Innkeeper friend called last week to get cc numbers for her Webervations that had been masked. Before giving the cc numbers they had to phone the Inn back directly to "make sure it was really them"???
Meanwhile all of my cc numbers have been coming in just fine so why are some masked and some not?.
Meanwhile all of my cc numbers have been coming in just fine so why are some masked and some not?
Because yours was never accessed with an IP address that had not already been used before the phishing scam was attempted. Inns who have been locked are inns where a new ip address has been used since the phishing scam. This means that either the inn has a new ip address (sometimes they change due to your internet service provider) or some unauthorized person is logging into that inn's account with the username and password they got that from the innkeeper because the innkeeper got Phished/fooled into giving it to them.
Calling the inn directly (using the inn's advertised phone number) would really be the only way to verify the person is who they say they are. If the person calling was the phisher, they would have access to all the same account number / username and password so the only way to prevent them from having access would be to call the inn. The phisher can't answer your phone...unless he has you tied up and locked in a closet....in which case you have bigger problems than phishing to worry about.
.
swirt said:
This means that either the inn has a new ip address (sometimes they change due to your internet service provider) or some unauthorized person is logging into that inn's account with the username and password they got that from the innkeeper because the innkeeper got Phished/fooled into giving it to them.
Wait - - we're on the road a lot. I am quite certain that I regularly log in from my sister's house (using my laptop), two different computers in our house (the BnB) and now that I switched to a smart phone...I can log in from TONS of places. Wouldn't all those have differeing IP addresses as well? Surely I'm not the only innkeeper who logs in from remote locations. I may be thinking with blinders on, but it seems to me that's an alternative to the only legitimate log in coming from the physical location of the inn.
We use cloud computing for a reason. This situation won't work for us. I expect I will be one of many calls to Webervations this week. In the mean time, I'm trying to learn what I expect will be our new reservation system.
What really stinks is we prepaid for the year. But if my needs can't be met, I intend to explain in single syllables that losing the balance on our account is a small price to pay to avoid the problems this will cause.
.