As many of you know, I promote Nomorerack’s deals on my site. If you haven’t already heard, they had a security breach early this morning. While I do not agree with how they initially handled the situation, they have since made an official statement. Allison over at Klippin Krazy Koupons was contacted directly from a NMR representative and below is their official statement.
You may still see me post deals from Nomorerack. You as a consumer has the right to choose whether or not to purchase from this company, but I ask that you please do not spam my page with negative comments. Other companies and even our own government agencies have had similar issues with their computers being compromised. It happens unfortunately. I hope that none of you were personally affected by this morning’s issue.
I will say that I have always been satisfied with my experiences at Nomorerack and I will personally continue to purchase their great deals.
I was online at the time of the security breech and I can tell you that I was not able to see anyone’s credit card information. I don’t think it is even possible. I am currently signed into my own account and even if I check past orders or try to create a new order and check out, the most I can see of my own information is the last 4 digits of my credit card.
Please note that you can pay with Paypal for Nomorerack so you DO NOT have to enter your credit card information, EVER!
Here is the official statement-
Here are some basic facts about this morning :
1) Around 3 AM PST (6 am Eastern), we were notified by customer care that certain customers were experiencing login abnormalities where a few customers may have seen other customers name and address.
2) As soon as this was discovered, our entire team was woken up as soon as we could reach them and immediately began working to diagnose and correct the abnormality. This led to our team immediately disabling our checkout process as a first precaution.
3) We then identified that the cause of the login abnormality was due to a site update that affected our backend. Our technology team was able to rectify the issue and all login abnormalities were resolved within 15 minutes.
4) We want to stress that at no point was any billing information compromised. Credit card data and other sensitive private billing information is not stored on our servers. All sensitive billing data is stored within a PCI-Compliant encryption at our billing gateway. While some customers have posted comments stating that they were able to see credit card information on the site, this is simply not possible.
Every business experiences challenges and it is how the business reacts to those challenges that matters the most. Nomorerack has built its reputation on offering its members amazing deals and even more amazing customer service. We take full responsibility for what has occurred, worked as quickly as we could to rectify the problem and get notice out to our members when we had a full understanding of what occurred, reassuring our members that the abnormality had been corrected and that we are here as always to answer any questions or concerns our members may have.
As our business continues to grow, we will continue to improve our systems and respond to any and all issues that may arise as fast as humanly possible (and in some cases, faster). We thank our members for their understanding and patience and continued support.
Let me know if I can be of any further assistance. Always here to help.