So there I was, diligently scanning through the online statement from our bank, when I came across this particular entry for the amount of $84.35:
12-11-05 PAYPAL *USIPM1668 402-935-7733 NY
And I thought, “what the”? This struck me as unusual for a number of different reasons:
- I didn’t recognize the merchant (“USIPM1668″)
- I didn’t recognize the amount (i.e. I couldn’t remember buying something through PayPal for $84.35; and most disturbingly
- The credit card that the transaction appeared on is not registered with PayPal!
Immediately, I googled the merchant name, and – not surprisingly – got a hit on an eBay item (for those of you that don’t know, PayPal is owned by eBay – hence why I wasn’t surprised). Something about gold for a final fantasy game? Anyway, the seller has a gaming website listed, so putting the pieces together I figured that perhaps Kristy had spent the money on a game for me, for Christmas.
After calling to ask if this was the case, and Kristy most assuredly telling me that it wasn’t, it was panic time. Not only am I clearly not getting any new games for Christmas, but it appeared as though our credit card had been ripped off! After a few hours on the phone with both PayPal and our bank, our fears were confirmed. It turns out that somehow, some guy has got all of the required information to open a PayPal account in Kristy’s name – specifically, her full name, phone number, address, and – of course – credit card number. They had opened an account on the 10th of December, and made the purchase on that same day. (It took a day before it got registered in my account though).
Needless to say, we have cancelled the cards and had new ones reissued, as well as reporting the fraudulant transaction. Since it was done on PayPal, we’ll get the money back in a couple of weeks. And even if PayPal wouldn’t reverse the charge, Visa has a “Zero Liability” policy to protect consumers against fraudulent charges. So it’s not the money that worries me – I’m more concerned with how they got the credit card number in the first place.
And yet, as awful as it makes us feel, there’s a glimmer of hope. Since the transaction was done through PayPal, its completely traceable. What’s more, I have acquired the e-mail address that was used to open the PayPal account. It could be fake – but they would have had to receive at least a few mails there in order to activate the PayPal account – so maybe it isn’t. At the very least, I used the e-mail’s domain (techie.com) to establish that it’s registered to someone in New Jersey. So if I can figure that out without raiding any databanks, let’s hope that the cops can do an even better job of finding and charging the crook.
. But I’m wondering why you still need a scanner? I have downloaded a great scanner app for my phone so I just take...
![Oscar and [some lady's man]](http://lh6.ggpht.com/-CDpO3inTDcI/TJyl3PFd5nI/AAAAAAAAKhc/kcWEiv2oMMc/s200/IMG_0752.JPG)
6 comments
Dodgy! I try to shred up any receipts with my credit card number and try to not put too many details on things. Also, if you manage to get an email sent to you from that address directly to you, you can do a traceroute and see if it is from some (known) dodgy part of the world.
That bites!<br><br>Time to invest in a shredder if you haven’t got one.
Not happy Jan, no new computer game……..<br><br>That was the main point of the story wasn’t it??
Lucky you picked it up. Unfortunately for $80 they are more than likely just going to write is off. These guys usually know that and try and keep the transaction values low. These guys are most likely pretty clever and have this scam set up pretty well. Most likely they would have milked a few more items if you had not realised.
what makes you think the details the domain is registered under isn’t stolen or that the guy just hacked a server @ techie.com?
That’s a fair call Jeff (Jeff?); like I said in the article though, s/he would have had to be able to receive e-mails from Paypal in order to open the account.
So yeah, he could have hacked it all and I could have been way off the scent – but I guess I’ll never know either way.