All payment information is more often not held by the retailer, but by the gateway.
In the UK this saves retailers money as they don't need to register for such a high level under the Data Protection Act. With the Paypal system, for example, all the retailer needs store for a recurring/subscription payment is the customers email address. -----Original Message----- From: John M Bliss [mailto:[email protected]] Sent: 26 November 2013 14:36 To: cf-talk Subject: Re: Adobe take over a MONTH to advise me my credit card details are stolen It was not. Also, vendors do not need to store entire CC numbers for recurring subscription payments. IIRC, they can store last four, expiration date, number from back of card(?), and an auth token provided to them by payment processing gateway on first charge. On Tue, Nov 26, 2013 at 9:25 AM, Steve 'Cutter' Blades < [email protected]> wrote: > > Because your CC subscription is a revolving subscription? > > Steve 'Cutter' Blades > Adobe Community Professional > Adobe Certified Expert > Advanced Macromedia ColdFusion MX 7 Developer ____________ > http://cutterscrossing.com > > > Co-Author "Learning Ext JS 3.2" Packt Publishing 2010 > > https://www.packtpub.com/learning-ext-js-3-2-for-building-dynamic-desk > top-style-user-interfaces/book > > "The best way to predict the future is to help create it" > > On 11/26/2013 6:44 AM, John M Bliss wrote: > > I received emails stating that my password may have been stolen. > > Nothing about card number. > > > > Why would Adobe have been storing my entire card number anyway? I'm > pretty > > sure that's just bad infosec. > > > > > > On Tue, Nov 26, 2013 at 7:40 AM, Steve 'Cutter' Blades < > > [email protected]> wrote: > > > >> Really? I received my letter a month ago, and three separate emails > >> the week that the breach was announced, each informing me that I > >> must reset my password, and explaining why. In fact, they > >> immediately reset the password of every account affected. Did you > >> not have to change your password? Did you not get those early > >> missives warning you of the > breach? > >> > >> Steve 'Cutter' Blades > >> Adobe Community Professional > >> Adobe Certified Expert > >> Advanced Macromedia ColdFusion MX 7 Developer ____________ > >> http://cutterscrossing.com > >> > >> > >> Co-Author "Learning Ext JS 3.2" Packt Publishing 2010 > >> > >> > https://www.packtpub.com/learning-ext-js-3-2-for-building-dynamic-desk > top-style-user-interfaces/book > >> > >> "The best way to predict the future is to help create it" > >> > >> On 11/26/2013 6:07 AM, Mike K wrote: > >>> We all heard about the Adobe security disaster here, but finally now, > >>> OVER A MONTH later, Adobe have finally got around to informing me > >> that > >>> my credit card info and other details were stolen, possibly > >>> creating an identity theft issue for me. > >>> > >>> And they thought so much about it, and were SO concerned for my > security, > >>> they didnt even bother to sign the letter. > >>> > >>> I have my email address on file because I'm a Creative Cloud > subscriber, > >>> but did they send me a warning that way? NO! Merely sent a letter by > >>> snail mail on 13 October and couldn't even put a name to the > >>> person > >> sending > >>> it. > >>> > >>> I dont have many complimentary words for these &*^$#@@&s. > >>> > >> > >> > >> > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357287 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
