baldsue

I've used my LBS, JensonUSA.com and Bikeman.com with no problems. I've been trying my best to give my LBS first dibs at getting my money but sometimes they just don't jump at the chance. I go in there waving cash and leave with it to go online and buy what they didn't have and didn't offer to order for me. It's actually quite frustrating to wave cash around and not be able to give it away locally. I've had excellent service from both Jenson and Bikeman. I have also had superior service from wallbike. I prefer places that take paypal.

GaryBy

Was it really Heartland, or was that a separate breach? This Bike Portland article suggests that it was Bike Nashbar's site, and as I mentioned in reply 62 of this thread, a quick look at their site left me unimpressed. I just checked again, and that problem still exists. Again, it's not necessarily a security problem, but merely a sign that their QA on the website either isn't good enough or doesn't care about details.

Assuming the problem was with their website, I'm not sure what the role of the credit processing company would be. I know that the credit card networks (e.g. MasterCard, Visa, etc.) have their own security standards, but I'm not sure how they enforce them. Auditing web sites is time consuming and expensive.

There are many web site design companies out there, including many small ones that are quite capable of doing a secure site. However, there isn't any good way to know that the company is qualified to handle credit card security, other than picking a large company with a proven reputation and prices to match. And once that's done, they still need to make sure their systems are maintained and updated properly.

Jeffbeerman2

I got a letter from Nashbar today. They admitted that they had a security breech that exposed my name, address, account info, and debit card info, and stated that they corrected the security flaw.

My info was compromised but I didn't have any fraudulent charges (this time, but it has happenned to me before with other retailers).

I called my bank to cancel my debit card (that I have used with nashbar) just to be safe.

I applaud nashbar for admitting the breech and helping me prevent any possible misuse.

It's inconvenient to not have a check card for a week or two, but not as inconvenient as making a police report and disputing a charge.

Jeffbeerman2

For anyone worried about using nashbar's store (after reading through the thread), keep in mind most nashbar stuff is available through Amazon with them as the "marketplace" retailer.

I'll probably use the 30% coupon. No doubt nashbar is turbo-vigilant about security right now.

Panthers007

I'd use the 30% coupon-code if I knew a few hundred people to go in on it with me. Let's say an order for more than $100,000. This would hit Nashbar where it hurts - their financial-artery. And no less than they deserve.

robotphood

Use the 30% coupon with a virtual one time use CC number?

powerglide

Maybe this is a coincidence...I just got my first fraudulent charge on any of my credit cards ever. $100 from CRAIGSLIST...Amex caught it and contacted me right away...

cs1

Sounds great to me. Know anyone with a CC that's got a $100K limit? I sure don't.

I-Like-To-Bike

Sure. I can handle this inspired plan. Everybody who wants in, wire $$ to me with your bicycling product orders. When I reach the $100,000 goal, I will take the appropriate action.

BarracksSi

I just remembered that I've got a $50 gift card from the Autotrader.com booth at the auto show. Assuming that I can still activate it, I could use that instead of my own card. Now I need to find something to buy that I actually need...

Kinetikx

Almost a happy ending to my part of the story today. $100 of the $150 has been credited back to me. Only $50 left to go. Color me amazed.

Doug5150

Get a credit card that gives "one-use" numbers, and forget about it.

With Citibank, the number is only good for charges from one retailer and has a one-month expiration date. I don't ever give out my real CC number online anymore.

Someone else mentioned another company that lets you set up a maximum charge limit on a throwaway number.
~

no motor?

I was checking my credit card statement today and there was an online charge of $15.93 from Blizzard Ent (they sell some World of Warcraft video game I didn't buy) made on a day when I wasn't online. Googling them shows a number of people with similar problems. I haven't charged anything from Nashbar using that account in quite a while and expect the two problems are unrelated. The cc has been closed and a new card is on the way.

Panthers007

Well all the credit-card theft can't be just Mushbar - it can happen elsewhere, too. Glad you closed that account.

stljingram

I was also one of the Nashbar "victims". Has anyone used the 30 percent code?

I'm a little hesitant to give them more of my money after having to wrangle with various vendors to reverse fraudulent charges from the last mess (still out $60), especially because it's "only" 30 percent and I'm naturally skeptical of their claims of new security.

For a site that regularly discounts items more than 40 percent, 30 percent seems like a slap in the face for a security breach that caused a lot of consternation for many.

Perhaps I'm being unfair here, but I feel a bit insulted that they think I'll run back to them for a 30 percent discount.

Cyclist0383

Even their 40% discounts aren't really that great as they often inflate the 'retail' price in order to give a bigger discount. Urgh.

125psi

I've used them several times in the last month and no issues. I watch my accounts. Folks they are OK now.

Panthers007

Looks like the got the three people behind it - allegedly:

https://www.comcast.net/articles/news...RIME-IDENTITY/

no motor?

It's on Yahoo too - on the front page.

kgriffioen

I just used it last week. Bought all kinds of stuff. Remember its 30% off of your order, not original pricing so if an item is discounted 50% lets say from 100 to 50, with the additional 30% off the cost to you would be 35. Seems like a pretty good deal to me.

125psi

Argh... don't blame the retailer...BLAME the processors. Trust me on this.

Cyclist0383

Nashbar handled the situation extremely poorly, which says a lot about them as a company.

125psi

Perhaps but then I can't recall any retailer who has.
My bank issued new cards after the heartland breach weeks after it occurred. I knew of this way in advance since I'm tied in with the biz. There was a window of about 3 - 4 weeks.

Another big bank in the South had a laptop stolen with millions of CC on it.

Security is lame these days; however, things are being done to correct this. The years of blatant disregard has finally caught up.

Cyclist0383

There was a window of something along the lines of six months from the time Nashbar knew about the problem to when they informed people. Six months.

baldsue

About 5 months too long for me to be tempted to use their 30% coupon.