geekhack Community > Reviews

anyone used kprepublic.com

<< < (3/13) > >>

Leslieann:

--- Quote from: shamsael on Tue, 12 May 2020, 15:09:19 ---I tried to buy some stuff from them yesterday.  When checking out, their paypal widget failed.  It took my username/password, but the transaction never went through.  24 hours later, I got an email saying someone in Sichuan China successfully logged in with my paypal credentials.

I navigated to paypal on a different device and updated my password, just in case the email was a phish.

Really smells to me like kprepublic is the worst kind of scam.  The kind that probably takes your money and sends you product, but also steals your financial info for their own ends.  We'll see.

--- End quote ---
Krepublic has been pretty solid and they do way too much business to start scamming people like this.

Sounds like a fishing scam or you got hit by driveby malware (possibly both at once), an ad loaded you with a keylogger or something, I'd start running malware checks on your own machine.   You didn't follow the link in the warning email to change the password did you? Even if you went direct rather than using the email, if that malware was still active you just gave it to them again.

Before you start going nuts, go back and re-read the email and make sure it didn't just say you had authorized payment to someone in China rather than someone logged in from there because they do send these messages.

sefixmm:
They are ok for me too, made one order and everything was ok :)

shamsael:

--- Quote from: Leslieann on Wed, 13 May 2020, 20:16:53 ---
--- Quote from: shamsael on Tue, 12 May 2020, 15:09:19 ---I tried to buy some stuff from them yesterday.  When checking out, their paypal widget failed.  It took my username/password, but the transaction never went through.  24 hours later, I got an email saying someone in Sichuan China successfully logged in with my paypal credentials.

I navigated to paypal on a different device and updated my password, just in case the email was a phish.

Really smells to me like kprepublic is the worst kind of scam.  The kind that probably takes your money and sends you product, but also steals your financial info for their own ends.  We'll see.

--- End quote ---
Krepublic has been pretty solid and they do way too much business to start scamming people like this.

Sounds like a fishing scam or you got hit by driveby malware (possibly both at once), an ad loaded you with a keylogger or something, I'd start running malware checks on your own machine.   You didn't follow the link in the warning email to change the password did you? Even if you went direct rather than using the email, if that malware was still active you just gave it to them again.

Before you start going nuts, go back and re-read the email and make sure it didn't just say you had authorized payment to someone in China rather than someone logged in from there because they do send these messages.

--- End quote ---

1. The header info in the email matches other emails received from paypal
2. Since this wasn't a site i'd ever dealt with, I checked out from an ubuntu vm i use for work rather my own device.  Per company policy, that vm has some antimalware running on it, though I have no idea how strong it is.
3. I emailed the listed webmaster, gorge@kprepublic.com immediately after receiving the PayPal notification to ask them to confirm whether their checkout flow has been compromised, they did not respond.
4. Several days after the purchase, gorge@kprepublic.com sent ME an email saying they were happy with my purchase and asked me to contact them if I had any concerns.  I repeated my original complaint/warning about the paypal issue, and they still haven't responded.
5. I haven't got any tracking information for my order, though they did successfully charge my CC.
6. As I said in my previous message, the situation smelled like phish, and I performed the password change from a different device.  Not the same device i attempted to purchase on, and not the same device I received the email on.  While I was at it, I enabled 2FA on the account as well, and unlinked all of the payment methods temporarily.

I subsequently cancelled that card and got a new one from the bank.  The bank assures me the original charge did go through and the merchant was payed.  I'm not trying to revert this transaction, and they should be payed if they're legit, but I definitely don't want that credit card as a liability after the fact, and I definitely won't ever be doing business with them again.  I really think either their checkout flow, or their company, is compromised.  The paypal form their site directed me to didn't work.  It would be a really crazy coincidence that a paypal account I use maybe 5 times a year happens to get hacked by unrelated actors the day after I tried to use it on a strange website.

Plus, if I had "just gave it to them again", there have been no subsequent sign-on attempts after the first attempt, and no 2FA alerts that would suggest someone trying to log on.

Leslieann:
The whole point of Paypal is that they only get one part of the info needed to use the data, they only ever saw your email, not the password. Was it odd it was the day after, yes, but it also could have been coincidence, you may have been nailed in the past and only now are they getting around to you. You may want to check https://haveibeenpwned.com/ and see if your were compromised in the past.

I get why you feel they were in on it, to someone who doesn't deal with computer malware on a regular basis it absolutely looks that way, you logged in one day the next day you get a hack attempt, black and white. In the world of computer security that's not how it works, time is irrelevant, it can be days, weeks, months, even years from when your data was stolen to when someone actually uses it.


As for them charging and taking a while to ship, billing is instant and often handled by a 3rd party. Their warehouse however is manned by them and they are really backlogged due to the virus. It's not just them, it's all of China, factories are at 120% capacity trying to catch up.

Belverus:
I bought some stuff from them and requested for a refund. They seem reliable.

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version