sup ratnuts@panix

There is a few other issues that need to be examined.  I do not speak with any authority on the subject.

1) For those people who did get fraudulent charges after ordering Super Mario Galaxy, did you use your cards for anything between the time you ordered the album and when the fraudulent charges were made.  If you did use your cards, then the possibility exists that the fraud was committed somewhere else.

2) For those people who did get fraudulent charges after ordering Super Mario Galaxy, did you use the cards shortly before ordering the album?  The fraud could have been committed there and it would take a while for the charge to post to your account.  The fraudulent posting could have made it look like NCSX committed the fraud.

3) Given NCSX's description of the processing flow, it is still possible for Linkpoint to have been compromised.  There has been several news article about breaches at these banks, processing gateways, etc., so the problem could still be there (see Bank of America, Choicepoint, etc.).  If NCSX continues to receive fraud complaints about this from other customers then NCSX will have to acknowledge that there is a problem somewhere in their processing flow.

If you use a credit card, it is easy to get fraudulent charges reversed due to U.S. banking laws.  Debit cards are not backed by these laws, so getting charges reverses is dependent on the card issuer's policy.

What I don't understand is the recurring proposition in this thread that if the fraudulent charges were the result of orders placed with NCSX, then necessarily NCSX is at fault.  How is the latter a corollary of the former?  If the breach occurred elsewhere in the fulfillment chain, then NCSX isn't to blame unless the source of the breach has some peculiar susceptibility and NCSX was or should have been aware of same.

Sorry, but I'm very confused - I'm confused how this tread got to this point. I really don't feel anyone pointed the finger at NCSX in a malcious way throughout this thread, or misrepresented that this was a more than a "theory," so I can't help but scratch my head why ppl are leaping to the defense of NCSX.

Also "Warning" is different than say a "Notice" in that it may not be 100% iron clad/true

If the transactions made at NCSX led to the credit/debit card info being compromised, whether it happened directly through NCSX or at Linkpoint or around the water cooler at the dispatching office, then wanting to fault NCSX or at least pointing a finger in their general direction should not be so hard to understand. And if this WAS the case - if it wasn't NCSX's fault in particular and it happened elsewhere down the road of the transactions - this is still a very serious issue that could potentially affect all future transactions through NCSX. If the compromise happened at Linkpoint, then there is the chance this could happen again to other people. NCSX changed their server passwords and had an audit that came up with no specific findings related to this, but that doesn't do a damn thing if the issue occurred outside of NCSX.

Everyone's acting like this is such a small little thing, like one person had a fraudulent charge and started blaming NCSX out of the blue because they placed an order there several months before. The facts are there, and it's really damn hard for me to believe that this entire situation that spans four people out of a small community is more than a coincidence. It's apparent that the people who think that my accusations are uncalled for are people that have never had their information, identity or finances compromised; I'm sure if you were in the position I was in or that Joe was in a couple of weeks ago you would be a little more sympathetic toward the situation. I have nothing else to say about this.

Wow, you like jumping to conclusions generally then.

Zane has every reason to be upset.  Depending on your credit card company, these things can be a major hassle to clear up.  In my experience, it hasn't been so bad, but I know that's not always the case.

The fact that several people from this community had these charges is strange.  However, this stuff happens.  Plain and simple.  People are out there who want this information, and they're going to get it from somewhere, regardless of how secure this or that is.  I doubt it was an employee, as again, they're based in a different location than where these charges were made.

So yeah, I'd be pissed in general, but not as NCSX.  If it's a good store, keep shopping there.  I think people are going to get your information no matter what.  It sucks, but it's the truth.

I never said that (a) posting a warning was inappropriate, (b) this is a coincidence, (c) having a credit card number stolen is a trifle, or (d) anger is an inappropriate response.  My comments relate only to the following line of reasoning:

"If they ARE the source of the leaked information, then I apologize for recommending them and am extremely disappointed in the failure of what has always been one of the most trusted import stores."

"Even if NCSX employees are not the culprits here, at the very least it shows that they're not taking proper measures to secure their site, and that's more than enough to convince me I should be taking my business elsewhere."

My suggestion is that even if you rule out the possibility of a coincidence, it's premature to assign blame.  If I were in this situation, I'd be fuming, too, but I might not be so quick to calculate a vector for my anger.

Okay, okay... what the heck is going on in this thread?  Sorry, I've been out of the country for 9 days and haven't been reading here.  I'm totally willing to give NCSX the benefit of the doubt, but I do see it as highly probable that the false charges came from the company they use for billing.  I think there's way more than simple coincidence going on when a friend and I both have our information stolen at the exact same time and the fraudulent charges are TO THE SAME WEBSITES.  You also have to consider that our cards have had -nothing- else in common as far as usage... I was in Japan for three years not using mine and he's been in New York.  The only online ordering we've both done was for this CD.  Regardless, I'm waiting to find out the result of the security audit, as I'm leery of ordering again until I find out exactly what happened.

NCSX has already stated that they had people check their e-commerce site and Linkpoint did a security check on their end.  Neither found anything suspicious.  NCSX, as a precaution, changed their passwords.  NCSX stated that only the owner and the accountant has access to their customer's financial data.  NCSX also stated that Linkpoint is an experienced processing company.

Since a few people from here received fraudulent charges after ordering and assuming that these fraudulent charges were not from other vendors they shopped with around that time, then people here pretty much agree that the breach is somewhere in the NCSX-Linkpoint workflow.

WOW! This is pretty serious, I was envious of those people that got their pre-orders so early from NCSX. Now I'm kinda glad I had to wait for Play-Asia, I've been checking my bank statements and nothing's wrong there. To be honest, I'd be livid even if I'd lost £20 never mind the $250 that Zane lost.

I just recommended NCSX to someone today! I hope this is just a small mistake, I bought my FFV and VI Advance games from them.

I hate to dredge up an old topic here, as I really have no evidence that my case is linked to this, but I just got a call from my credit card company today reporting that they noticed some odd charges in the last few days, and indeed, I hadn't made them. Fortunately I was able to work everything out with them and the charges have been taken off my account (and the account subsequently deactivated), but I immediately thought of this thread.

Since ordering the Mario Galaxy OST from NCSX, the only place I've used my credit card online was through Amazon.com, and my Paypal account which I've had for years. This is the first time anything like this has happened to me, and it gives me cause to wonder.

The transmission of your data from point A to point B is, and always will be, at risk. No amount of cyber security will ever change that. Yes, it may be that the source was directly or indirectly caused by ordering from NCSX, but I really can't see how anyone could hold them at 100% fault.

I'm not blaming NCSX or accusing them of any purposeful wrongdoing. I'm just saying it seems fairly obvious to me that this common point, between all these people who have had their credit card information stolen, cannot be mere coincidence. Yes, it could indeed have been any number of parties between points A and B that were responsible, and they may have been in no way affiliated with NCSX. There's really no way of knowing.

But like I said, I've done a lot of online shopping over the years, and this is the first and only time something like this has happened to me. If I eat at ten different restaurants, and develop a case of food poisoning after dining at one of them, I'm definitely not going back to that particular restaurant again.

.