| Redisplay Messages: Compact | Brief | All | Full Show Messages: All | Without Replies Author: | Luxurybricks | Posted: | Nov 8, 2023 14:32 | Subject: | Re: Update on November 3rd incident | Viewed: | 114 times | Topic: | Administrative | |
|
| In Administrative, Admin_Russell writes:
| Dear BrickLink members,
Welcome back and thank you for your patience. We were down for longer than anyone
would have wanted. Now that we’re back up and running, we can share with you
what’s happened.
As many of you will know, we received a threat and ransom demand on Friday, November
3rd. We’d been aware of and actively managing some limited suspicious activity
since mid-October, with unauthorized sellers offering products at huge discounts
and fraudulently accepting payment from buyers.
As soon as we were aware of the potential escalation on November 3rd, we put
the site into maintenance mode out of an abundance of caution. We did this to
protect our members and keep complete control of the platform while investigating.
We found that a relatively small number of BrickLink accounts may have been accessed.
It is important to note that there is no evidence so far that our systems were
compromised.
At this stage we believe this was a ‘credential stuffing’ incident, where
someone obtains lists of usernames and passwords from a third party, often illegally,
and opportunistically tries to use them on a website.
Actions we’ve taken
Although we know that the BrickLink site was not breached, we've further
strengthened our security. We take the safety of BrickLink and our members very
seriously and will continue to step up security across the platform.
We’ve informed people where we have reason to believe that their accounts or
stores may have been impacted, and reminded members of ways they can make their
accounts safer and more secure by practicing good data security. Keep your systems
up-to-date with the latest patches, Use security software and create strong,
unique passwords for each website you use.
Again, we’re sorry for the interruption and inconvenience this has caused you.
If you have any questions or concerns, have a look at the FAQ for more details,
or reach out to customersupport@bricklink.com.
Many thanks,
Your BrickLink Team
|
Many thanks to the BL-Team for the much effort.
Is it possible for the IT-team to add the ip-address to the E-Mail login notice?
|
|
Author: | Luxurybricks | Posted: | Nov 8, 2023 14:24 | Subject: | Re: Update on November 3rd incident | Viewed: | 80 times | Topic: | Technical Issues | |
|
| In Technical Issues, ralphs_bricks writes:
| In Administrative, Admin_Russell writes:
| Dear BrickLink members,
Welcome back and thank you for your patience. We were down for longer than anyone
would have wanted. Now that we’re back up and running, we can share with you
what’s happened.
As many of you will know, we received a threat and ransom demand on Friday, November
3rd. We’d been aware of and actively managing some limited suspicious activity
since mid-October, with unauthorized sellers offering products at huge discounts
and fraudulently accepting payment from buyers.
As soon as we were aware of the potential escalation on November 3rd, we put
the site into maintenance mode out of an abundance of caution. We did this to
protect our members and keep complete control of the platform while investigating.
We found that a relatively small number of BrickLink accounts may have been accessed.
It is important to note that there is no evidence so far that our systems were
compromised.
At this stage we believe this was a ‘credential stuffing’ incident, where
someone obtains lists of usernames and passwords from a third party, often illegally,
and opportunistically tries to use them on a website.
Actions we’ve taken
Although we know that the BrickLink site was not breached, we've further
strengthened our security. We take the safety of BrickLink and our members very
seriously and will continue to step up security across the platform.
We’ve informed people where we have reason to believe that their accounts or
stores may have been impacted, and reminded members of ways they can make their
accounts safer and more secure by practicing good data security. Keep your systems
up-to-date with the latest patches, Use security software and create strong,
unique passwords for each website you use.
Again, we’re sorry for the interruption and inconvenience this has caused you.
If you have any questions or concerns, have a look at the FAQ for more details,
or reach out to customersupport@bricklink.com.
Many thanks,
Your BrickLink Team
|
Heads up I'm getting a 403 Forbidden error when trying to send a Drive Thru
email notification.
|
Same here, also when I try to change the order status
|
|
Author: | Luxurybricks | Posted: | Dec 17, 2021 04:00 | Subject: | CANNOT PLACE ORDER CUSTOMER TOO | Viewed: | 274 times | Topic: | Technical Issues | |
|
| Hello!
Some customer notified me that they are not able to check out.
They always get the message "Technical Problem".
I tried it by myself on a store from a friend and it doesn't work.
It is not the first time we have these problems.
PLEASE CHECK IT OUT.
Sincerely,
Artur Alaverdyan
|
Author: | Luxurybricks | Posted: | Nov 28, 2021 06:08 | Subject: | Customer from GB can't order ERROR ON CART | Viewed: | 67 times | Topic: | Technical Issues | |
|
| Hello,
A customer from GB cannot order. He gets following error: ORDER_ITEM_TOTAL_MISMATCHED
He already updated his cart.
My friend (from Germany) tried to buy the same items and it works fine.
Please help! Thank you and stay healthy!
Here are some pictures from the customer:
|
|
|
Author: | Luxurybricks | Posted: | Aug 5, 2021 07:35 | Subject: | Re: Fraud activities UK-order with Stripe payment | Viewed: | 93 times | Topic: | Problem Order | |
|
| Same problem here!
Also pay attention on @firemail.cc E-Mail accounts!!
In Problem Order, BricksDirect writes:
| In Problem Order, stefxan writes:
| In Problem Order, barando writes:
| We are sadly facing several fraud activities from supposedly British customers,
which pay with Stripe. All of them have a @protonmail.com-account. The real card
holders are french and most of them didn't recognize the fraud yet. Stripe
charges back the grand total +15 EUR for contested payments and the seller has
to deliver proofs of shipping etc. Ordered articles are only actual new and
sealed sets. "Fake-Customers" have not more than 5 feedbacks. Accounts exist
not more than 14 days. Does anybody else have this issue?
|
I can agree with the actions Barando describes her. I have also several of these
orders and got the first message from Stripe today. They are charging me back
+15 EUR and the process for validation can last 2-3 months.
Take care
|
Hello,
Yes, same problem here.
Very annoying.
Best regards,
Niels Roest
BricksDirect
|
|
|
Author: | Luxurybricks | Posted: | Jul 15, 2021 05:18 | Subject: | Re: Umsatzsteuer/ VAT | Viewed: | 80 times | Topic: | LANG Deutsch | |
|
| VAT Einstellungen findest du unter:
Edit Store -- Management -- Value Added Tax (VAT)
|
Author: | Luxurybricks | Posted: | May 18, 2021 15:03 | Subject: | Achtung! VAT Einstellungen wurden geändert!? | Viewed: | 186 times | Topic: | LANG Deutsch | |
|
| An alle Händler:
Bei den Versandkosten hatte ich damals immer den Netto Preis stehen und bei den
VAT Einstellungen „Shipping Cost“ angekreuzt gehabt. BrickLink hat dadurch immer
auf den Netto Preis die MwSt. hinzugefügt.
Seit der heutigen Wartung wurde anscheinend etwas geändert, sodass nun nicht
mehr dort der Netto Preis stehen muss sondern Brutto.
Entweder bei mir ist etwas falsch oder die haben tatsächlich es geändert.
Gruß
Gabriel
|
|
Author: | Luxurybricks | Posted: | Oct 11, 2019 06:46 | Subject: | Inventory Change Request for Set 241601-1 | Viewed: | 27 times | Topic: | Inventories Requests (Entry) | Status: | Open | |
|
| Please make changes to the following inventory:
* Change 1 Part {Trans-Medium Blue to Trans-Light Blue} 54200 Slope 30 1 x 1 x 2/3
Comments from Submitter:
If you need, we can sent you a picture for proof
|
|
|