Midwest Supplies

[mrwizard0]

I tried using PayPal the last time from Midwest but it wouldn't work

 

[unionrdr]

You have to be signed up with paypal first. then you click on the pay with paypal logo button to use it. It takes you to paypal where you log in,see everything is right,click pay button & it takes you back to midwest. easy peaasy.

 

[mrwizard0]

I am, something about the way they sent it to pay pal wasn't working. I called them about it but they didn't know why

 

[cfrazier77]

Question, has the OP contacted Midwest to see if they have had any hacking issues? Before a company is discussed in this way it would be best to talk to them first. I hope the OP did.

A St. Louis supermarket chain Diebergs, recently had this happen to them. A hacker got into their system and stole all of the credit card and bank check information they had. They have 25 locations and a good IT department. No one is immune these days.

 

[ECUmedford]

Question, has the OP contacted Midwest to see if they have had any hacking issues? Before a company is discussed in this way it would be best to talk to them first. I hope the OP did.

A St. Louis supermarket chain Diebergs, recently had this happen to them. A hacker got into their system and stole all of the credit card and bank check information they had. They have 25 locations and a good IT department. No one is immune these days.

My dad called and talked to someone in customer service. He was unaware of any issues but said we should speak to IT on Monday.

Three people so far with the same issue last week.

 

[suprat78]

My dad and I both had huge fraudulent charges on our credit cards Friday July 5th. Our banks called us to let us know about them.

The only place we both order from is Midwest Supply. So we suspect that they are the source and perhaps have had a security breach. The timing of both of us having this issue is not coincidental.

Has any other Midwest customers had a similar experience this past week?

I am an E-commerce consultant/entrepreneur and use the same Magento system they do. I noticed they have the credit card save feature enabled which I would never do on my sites.

Just beware and please post if this happened to you so we can verify the source of this issue. Thanks!

I had the same issue on Friday. I am on vacation and went to use my card and was told it declined. Shortly thereafter my bank called and said my account had been compromised. They were unable to determine what caused the issue but I recently placed an order through Midwest.

 

[ECUmedford]

I had the same issue on Friday. I am on vacation and went to use my card and was told it declined. Shortly thereafter my bank called and said my account had been compromised. They were unable to determine what caused the issue but I recently placed an order through Midwest.

Yeah...I had to deal with this on vacation as well.

 

[Calichusetts]

Hacked last week...last order about three weeks ago. Don't know if its related, my sisters was hacked for the third time and she never goes there. Just keep an eye out and stay with a reputable credit card company. I hate capital one from an incident a few years ago but they literally called me 5 minutes after the card was used

 

[midwestsupplies]

We are very sorry to hear about the issues with fraudulent credit card charges. We take this kind of thing very seriously, and we want to make sure the problem is not on our end. We have contacted the OP by phone and email, and we hope to get to the bottom of the issue soon.

 

[cfrazier77]

My dad called and talked to someone in customer service. He was unaware of any issues but said we should speak to IT on Monday.

Three people so far with the same issue last week.

Thank you for doing so. It is the right thing to do.

 

[vja3]

Been lurking around here since I started my homebrew hobby about 3 months ago, but wanted to contribute here. I received some fraudulent charges on a credit card yesterday morning. There are only 4 places that card could have been compromised, and one of them was Midwest Supplies. Obviously, that doesn't prove anything. But it's sure starting to look like they might have had a security breach.

Also, I just logged into my account now and notice that the credit card in question was saved to my account. I'll contact them as well with this report.

 

[LaurieGator]

I also had some fraudulent charges on Friday from some spanish sounding place... Also ordered from Midwest a few weeks ago...

Gave them a call and gave them my information...

 

[whoaru99]

Used a card there in person a few days ago. Will keep an eye on my account.

For online purchases I have gone to using virtual card numbers that have a fixed dollar value you set for each one you generate. Additionally, you can add a time limit to it as well. Once the value (or time) is gone the number is done. Mine is done though Citi.

 

[unionrdr]

I also had some fraudulent charges on Friday from some spanish sounding place... Also ordered from Midwest a few weeks ago...

Gave them a call and gave them my information...

I get calls on my cell from one that sounds like that. they try to act like there's a problem with my card & they need to get mine. Sha,right. they never once mentioned being affiliated with the company the card is from.
You can type the number into the window at the top of the browser & it'll take you to a site where folks report such things that happen by phone. Good thing to know.
As I said,if they use paypal on their site,so do I. no problems so far.

 

[Marmike600]

I actually had some charges to my account that B of A called to let me know happened Wednesday night. They ordered some Adobe products and one chargeto a game company in the UK. Been a while since I've ordered from Midwest but I guess it's a possibility

I JUST had the same thing!! $200 to a game company in the UK. I just purchased more stuff from Midwest too!

My card is thru NavyFCU. I have contacted Midwest to let them know. Fortunately NFCU has a good fraud dept.

 

[unionrdr]

with me it was some local stores with the same card that the company investgated. got my money back,new card with new numbers & new account number. Even changed the passwords & such. they were very willing to fix the problem,thinking it could spred to other customers. good thing that I didn't mind doing to help make things better.
And that capitol one thing was def a mistake I'll not repeat. Lost more money with them that they wouldn't re-emburse. good by capitol one.
But using paypal with midwest has been great so far. Just switch to paypal,since many on line sites use it now. More protection & def more recourse if things do happen to go south.

 

[Mozart]

I've never ordered from Midwest, but just want to point out that, this forum being dedicated to homebrewing, one would expect that a lot of people on this forum would do business with Midwest, simply by virtue of what they sell.

I'm not saying Midwest doesn't have a problem. I don't know. Just saying that as a group we should be cautious concluding that they do from anecdotal evidence.

If ten HBT members had their credit cards compromised, randomly, from different sources, how many do we think could point to Midwest as a common place they've used the card?

 

[unionrdr]

Hard to say with any certainty. Info goes back & forth as small packets,& are easily intercepted anywhere along the route they take to get where they're supposed to go. so that makes it hard to blaim midwest or any one entity absolutely.

 

[PhillyMike]

I had ordered from Midwest and a few days later had my card hacked as well. I hope Midwest can identify and correct the problem.

 

[ECUmedford]

I've never ordered from Midwest, but just want to point out that, this forum being dedicated to homebrewing, one would expect that a lot of people on this forum would do business with Midwest, simply by virtue of what they sell.

I'm not saying Midwest doesn't have a problem. I don't know. Just saying that as a group we should be cautious concluding that they do from anecdotal evidence.

If ten HBT members had their credit cards compromised, randomly, from different sources, how many do we think could point to Midwest as a common place they've used the card?

This thread has had 586 views (100 are probably mine) and so far there are 10 MW customers that have had their credit card info compromised within the same 4 day period. In my 13 years of credit card ownership and purchasing online, I have never had this happen to me before. Not sure how often this happens for everyone else on this forum but I don't think this is a coincidence.

 

[ECUmedford]

My dad and I both had huge fraudulent charges on our credit cards Friday July 5th. Our banks called us to let us know about them.

The only place we both order from is Midwest Supply. So we suspect that they are the source and perhaps have had a security breach. The timing of both of us having this issue is not coincidental.

Has any other Midwest customers had a similar experience this past week?

I am an E-commerce consultant/entrepreneur and use the same Magento system they do. I noticed they have the credit card save feature enabled which I would never do on my sites.

Just beware and please post if this happened to you so we can verify the source of this issue. Thanks!

Just wanted to let everyone know that I have had multiple phone calls from MW today from their customer service team including their customer service manager regarding this issue. They assured me that they do not store credit card information and that even their managers are not able to login and view credit card numbers (same with my business). They take this situation seriously are dedicated to try to identify any potential problems and communicate if/when an issue is identified. I've enjoyed doing business with MW and this kind of thing can happen to anyone. Even our own federal government with all the resources in the world has a hard time 100% securing their systems.

 

[FuzzeWuzze]

Hard to say with any certainty. Info goes back & forth as small packets,& are easily intercepted anywhere along the route they take to get where they're supposed to go. so that makes it hard to blaim midwest or any one entity absolutely.

Easily intercepted, hardly, and they should be using https protocol for their transactions which is heavily encrypted, its the same encryption you use to log into your bank online.

Its unlikely that someone is tapping lines and snooping packets, its more likely if it is on MidWest that someone has compromised their webserver or some other server on their end.

 

[bob1852]

They assured me that they do not store credit card information and that even their managers are not able to login and view credit card numbers (same with my business).

Maybe an employee writing them down on paper?

It's happened before.....

 

[Randar]

Just to add my name to the fray... I also recently ordered from Midwest, credit card processed on June 19. I received a fraud alert call for a large erroneous charge that had to result in my account being cancelled and a new card issued. Of course, I was a couple thousand miles from home, so it wasn't very convenient.

Not necessarily 100% evident that Midwest is the culprit here, but the charge was for a pile of "telecom equipment" from somewhere in California. Co-inky-dink?

 

[vNmd]

For online purchases I have gone to using virtual card numbers...though Citi.

+1 on the virtual numbers. I love them. They are "use once". I tried using a virtual number at two places once. Which ever charge uses the number first works, anything after that gets declined. :rockin:

 

[beersnblues]

I order about once a month from midwest. After reading this thread, I checked and my card has been hacked. 3 charges today. Sears and match.com. Having a tough time explaining the latter to the wife.

 

[midwestsupplies]

Thank you to everyone that has contributed to this thread and contacted us regarding your concerns. At Midwest Supplies we take our customers' data and information security seriously. After thoroughly investigating the concerns in this thread, we do not believe they were related to purchases made at Midwest Supplies. If anything changes we will let you know. If anyone has concerns regarding their order or credit card data, please contact our customer service team at 888-449-2739 or [email protected].

We value the trust our customers place in us every time they order from Midwest Supplies. We take this trust seriously: our website is secure and encrypted, it is scanned daily to guard against any attacks, we are PCI compliant, we maintain cyber insurance, all of our employees must pass criminal background checks, and we do not store credit card information on any of our systems.

As fellow brewers and winemakers, we want to make sure you can focus on making the best possible beer or wine, every time. We will do our best to guard your information and maintain your trust.

Thanks again and Cheers.

 

[ECUmedford]

Maybe an employee writing them down on paper?

It's happened before.....

I have never placed a phone order with them where someone could write them down. I trust websites for secure transactions way more than calling any customer service.

There have been a number of eastern European cyber criminal attacks this year where they quietly compromise a website and record credit card transaction data. Eventually credit card companies are able to trace transactions to find the source of the breach.

 

[kifkroker]

My CC company called me on July 6th with an alert of fraudulent charges to Sears.com for $700 of merchandise that was supposed to ship to Iowa or Idaho (can't remember which they said). I had an order that I placed and also a partial refund from Midwest in June. No idea if it is related to Midwest specifically or not but kinda weird stumbling on this thread with the same timing of fraudulent charges as my card had.

 

[ECUmedford]

My CC company called me on July 6th with an alert of fraudulent charges to Sears.com for $700 of merchandise that was supposed to ship to Iowa or Idaho (can't remember which they said). I had an order that I placed and also a partial refund from Midwest in June. No idea if it is related to Midwest specifically or not but kinda weird stumbling on this thread with the same timing of fraudulent charges as my card had.

One of my charges was to Sears as well. There is no way this is a massive coincidence.