In the minds of many fans over recent days “no news” wasn’t good news when it came to questions about the G.I. Joe/Transformers Collectors’ Club and the potential for credit card security issues. Over the past month or so, many fans have come forward who used their credit cards with Fun Publications’ online store, finding that fraudulant charges have appeared on their cards.
Well the online store has been shut down for a few days, and today, Brian Savage from the Club has sent the following announcement:
“This is going out to all members:
Fun Publications wants to take this opportunity to apologize to all of our members.
After many days of analysis, Fun Publications has determined that there is a security issue with our e-commerce systems. We appreciate all of you who have sent in your details. Your help has allowed us to ferret out several different patterns of fraudulent charges that have appeared on some members’ cards (any that have been used over the last year with both the club store and our event registration system).
We have several different internet/networking companies looking into the matter. Unfortunately, as of yet, we have not been able to identify any forcible entry either into our internet service provider’s servers or network. This is like chasing a ghost through the wires, as unfortunately, the perpetrator did not leave a trail, foot prints or finger prints.
For those of you who have been affected, we apologize for all of your time this has wasted and any inconvenience it has caused you. We understand your frustration as this same type of fraud has happened to everyone in our office on our personal credit cards at some point in the past. Our merchant services provider wants us to remind everyone that even though this can be a huge annoyance for you, the customer, your issuing bank will not hold you responsible for any fraudulent charges that might be placed on your card(s).
We know that this issue has been a huge topic of discussion on all of the boards for the past few weeks. However, we are required to investigate to determine and confirm a security issue thoroughly before making any public statements. This is why we put out a general alert statement two weeks ago.
Until the analysis is finished (can take several weeks) we don’t know if the shut down by our former (Jan 31st) e-commerce provider caused the security issue or not. We do know that it has not been limited to those who have purchased before the change to our new provider.
Please, watch your cards closely as this type of security issue appears to be on the increase across the net. No site is 100% safe. You may want to consider having any cards you have used with Fun Publications in the last year replaced.
At this time, we do not know how long our e-commerce site will be offline for both the store and registrations. We will get back to you once we have a solution for this security issue.
Thanks for your support – Brian”
The timing couldn’t be worse for the Club has they approach registration for JoeCon and the potential launch for the Figure Subscription Service. Hopefully the issues can be resolved soon and we can go back to business as usual.
I fear the Figure Subscription may be dead in the water. In the last collector’s club magazine they indicated when the service did launch, the window for registration would be very narrow, leading me to believe that they themselves are starting to run up against some kind of deadline. With this very serious setback essentialy paralyzing their e-commerce ability for an unknown period of time, I think the launch of this program is in serious doubt. The fact that no mention of the program outside of the monthly assurance that it’s coming soon in the newsletter has been seen this year adds to my growing doubt. Is anyone else getting this feeling, or am I just being overly negative/paranoid?
I think it is still happening. The narrow window…my guess…is to make sure that they don’t have con stuff overlapping FSS orders. If those overlapped, there could be chaos since they don’t have a ton of CS reps to answer calls about both at the same time. I am going to also guess though, that this security breach will have thrown the whole schedule off a little.
A relatively brief registration period also gets the figures into production more quickly, as they’ll need subscription numbers to set order quantities and proceed with the manufacturing process. I’m sure the club has a lot of money tied up in this, so they’ll want to move forward and recover their investment as quickly as possible. Hopefully this unfortunate business won’t prevent the service from being a success.
About damn time they closed it down. They should’ve closed down the shop as soon as reports started coming in about fraudulent charges. By waiting, they risked compromizing new customers’ accounts . . .
When you hear about something like this you shut it down and then investigate. You never put your customers at risk.
I believe my information was compromized from this. I feel really bad for the club… this is a black eye they just don’t need.
As more time passes, I find it harder to feel bad for the Club. They were told for weeks that something was wrong and they just continued on like it was business as usual instead of shutting down their credit card processing immediately and informing their customers of a possible breach. Then their first public response was basically blaming it on the customers. And even now with their latest mass e-mail they’re still basically denying a breach on their end.
I sent them a message the same day I found out I got hit and I didn’t get a response back until at least a week later and it was just the canned response they had posted on the Transformers Club homepage (that eventually was put on the Joe Club homepage).
To put it lightly, they haven’t done a good job handling this.