ZOS-were you recently hacked?

RinaldoGandolphi

Hi,

I just received notice from my credit card company that one of my cards is being issued a new number and a new card is being sent to me in a few days due to my card being used at a business that has recently been compromised.

The card in question only has a 500 dollar limit on it and was originally set up back in 2009. This card has NOT been used to purchase anything except ESO Sub and a few crowns since August of 2014 to present.

The last time this happened to me with this card it was revealed that Sony PSN was hacked back in 2011. I was issued a new card, but never used it on PSN again.

I'm not saying it's not possible it come from something else back in the past but I find it strange. My card company won't tell me where the breach originated citing laws and policy won't let them.

So I ask ZOS, were you recently hacked? If so, what are your reccimendef course of action? If you haven't been hacked, great! I'm happy. Just trying to find some answers that's all. I take card payment security seriously.

Thank you for your time

Rinaldo

Alpheu5

X-POSED!

RinaldoGandolphi

I just want to state I am NOT accusing ZOS, I am just trying to track down answers.

Sometimes these things can linger, it could have been made from purchases even as far back as 2013(before ZOS ever started), but I thought i would ask the most recent payments I have sent. It could very well be that its not ZOS, I simply don't know.

I thought I would ask before I decide how to proceed on re-newing my ESO sub.

magictucktuck

they wouldn't answer... Ive received no new card, or notice. has anyone else?

and when you say its been used no where else, does that mean not on any private dirty websites you don't want to acknowledge on the forum?

riberion

I have a background working in the fraud department for a local bank, and I will say that even the bank doesn't always get all the information in case of a breach. In my experience, the credit card companies often don't reveal the suspected merchant, and will just give a list of possible compromised cards. That said, sometimes it's not just specific merchants, but can be a time frame with increased fraudulent activity. Depending on how conservative your bank is, they are likely just being proactive to prevent anything from happening. It's unlikely it's linked directly to ZOS, and more likely to be a time frame with increased fraudulent activity. Again, this is just my experience, but we would often close cards that didn't have the exact merchant but could still possibly be compromised. It's a "better safe than sorry" situation.

Graydon

LOL it's a $500 limit CC. I wouldn't worry about it.

If ZOS was hacked I would think more people would be creating buzz. Also if ZOS was hacked, they must notify their customers.

Anytime banks and CC processors suspect a company was hacked, they are notified and an audit begins. Then come the fines and penalties.

Then the PR nightmare.

Terror

It could also be from your system, entering a credit card on your own system is just as dangerous as using it on a secure website, more so if you know you've gone to sites that could infect your system. Majority of people with spyware/malware/etc.. don't even think they've gone to untrusted sites, but google puts people all over the web, even the most credible *looking* sites could infect your system.

Furthermore if you truly seek an answer to this question you wouldn't be posting on the forums, you would be on the phone contacting support. -This point leads me to consider you are simply trying to draw negative attention to ZOS.

Minno

magictucktuck wrote: »

they wouldn't answer... Ive received no new card, or notice. has anyone else?

and when you say its been used no where else, does that mean not on any private dirty websites you don't want to acknowledge on the forum?

Who pays for *** these days? Lol

RinaldoGandolphi

magictucktuck wrote: »

they wouldn't answer... Ive received no new card, or notice. has anyone else?

and when you say its been used no where else, does that mean not on any private dirty websites you don't want to acknowledge on the forum?

Nice cheap shot, but No I don't buy that kinda stuff

the card is just meant for buying Video game Stuff, thats it. I don't use it for anything else.

As i said, My card company told me these things linger(as in not discovered) and it could go back quite sometime, even back as far 2012 even.

I don't think its unreasonable for me to ask this question, since the card has pretty much only been used for this since the game came out. I have other cards for every thing else.

RinaldoGandolphi

riberion wrote: »

I have a background working in the fraud department for a local bank, and I will say that even the bank doesn't always get all the information in case of a breach. In my experience, the credit card companies often don't reveal the suspected merchant, and will just give a list of possible compromised cards. That said, sometimes it's not just specific merchants, but can be a time frame with increased fraudulent activity. Depending on how conservative your bank is, they are likely just being proactive to prevent anything from happening. It's unlikely it's linked directly to ZOS, and more likely to be a time frame with increased fraudulent activity. Again, this is just my experience, but we would often close cards that didn't have the exact merchant but could still possibly be compromised. It's a "better safe than sorry" situation.

Yes, I called my card company, and they wouldn't tell me anything about who the suspected was.

I only asked here because this is my most recent purchase dating back well over 2 years. I don't use this card for anything else. I only set up originally for PSN, and later made it my ESO/Steam card. I already asked Steam and they told me they haven't been.

I don't think its unreasonable to ask. Its not like this happens to me all the time.

D0ntevenL1ft

RinaldoGandolphi wrote: »

I just want to state I am NOT accusing ZOS, I am just trying to track down answers.

Sometimes these things can linger, it could have been made from purchases even as far back as 2013(before ZOS ever started), but I thought i would ask the most recent payments I have sent. It could very well be that its not ZOS, I simply don't know.

I thought I would ask before I decide how to proceed on re-newing my ESO sub.

Oh no are you blackmailing them?

Gilvoth

magictucktuck wrote: »

they wouldn't answer... Ive received no new card, or notice. has anyone else?

i have recently had my card replaced with exact same wording.

However, i believe this is just bank policy to keep your protections fresh on your account, and i was told that by the bank manager as well as the teller, they were very specific telling me that at no time was my account in danger.
they said they simply wanted to keep fresh on account security.

does not mean that eso was haxed.

Violynne

RinaldoGandolphi wrote: »

My card company won't tell me where the breach originated citing laws and policy won't let them.

It's more likely your card company doesn't actually know. They simply receive an alert and the issuer decides if the alert priority is sufficient to release a new card.

ZoS wouldn't have the breech. If anything, it would be the payment processor. ZoS probably has several contracts with different vendors, which work with various financial institutions to render/transfer payments. We don't literally pay ZoS directly when buying items. These contracts are usually covered by NDAs, which leads to the above.

The only large scale breach I've heard of in the last week was at GameStop, but this doesn't mean squat.

Companies will do anything they can from the news going public. The only thing the law requires them to do is make notifications if a breach has occurred, not that it has to be public.

RinaldoGandolphi

D0ntevenL1ft wrote: »

RinaldoGandolphi wrote: »

I just want to state I am NOT accusing ZOS, I am just trying to track down answers.

Sometimes these things can linger, it could have been made from purchases even as far back as 2013(before ZOS ever started), but I thought i would ask the most recent payments I have sent. It could very well be that its not ZOS, I simply don't know.

I thought I would ask before I decide how to proceed on re-newing my ESO sub.

Oh no are you blackmailing them?

Of course not!

i'd just buy a prepaid card and renew that way

How did you get that out of that? are you serious?

gp1680

Also having experience in investigating fraud like this, it could also be your bank that was hacked and it could have happened years ago, as you stated. Sometimes the black market for these account numbers takes years to surface certain accounts. My guess is that zos will respond to this post saying they take every gamer's account "very seriously" and then lock it up.

inb4lock

riberion

RinaldoGandolphi wrote: »

riberion wrote: »

I have a background working in the fraud department for a local bank, and I will say that even the bank doesn't always get all the information in case of a breach. In my experience, the credit card companies often don't reveal the suspected merchant, and will just give a list of possible compromised cards. That said, sometimes it's not just specific merchants, but can be a time frame with increased fraudulent activity. Depending on how conservative your bank is, they are likely just being proactive to prevent anything from happening. It's unlikely it's linked directly to ZOS, and more likely to be a time frame with increased fraudulent activity. Again, this is just my experience, but we would often close cards that didn't have the exact merchant but could still possibly be compromised. It's a "better safe than sorry" situation.

Yes, I called my card company, and they wouldn't tell me anything about who the suspected was.

I only asked here because this is my most recent purchase dating back well over 2 years. I don't use this card for anything else. I only set up originally for PSN, and later made it my ESO/Steam card. I already asked Steam and they told me they haven't been.

I don't think its unreasonable to ask. Its not like this happens to me all the time.

It's definitely not unreasonable to ask. Just saying even your bank may not have the answers you are looking for. In many cases, it's a "suspected" breach, and then they don't have to/can't/won't reveal the merchant information, in case of libel situations and impact to that business.

RinaldoGandolphi

gp1680 wrote: »

Also having experience in investigating fraud like this, it could also be your bank that was hacked and it could have happened years ago, as you stated. Sometimes the black market for these account numbers takes years to surface certain accounts. My guess is that zos will respond to this post saying they take every gamer's account "very seriously" and then lock it up.

inb4lock

yes, thats also a possibly most certinaly. this is what i stated earlier.

thats why i asked here, I dind't know asking an important question like this would lead to such backlash...

RinaldoGandolphi

riberion wrote: »

RinaldoGandolphi wrote: »

riberion wrote: »

I have a background working in the fraud department for a local bank, and I will say that even the bank doesn't always get all the information in case of a breach. In my experience, the credit card companies often don't reveal the suspected merchant, and will just give a list of possible compromised cards. That said, sometimes it's not just specific merchants, but can be a time frame with increased fraudulent activity. Depending on how conservative your bank is, they are likely just being proactive to prevent anything from happening. It's unlikely it's linked directly to ZOS, and more likely to be a time frame with increased fraudulent activity. Again, this is just my experience, but we would often close cards that didn't have the exact merchant but could still possibly be compromised. It's a "better safe than sorry" situation.

Yes, I called my card company, and they wouldn't tell me anything about who the suspected was.

I only asked here because this is my most recent purchase dating back well over 2 years. I don't use this card for anything else. I only set up originally for PSN, and later made it my ESO/Steam card. I already asked Steam and they told me they haven't been.

I don't think its unreasonable to ask. Its not like this happens to me all the time.

It's definitely not unreasonable to ask. Just saying even your bank may not have the answers you are looking for. In many cases, it's a "suspected" breach, and then they don't have to/can't/won't reveal the merchant information, in case of libel situations and impact to that business.

Aye I follow. Well I can live with that answer I guess. We just may never know who or what.

Thanks for the very detailed response


ZOS feel free to close this thread or lock it.

Minno

RinaldoGandolphi wrote: »

gp1680 wrote: »

Also having experience in investigating fraud like this, it could also be your bank that was hacked and it could have happened years ago, as you stated. Sometimes the black market for these account numbers takes years to surface certain accounts. My guess is that zos will respond to this post saying they take every gamer's account "very seriously" and then lock it up.

inb4lock

yes, thats also a possibly most certinaly. this is what i stated earlier.

thats why i asked here, I dind't know asking an important question like this would lead to such backlash...

Idk about others, but I appreciated knowing this. Just to take steps to insure my card security is still strong.

My accounts show nothing weird, so far.

RinaldoGandolphi

@ZOS_JessicaFolsom

Close this thread please. I have a better understanding of what's going on and it probably has nothing to do with you. Sorry for the inconvience.

clocksstoppe

Why don't you ask the *** bank?

seipher09

Did this just happen?

About a month ago my bank sent me a new card because mine was compromised. I use my card for everything though

andreasv

Was that a card you had on your PSN account? The reason I'm asking is that I've had two charges on my CC from my PSN account with each £60 a few month ago.

It may not be ZOS with the problem but someone could have compromised your PSN account.

RinaldoGandolphi

clocksstoppe wrote: »

Why don't you ask the *** bank?

I did they won't disclose its possible they don't know or laws won't allow them.

Regardless, a few people that used to work in fraud at banks replied here and explained what is going on. What they said makes sense to me, so I asked ZOS to close the thread. It could just be an automated thing they sometimes do. Regardless the explanation makes sense and good with ending this thread and discussion

Kodrac

RinaldoGandolphi wrote: »

I don't think its unreasonable for me to ask this question, since the card has pretty much only been used for this since the game came out. I have other cards for every thing else.

Why would you think to use a public forum for a private matter though? That's the part that doesn't make any sense.

VagabondLife

Same here.

Got an email from my bank a couple days ago, that they're replacing my debit card due to a security breach. This debit card is only a few months old and has only been used to purchase my ESO sub and some crown packs.

Since then the bank has sent me three more emails telling me the new card is coming. Apparently they're VERY eager for me to cut up my old card.

Something's fishy.

zuto40

Kodrac wrote: »

RinaldoGandolphi wrote: »

I don't think its unreasonable for me to ask this question, since the card has pretty much only been used for this since the game came out. I have other cards for every thing else.

Why would you think to use a public forum for a private matter though? That's the part that doesn't make any sense.

more likely to get a response

RinaldoGandolphi

Kodrac wrote: »

RinaldoGandolphi wrote: »

I don't think its unreasonable for me to ask this question, since the card has pretty much only been used for this since the game came out. I have other cards for every thing else.

Why would you think to use a public forum for a private matter though? That's the part that doesn't make any sense.

Because it's not a private matter if payment processing security has been breached it would effect anyone who used a card.

After some discussion here with some explanations by bank people, I think it's sorted.

RinaldoGandolphi

VagabondLife wrote: »

Same here.

Got an email from my bank a couple days ago, that they're replacing my debit card due to a security breach. This debit card is only a few months old and has only been used to purchase my ESO sub and some crown packs.

Since then the bank has sent me three more emails telling me the new card is coming. Apparently they're VERY eager for me to cut up my old card.

Something's fishy.

Really?

They will probably send emails until you activate your new one.

gard

RinaldoGandolphi wrote: »

Hi,

I just received notice from my credit card company that one of my cards is being issued a new number and a new card is being sent to me in a few days due to my card being used at a business that has recently been compromised.

The card in question only has a 500 dollar limit on it and was originally set up back in 2009. This card has NOT been used to purchase anything except ESO Sub and a few crowns since August of 2014 to present.

The last time this happened to me with this card it was revealed that Sony PSN was hacked back in 2011. I was issued a new card, but never used it on PSN again.

I'm not saying it's not possible it come from something else back in the past but I find it strange. My card company won't tell me where the breach originated citing laws and policy won't let them.

So I ask ZOS, were you recently hacked? If so, what are your reccimendef course of action? If you haven't been hacked, great! I'm happy. Just trying to find some answers that's all. I take card payment security seriously.

Thank you for your time

Rinaldo

Why not ask the credit card company where the breach was?

VagabondLife

RinaldoGandolphi wrote: »

Really?

Yup...