Metropolis hacked discussion thread.

[Transplant]

How do I get to post and have it locked for no responses all at the same time?

Become a valued advertiser I guess.

 

Feel free to discuss here what you weren't permitted to in the Metropolis hacking thread. According to the statement, credit card #s may have been exposed.

 

Since it's bound to drop off the first page:

 

Last week, we discovered that an illegal and unauthorized attack on our servers had been perpetrated by a currently unidentified party. That party is being pursued by law enforcement officials. In response to this attack, which may have exposed the credit card information of a number of our customers, we have taken great measures to address this situation and to make very sure that it will not happen again.

 

The following is a list of some of those measures:

 

 

1. Removed the exploit and the software that allowed it.

2. Notified law enforcement including the police, the New York Office of Cyber Security & Critical Infrastructure Coordination, the Consumer Protection Board and the Attorney General’s Office.

3. Contacted credit card processor to notify VISA, Mastercard, AMEX & Discover.

4. Implemented new system for processing card data to ensure safety of new transactions.

5. Mailed a notification letter to all customers whose card info may have been affected.

6. Hired a 3rd party “incident response” security company specializing in breach forensics.

 

If any of our customers have any concerns, we invite them to contact our office at 212-260-4147.

[CKB]

My first thought is wanting to know how long it was before the breech was discovered. It seems possible that there would be a high crossover of cards used at both WorldPay/GPA and Metro.

 

[VintageComics]

That's the first thought that crossed my mind.

 

 

[OldGuy]

Here's my list of suggestions for preventing customer CC info from being compromised.

 

1. Don't retain customer CC info.

 

As for the security of your DB, who gives a *spoon*?

[Foolkiller]

I think they are the process of doing just that, setting up a system that does not retain CC info.

[the420kid]

i always use paypal on metros site. then i dont have to worry about them losing my info.

 

paypal puts alot more money into web security then a comic book dealer site would.

[Timmay]

How do I get to post and have it locked for no responses all at the same time?

Become a valued advertiser I guess.

 

 

Try hitting the mod button on yourself.

It appears to work in other threads.

 

 

[comix4fun]

Won't locking the thread immediately relegate it to being pushed onto page 2 within an hour or two and thus out of sight of people who may need, or may have been affected by, the breach?

 

 

[Cat-Man_America]

i always use paypal on metros site. then i dont have to worry about them losing my info.

 

paypal puts alot more money into web security then a comic book dealer site would.

 

+1 (thumbs u

[seanfingh]

How do I get to post and have it locked for no responses all at the same time?

Become a valued advertiser I guess.

 

 

Try hitting the mod button on yourself.

It appears to work in other threads.

 

 

[Transplant]

I'm not sure Metro is big enough for the Gramm Leach Bliley provisions to apply but I hope their notice includes some of the info requested here. How long has this been going on? Credit monitoring, etc.

[Transplant]

Won't locking the thread immediately relegate it to being pushed onto page 2 within an hour or two and thus out of sight of people who may need, or may have been affected by, the breach?

 

Tried to fix that by "quoting" the post and starting this thread. But it was a dumb idea from the get go.

[GACollectibles]

What locked thread are you talking about?

[Timmay]

What locked thread are you talking about?

 

Look in comics general Noob

[tonytiger]

Was GPA hacked?

[OldGuy]

Won't locking the thread immediately relegate it to being pushed onto page 2 within an hour or two and thus out of sight of people who may need, or may have been affected by, the breach?

 

 

The mods here have a rich history of moving helpful threads off of the front page.

[Dick Pontoon]

They stickied it.

[OldGuy]

Won't locking the thread immediately relegate it to being pushed onto page 2 within an hour or two and thus out of sight of people who may need, or may have been affected by, the breach?

 

 

The mods here have a rich history of moving helpful threads off of the front page.

 

Wow, the right thing was done and the thread has been pinned.

 

Now if only there were some way to inform folks of the problems dozens of people here have had with World Pay via GPA.

[GACollectibles]

What locked thread are you talking about?

 

Look in comics general Noob

 

Go figure, I didn't expect to see at the second spot down from the top!

[CKB]

Was GPA hacked?

 

Many, many GPA subscribing board members have had the cards they use with WorldPay compromised. Some of us suspected a breech at WorldPay. GPA does not have access to CC info.

 

There's a big thread, can't be more than a month old.