Important Info! PSA: If you shop at GP Knives, check your credit card statements.

@gpknives y'all may want to check your security.

I think GPKnives are some of the best, but this is good to know. I trust them to handle this.

 

Thanks for the heads up. I watch my bills pretty closely, but if something turns up I will now have an idea where the source is.

 

@gpknives This is potentially a very serious issue. I'm surprised that the vendor hasn't replied to this thread. In the meantime, I'll be checking my statements and holding off on future purchases.

 

Hi guys! The OP, Jeff, contacted us via email at the same time he posted here and we did respond to him immediately. As he has made this a public topic, we would like to go ahead and share the same information we've shared with him with you all.

Firstly, we take the security of our site VERY seriously and reports such as this are treated with our utmost attention. Our website functions on the Magento platform and we utilize Authorize.net to process payments -- both of these platforms are up to date with all security patches and both are also highly regarded for their security. Currently, we have no known vulnerabilities and have had no other reports from our patrons of any issues such as this. We did pass this information along to our web development team for review and they have also been unable to detect any vulnerabilities at this time.

I hope this information helps! If anyone has any further questions or concerns, please feel free to reach out here or email me directly at [email protected].

Stay Sharp - Jamie

 

After reading @gpknives post, it makes me wonder if the security issue's on the OP's side? Of course, just because Magento and Authorize.net didn't find anything, it doesn't mean that there isn't something there, right? Makes you wonder, huh?

 

@gpknives Thanks for the info, Jamie.

 

Thanks, @Boru13

 

@jeffsenpai, thanks for posting this thread.
I had a similar problem. I placed 2 international orders in this store, one in June and one in July.
3 weeks ago I received an SMS from my credit company that the transaction was canceled. I immediately called to my credit company.
I was told that the scammers tried to conduct two transactions on my credit card, which were rejected.
Of course I canceled a credit card.
But all the time I wondered where my credit card information was stolen from. I know now.
P.S. @gpknives

 

Hi Jeff,

Sorry to hear that you have again had your card compromised. I'd like to ask a few related questions concerning your virtual card which I'll send over via email very shortly to make sure we are investigating the right areas on our end.

This post unfortunately leaves us in a very awkward position as a retailer as we're left defending our site security against the word of a customer. While I wouldn't be as bold to state that we're immune from any and all breaches (even the largest tech companies have had issues here), I would be pretty confident in stating that we don't believe there are any security holes on our end.

Since your last order (late July according to my records) we have processed a few thousand orders, with no other accusations, emails, phone calls or other customers raising similiar concerns. If this was a widespread problem we almost certainly would have had multiple complaints by now.

Our store still runs on the Magento platform with the latest security patches applied on an Amazon AWS server and is maintained by some very knowledgeable Magento developers (Swift Otter Solutions). These guys literally write developer certification guides for the Magento platform.

All of that said, we'll still be turning this information over to our developers for review in the interest of security.

Should anyone have any questions please feel free to post or contact us via email.

 

I purchased something online from gpknives last month and so far so good (knock on wood).

If anything happens I will chime in here, just a regular card so yeah let's see.

 

Heads up! https://www.zdnet.com/article/magento-online-stores-hacked-in-largest-campaign-to-date/

 

I am a student of Cyber Security. And it is scary out there. I check my accounts daily.