Topps.com Security Breach - HACKED!!!!!!! (RE: Topps Now)

SethMurphy · 12-28-2016, 05:05 PM

I just received this e-mail from Topps because I have purchased items on their site before, as most of us have.

enyouartist · 12-28-2016, 05:10 PM

Ridiculous. Smh. The shenanigans happened in October, and we are just getting this now?

Corky · 12-28-2016, 05:15 PM

Taking two months to notify buyers? That seems a bit irresponsible of them. I have bought from their online store a number of times this year and have not received the email.

smanzari · 12-28-2016, 05:24 PM

Quote:

Originally Posted by Corky

Taking two months to notify buyers? That seems a bit irresponsible of them. I have bought from their online store a number of times this year and have not received the email.

It takes a while to realize the scope and damage of these things, seems to be a standard time-frame.

I already got hit and have received my new cards and everything- its just strange that mine were all Paypal Payments- I thought using them avoided this type of thing.

TASS · 12-28-2016, 05:30 PM

Quote:

Originally Posted by smanzari

It takes a while to realize the scope and damage of these things, seems to be a standard time-frame.

I already got hit and have received my new cards and everything- its just strange that mine were all Paypal Payments- I thought using them avoided this type of thing.

What are you saying here, you have had your accounts 'hit' with unauthorized charges?

Brad · 12-28-2016, 06:14 PM

Quote:

Originally Posted by smanzari

It takes a while to realize the scope and damage of these things, seems to be a standard time-frame.

I already got hit and have received my new cards and everything- its just strange that mine were all Paypal Payments- I thought using them avoided this type of thing.

If you only used PayPal at topps.com, then your problems weren't from this breach. PayPal doesn't pass CC details to the merchant for them to store.

smanzari · 12-29-2016, 01:38 AM

Quote:

Originally Posted by TASS

What are you saying here, you have had your accounts 'hit' with unauthorized charges?

Yes, a few months ago.

Quote:

Originally Posted by Brad

If you only used PayPal at topps.com, then your problems weren't from this breach. PayPal doesn't pass CC details to the merchant for them to store.

The card that was "hit" was essentially my "Paypal/Hobby Card" which is used only for that, it could have been typed in but I can't remember if I've used it on topps- so its either that or the other end (bank was hacked). Doesn't matter now, that headache is gone- I ended up replacing all of them.

There's probably close to 20 posts in the Topps Now Thread about this, pretty sure everyone effected used PP.... (see chatter at post 7068 in that thread (may be a few mentions before/after too, but its late and don't have time to continue the search))

The Chad · 12-28-2016, 05:33 PM

Those that did not get the email are likely receiving a redemption

hohlernr · 12-28-2016, 05:37 PM

Wow this is annoying. I'm surprised they didn't offer some sort of discount coupon to those affected

Sent from my iPhone using Tapatalk

Skipscards · 12-28-2016, 05:52 PM

Quote:

Originally Posted by hohlernr

Wow this is annoying. I'm surprised they didn't offer some sort of discount coupon to those affected

Sent from my iPhone using Tapatalk

Technically they did. They offered to pay for one year of identity protection.

hohlernr · 12-28-2016, 05:53 PM

Quote:

Originally Posted by Skipscards

Technically they did. They offered to pay for one year of identity protection.

Which wouldn't be needed had they not messed up. Plus that forces me yo go through all the steps they recommend doing.

Sent from my iPhone using Tapatalk

Soxrule111 · 12-28-2016, 06:19 PM

Quote:

Originally Posted by hohlernr

Which wouldn't be needed had they not messed up. Plus that forces me yo go through all the steps they recommend doing.

Sent from my iPhone using Tapatalk

You act like this is 100% on Topps Fault, like hacks, attacks nothing like that happens. No site is 100% secure, hell blowout could be hit tomorrow would you then say its blowouts fault your log in to a forum was jeopardized? #@#@#@#@ happens, it really sucks, but I put very little fault into topps, its not like they want this to happen.

okumeister · 12-28-2016, 05:38 PM

Many people who were buying Topps Now got hit with this fraudulent charges earlier this year, as Topps.com was the only way to buy those cards (except if you decide to buy from eBay or other places later).
I also had fraudulent charges made to my credit card, and had to reissue it.
When I emailed and called them about it, and told them how many other Topps Now buyers were experiencing the same problem (looking at the forum here), they advised that they are aware and investigating the situation.
Then, this email is the first official notification they sent.

JohnRyno · 12-28-2016, 05:46 PM

Vlad Putin's favorite app is Topps Bunt.

preakness · 12-28-2016, 06:41 PM

Quote:

Originally Posted by JohnRyno

Vlad Putin's favorite app is Topps Bunt.

Think Putin bought some of those election presidential race cards

imbluestreak23 · 12-28-2016, 07:48 PM

Quote:

Originally Posted by JohnRyno

Vlad Putin's favorite app is Topps Bunt.

Tiger blood win

mrbasepauly · 12-28-2016, 06:33 PM

Makes sense, I never made the connection about how my cc was compromised, now I know why. Didn't receive the email yet.

RollBamaRoll · 12-28-2016, 06:46 PM

Glad I only use Paypal express checkout....

Peties Army · 12-28-2016, 06:47 PM

Geez guys. This isn't a topps issue it is an national security issue. People sit at their computers all day and do this. Can't try to make this a topps problem it's a society problem.

fulltritty · 12-28-2016, 07:29 PM

I got the email too. I have used a mix of paypal and credit card at Topps site for the two or three purchases a year I make. I never saw any fraudulent charges on the credit card yet.

bobthewondercat · 12-28-2016, 11:18 PM

Quote:

Originally Posted by Peties Army

Geez guys. This isn't a topps issue it is an national security issue. People sit at their computers all day and do this. Can't try to make this a topps problem it's a society problem.

Hackers will target less secure sites first. Less secure sites are generally a result of poorer IT infrastructure and staffing, cost-cutting measures. So yes it could happen to any company but a) better security can prevent most cases and b) the company is responsible for your data even if the attack is not their "fault". So, Topps is not blameless here.

Peties Army · 12-29-2016, 10:50 AM

Quote:

Originally Posted by bobthewondercat

Hackers will target less secure sites first. Less secure sites are generally a result of poorer IT infrastructure and staffing, cost-cutting measures. So yes it could happen to any company but a) better security can prevent most cases and b) the company is responsible for your data even if the attack is not their "fault". So, Topps is not blameless here.

I think you are 100% wrong here. Apple and Microsoft are under attack all the time, as well as the US government(thanks Russia for Trump) so I don't think it shows anything.

Im not saying they are blameless but to make it out like Topps failed us all and is the worst company in the world(which is often done on these boards) isn't fair. It happens all the time.

kyle121592 · 12-29-2016, 10:57 AM

Quote:

Originally Posted by Peties Army

I think you are 100% wrong here. Apple and Microsoft are under attack all the time, as well as the US government(thanks Russia for Trump) so I don't think it shows anything.

Im not saying they are blameless but to make it out like Topps failed us all and is the worst company in the world(which is often done on these boards) isn't fair. It happens all the time.

Just because it happens all the time doesn't make it ok when it happens. It just means that a vast majority of these companies are piss poor when it comes to securing their customers.

Peties Army · 12-29-2016, 11:00 AM

Quote:

Originally Posted by kyle121592

Just because it happens all the time doesn't make it ok when it happens. It just means that a vast majority of these companies are piss poor when it comes to securing their customers.

I just said they aren't blamless,

Im not trying to say Topps is great, I just think it is unfair to make them out to be the devil when in reality they aren't any different then anyone else out there.

Lets just call it what it is, probably a 95% your information is known by someone from somewhere you think would be more secure.

bobthewondercat · 12-29-2016, 10:17 PM

Quote:

Originally Posted by Peties Army

I think you are 100% wrong here. Apple and Microsoft are under attack all the time, as well as the US government(thanks Russia for Trump) so I don't think it shows anything.

Im not saying they are blameless but to make it out like Topps failed us all and is the worst company in the world(which is often done on these boards) isn't fair. It happens all the time.

I'm not wrong here. Breaches at larger tech companies are long-term, high value hacks that ppl spend years on, either for extremely valuable information or for prestige / trophy type resume stuff. Breaches at small online retailers like Topps, where the prize is small (100-1000 CC numbers) have to be quick and easy to be worth the risk... so they generally target companies that have out of date or vulnerable infrastructure. There are definite concrete steps Topps could have taken to protect your data more effectively, and through budget concerns or lack of IT knowledge, they didn't do so. That's why the class action lawsuit judges them to be responsible.

12-28-2016, 05:05 PM	#1
SethMurphy Member Join Date: May 2010 Location: Centerville/Erie, PA Posts: 19,483 smurf_8 sethmurphy	Topps.com Security Breach - HACKED!!!!!!! (RE: Topps Now) I just received this e-mail from Topps because I have purchased items on their site before, as most of us have. __________________ Twitter - @seth_murphy8 PCs - Ryan Callahan, Reggie Lewis, Funko Pops (a little), a few other things that catch my eye

12-28-2016, 05:15 PM	#3
Corky Member Join Date: Dec 2016 Location: Arizona (Hometown: Seattle) Posts: 1,487 jumper48 corky	Taking two months to notify buyers? That seems a bit irresponsible of them. I have bought from their online store a number of times this year and have not received the email. __________________ I am a player collector focusing mainly on Ken Griffey Jr. but I also collect Jay Buhner, Edgar Martinez, Ryan Bader. and University of Arizona http://real-corky.deviantart.com/gallery/

12-28-2016, 05:33 PM	#8
The Chad Member Join Date: Nov 2011 Location: Rochester, NY Posts: 2,657	Those that did not get the email are likely receiving a redemption __________________ Looking for: Rare Ernie Banks Allen & Ginter Cards 2014 Topps High Tek Ernie Banks Blue Dots Diffractor #/5 Follow me on Instagram: ispendtoomuchoncards

12-28-2016, 05:37 PM	#9
hohlernr Member Join Date: Apr 2012 Location: Midland, MI Posts: 2,761 RogerDorn24 hohlernr	Wow this is annoying. I'm surprised they didn't offer some sort of discount coupon to those affected Sent from my iPhone using Tapatalk __________________ Always looking for Tyler Naquin, Dorssys Paulino, Jason Kipnis and Danny Salazar cards!

12-28-2016, 06:47 PM	#19
Peties Army Member Join Date: Jul 2011 Location: St. Louis Posts: 19,460 buddywilshire2003	Geez guys. This isn't a topps issue it is an national security issue. People sit at their computers all day and do this. Can't try to make this a topps problem it's a society problem. __________________ Comment of the day “How many bees are killed by mowing?”- Boo

12-28-2016, 05:10 PM	#2
enyouartist Member Join Date: Jun 2011 Posts: 3,735	Ridiculous. Smh. The shenanigans happened in October, and we are just getting this now?

12-28-2016, 05:38 PM	#13
okumeister Member Join Date: May 2016 Location: Houston, TX Posts: 11,447	Many people who were buying Topps Now got hit with this fraudulent charges earlier this year, as Topps.com was the only way to buy those cards (except if you decide to buy from eBay or other places later). I also had fraudulent charges made to my credit card, and had to reissue it. When I emailed and called them about it, and told them how many other Topps Now buyers were experiencing the same problem (looking at the forum here), they advised that they are aware and investigating the situation. Then, this email is the first official notification they sent.

12-28-2016, 05:46 PM	#14
JohnRyno Banned Join Date: Nov 2012 Location: Fairway in Regulation Posts: 12,248 johnryno2012 johnryno	Vlad Putin's favorite app is Topps Bunt.

12-28-2016, 06:33 PM	#17
mrbasepauly Member Join Date: Aug 2015 Posts: 903 mrbasepauly	Makes sense, I never made the connection about how my cc was compromised, now I know why. Didn't receive the email yet.

12-28-2016, 06:46 PM	#18
RollBamaRoll Member Join Date: Feb 2013 Posts: 951	Glad I only use Paypal express checkout....

12-28-2016, 07:29 PM	#20
fulltritty Member Join Date: Jun 2013 Location: King George, VA Posts: 77,919	I got the email too. I have used a mix of paypal and credit card at Topps site for the two or three purchases a year I make. I never saw any fraudulent charges on the credit card yet.