Announcement

Collapse
No announcement yet.

Odd email sent to box claming to be Miva / odd looking

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

    Odd email sent to box claming to be Miva / odd looking

    Guys are you sending out an email stating a possible "non compliance fee" for all stores... I'm not going to post the email here in case its a scam. Just thought I would ask as it looks very suspicious plus the link pointing to you looks extremely odd.
    Last edited by Datagg; 01-15-14, 02:11 PM.
    Dan

    Girlfriends Lingerie - "Keeping It Sexy!"
    Sexy Lingerie - Twitter - Facebook- Pinterest - YouTube

    #2
    Re: Odd email sent to box claming to be Miva / odd looking

    No it's real, although please don't post it as the contents varies by where you're hosted, etc...

    I would ask what looked odd about it? We used a standard email template.
    Thanks,

    Rick Wilson
    CEO
    Miva, Inc.
    [email protected]
    https://www.miva.com

    Comment


      #3
      Re: Odd email sent to box claming to be Miva / odd looking

      Gotcha rick... The last link bottom looked suspicious as no where in there has normal references that i could see. Just a series of #'s, letters etc. Looked odd. Matter of fact NIS flagged it also as possible spam.
      Last edited by Datagg; 01-15-14, 02:14 PM.
      Dan

      Girlfriends Lingerie - "Keeping It Sexy!"
      Sexy Lingerie - Twitter - Facebook- Pinterest - YouTube

      Comment


        #4
        Re: Odd email sent to box claming to be Miva / odd looking

        Can you forward it to me, so I can see it?
        Thanks,

        Rick Wilson
        CEO
        Miva, Inc.
        [email protected]
        https://www.miva.com

        Comment


          #5
          Re: Odd email sent to box claming to be Miva / odd looking

          sure can... on its way.
          Dan

          Girlfriends Lingerie - "Keeping It Sexy!"
          Sexy Lingerie - Twitter - Facebook- Pinterest - YouTube

          Comment


            #6
            Re: Odd email sent to box claming to be Miva / odd looking

            I would like to know how (as a hosting provider) you have a legal standing to impose a fee that has to do with payment processing. That's what looks suspicious to me. Looks like a class action waiting to happen...

            Comment


              #7
              Re: Odd email sent to box claming to be Miva / odd looking

              We're not imposing a fee that has anything to do with CC processing. We're imposing a fee that has to do with how you choose to run our product and a combination of the increased support burden it causes as well as the increased security threats you cause by running out of date software on any hosting network.
              Thanks,

              Rick Wilson
              CEO
              Miva, Inc.
              [email protected]
              https://www.miva.com

              Comment


                #8
                Re: Odd email sent to box claming to be Miva / odd looking

                And our product has to be validated and certified by the PCI Security Council, which is why we're choosing to use their rules for our guidelines.
                Thanks,

                Rick Wilson
                CEO
                Miva, Inc.
                [email protected]
                https://www.miva.com

                Comment


                  #9
                  Re: Odd email sent to box claming to be Miva / odd looking

                  My advice would be to have your legal department look over the wording of the notice. And I'm only advising this as a friend/fan of Miva Merchant.

                  Comment


                    #10
                    Re: Odd email sent to box claming to be Miva / odd looking

                    our product has to be validated and certified by the PCI Security Council
                    I am in the process of answering the brutal and abusive PCI Questionnaire and find that most of the questions relate to hosting. Any idea why those questions are necessary if Miva is already PCI Security Council certified? We keep our store up to date at all times so that is not an issue but this questionnaire is like doing your own income tax return times ten.
                    Bill Dunn
                    SunCam, Inc.
                    http://www.SunCam.com
                    [email protected]

                    Comment


                      #11
                      Re: Odd email sent to box claming to be Miva / odd looking

                      Originally posted by SunCam View Post
                      I am in the process of answering the brutal and abusive PCI Questionnaire and find that most of the questions relate to hosting. Any idea why those questions are necessary if Miva is already PCI Security Council certified? We keep our store up to date at all times so that is not an issue but this questionnaire is like doing your own income tax return times ten.
                      The shopping cart software has gone through the PA-DSS validation process, which is a long set of standards that a payment processing application must abide by, combined with an extensive list of requirements for documentation, change control, penetration testing and third party auditing. Using a PA-DSS validated application makes it easier for a merchant to pass the requirements for a PCI certification but does not bypass it.

                      We are currently working on a new hosting environment that will go through the PCI certification process as a whole. Customers who opt in to be hosted in that environment, once we're certified, will be able to piggy back on our certification to eliminate the need to do their own. I say opt in because that environment is going to be dramatically more restrictive than our current, and with some commonly expected features having to be removed per the requirements, so we anticipate many of our customers will choose to not host in that environment and will instead continue as-is and will work through PCI themselves.

                      The self assessment is definitely a nightmare for many merchants; the PCI council has made it quite technical and often times confusing as to whether the questions pertain to where your card processing application is or your own computer network, etc.
                      David Hubbard
                      CIO
                      Miva
                      [email protected]
                      http://www.miva.com

                      Comment


                        #12
                        Re: Odd email sent to box claming to be Miva / odd looking

                        I have to laugh at people who fret about government red tape. The PCI hoops and demands are worse than anything I have seen from our government. It is more like trying to do business in China. I will never understand why the credit card industry (the Emperors of commerce) are so intent on obstructing commerce.

                        We are currently working on a new hosting environment that will go through the PCI certification process as a whole. Customers who opt in to be hosted in that environment, once we're certified, will be able to piggy back on our certification to eliminate the need to do their own. I say opt in because that environment is going to be dramatically more restrictive than our current, and with some commonly expected features having to be removed per the requirements, so we anticipate many of our customers will choose to not host in that environment and will instead continue as-is and will work through PCI themselves.
                        David, I'll be the first to sign-up the new hosting environment even with greater restrictions. I am ready to make the switch today! Where do I sign-up?
                        Bill Dunn
                        SunCam, Inc.
                        http://www.SunCam.com
                        [email protected]

                        Comment


                          #13
                          Re: Odd email sent to box claming to be Miva / odd looking

                          Originally posted by SunCam View Post
                          I will never understand why the credit card industry (the Emperors of commerce) are so intent on obstructing commerce.
                          My personal theory is it's due to the industry as a whole profiting off of fraud. The merchant loses their merchandise or services, and revenue from the fraudulent transaction, the cardholder isn't liable, then they add insult to injury by charging you a fee for the fact that you were charged back and they still keep the transaction fees from the fraudulent sale. Card present fraud would see a very strong decline if they'd implement the smart cards like they use in Europe. Card not present fraud would see a massive decline if they'd use things like one time use card number generation, or the Emue system (http://www.emue.com/) where the security portion of your card number is generated randomly once per minute and requires you to enter a pin to reveal it. Things like that could take a lot of burden off merchants. Of course why do they not do it? Because it would cost perhaps a few dollars per issued credit card, instead of 5 cents to print our good ol' magstripe cards; a few dollars per card and billions in lost fraud revenue mean no motivation.
                          David Hubbard
                          CIO
                          Miva
                          [email protected]
                          http://www.miva.com

                          Comment


                            #14
                            Re: Odd email sent to box claming to be Miva / odd looking

                            Bill,

                            It's also worth noting that if you use Chase Paymentech as your CC processor through us, since they've audited our environment they are not requiring you to jump through filling out the SAQ.

                            Or you can use PayFlow as a gateway (Link or Pro) as long as you use their Hosted edition and until or unless PCI changes their scope rules using that as a gateway (with any merchant account) would eliminate the need to fill out the SAQ.
                            Thanks,

                            Rick Wilson
                            CEO
                            Miva, Inc.
                            [email protected]
                            https://www.miva.com

                            Comment


                              #15
                              Re: Odd email sent to box claming to be Miva / odd looking

                              I'm assuming this also applies to any dev site a store might have in place for development and testing? As in, the dev site must also be kept up to date too?

                              Leslie
                              Leslie Kirk
                              Miva Certified Developer
                              Miva Merchant Specialist since 1997
                              Previously of Webs Your Way
                              (aka Leslie Nord leslienord)

                              Email me: [email protected]
                              www.lesliekirk.com

                              Follow me: Twitter | Facebook | FourSquare | Pinterest | Flickr

                              Comment

                              Working...
                              X