Identity theft?

[raymond]

My parents are too scared to order off online suppliers of CP because they are too scared about identity theft. they only order form big chain companies none of which are CP nurseries. I am restricted to the plants at lowes and at local nurseries.

can anyone provide suggestions for this situation?

 

[petmantis]

Use PayPal or a similar secure payment method

 

[thez_yo]

A credit card company can get hacked and them lose your information a whole lot easier than someone steal your credentials off of a secured website with encrypted information being sent between you and them. For example, the credit card company could print out your info and leave it in clear text in their trash and someone could steal it, saftey password or your pin and all. Or, a disgruntled credit card employee could tell a malicious hacker about username/password information to use to get into their databases also getting your information stolen out there. Also, Paypal is useful because you could put your credit card into/through that, and because most online vendors use it these days and because it uses secure http, you would never have to transmit your information unencrypted/in clear text so nobody could steal it mid-transmission.

 

[carnivoure12]

Many places are very safe to order from, and one of them is Flytrapshop, many members here have ordered from the shop, and it helps keep the board running. No has had a bad experience or anything of that sort.

Also, when you order online the information isn't really given to the payee, just the name of the person who paid. Also make sure that when you are IN the process of order (i.e. putting cc information in) that the URL says https:// that means the information is secure.

 

[KDodds]

Ditto. Or, believe it or not, smaller growers/nurseries that do not keep online databases, do not remember you, etc. Most of the time, they're either hosted by a megaISP/hosting company with security up the wazoo, or they have unconventional forms that send them an email or something like that, and/or they're using an unconventional database platform (i.e. Access or freeware or something, not SQL or Oracle). That makes a huge difference. Most hacks come from blind (not knowing the IP beforehand, or scanning for it), brute force (either repeated attempts or a hack around password bypass program) attacks. These generally come out of Asia. They're almost never looking for anything but Microsoft SQL Servers, but occasionally Oracle as well. Ebay/Paypal is probably the best and easiest method. I'd trust most of the larger CP suppliers listed in Barry Rice's FAQ.

And, painfully slow thought it may be, you can always CALL the vendor and ask if you can place an order on the phone and mail out a check. Most vendors should be willing to accomodate as long as you're willing to wait until the check clears. Or better, use a money order.

 

[RL7836]

Does the post office still do money orders? Or how about cashier's checks from your bank?

found this as an option:

You could go to http://instantgiftcards.net and purchase a gift card to you favorite online shop. The gift card claim code is delivered instantly, so you can go shopping right away! This is a great solution to not having the Paypal plugin anymore.

... and this was also suggested:

I also liked the Paypal plugin. However, “Citibank Diamond” has virtual credit cards. Basically you can generate one time or multi use credit cards. You can set the range of the expiration date, and the value of the card, & have the ability to cancel the card anytime (online). Though its a credit card, as opposed to debit, it is more flexible than the Paypal plugin. Also, if you pay the total balance monthly, you have the protection of using a credit card, with no interest. It’s nice to have alternatives though, which is what I have been searching for.

Apparently the 'Paypal plugin' was a single-use debit card for people who were concerned about identity theft...

 

[nightsky]

I recently had my amazon account hacked. They caught it and reversed all charges ($1300). It happens, it's a risk of doing business. Whether online or in person, there's always a chance. Despite my experience, I still do business online. Out of the many hundreds of transactions I've done online, I've never had a problem, and the amazon hack was random. Use complex passwords, never fall for phishing scams, check for https, pay with cc (not debit), make sure your computer is free of viruses, keyloggers, malware, use a secure wireless signal. Even then, it's possible.

 

[RL7836]

I agree with everything Nightsky noted & would just add to check your accounts weekly for any unusual activity. Programs like Quicken make this fairly painless. I've been scammed a few times but survived with minimal impact (thankfully).

However, I suspect Raymond will not be able to change his parent's minds - especially if they've had a very traumatic experience with ID theft.

 

[jack]

Because of bad credit I don't have a credit card so I use a money order, you just have to use a nursery that excepts them. I get mine from safeway and I think walmart also do. They cost less then a dollar usually. the one bad thing is it can take longer to receive your order since they have to varify payment. It's better then nothing, Jack

 

[KDodds]

Those last few posts bring to mind something else, a Visa or Amex gift card, usable wherever they take Visa or Amex. It's a preloaded amount, no ties to any id, nothing. Not even the name/routing/account numbers they'd have if you mailed a check. (One of the main reasons I use checks as little as possible.)

 

[Halt]

I had the same problem! Andy (Moderator here,) took money in an envelope... however it was at my own risk.

 

[nightsky]

I had the same problem! Andy (Moderator here,) took money in an envelope... however it was at my own risk.

You mailed cash? Wow, I'm amazed it got there in one piece!

 

[adnedarn]

I've made arrangements quite a few times with people in the same position to get their order done. I've never had the money not show up, not saying it never will... but I've yet to have a problem. ...I say this as I'm waiting for some apparently lost Nep seeds to arrive. haha

For the record, stores can store your CC information- I'm not sure if it's enough for that person to use the card or otherwise steal your info... But I have seen the option to have payment information stored. I DO NOT. Also, if you select paypal as your payment method (also available in my store) i cannot see your payment information what so ever- they are completely 3rd person and do not pass along anything other than what we need to know (payment received, confirm shipping address etc.)

Andrew

 

[Presto]

Those last few posts bring to mind something else, a Visa or Amex gift card, usable wherever they take Visa or Amex. It's a preloaded amount, no ties to any id, nothing. Not even the name/routing/account numbers they'd have if you mailed a check. (One of the main reasons I use checks as little as possible.)

Yeah! Something like this: http://www.mastercard.us/prepaid-gift-card.html .

 

[Lil Stinkpot]

PayPal is good. I've never had a problem (knock on wood). Or, if there is ever a problem, well, PP HQ is only a couple miles down the road from me.

All of the above advice is very good. I can't be sure, but I think, IMHO, that you are more likely to have your credit/debit card scanned & scammed while you're eating out than having it scammed online.

I have always recommended to people I talk to to take eBay's "spooftorial." Let me see if I can find it.... Ah! Here we go. http://pages.ebay.com/securitycenter/index.html Here is the page it's on, plus a few more new ones. Look to the left; read the first five, then continue, if you wish.This was written for eBay, but it is applicable everywhere. I used to be a regular participant in the forums there, but when they changed the format, I didn't like the change, and left.

 

[scottychaos]

some envelopes are very thin flimsy paper..if you just stick some cash in it, the money will be visable to the world!

So if you do mail cash, or a check, in the mail, make sure you use a "safety envelope" that is somewhat opaque..plus wrap the check or cash in a sheet of plain copy paper..just to make it more difficult for someone to hold the envelope up to the light and see the cash or check within..

IMO, only buying from the "big" shops is MORE risky than buying from the small shops..(as long as the small shops have a secure webpage for ordering, and most do) only because the big places are much more likely to be hacked..Amazon.com is probably a constant target for hacker criminals, while "Joe's nursery" in a small town, isnt..(of course amazon probably has better security too..but still..you see the point..I doubt any legitimate on-line CP nursery is any more "risky" than any large national "catalog" nursery..)

Scot

 

[KDodds]

I've mailed cash before. Some few times that I have for most people it DID get there just fine. For another person who sent me some plants (aquatic) it didn't get there, twice. Now, I have no reason to believe that this person would try to scam an extra $5 out of me, so I have to believe it was someone handling the mail on her end (on mine, I've never had a problem). Lesson learned, though, cash through the mail is a VERY bad idea.

Ditto on the identity theft. It's FAR more likely that some unscrupulous employee at location X is randomly saving and using or selling the information gained. It's also usually not your id that's stolen, but just your CC (or debit card) number, expiration, name, and CVC. This recently happened to the owner of the company I work for. He was on vacation with his family. As it happens, when they're out, they usually use HIS debit card. Except one morning he had to be out early so his wife took the kids to the same restaurant that they'd been to a day or so before. She used her card for the first time in months, and didn't use it again after that. He happens to check and noticed the few dollar and dime charges before anything bad happened. The thing is, they were doubled, one for each debit card, for services (usually porn site access or something like that), not goods to be shipped. This is how it usually happens, first a charge of a few cents, then a few dollars, then maybe ten or twenty dollars, then the sky's the limit. Another reason why monitoring your accounts PERSONALLY is so important. I've had it happen twice already. The second time, I knew exactly which location was responsible (long story) and went back and complained. Of course, they insisted none of their employees would ever do that. but, as it happened, a few other people in my area also had the problem at around the same time and ALL had been to this particular place within days of it happening. Anyway, long diatribe short, your parents are in more danger of CC theft using their cards face to face than they are, really, online, but nothing you say can, nor should it, change their minds. It's their money and their prerogative to do what they will. So, I'd look at alternatives, like gift cards, before I'd try to talk them into letting you use their cards online.

 

[Rball]

k dods has a point the gift card..... i have gotten them as gifts and used them to buy cps online save up some money and go to the local shopping mart most have them on a rack with phone cards and other gift cards. Dont get one for a specific store find one thats a straight visa or amex gift card, That way u can add more too it in future and the card isnt even atached to your name let alone ss number or anything else.

 

[KDodds]

Yup. The ONLY problem is if you lose it, you have no real recourse.

 

[eou812]

Paypal. There is your answer my friend.

---------- Post added at 09:31 AM ---------- Previous post was at 09:30 AM ----------

I'm 14 and my parents really don't care. They do but not if i use paypal.