Modernperformance unsecured site?
-
- 2GN Member
- Posts: 1423
- Joined: Fri Oct 27, 2006 12:13 am
- Location: Kingston, Ontario, Canada
- Contact:
Modernperformance unsecured site?
Has anyone else noticed how many people left reviews saying they had their Credit Card info jacked/identity stolen on modernperformance.com... Are these legit claims i'm wondering? its a great site, but i would hate to think they are that sloppy with their security...
New Sig Time.
-
- 2010 Platinum Contributor
- Posts: 8357
- Joined: Tue Aug 22, 2006 8:43 pm
- Location: Toledo, OH
-
- 2GN Member
- Posts: 2107
- Joined: Thu Dec 20, 2007 5:05 pm
- Location: klamath falls oregon
hmmm i want to know this one for sure,i do alot of buisness with modern.now i am paraniod
Ziptie's come in handy when a prostitute gets mouthy or reluctant
*eye twitches*
I like people who BUY a 10 sec car and then brag about it. Thats like hiring someone to bang your wife and then bragging about the kid
*eye twitches*
I like people who BUY a 10 sec car and then brag about it. Thats like hiring someone to bang your wife and then bragging about the kid
- hansken_yo
- 2GN Veteran
- Posts: 5148
- Joined: Wed Oct 11, 2006 10:54 am
- Location: Washington
Their online is separate from any transactions done over the phone. So that is a bonus if your like me and look on line and call to place an order
| - John || Project Log || Official I'm Going To Drive My Neon Till It Dies Club #000001 |
Everyone knows that for breasts to be "perfect" they need to be within reach.
-
- Former Moderator
- Posts: 3486
- Joined: Wed Jun 23, 2004 4:00 pm
- Location: Toledo, OH
- Contact:
they are running the transaction section of their site on a SSL. but, that doesn't mean hackers couldn't still get to the information.
Chris | 00 Dodge Neon (Dark Jewel) | 04 Dodge Neon R/T | 00 Honda S2000 |
Proud member of CYL [www.caughtyalookin.com]
Proud member of CYL [www.caughtyalookin.com]
-
- 2GN Member
- Posts: 3002
- Joined: Sat Oct 02, 2004 2:48 pm
- Location: Lebanon PA
- Contact:
mine was jacked when i did my fog light order last week,, i contacted corey bout it, and he insured me that they didnt get if from there site..
he said the clear there CC numbers everyday, they are dont on a separate secure server, and some other stuff...
but its funny that this cameup..considering i ordered fog lights, lst monday and my car stuff was stolen on thursday!
he said the clear there CC numbers everyday, they are dont on a separate secure server, and some other stuff...
but its funny that this cameup..considering i ordered fog lights, lst monday and my car stuff was stolen on thursday!
hmmmmm
- Haganracing
- 2GN Member
- Posts: 4169
- Joined: Tue Jan 30, 2007 11:23 pm
- Location: Mount Airy, Maryland
- Contact:
I order stuff from them about 3-4 times a year and dont have any problems.
Thats weird.
-chris
Thats weird.
-chris
occasional demons wrote:So maybe a FuzzyDanteHagan sammich might just beat a FuzzyHagan.
Danteneon wrote:My advice is to fight those urges and enjoy the fact that you have both X and Y chromosomes. And an SRT. And your hand. You don't need a girl.
not surprised if they are true. All of those carts are brutally insecure. phpnuke (and similar portals), zen cart, cube cart (and similar carts) are some of the most vulnerable scripts on the internet today. Message board scripts like phpbb are in a solid third place.
Me and a friend ran a test on a similar cart a few weeks ago. We were able to use one of many XSS (Cross site scripting) exploits. We set our trap and once the admin of the cart logged in, we had direct access to their mysql database. Names, addresses, credit card numbers etc. We had access everything.
If we were malicious douchebags we really could have cleaned house with this info. We could have charged a million things on those cards, sold the personal information such as name, address, age, what they bought to spammers. Not to mention having the ability to ruin the business owners reputation. These scripts are not worth the hassle.
Me and a friend ran a test on a similar cart a few weeks ago. We were able to use one of many XSS (Cross site scripting) exploits. We set our trap and once the admin of the cart logged in, we had direct access to their mysql database. Names, addresses, credit card numbers etc. We had access everything.
If we were malicious douchebags we really could have cleaned house with this info. We could have charged a million things on those cards, sold the personal information such as name, address, age, what they bought to spammers. Not to mention having the ability to ruin the business owners reputation. These scripts are not worth the hassle.
-
- 2GN Member
- Posts: 1423
- Joined: Fri Oct 27, 2006 12:13 am
- Location: Kingston, Ontario, Canada
- Contact:
I'm trying to figure out what i was looking up, when i saw, one bad review, i think it was on a agp wastegate, and another on the projector headlights, one of the two items i was looking at, two different people said they had their info stolen... if i can find these reviews, ill post em up.. either way, makes me glad i order over the phone with them...
New Sig Time.
-
- 2GN Member
- Posts: 2847
- Joined: Mon Jan 01, 2007 8:12 pm
- Location: Kansas City
Hmm, I never saw any reviews like that on the site, but I too have had my CC number stolen once, not long after one of my past orders with them. I buy a ton of stuff with them. I'm thinking I may just do over the phone from now on!
FEEDBACK
Adionik wrote:On a 100% stock SRT engine i've seen detonation on 93 octane, I know what i'm talking about.
This doesn't help much either. You are bound by payal's Fraud Policies which more often than not, are not in your favor. It will help prevent any further money being pulled from your account but you will still be at a loss.jT wrote:for an extra level of security for online purchases you could always set up paypal on your card, then use paypal's virtual debit card for a one time use number.
If modern knows about this, they must be pretty stupid to keep that cart online. They should hire someone to help beef up security.yellowpatrol wrote:Hmm, I never saw any reviews like that on the site, but I too have had my CC number stolen once, not long after one of my past orders with them. I buy a ton of stuff with them. I'm thinking I may just do over the phone from now on!
- Diablo0
- 2GN.org Owner/Admin
- Posts: 12576
- Joined: Thu Apr 15, 2004 11:20 pm
- Location: Greenville, SC
- Contact:
Interesting... because I also purchased some things from them back in January and a month or so later my bank's fraud dept called me to say they had some suspecious charges to my card. Turns out it wasn't me, it was someone else so they took the charges off without question and reissued me a new card.
Guess I'll be calling from now on...
Guess I'll be calling from now on...
-Jason
Black '02 Neon R/T | White '02 Neon R/T - SRT-4 Engine Swap
^^^ no, that isn't what I look like haha
Try not to become a man of success but rather to become a man of value. - Albert Einstein
Black '02 Neon R/T | White '02 Neon R/T - SRT-4 Engine Swap
^^^ no, that isn't what I look like haha
Try not to become a man of success but rather to become a man of value. - Albert Einstein
Damn this is VERY interesting because I'm in the same boat. Ordered through their cart a few months ago and I found several charges to my account for different "websites" popping up 2-3 times a day soon after that. I have been trying to figure out where the hell someone got my info from but this does lead to a very possible explanation... I'll have to let my bank's investigators know about this.
Later
Allex
Later
Allex
Official "I drove my Neon till it died" member #??? Parted out the '01 so that she can live on through others! (Now driving + modding my '09 Chevy HHR SS!)
Mat00ES wrote:Find me a buyer and I'll sell some body parts for car parts.
-
- 2GN Member
- Posts: 2847
- Joined: Mon Jan 01, 2007 8:12 pm
- Location: Kansas City
Damn this is crazy! My charges were from CCBILL.COM, which after a quick google search is a known fraud site.
FEEDBACK
Adionik wrote:On a 100% stock SRT engine i've seen detonation on 93 octane, I know what i'm talking about.
-
- 2GN Member
- Posts: 1423
- Joined: Fri Oct 27, 2006 12:13 am
- Location: Kingston, Ontario, Canada
- Contact:
Man am i ever glad i brought this up. Seems like a lot of ppl have been effected.
Either way, at first i thought maybe it was competing business' slandering their site, to hurt thier sales, but now that i hear a lot of you have had problems, There is no doubt in my mind thier site sucks as far as security goes.
Either way, at first i thought maybe it was competing business' slandering their site, to hurt thier sales, but now that i hear a lot of you have had problems, There is no doubt in my mind thier site sucks as far as security goes.
New Sig Time.
- Diablo0
- 2GN.org Owner/Admin
- Posts: 12576
- Joined: Thu Apr 15, 2004 11:20 pm
- Location: Greenville, SC
- Contact:
Happen to have a link to the other discussions with people saying they may have been affected? I say 'may' because it's not proven this is the source so it's not fair to say Modern is the culprit when it could be something else.
-Jason
Black '02 Neon R/T | White '02 Neon R/T - SRT-4 Engine Swap
^^^ no, that isn't what I look like haha
Try not to become a man of success but rather to become a man of value. - Albert Einstein
Black '02 Neon R/T | White '02 Neon R/T - SRT-4 Engine Swap
^^^ no, that isn't what I look like haha
Try not to become a man of success but rather to become a man of value. - Albert Einstein
There's F'in proof right there! . These are the people that are running $29.99, $9.98 charges on my bank card (thank GOD I got it replaced!! The charges are coming from CCBILL.COM, easynews.com, and eubill.com (IIRC on the 3rd name). If you call the number they provide you with they'll just say that they're a "warehouse for 20,000 websites" and that they NEED your credit/bank info to tell you which website you're being charged for. F'in losers.yellowpatrol Posted: Fri May 16, 2008 11:40 am Post subject:
--------------------------------------------------------------------------------
Damn this is crazy! My charges were from CCBILL.COM, which after a quick google search is a known fraud site.
Later
Allex
Official "I drove my Neon till it died" member #??? Parted out the '01 so that she can live on through others! (Now driving + modding my '09 Chevy HHR SS!)
Mat00ES wrote:Find me a buyer and I'll sell some body parts for car parts.
-
- 2GN Member
- Posts: 3002
- Joined: Sat Oct 02, 2004 2:48 pm
- Location: Lebanon PA
- Contact:
- Diablo0
- 2GN.org Owner/Admin
- Posts: 12576
- Joined: Thu Apr 15, 2004 11:20 pm
- Location: Greenville, SC
- Contact:
They handle the billing for a lot of pr0n sites so they're telling the truth.asanti wrote:There's F'in proof right there! . These are the people that are running $29.99, $9.98 charges on my bank card (thank GOD I got it replaced!! The charges are coming from CCBILL.COM, easynews.com, and eubill.com (IIRC on the 3rd name). If you call the number they provide you with they'll just say that they're a "warehouse for 20,000 websites" and that they NEED your credit/bank info to tell you which website you're being charged for. F'in losers.yellowpatrol Posted: Fri May 16, 2008 11:40 am Post subject:
--------------------------------------------------------------------------------
Damn this is crazy! My charges were from CCBILL.COM, which after a quick google search is a known fraud site.
Later
Allex
-Jason
Black '02 Neon R/T | White '02 Neon R/T - SRT-4 Engine Swap
^^^ no, that isn't what I look like haha
Try not to become a man of success but rather to become a man of value. - Albert Einstein
Black '02 Neon R/T | White '02 Neon R/T - SRT-4 Engine Swap
^^^ no, that isn't what I look like haha
Try not to become a man of success but rather to become a man of value. - Albert Einstein
-
- 2GN Member
- Posts: 1423
- Joined: Fri Oct 27, 2006 12:13 am
- Location: Kingston, Ontario, Canada
- Contact:
I wonder if they have edited them out, because i can't find the reviews mentioning fraud, For that matter, i can't find Even one bad review on there site now.. which makes me think they probably just deleted those reviews....
damn it, now i look like a liar... , but its all good i have no reason to bring this up if i hadn't seen them on there site, since personally i've had no problems whatsoever with thier service.
damn it, now i look like a liar... , but its all good i have no reason to bring this up if i hadn't seen them on there site, since personally i've had no problems whatsoever with thier service.
New Sig Time.
-
- 2GN Member
- Posts: 2847
- Joined: Mon Jan 01, 2007 8:12 pm
- Location: Kansas City
Yep, and even not on the topic of fraud and ID theft, they deleted my review on the SRT 3" O2 housing. I gave it a poor review for not coming with the bolts, and because MP wouldn't respond to my e-mails or return my call concerning that.
FEEDBACK
Adionik wrote:On a 100% stock SRT engine i've seen detonation on 93 octane, I know what i'm talking about.
That actually bothers me. I love modern, but that isn't right. I understand from their perspective, that it may hurt business. But i like reading reviews before i buy something. If there is enough negative reviews they should stop selling that product.gilly02le wrote:so they do delete negitive feedback, hmm, glad to see iim not crazy, since one day they had quite a few negitive's, the next, they have None.
Wanna Sell Me Your 2gn??
Official I sold my Neon Member #004
Official I sold my Neon Member #004