Ebuyer

[Farmer Giles]

Anyone here ever bought anything from Ebuyer?

I just ordered an external HDD from them. Went through the ordering
process, then to the checkout and gave my card details. They then said -
in the usual way - that I would receive an email confirming the order.

In fact I received three emails. The first acknowledging my order, the
second requesting security information - which asked for:

"1) A scanned colour copy of the full picture page of your passport OR
picture card of your UK drivers licence along with your passport or
drivers licence number.

2)A utility bill that is at least two months old."

It also said that the order had been cancelled pending receipt of the
requested information.

A third email confirmed the cancelled order.

What on earth is going on?

Is this normal, or some kind of scam?

Either way they can keep their hard disk.

[GB]

I bought some paper a few days ago. None of that was needed. But I've
bought from them before.

[EricP]

On Wed, 06 Nov 2013 21:32:12 +0000, Farmer Giles <gi...@nospam.com>
wrote:

Dunno, but thanks for the heads up.

Do not have a passport, or a picture DL, or a utility bill as it's all
online. So that's me on the banned list.

[Andrew Gabriel]

In article <QqKdnbnKh4PAKOfP...@brightview.co.uk>,

Does the delivery address not match the card holder's address?

Did the card payment take you to the "Verified by Visa" page
(or whatever the equivalent Mastercard check is)? If so, they
shouldn't need any more ID.

--
Andrew Gabriel
[email address is not usable -- followup in the newsgroup]

[Farmer Giles]

Delivery address is the same as the card address. They didn't do the
verified by visa thing, but I do have that number if they needed it.
Weird company - I wouldn't be surprised if they don't take the payment
and I have to chase them for a refund!

[newshound]

On 06/11/2013 21:32, Farmer Giles wrote:

Never had anything like that with my purchases, although it is probably
a year since I bought anything from them. Usually find the process
painless and the service fine.

[F]

I've bought from them multiple times over the years and have never had
anything like that. Are you *sure* it's Ebuyer you're dealing with and
that you've not, somehow, landed on a fake site that's trying to get
personal data from you to set up ID theft...?

--
F

[alan]

On 06/11/2013 21:32, Farmer Giles wrote:

> Anyone here ever bought anything from Ebuyer?

Yes, and they only send a email confirmation of the order.

Are you sure that the emails are actually from Ebuyer? It sounds like a
phishing excersise from a third party.

--
mailto:news{at}admac(dot}myzen{dot}co{dot}uk

[Farmer Giles]

On 06/11/2013 22:40, alan wrote:
> On 06/11/2013 21:32, Farmer Giles wrote:
>> Anyone here ever bought anything from Ebuyer?
>
> Yes, and they only send a email confirmation of the order.
>
> Are you sure that the emails are actually from Ebuyer? It sounds like a
> phishing excersise from a third party.
>

A worrying possibility, but I did log on to their site using my stored
details - and the account does show the order as cancelled.

[Robin]

I've used Ebuyer many times without problems but I've also seen reports
over the years in the Ebuyer forums of others being asked to provide ID
so I very much doubt it's a phishing exercise. I suggest you revert to
old technology and phone them tomorrow as the quickest way to remove any
doubts on that score; and to see if there is a way around the problem.

Another point: did they invite you to email them at
fraudpr...@ebuyer.com which certainly used to be their address for
security issues or another address which is (really) on their domain?.

--
Robin
reply to address is (meant to be) valid

[John Rumm]

On 06/11/2013 21:32, Farmer Giles wrote:

> Anyone here ever bought anything from Ebuyer?

Yup, hundreds of orders over 10 years or so...

> I just ordered an external HDD from them. Went through the ordering
> process, then to the checkout and gave my card details. They then said -
> in the usual way - that I would receive an email confirming the order.
>
> In fact I received three emails. The first acknowledging my order, the
> second requesting security information - which asked for:
>
> "1) A scanned colour copy of the full picture page of your passport OR
> picture card of your UK drivers licence along with your passport or
> drivers licence number.
>
> 2)A utility bill that is at least two months old."
>
> It also said that the order had been cancelled pending receipt of the
> requested information.
>
> A third email confirmed the cancelled order.
>
> What on earth is going on?

Did you request delivery to an address different from that of the card
holder - that will normally kick off additional checks if its also a
first order.

--
Cheers,

John.

/=================================================================\
| Internode Ltd - http://www.internode.co.uk |
|-----------------------------------------------------------------|
| John Rumm - john(at)internode(dot)co(dot)uk |
\=================================================================/

[Sam Plusnet]

In article <HM-dnbRGpttNU-fP...@brightview.co.uk>,
see.my.s...@nowhere.null says...

>
> On 06/11/2013 21:32, Farmer Giles wrote:
>
>
> > Anyone here ever bought anything from Ebuyer?
>
> Yup, hundreds of orders over 10 years or so...
>
> > I just ordered an external HDD from them. Went through the ordering
> > process, then to the checkout and gave my card details. They then said -
> > in the usual way - that I would receive an email confirming the order.
> >
> > In fact I received three emails. The first acknowledging my order, the
> > second requesting security information - which asked for:
> >
> > "1) A scanned colour copy of the full picture page of your passport OR
> > picture card of your UK drivers licence along with your passport or
> > drivers licence number.
> >
> > 2)A utility bill that is at least two months old."
> >
> > It also said that the order had been cancelled pending receipt of the
> > requested information.
> >
> > A third email confirmed the cancelled order.
> >
> > What on earth is going on?
>
> Did you request delivery to an address different from that of the card
> holder - that will normally kick off additional checks if its also a
> first order.

It would be interesting to see if any other on-line retailer now asks
Farmer Giles for extra ID.

Maybe the address triggered warning bells in some way - has someone used
that address (or similar) for a scam?

--
Sam

[Dave Liquorice]

On Wed, 06 Nov 2013 21:32:12 +0000, Farmer Giles wrote:

> Anyone here ever bought anything from Ebuyer?

Yep, not a great spender with them but no problems and one of the
places I'll look at for "computery" stuff by default.

All the ID stuff seems a bit weird. Is this your first order with
them?

Are you *sure* they have come from eBuyer, check the full header
mainly the Received: lines not just the From: that you email client
shows you, The From: can contain almost anything and is piss easy to
forge.

As others have said give 'em a call tommorow.

--
Cheers
Dave.

[Graham.]

On Wed, 06 Nov 2013 22:18:22 +0000, Farmer Giles <gi...@nospam.com>
wrote:

--
Graham.

%Profound_observation%

[Graham.]

>>> Did the card payment take you to the "Verified by Visa" page
>>> (or whatever the equivalent Mastercard check is)? If so, they
>>> shouldn't need any more ID.
>>>
>>
>>Delivery address is the same as the card address. They didn't do the
>>verified by visa thing, but I do have that number if they needed it.

Whoops, sorry about the spurious post.

He is not talking about the PIN2 on the sig strip of your card, he
means the three random characters from your password known only to you
and your banks computer. You mustn't divulge that to anyone.




--
Graham.

%Profound_observation%

[Graham.]

I think that is what has happened too.
A few Christmases ago I got a phone call out of the blue from Kay's
(catalogues etc). They asked me if I had attempted to buy various
items from them, I hadn't. They said that they suspected some third
party had used my address fraudulently. My credit cards details were
not involved just my address.
IIRC it caused me a little inconvenience a few months later, but
whatever blacklisting that was in place seems to have gone now.

The OP should call Ebuyer, ask to speak to the person responcible for
fraud prevention and ask them if his address is blacklisted.



--
Graham.

%Profound_observation%

[Mike Tomlinson]

En el art�culo <QqKdnbnKh4PAKOfP...@brightview.co.uk>,
Farmer Giles <gi...@nospam.com> escribi�:

>Anyone here ever bought anything from Ebuyer?

I used to be a regular customer, spent a lot of money with them over the
years, getting good service.

Until I returned a monitor under DSR (Distance Selling Regulations,
which allows you to return goods in their original condition for a full
refund). They deducted 25% from the refund, and when I queried it, they
said I had a business account, which I didn't, and wouldn't back down
despite my having paid with a personal credit card and taking delivery
to my home address. Sharp practice.

Voted with my wallet, took my business elsewhere and they also lost the
business from work - �60k+ worth as we were just about to fit out a new
server room.

Avoid.

--
(\_/)
(='.'=)
(")_(")

[Dave Liquorice]

On Thu, 07 Nov 2013 01:00:51 +0000, Graham. wrote:

> The OP should call Ebuyer, ask to speak to the person responcible for
> fraud prevention and ask them if his address is blacklisted.

Good point about a bad credit reference. Though I think sellers only
get a "go/no go" indication back from the credit reference agency
rather than any reason for a "no go".

--
Cheers
Dave.

[Lobster]

Graham. <m...@privacy.net> grunted in
news:c1ol79pv7d4v56n7p...@4ax.com:

>
>>>> Did the card payment take you to the "Verified by Visa" page
>>>> (or whatever the equivalent Mastercard check is)? If so, they
>>>> shouldn't need any more ID.
>>>>
>>>
>>>Delivery address is the same as the card address. They didn't do the
>>>verified by visa thing, but I do have that number if they needed it.
>

> He is not talking about the PIN2 on the sig strip of your card, he
> means the three random characters from your password known only to you
> and your banks computer. You mustn't divulge that to anyone.

That 'verified by visa' thing is an odd one. I used to get it all the
time (ie, I would be asked for the code); but these days it's very rare
indeed, (same card, on any site...) I get a message saying "contacting
your card issuer" or something, which usually heralded the arrival of the
little verification window; but the transaction just proceeds undelayed.
It's as if they've decided that my card is low enough risk or something
not to need it - odd?

Even more weirdly, yesterday I bought a fridge online from Curry's, using
an AmEx card (which I don't use that often). This time (for the first
time with AmEx) I was taken to the verification step, but it was only
'recommended' that I set up verification. I didn't bother, and it went
through fine. However, I was warned that I would only be allowed to
decline once more, after which the verification step would become
compulsory.

--
David

[Chris J Dixon]

Lobster wrote:

>That 'verified by visa' thing is an odd one. I used to get it all the
>time (ie, I would be asked for the code)

For the first time yesterday I got a phishing email claiming that
I had failed the verification a couple of times.

Always something new. :-(

Chris
--
Chris J Dixon Nottingham UK
ch...@cdixon.me.uk

Plant amazing Acers.

[Farmer Giles]

I'll try and answer all the questions raised via this one answer. First
of all, I was not asked for any Visa verification apart from the usual 3
digit code on the back of the card. Secondly, the delivery address is
the same as the account address. Thirdly, unless my address has been
used fraudulently - as suggested - it is not blacklisted in any way. I
have never had any bad debts, or have my bank cards been refused in any
way.

I was going to ring Ebuyer this morning but they use a premium rate
number for Customer Services, so I've sent them an 'Enote' instead. I'll
report back here when I get an answer.

One final thing: this was my first order from them - and possibly my
last - and they did ask me to email the requested extra security details
to fraudpr...@ebuyer.com - which is the address listed on their
website, so it would appear to be genuine.

[www.GymRatZ.co.uk]

On 07/11/2013 07:53, Lobster wrote:

> That 'verified by visa' thing is an odd one. I used to get it all the
> time (ie, I would be asked for the code); but these days it's very rare
> indeed, (same card, on any site...) I get a message saying "contacting
> your card issuer" or something, which usually heralded the arrival of the
> little verification window; but the transaction just proceeds undelayed.
> It's as if they've decided that my card is low enough risk or something
> not to need it - odd?

I wondered whether it builds up a profile of IP addresses that purchases
come from. I too used to get it on every purchase but 99% of the time it
goes straight through without need for password etc.

[fred]

In article <wcSdnTSK8_ua_ubP...@brightview.co.uk>, Farmer
Giles <gi...@nospam.com> writes

I think you've had a lucky escape ;-)

I've always viewed them as the Ryanair of comp supplies, many people get
on with them fine but a significant number hate them for the way they've
been treated/manipulated when something has gone wrong.

Isn't one of their tricks dynamic pricing (interest goes up and the
price goes up)?

FWIW I've used Novatech for the bits on my recent comp builds, v happy
with the service and the own brand cases are well priced and though out.
No connection etc, etc.
--
fred
it's a ba-na-na . . . .

[Harry Bloomfield]

Farmer Giles expressed precisely :

Are you sure its from Ebuyer? It sounds more like the seller is using
the sale to collect your details to clone you for illicit purposes.

--
Regards,
Harry (M1BYT) (L)
http://www.ukradioamateur.co.uk

[dennis@home]

On 06/11/2013 23:55, Sam Plusnet wrote:


> Maybe the address triggered warning bells in some way - has someone used
> that address (or similar) for a scam?
>

Someone used my parents name and address for fraud.
we only found out when the bank letters asking for payment arrived.
A couple of phone calls to the banks and the problem was resolved with a
note attached to the credit file saying what had happened.
At no point was there a problem getting credit or buying stuff.

The person responsible didn't even live in the same town and were caught
and done.

[dennis@home]

On 07/11/2013 07:53, Lobster wrote:

> That 'verified by visa' thing is an odd one. I used to get it all the
> time (ie, I would be asked for the code); but these days it's very rare
> indeed, (same card, on any site...) I get a message saying "contacting
> your card issuer" or something, which usually heralded the arrival of the
> little verification window; but the transaction just proceeds undelayed.
> It's as if they've decided that my card is low enough risk or something
> not to need it - odd?

They look at your shopping habits and if you frequently use a store they
can decide not to check.

[Farmer Giles]

It appears to be genuine. I won't call them because they use premium
rate numbers. However, I have emailed them - and received an
acknowledgement that they will reply within two working days. I'll wait
and see what happens before I condemn them completely, but so far they
seem like a pretty dodgy outfit.

[Farmer Giles]

Just received the following email from them:

"Thank you for contacting our Customer Support Team.

After looking into this further for you, I can see that you have been
subjected to an I.D check. I can advise that this security check is done
at random and can be requested on your first or twentieth order.

Unfortunately until we receive the information that has been requested
we will unable to process any further orders.

Please accept my apologies for any inconvenience or annoyance caused.

Kind Regards,

Jennifer

Ebuyer.com
Customer Support Team "



What a strange outfit! Ah well, I think I'll survive as easily without
them as they will without me.

[Martin Bonner]

On Thursday, November 7, 2013 1:45:15 AM UTC, Mike Tomlinson wrote:
> En el artículo <QqKdnbnKh4PAKOfP...@brightview.co.uk>,
> Farmer Giles <gi...@nospam.com> escribió:

>
> >Anyone here ever bought anything from Ebuyer?
>
> I used to be a regular customer, spent a lot of money with them over the
> years, getting good service.
>
> Until I returned a monitor under DSR (Distance Selling Regulations,
> which allows you to return goods in their original condition for a full
> refund). They deducted 25% from the refund, and when I queried it, they
> said I had a business account, which I didn't, and wouldn't back down
> despite my having paid with a personal credit card and taking delivery
> to my home address. Sharp practice.

Why on earth didn't you write a letter before action giving them 14 days to pay the 25%, and when they didn't pay, sue through moneyclaim online?

[Sam Plusnet]

In article <85SdnTUefPZDPubP...@brightview.co.uk>,
gi...@nospam.com says...

>

>
> Just received the following email from them:
>
> "Thank you for contacting our Customer Support Team.
>
> After looking into this further for you, I can see that you have been
> subjected to an I.D check. I can advise that this security check is done
> at random and can be requested on your first or twentieth order.
>
> Unfortunately until we receive the information that has been requested
> we will unable to process any further orders.
>
> Please accept my apologies for any inconvenience or annoyance caused.
>

Some kind of double check on ID doesn't seems too unreasonable if
they're getting a lot of fraud, but the stuff they were asking for seems
so far over the top it's not even funny.

Trouble is...

If you look at this from Ebuyer's (rather silly) point of view, it looks
a bit like this:

Someone attempts to make a purchase.
Ebuyer queries buyer identity.
'Customer' refuses to cooperate & scurries off.

Ebuyer feels confident that their system has seen off another scammer so
they're rather pleased with themselves.

In fact they've just pissed off a legitimate customer (and anyone who
may read this thread) - but they're unlikely to see it that way.


--
Sam

[tony sayer]

In article <QqKdnbnKh4PAKOfP...@brightview.co.uk>, Farmer
Giles <gi...@nospam.com> scribeth thus

>Anyone here ever bought anything from Ebuyer?
>

>I just ordered an external HDD from them. Went through the ordering
>process, then to the checkout and gave my card details. They then said -
>in the usual way - that I would receive an email confirming the order.
>
>In fact I received three emails. The first acknowledging my order, the
>second requesting security information - which asked for:
>
>"1) A scanned colour copy of the full picture page of your passport OR
>picture card of your UK drivers licence along with your passport or
>drivers licence number.
>
>2)A utility bill that is at least two months old."
>
>It also said that the order had been cancelled pending receipt of the
>requested information.
>
>A third email confirmed the cancelled order.
>
>What on earth is going on?
>
>Is this normal, or some kind of scam?
>
>Either way they can keep their hard disk.

Very odd that. Dealt with them for many a year and no problems at all.
We do sometimes have a debut credit card declined especially if its
above a certain amount as an anti fraud issue but a quick call to the
card co sorts that. Other suppliers have the same issue too so not a e-
buyer issue.

Some times we have the "verified by visa" where you have to complete
some part of a "password" but otherwise fine.

In fact they have sent us some "seconds" equipment at a very reduced
price and its been fine like the monitor I have here:)..

I have known some other companies and outfits that do these days have
enhanced security, but this seems a bit over the top to ask for passport
details etc thats IMHO rather confidential info!...

--
Tony Sayer

[Tim+]

Indeed! There's no way I would provide information like that to an
Internet seller.

Tim

[John Rumm]

On 07/11/2013 17:31, Sam Plusnet wrote:
> In article <85SdnTUefPZDPubP...@brightview.co.uk>,
> gi...@nospam.com says...
>>
>
>>
>> Just received the following email from them:
>>
>> "Thank you for contacting our Customer Support Team.
>>
>> After looking into this further for you, I can see that you have been
>> subjected to an I.D check. I can advise that this security check is done
>> at random and can be requested on your first or twentieth order.
>>
>> Unfortunately until we receive the information that has been requested
>> we will unable to process any further orders.
>>
>> Please accept my apologies for any inconvenience or annoyance caused.
>>
>
> Some kind of double check on ID doesn't seems too unreasonable if
> they're getting a lot of fraud, but the stuff they were asking for seems
> so far over the top it's not even funny.

Yup - they need to recognise that trust and security work both ways.

Requesting biometric information (i.e. a digitized photo) seems
pointless for what is and will always remain a non face to face
relationship.

It also then means that the customer has to trust that the information
provided will be stored and processed securely, and never used with
anything other than benign intent. A trust that must extend to everyone
with access to their systems both officially and illegally, both now and
in the future - irrespective of business failure, acquisition or large
scale hacking / industrial espionage. Its a big ask (and the reason that
the old argument "if you have nothing to hide etc" is fatally flawed
regardless of the circumstance.

[Graham.]

Yes, but in this case Kay's suspected the transaction was fraudulent,
and it was Kay's who contacted the reference agency and also me.

The person I spoke to was very professional and helpful, and warned me
there would probably be a flag against my address for a while.



--
Graham.

%Profound_observation%

[Graham.]

Purely random security checks make no sense in a commercial
transaction. I don't believe them. Checks based on certain criteria
make a lot of sense.

Its like the Boarder Agency going on record, as they have done, saying
they don't profile passengers as they pass through. Of course they do,
and a bloody good thing too.

--
Graham.

%Profound_observation%

[John Rumm]

Well they do, in the sense that they avoid the pitfalls of a profiled
check. If you have a checking criteria, then the bad guys can learn it
and how to avoid it. You can't learn to avoid a random check.

> Its like the Boarder Agency going on record, as they have done, saying
> they don't profile passengers as they pass through. Of course they do,
> and a bloody good thing too.

There is a key difference...

If you can setup a profile for an illegal immigrant, then its worth
using it, since its not as if the immigrant can substitute someone else.
If however you are screening for suicide bombers, then you are much
better off without a profile. For example if you decide that single
young men with beards are high risk, then all your terrorists need do,
is recruit little old white haired ladies.

[Andrew May]

On 07/11/2013 18:14, Tim+ wrote:

> Farmer Giles <gi...@nospam.com> wrote:

>>
>> Just received the following email from them:
>>
>> "Thank you for contacting our Customer Support Team.
>>
>> After looking into this further for you, I can see that you have been
>> subjected to an I.D check. I can advise that this security check is done
>> at random and can be requested on your first or twentieth order.
>>
>> Unfortunately until we receive the information that has been requested we
>> will unable to process any further orders.
>>
>> Please accept my apologies for any inconvenience or annoyance caused.
>>
>>

>> What a strange outfit! Ah well, I think I'll survive as easily without
>> them as they will without me.
>
> Indeed! There's no way I would provide information like that to an
> Internet seller.

Do they have any way of verifying the information provided. Scans of
both utility bills and passports could easily be photoshoped. Would they
even notice if you passport photo was of David Cameron?

Would any crime be committed if one were to supply false information to
an Internet retailer?

[Peter Crosland]

On 06/11/2013 21:32, Farmer Giles wrote:
> Anyone here ever bought anything from Ebuyer?
>

> I just ordered an external HDD from them. Went through the ordering
> process, then to the checkout and gave my card details. They then said -
> in the usual way - that I would receive an email confirming the order.
>
> In fact I received three emails. The first acknowledging my order, the
> second requesting security information - which asked for:
>
> "1) A scanned colour copy of the full picture page of your passport OR
> picture card of your UK drivers licence along with your passport or
> drivers licence number.
>
> 2)A utility bill that is at least two months old."
>
> It also said that the order had been cancelled pending receipt of the
> requested information.
>
> A third email confirmed the cancelled order.
>
> What on earth is going on?
>
> Is this normal, or some kind of scam?
>
> Either way they can keep their hard disk.

Why not phone eBuyer and ask them? Far more likely to get the answer
than relying on speculation form a NG.

--
Peter Crosland

[Farmer Giles]

Why don't you try reading the whole thread?

And the only reason I posted here what had happened was to see if anyone
else had had a similar experience.

[Gefreiter Krueger]

On Thu, 07 Nov 2013 07:53:16 -0000, Lobster <davidlobs...@hotmail.com> wrote:

> Graham. <m...@privacy.net> grunted in
> news:c1ol79pv7d4v56n7p...@4ax.com:
>
>>
>>>>> Did the card payment take you to the "Verified by Visa" page
>>>>> (or whatever the equivalent Mastercard check is)? If so, they
>>>>> shouldn't need any more ID.
>>>>>
>>>>
>>>> Delivery address is the same as the card address. They didn't do the
>>>> verified by visa thing, but I do have that number if they needed it.
>>
>> He is not talking about the PIN2 on the sig strip of your card, he
>> means the three random characters from your password known only to you
>> and your banks computer. You mustn't divulge that to anyone.
>
> That 'verified by visa' thing is an odd one. I used to get it all the
> time

I always refuse to use it and it goes away. Seems to be optional.

--
If you spin oriental folk till they are dizzy, do they become disoriented?

[Gefreiter Krueger]

On Wed, 06 Nov 2013 21:32:12 -0000, Farmer Giles <gi...@nospam.com> wrote:

> Anyone here ever bought anything from Ebuyer?
>
> I just ordered an external HDD from them. Went through the ordering
> process, then to the checkout and gave my card details. They then said -
> in the usual way - that I would receive an email confirming the order.
>
> In fact I received three emails. The first acknowledging my order, the
> second requesting security information - which asked for:
>
> "1) A scanned colour copy of the full picture page of your passport OR
> picture card of your UK drivers licence along with your passport or
> drivers licence number.
>
> 2)A utility bill that is at least two months old."
>
> It also said that the order had been cancelled pending receipt of the
> requested information.
>
> A third email confirmed the cancelled order.
>
> What on earth is going on?
>
> Is this normal, or some kind of scam?
>
> Either way they can keep their hard disk.

Oh dear. I'm glad I started using them before this bollocks.

--
If a tree falls in the forest and no one is around to see it, do the other trees make fun of it?

[Nightjar]

It is up to your card issuer as to whether it is optional or not. I
think that MasterCard SecureCode, which slightly pre-dates Verified by
Visa, is always compulsory.

Colin Bignell

[Nightjar]

On 06/11/2013 23:55, Sam Plusnet wrote:
> In article <HM-dnbRGpttNU-fP...@brightview.co.uk>,
...
> It would be interesting to see if any other on-line retailer now asks
> Farmer Giles for extra ID.

>
> Maybe the address triggered warning bells in some way - has someone used
> that address (or similar) for a scam?
>

I used to have a regular customer for my online business who always
threw up numerous fraud warnings - multiple cards used at this address,
multiple names used at this address and a few others. He had a shop at
Gatwick Airport and the automatic checks treated the whole airport as a
single address.

Colin Bignell

[Nightjar]

On 07/11/2013 22:35, John Rumm wrote:
> ...

> If however you are screening for suicide bombers, then you are much
> better off without a profile. For example if you decide that single
> young men with beards are high risk, then all your terrorists need do,
> is recruit little old white haired ladies.
>

One of the twelve pointers is young men whose lower face is paler than
the upper, where they have shaved their beard off.

Colin Bignell

[Jeremy Nicoll - news posts]

Farmer Giles <gi...@nospam.com> wrote:

> What a strange outfit! Ah well, I think I'll survive as easily without
> them as they will without me.

Thank-you for posting these details. I've noted your experience so ebuyer
have just joined my list of companies to avoid.


Also, I think you should make a formal complaint to the credit-card company
saying that one of their merchants is asking customers, AFTER the
transaction has been authorised, for confidential personal information.

Say that while you accept that it might not be phishing you do not like the
lack of forewarning of this on their site, nor do you see why you should
trust them to safeguard that information if you chose to provide it.

I think if there's doubt about the transaction, it should have been rejected
in the first place.

--
Jeremy C B Nicoll - my opinions are my own.

Email sent to my from-address will be deleted. Instead, please reply
to newsre...@wingsandbeaks.org.uk replacing "aaa" by "284".

[Jeremy Nicoll - news posts]

Lobster <davidlobs...@hotmail.com> wrote:

> That 'verified by visa' thing is an odd one. I used to get it all the time

> (ie, I would be asked for the code); but these days it's very rare indeed,
> (same card, on any site...) I get a message saying "contacting your card
> issuer" or something, which usually heralded the arrival of the little
> verification window; but the transaction just proceeds undelayed. It's as
> if they've decided that my card is low enough risk or something not to
> need it - odd?

I rang Visa International and asked them specifically about this a while
ago, and they said that the issuers all use their own algorithms to match
the card number, purchaser, amount etc and decide whether or not to ask you
for the extra authorisation info.

[Farmer Giles]

On 08/11/2013 13:52, Jeremy Nicoll - news posts wrote:
> Farmer Giles <gi...@nospam.com> wrote:
>
>> What a strange outfit! Ah well, I think I'll survive as easily without
>> them as they will without me.
>
> Thank-you for posting these details. I've noted your experience so ebuyer
> have just joined my list of companies to avoid.
>
>
> Also, I think you should make a formal complaint to the credit-card company
> saying that one of their merchants is asking customers, AFTER the
> transaction has been authorised, for confidential personal information.
>
> Say that while you accept that it might not be phishing you do not like the
> lack of forewarning of this on their site, nor do you see why you should
> trust them to safeguard that information if you chose to provide it.
>
> I think if there's doubt about the transaction, it should have been rejected
> in the first place.
>

Thank you, I might well contact my bank and tell them about - it was my
bank debit card, not a credit card.

I feel particularly aggrieved by this because - not only do I have an
unblemished credit rating, and this was for the princely sum of Ł59.99 -
I deliberately chose not to pay by credit card or Paypal, even though
they are probably more secure, because I was thinking it would save
Ebuyer having to pay commission on such a small transaction.

However, from what I have since learned about them, it seems that in the
long term they might well have done me a favour!

[John Rumm]

On 08/11/2013 16:39, Farmer Giles wrote:
> On 08/11/2013 13:52, Jeremy Nicoll - news posts wrote:

> Thank you, I might well contact my bank and tell them about - it was my
> bank debit card, not a credit card.

I would be interested in ebuyer's response to a query as to why they
think having customer's biometrics will in any way lower their risks,
and also what assurances they can give that they are competent to ensure
their security.

> I feel particularly aggrieved by this because - not only do I have an

> unblemished credit rating, and this was for the princely sum of �59.99 -

> I deliberately chose not to pay by credit card or Paypal, even though
> they are probably more secure, because I was thinking it would save
> Ebuyer having to pay commission on such a small transaction.
>
> However, from what I have since learned about them, it seems that in the
> long term they might well have done me a favour!

You will find that for any online retailer, there will be people who
have a grievance - its the nature of these things that the disgruntled
make far more noise than the happy customers. The difficulty with any
situation like this is that most of what you get is anecdotal rather
than objective numbers. I have (so far) had many years of decent enough
service from them, but that could just be luck - who knows.

[polygonum]

On 06/11/2013 21:32, Farmer Giles wrote:
> Anyone here ever bought anything from Ebuyer?
>
> I just ordered an external HDD from them. Went through the ordering
> process, then to the checkout and gave my card details. They then said -
> in the usual way - that I would receive an email confirming the order.
>
> In fact I received three emails. The first acknowledging my order, the
> second requesting security information - which asked for:
>
> "1) A scanned colour copy of the full picture page of your passport OR
> picture card of your UK drivers licence along with your passport or
> drivers licence number.
>
> 2)A utility bill that is at least two months old."
>
> It also said that the order had been cancelled pending receipt of the
> requested information.
>
> A third email confirmed the cancelled order.
>
> What on earth is going on?
>
> Is this normal, or some kind of scam?
>
> Either way they can keep their hard disk.

Assuming this information ends up on Ebuyer's systems, what would be the
Information Commissioner's Office view? Do they not usually say that
unnecessary information should not be collected?

I note this:

" The Identity and Passport Service advises organisations who wish to
retain a reproduction of the personal details in the passport that they
should obtain the consent of the individual to do so. Organisations are
also advised to retain a record of the consent and to store the passport
details securely. "

http://www.icaew.com/en/members/practice-resources/news/photocopying-passports-revised-guidance

I interpret that as needing EXPLICIT consent - not simply the consent
implied by your conforming, possibly unthinkingly, to their request.

I absolutely agree with you. Further, I absolutely agree that they
should not have taken card details until such checks as they deem
necessary have been completed. Again, taking card details is unnecessary
if the transactions cannot go ahead because you would refuse Ebuyer's
excessively heavy ID requirements. Should have broken both the DPA and
the card company's T&C.

Ebuyer have now joined Machine Mart...

--
Rod