account for online gaming transactions. I'd rather shut a prepaid card account down, then have to explain to a bank why I'm having to shut down a debit card. Then have a new one issued. Plus with most banks these days offering some type of overdraft protection. I'd hate to have my account overdrawn because of a scammer getting ahold of my bank card. At least with a prepaid once your money is gone, it's gone. You can't overdraft. With the small exception of Netspend, but the most they'll let you overdraw is $10 anyways.
So really do I honestly expect this issue to be resolved at all? Not really, because the casino and the processor are going to more than likely lie to anyways. Claiming all is well on both ends.
How do I know this? I've been thru these hoops at least 5 times in my 4 year online gambling career. On all 5 occasions, it's always been pointed back to me in some form or another. Whether it was my computer was compromised, maybe another online casino you play at, maybe your prepaid bank was hacked, or some silly excuse.
Really until more states open up in the US or more countries allow for legal online gaming. I really expect to see more and more incidents of this because the processors and casinos know they can get away with it. Yet we'll keep playing because many of us like the convenience supposedly of online gaming.

 

[slotplayer]

Yes, Its seems that by thread its pointing to 1 or 2, I was glad to see 1 of the casinos mentioned to join in, I pesronaly have had no bother but I not use them 3rd parties, Just bank details which I do not mind, What I do not like is send I.D threw emails, Only testoday I send docs by email to luckydino only to be told they need a rescan of my photo I.D which every other site accepted, So had to rescan it, Point being is that they new who I was, so why send 2nd time? Unnecessary if you ask me

I personally never like sending any docs or bank details. While I do make a little money now and then with my affiliate site its nothing like some big affiliates earn or the cm accredited section does but I always hate sending docs out of the usa, especially for payspark but if I want to get paid I have no choice. For all we know they are keeping our docs in a shoe box.

 

[syntynyt]

my card cant be cracked in online because even if someone owns my details including PIN, at any transaction there is a pop up shown asking for a password before passing the transaction, and i have a NASA type of password just to be sure. this was launched about 1 year ago here and no idea if is available in the USA.

You do not have permission to view link Log in or register now.

but this not limit in any way ATM transaction, being with PIN like before.