We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
GCs PCs - DO NOT BUY FROM [Removed]
Options
Comments
-
I am still getting hours of fun from Garry's limited grasp of English (this is the lad with "16 GCSEs")
maybe the school he attends -in Southbasingendstoke has a "Legalese" GCSE course? that would explain a lot.....0 -
There is an address, the one in Basingstoke. But, as I haven't made a test purchase, I don't know if the buying process gives you that option to send the cheque there - as if any fool would.What part of "A whop bop-a-lu a whop bam boo" don't you understand?0
-
JamesGilmour wrote: »Interesting development which may be worth while passing on to the Police.
When you place an order on gcspcs.co.uk, the fraudsters now ask you to tick either cheque or bank transfer OR credit card; when you tick credit card you get to a page, which has, prominently displayed, "This Page is Secured", although the URL says "http://www.gcspcs.co.uk/store/cart.php?act=step5" (for the uninitiated, this must be "https").
Therefore, the site is NOT SECURED, and the thieves simply collect your credit card number, expiry date and CVV codes.
I then placed an order with a random 16 digit number (try 1111111111111111) and got the message: "Thank you, your order was successful! Please visit again soon."
Here are the issues: clearly, the page does not make contact with the card issuing bank; if it did (a) the card entry would happen at "https" level (b) the system would recognise an incorrect card number, and (c) it would tell you your purchase has failed.So, the [Name removed by Forum Team] s simply collect your card details to (a) re-enter them through a legitimate merchant service (one they have set up and we don't know about yet) or god help us (b) use your card details to make unauthorised purchases on or offline. There is of course also the possibility they sell your card details on.
Just like the [Name removed by Forum Team] s, I also use Cubecart as my shop, and therefore know it very well. When you are in the admin section of Cubecart, one of the main links is called "Gateways"; it is there where you specify to which credit card processor you wish to divert the customer to; on my websites this is set to "Netbanx", i.e. my customers make their secure credit card purchase within the Netbanx site, and I never ever see my customers' card details. At some stage in the past, the [Name removed by Forum Team] 's gateway would have been set to "Protx".
I could, with one click, disable the Netbanx gateway link and replace it with a unsecure link, where customers stay on my site and enter their card details there, just as the [Name removed by Forum Team] s have just done; then, once I have their card details, I simply enable the Netbanx link again, and pretend to be my own customer making a card purchase on my own site.
The only advantage of this is that my customers would never know I use Netbanx, taking away the facility for them to complain to them directly; the lack of this ability is crucial to fraudsters such as the [Name removed by Forum Team] s: it does not reduce the level of chargeback, but eliminates any disputes brought to the attention of the card merchant.
Given the design of the [Name removed by Forum Team] s' "secure" form, as well as their alleged ability to accept American Express, it is my view that the card details are re-entered using PayPal; all they'll do is open the PayPal gateway in Cubecart, and act as their own customers with someone else's credit card details.0 -
James is spot on regarding the lack of SSL on the payment page if anyone is thinking about buying from [Name removed by Forum Team] GCSPCS then do not enter any card details on this screen.
They can be intercepted. They can be stored. They can (and most likely will) be missused.
An interesting side note it seems that [Name removed by Forum Team] is also selling American network Blackberries (see http://gcspcs.co.uk/store/index.php?act=viewProd&productId=651)BR 31/03/2009AD 31/03/2010 (hopefully)BSC number 257Barclays Cash Card Account with Connect Debit CardMycashplus card0 -
Really love the fact that his trading address is PERCORSO FORMULA ONE LIMITED. Does he just choose any address he feels like?!!! Oh, and I demand to see a copy of those accounts - I have a right to see them.Northern Ireland club member No 382 :j0
-
An earlier poster noted that Percorso is an anagram of RS [Name removed by Forum Team] / SR [Name removed by Forum Team] which could have a hidden meaning0
-
-
Haven't read the entire thread yet, but have come across this on the payment page:
This Page is Secured
even though it's just a normal http://
Surely his GCSE in IT would have taught him how to secure a page, no?Northern Ireland club member No 382 :j0 -
Just read some of this thread -priceless stuff,I haven't laughed so much in ages,what a goon! He's misunderestimated....:D Lovin those [Name removed by Forum Team] isms..(we're laughing AT you,not WITH you)0
-
Money_Grabber13579 wrote: »I demand to see a copy of those accounts - I have a right to see them.
So do HMRC, but the accounts don't seem to be forthcoming :rotfl:0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.6K Spending & Discounts
- 244K Work, Benefits & Business
- 598.9K Mortgages, Homes & Bills
- 176.9K Life & Family
- 257.3K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards