Modern field guide to security and privacy

Social media reports of 'hacked' Groupon accounts on the rise

This month alone nearly 30 customers have tweeted that their Groupon accounts have been compromised or "hacked." The company has denied any data breach. 

|
AP/File

More than two dozen Groupon customers this month are reporting on Twitter instances of their Groupon accounts being compromised, followed by fraudulent charges.

In July alone, 27 customers of the discount site have tweeted that their accounts have been compromised or "hacked." This is nearly twice the amount customers tweeted about their accounts being compromised in any previous month since April.

In each case, customers received an automated Groupon alert that the e-mail address associated with their account had changed, then discovered fraudulent charges on their credit or debit cards linked to the account. Most had difficulty reporting the issue to Groupon, since the link the company provides to dispute the changed e-mail requires that the user log in with their now-changed credentials. Some users were able to log in with the Facebook sign-in feature, removing their payment information from the service and canceling any orders placed. In many cases, hundreds of dollars worth of merchandise were charged to their accounts before the fraud was caught. 

Fraud detection company IDT911 said that while the social media activity is reminiscent of the beginnings of fraud fallout from other data breaches, the sampling is currently too small to indicate a larger trend.

"Is it possible? Yes. Is it definitive? No," said Adam Levin, founder of IDT911. It's also possible the affected customers' data was compromised in some unrelated incident, he said. The firm will continue to follow related activity.

Groupon spokesperson Bill Roberts said in an e-mail that the company has seen "absolutely no evidence of a breach," nor has it seen an increase in compromised accounts. He said account breaches often happen because of login credentials compromised on another site, and noted that accounts are locked down until customers can provide updated login credentials.

Yet, several victims say, they have not detected any other fraudulent activity associated with their other online retail accounts.

"It is incredibly unsettling," said Kristin Barrali of Boston, who was first alerted that her Groupon account might have been compromised when she received an e-mail from the company saying her account information had changed. 

Days later, she discovered her credit card was used to fraudulently purchase $4,000 in computer equipment shipped to an address in Southern California. The Glendale Police Department is investigating the case. It's unknown if the recipient of the packages is connected to other instances of other instances of Groupon customers reporting fraud. 

Another Groupon customer in Boston, Kelsey Jarboe, said her account was compromised and $450 worth of fraudulent charges were made July 10. Her account information was also changed, making it difficult to log into Groupon’s help center. "I check my bank statements every day because, like a lot of people, I live paycheck-to-paycheck," says Ms. Jarboe. "I keep a very close eye on what I have. And if that weren’t the case, I might not have noticed right away."

Groupon shutdown her account the next morning and refunded her money.

The process wasn’t that simple for Dennis Rodrigo, a Groupon customer from Staten Island, whose account was compromised July 13. The day before, Mr. Rodrigo gave his landlord a rent payment and checked the next morning see if it had cleared. Instead, he found that $300 in perfume and two Apple TVs were charged to his account, reducing his balance so much that the rent check wouldn't clear. 

"My landlord doesn't care if Groupon [had issues]," he said. 

It took him more than 12 hours to get the money back into his account, which Rodrigo said his bank fronted him because Groupon would not confirm to the bank that fraud had occurred. Later, his wife received an e-mail saying the items had shipped to an address in Texas.

As a result of the recent flurry of hacking reports, many customers say they will stop using Groupon. Sue Kim says someone broke into her account June 7. Soccer tickets totaling $100 were charged to the Washington resident's account, which took a day to sort out.

"I’m not inclined to go back and create a new account," she said. "Or if I were, I’d probably be more leery about it."

 

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
What is the Monitor difference? Tackling the tough headlines – with humanity. Listening to sources – with respect. Seeing the story that others are missing by reporting what so often gets overlooked: the values that connect us. That’s Monitor reporting – news that changes how you see the world.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.

QR Code to Social media reports of 'hacked' Groupon accounts on the rise
Read this article in
https://www.csmonitor.com/World/Passcode/2015/0717/Social-media-reports-of-hacked-Groupon-accounts-on-the-rise
QR Code to Subscription page
Start your subscription today
https://www.csmonitor.com/subscribe