SDE - payment issues? (excised from Who's Next announcement thread)

Amazon
Find deals on ebay
Advertise with us
QuadraphonicQuad

Help Support QuadraphonicQuad:

This site may earn a commission from merchant affiliate links, including eBay, Amazon, and others.
I used my credit card for the first time on SDE (ordering the Avalon/LLT bundle), hoping that this had stopped being a thing. Can't say I'm less concerned now...
 
SeeMoreDigital said:
Out of interest... What's the benefit of installing the Shop app?
Click to expand...
The only advantage is that one automatically gets all purchases, in different stores, fed directly into the Shop app, by the app using the connected e-mail address (if one isn't using the app to buy directly from the stores) - if you have given them permission to do so. I obviously did it the first time I used the app, without thinking carefully what I was saying "yes" to. Any time the app noticed I'd made an order with Amazon (because Amazon sends me an email, confirming my order), it would put the order into the app, even though I never use the Shop app for Amazon purchases. The app subsequently tracks the orders and sends push notices, when orders are shipped and delivered. However, as I discovered, the app is not very good at tracking. And the app shares your email and purchase history with other sites. Thus, the email and credit card you've used with them are vulnerable to malicious use.

A few hours, after I changed my email password, I received a push notice from Shop app, notifying me that they no longer had access to my email password and could no longer provide me with updates! I subsequently deleted the app, as I realised it is basically monitoring my emails all the time - not just when making a purchase!

Even more alarming - when I logged into my profile on the Shop website and went into the "Settings - Data & Privacy - Opt out of data sharing", it said that "Your request to opt out has been submitted. It can take up to 7 days for this change to take effect". I have never before experienced any website, which states that it will take a week to opt out of data sharing!
 
Titch said:
The only advantage is that one automatically gets all purchases, in different stores, fed directly into the Shop app, by the app using the connected e-mail address (if one isn't using the app to buy directly from the stores) - if you have given them permission to do so. I obviously did it the first time I used the app, without thinking carefully what I was saying "yes" to. Any time the app noticed I'd made an order with Amazon (because Amazon sends me an email, confirming my order), it would put the order into the app, even though I never use the Shop app for Amazon purchases. The app subsequently tracks the orders and sends push notices, when orders are shipped and delivered. However, as I discovered, the app is not very good at tracking. And the app shares your email and purchase history with other sites. Thus, the email and credit card you've used with them are vulnerable to malicious use.

A few hours, after I changed my email password, I received a push notice from Shop app, notifying me that they no longer had access to my email password and could no longer provide me with updates! I subsequently deleted the app, as I realised it is basically monitoring my emails all the time - not just when making a purchase!

Even more alarming - when I logged into my profile on the Shop website and went into the "Settings - Data & Privacy - Opt out of data sharing", it said that "Your request to opt out has been submitted. It can take up to 7 days for this change to take effect". I have never before experienced any website, which states that it will take a week to opt out of data sharing!
Click to expand...
Wow, that's super creepy. So, Shop basically have access to your email password? I always try to deal direct with the vendor if possible and avoid Paypal and Shop.
Just to update my post from November, I never had any fraudulent on either of those credit card orders with SDE but I paid via credit card directly to them. I've placed several orders since then and no issues so far (knock on wood).
 
As I only became aware of Shopify/Shop after buying stuff from SDE I think I'll deleted the app. I pay for goods using PayPal anyway... And fortunately (by the sounds of it) I haven't given Shopify/Shop my credit card details.
 
Last edited:
I've made 12 purchases from the SDE website, using the Shop website, since 2022 and this is the first time I've been hacked. I read about this happening to other Quadraphonic.com members last year, so Shop app was my prime suspect when it happened to me. I found out that Shop app had a stored-in passkey for my credit card, so this has obviously enabled scammers to use it on Booking.com. I have now deleted my credit card from Shop app and have frozen my credit card for a period.
 
Amazon Basics Toslink Digital Optical Audio Cable, Multi-Channel, for Audio System, Sound Bar, Home Theatre, Gold-Plated Connectors, 3.3 Feet, Black
$6.99
Amazon Basics Toslink Digital Optical Audio Cable, Multi-Channel, for Audio System, Sound Bar, Home Theatre, Gold-Plated Connectors, 3.3 Feet, Black Amazon.com
TVON Speaker Stand Height Adjustable from 32"-43" Bookshelf Speaker Stand Pair for Satellite Speakers with 360° Swivel, Ideal for Home Theater and Music Studio, Set of 2 for Bose Polk JBL Sony Yamaha
-22%
$69.99 $89.99
TVON Speaker Stand Height Adjustable from 32"-43" Bookshelf Speaker Stand Pair for Satellite Speakers with 360° Swivel, Ideal for Home Theater and Music Studio, Set of 2 for Bose Polk JBL Sony Yamaha newstand
Rfiver Upgraded 45° Swivel Speaker Stands Pair for Surround Sound, Heavy Duty 28 Inch Bookshelf Speaker Stand Each Holds 22lbs Large Speaker, Floor Speaker Stand Built-in Cable Management, 1 Pair
-25%
$59.99 $79.98
Rfiver Upgraded 45° Swivel Speaker Stands Pair for Surround Sound, Heavy Duty 28 Inch Bookshelf Speaker Stand Each Holds 22lbs Large Speaker, Floor Speaker Stand Built-in Cable Management, 1 Pair Rfiver
Perlegear Speaker Stands Pair, 33-42 Inch Height Adjustable Speaker Stands for Small Bookshelf Speakers & Satellite Speakers with Cable Management,13.2 lbs Capacity, PGSS12
-20%
$79.99 $99.99
Perlegear Speaker Stands Pair, 33-42 Inch Height Adjustable Speaker Stands for Small Bookshelf Speakers & Satellite Speakers with Cable Management,13.2 lbs Capacity, PGSS12 Perlegear
ECHOGEAR Universal Floor Speaker Stands - Vibration-Absorbing MDF Design Works with Klipsch, Polk, JBL & Other Bookshelf Speakers Or Studio Monitors - Includes Sound Iso Pads & Carpet Spikes
-25%
$59.99 $79.99
ECHOGEAR Universal Floor Speaker Stands - Vibration-Absorbing MDF Design Works with Klipsch, Polk, JBL & Other Bookshelf Speakers Or Studio Monitors - Includes Sound Iso Pads & Carpet Spikes ECHOGEAR
Anker Soundcore 2 Portable Bluetooth Speaker with IPX7 Waterproof, 24-Hour Playtime, Wireless Stereo Pairing, 12W Stereo Sound, Bluetooth 5, Bassup, Electronics for Home, Shower, Outdoors, Travel
-11%
$39.99 $44.99
Anker Soundcore 2 Portable Bluetooth Speaker with IPX7 Waterproof, 24-Hour Playtime, Wireless Stereo Pairing, 12W Stereo Sound, Bluetooth 5, Bassup, Electronics for Home, Shower, Outdoors, Travel AnkerDirect
Real Wood Stand for Homepod Mini(2020 Released), Wooden Holder Tripod with Metal Frame,Safe Stable Mount with Anti-Slip Silicone pad Protects Home pod Mini Speaker Well (Color:Walnut)
-5%
$18.99 $19.99
Real Wood Stand for Homepod Mini(2020 Released), Wooden Holder Tripod with Metal Frame,Safe Stable Mount with Anti-Slip Silicone pad Protects Home pod Mini Speaker Well (Color:Walnut) Sunley master
Perlegear Height-Adjustable Speaker Stand Pair, Surround Sound Speaker Stands for Small Bookshelf, Satellite Speakers, and Studio Monitors, 28” to 38” Adjustable Height Floor Speaker Stand, PGSS11
-14%
$59.99 $69.99
Perlegear Height-Adjustable Speaker Stand Pair, Surround Sound Speaker Stands for Small Bookshelf, Satellite Speakers, and Studio Monitors, 28” to 38” Adjustable Height Floor Speaker Stand, PGSS11 Bestergo Direct
Amazon Fire TV Soundbar, 2.0 speaker with DTS Virtual:X and Dolby Audio, Bluetooth connectivity
$119.99
Amazon Fire TV Soundbar, 2.0 speaker with DTS Virtual:X and Dolby Audio, Bluetooth connectivity Amazon.com
Bose TV Speaker - Soundbar for TV with Bluetooth and HDMI-ARC Connectivity, Black, Includes Remote Control
$279.00
Bose TV Speaker - Soundbar for TV with Bluetooth and HDMI-ARC Connectivity, Black, Includes Remote Control Amazon.com
I was using Shop for a while (got drawn in by the universal tracking component) but after 2 credit card hacks that appeared to be directly related to using Shop, I deleted it. It was then that I started to realize how intrusive this service/app is, and generally risky to use. Now when I order from SDE, I use Google Pay. No issues.
 
It's worth noting that SDE.com promotes the Shop app, which is why I trustingly started using it. They even provide a barcode for your phone to make it easy. So SDE charge a higher delivery cost that includes tracking, whether you want it or not (I haven't, until this recent purchase going to a different address) and then promote a dodgy tracking app. :( I hope they are reading this latest discussion and alter that practice!
 
Y'all know it's possible to use the Shop app without granting it permission to scan your emails, right? Orders made with ShopPay, as well as most made at any online stores using Shopify for which you use the same email address as your ShopPay account, will still show up automatically in the app. Other tracking numbers can be added manually, which is great for carriers that don't have their own app or whose app is simply poor. I have been using the app this way for years now, and have never had an issue with credit card information leaking. I really don't think the app—or Shopify in general—is the culprit. Insecure, vulnerable, or compromised websites are likely to blame. That, and perhaps weak user account passwords.
 
Last edited:
JediJoker said:
You know it's possible to use the Shop app without granting it permission to scan your emails, right? Orders made with ShopPay, as well at most made at any online stores using Shopify for which you use the same email address as your ShopPay account, will still show up automatically in the app. Other tracking numbers can be added manually, which is great for carriers that don't have their own app or whose app is simply poor. I have been using the app this way for years now, and have never had an issue with credit card information leaking. I really don't think the app—or Shopify in general—is the culprit. Insecure, vulnerable, or compromised websites are likely to blame. That, and perhaps weak user account passwords.
Click to expand...
I know man. All I can say is, I've been using Shop as a means to acquire SDE titles and I've purchased 100% of them and I never have any issues. So, what's different for me? Well, OK, there was that one time that someone bought a Mercedes on my behalf, but other than that. I'm good.
 
JediJoker said:
You know it's possible to use the Shop app without granting it permission to scan your emails, right? Orders made with ShopPay, as well at most made at any online stores using Shopify for which you use the same email address as your ShopPay account, will still show up automatically in the app. Other tracking numbers can be added manually, which is great for carriers that don't have their own app or whose app is simply poor. I have been using the app this way for years now, and have never had an issue with credit card information leaking. I really don't think the app—or Shopify in general—is the culprit. Insecure, vulnerable, or compromised websites are likely to blame. That, and perhaps weak user account passwords.
Click to expand...

I never gave SHOP permission to scan my emails. Nonetheless, now that I think about it, I don't like the idea of even being asked to give this permission. How do you know that app won't "mistakenly" do it anyway?
I can use my credit card if needed, Paypal, Amazon Pay sometimes. Better to be safe than sorry. This is one that I missed until I came across this thread.
 
JediJoker said:
Y'all know it's possible to use the Shop app without granting it permission to scan your emails, right? Orders made with ShopPay, as well as most made at any online stores using Shopify for which you use the same email address as your ShopPay account, will still show up automatically in the app. Other tracking numbers can be added manually, which is great for carriers that don't have their own app or whose app is simply poor. I have been using the app this way for years now, and have never had an issue with credit card information leaking. I really don't think the app—or Shopify in general—is the culprit. Insecure, vulnerable, or compromised websites are likely to blame. That, and perhaps weak user account passwords.
Click to expand...
I've used the Shop app for three years - the A24 website, as well as I few others I purchase media from, only use the Shop app for shipping internationally. I haven't had a problem until now. I obviously gave permissions for emails and stuff, when I first used it, but I'm usually alert about giving carte blanche permissions like like that (I'm one of those people who always denies permissions for tracking cookies on websites). My password was a 19-digit random Apple OS-generated password. It was the first time I've been hacked. The Shop app has the passkey for the credit card built in (which I obviously OK'd for convenience somewhere), which is what enabled my credit card to be used. If I had used two-step authentication, I would not have had my card compromised. The Shop app website is insecure, vulnerable and compromised. I'm not the only one who has experienced fraud, after using their website, so it is a serious issue.
 
If Shopify ever gets hacked, it'll be on the nightly TV news. There's 10's of millions of users and lots more than just one or two users will get hit if they have found a way in. It's most likely the device that you made the purchase on, or your internet connection (Wi-Fi?), was compromised. I would encourage you to do a full malware/virus scan or best case a reinstallation of your computer/device operating system to remove any possible malware or viruses being used to collect your data.

.....and if you are 110% convinced the Shop app is dodgy, just removing it from your device will likely do zero. It's too late as it will have likely done other things like installing malware separately from the app. A malware scan is essential to prevent further problems.
 
Titch said:
The Shop app website is insecure, vulnerable and compromised. I'm not the only one who has experienced fraud, after using their website, so it is a serious issue.
Click to expand...
You are conflating two different things, here. The Shop mobile app is not a website. The ShopPay payment processing web portal is embedded in the websites that use it. Therefore, if one of those websites is compromised at the time of purchase, user interactions there may be intercepted by a third party. If ShopPay/Shopify itself were compromised, that breach would be all over the online news.
 
JediJoker said:
You are conflating two different things, here. The Shop mobile app is not a website. The ShopPay payment processing web portal is embedded in the websites that use it. Therefore, if one of those websites is compromised at the time of purchase, user interactions there may be intercepted by a third party. If ShopPay/Shopify itself were compromised, that breach would be all over the online news.
Click to expand...
The website is also called shop.app

https://shop.app/
 
You must log in or register to reply here.

Similar threads

madscot
The Who - Who’s Next SDE series no. 30 (January 17th, 2025)
14 15 16
Replies
305
Views
44K
ssully
S
djstephan
Thompson Twins - Into The Gap blu ray audio #29 in the SDE series
9 10 11
Replies
213
Views
22K
Farles
F
marpow
Hawkwind-Space Ritual-50th Anniversary Blu Ray Audio-Pre Order Feb 7 2025
Replies
6
Views
604
par4ken
par4ken
svengaleekie
Prince - Diamonds and Pearls (BD-A w/Atmos mix of studio album / box set with BD-V live material and videos) October 27 2023
4 5 6
Replies
116
Views
18K
himey
himey
haikubass
2024 SURROUND RELEASES
17 18 19
Replies
364
Views
99K
J. PUPSTER
J. PUPSTER

Latest posts

Back
Top