Abiword's PayPal Donation Fund Robbed

SabberFlapper writes "According to this Announcement to the developer list of Abiword the Abiword fund was robbed. Dom Lachowicz writes: 'I'm duty bound to let you all know that the AbiWord Fund/Tip Jar has been robbed approximately three weeks ago. I'm telling you this now, rather than sooner, since I believed that Paypal would do something about my complaints during the interim, and that this would all be resolved quietly. Today, 23 days later, this does not look like it will happen. [..] I do however, recommend doing several things: 1) Writing to Paypal, in letter, email, or fax form alerting them to this travesty. 2) Calling Paypal on AbiWord's behalf. 3) Writing or calling your Congressman/woman, pointing out that Paypal is acting like a bank, but not operating under formal banking laws. 4) Boycotting Paypal because of these reasons, and the fact that their system is notoriously insecure, and encouraging others to do the same.'" Of all the groups to steal from -- AbiWord?

Screw Paypal.

[rob-fu]

That's why I hide all of my money in a mattress.

Re:Screw Paypal.

[Xunker]

While Paypal can, indeed, be fucked up the donkey ass, you need to be fair: that charge is being levied by the credit card companies themselves, as a friend of mind who uses CCBill for his adult site got a notice outlining the same payment schecdule.

Re:Screw Paypal.

[selderrr]

found it !

How was it done?

Can somebody explain how this theft occurred. It's not clear to me from the post.

Re:How was it done?

[elveu]

actually i'd say it's more likly paypal is holding their money and have accused them of coming a crime. paypal are notorious for doing this.

Re:How was it done?

They create and distribute free software, it's a violation of the DMCA.

Re:How was it done?

It doesn't make sense to me how this could happen. Someone took money out of AbiWords account to buy a digital camera. That camera has to be delivered to the person who hacked into Abiwords account. Find out that adress, go over then and beat the crap out of the guy!

Re:How was it done?

[Black+Copter+Control]

Find out that adress, go over then and beat the crap out of the guy!

My thoughts is more along the lines of: find out who it is, track them down, and have them charged with wire fraud.

Chances are that the cost to paypal of dealing with the court order, etc. would be more than the cost of them dealing with this in a more sane manner... but what the hell!

And I really do think that the cretin that did this deserves to get a criminal record for this anyways... Chances are that this isn't the only account that (s)he's robbed.

Re:How was it done?

Can you beat the crap out of the guy AND charge him with wire fraud ;) ?

Re:How was it done?

Go away, Tom.

Re:How was it done?

And the moderation of your post is yet another example.

Sigh... why do all these petulant children think that they will ever get any respect for their little hobby? On one hand the hairy, unwashed RMS spews forth completely irrational demands for this or that to be made "Free", in a manner and in terms reminiscent of Karl Marx. On the other hand reasonable discussion is actively squashed by a bunch of defensive pouting wannabes who instinctively squash dissent with a single mindedness more suited to J.Edgar Hoover than people who supposedly believe in "Freedom".

Please play nice children.

Re:How was it done?

[Ponty]

Did you bother looking at the article to see if you might be remotely correct? Because that conclusion can't be a result of the post. In fact, it can only be a result of your kneejerk blind automatic response.

For you and the others who didn't bother reading the article: some scuzbag broke into the Abi account and used it to pay for an eBay auction. As a result, I suspect it will be not-extremely-difficult to catch this wacko (as he had to have it shipped.) I sincerely hope that all parties involved pursue this to the extent of the law.

I also am a little uneasy about PayPal. I use it frequently and haven't had any major problems, but I am aware that there are people who have been royally screwed. I hope that the new management (eBay) bring a new level of customer responsiveness to the company.

Re:How was it done?

[hansroy]

Chances are, if the thief was even moderately intelligient, the package was delivered to a drop location, not the person's house.

Re:How was it done?

[frost22]

[...]going to the link [...] you could very easily determine whether or not your 'theory' was true.

You, Sir, are a troll.

Either you haven't read that mail as well, or you are intentionally lying. The mail at the link does not contain any information how this fraud was possible.

Re:How was it done?

[alexburke]

Can somebody explain how this theft occurred. It's not clear to me from the post.

How about this? Could Dom have been suckered by such a message? (More details here.)

Re:How was it done?

Can you beat the crap out of the guy AND charge him with wire fraud ;) ?

I think the precedents suggest you should get the conviction first THEN beat the crap out of him. Not sure why, just one of those law things.

Re:How was it done?

[BitterOak]

As someone who has been the victim of credit card fraud myself, I can tell you that nine times out of ten, the address is a Mailbox's Etc. address, or a similar service that allows anonymous mail pickup.

Re:How was it done?

[Black+Copter+Control]

Can you beat the crap out of the guy AND charge him with wire fraud ;) ?

Depends on the mood of the cops that deal with him. I was once involved in the citizens arrest of a guy that was abusing his girlfriend on the street. I was on the bus, and when we saw this, the bus driver stopped, and a bunch of us got out to help the woman. As soon as he saw that help was comming, the guy just stopped, and didn't offer any resistance. When we asked him what was going on, he said "That's OK, she's just my ex". That's when I placed him under arrest.

While we were waiting for the cops to show up (took maybe 2 minutes), another passenger got off the bus, called the guy a fu*king asshole and punched him in the face, giving him a bloody nose.

When the cops showed up, they asked about the bloody nose, and I replied, "somebody hit him". They didn't blink and they didn't bother to ask any further.

Although I'm generally anti-violence and waved off the guy that hit this bastard, I'm not completely sad about that outcome. I'm presuming that he plead guilty because I haven't heard any further from the cops about this incident.

Re:How was it done?

[Jucius+Maximus]

"Can somebody explain how this theft occurred. It's not clear to me from the post."

Typically what happens with PayPal cases like these (they're extremely common) is that the account is "restricted" from some trivial reason like a cancelled payment or for no reason at all, and then it is impossible to withdraw money from the account. Then PayPal will start making unauthorised withdrawals from you bank account and credit card. They won't unrestrict the account until you fax them utility bills, social security card scans, drivers license scans, etc multiple times because they always claim they they didn't receive the information. Even then, it is rare to get the account un-restricted. Complaints and investigations by police, government, etc tend to get the account nuked. And of course you never get your money back.

Hence, you have been 'robbed' by paypal.

Re:How was it done?

[Jucius+Maximus]

I take it back.

In true slashdot style I did not read the article, but now I see that this specific case does not (seem) to involve a paypal imposed account restriction. I just assumed that this was another case of the typical "paypal stole my money" story.

Re:How was it done?

[seann]

my g/f was a victim of credit card fraud
we knew the mailbox at mailboxes etc
we knew the address of which it was delivered too
and we knew whos account it was (A timeshare company)
and we knew who had access to it.
It was a friend of hers mothers/somebody she took in from her works buisness mailbox.
we blamed it on her, gave a bunch of computer evidence, blah blah.
never heard back from the company, she didn't pay it though.

Re:How was it done?

[ahacop@wmuc.umd.edu]

A friend of mine also recently had money stolen from his PayPal account. The person who stole his money also bought digital cameras with it!

Weird! I wonder how many people this guy has ripped off!

Paypal is unsafe!

[Jucius+Maximus]

"I believed that Paypal would do something about my complaints during the interim, and that this would all be resolved quietly."

Do your research. I never donate if it's a paypal tip jar because of things like this and this. Paypal based donations are a disaster waiting to happen.

I'd write letters...

But someone stole my copy of AbiWord.

More proof...

[GundyRage]

PayPal Sucks crap. Ebay + PayPal = Huge pile of crap! I wish it were not so. G

Don't give them bank details

[Kris_J]

This is why I don't give PayPal my banking details no matter how much they try to bluff them out of me. Just credit card -- that way if they let any of this crap through I can block the credit card payment.

They actually tried to tell me that I couldn't accept a payment without bank details a couple of days ago. When I pressed the only button that didn't cancel the payment I was *then* given the option to accept without adding bank details.

PayPal is like the stock market -- don't put anything in that you can't afford to lose.

Re:Don't give them bank details

[whereiswaldo]

That's great advice - wish I'd heard it earlier. I got screwed just this way. I purchased something using PayPal and when the seller screwed me, I tried to get my money back through the bank. Too bad PayPal didn't use the VISA option on my debit card, but the debit account. So, my purchase wasn't automatically insured as it would have been had the payment went through VISA. PayPal is comprised of a bunch of blood sucking leeches. That goes for EBay, too. By the way, try and contact somebody at either establishment. Have fun.

Re:Don't give them bank details

Maybe somebody should write a PayPal HOWTO so people can avoiding making mistakes like that.

Re:Don't give them bank details

[Ron+Bennett]

Someone has...check out these sites:

paypalwarning.com
paypalsucks.com

Re:Don't give them bank details

[Alsee]

Maybe somebody should write a PayPal HOWTO so people can avoiding making mistakes like that.

Sure, no problem!

PAYPAL HOWTO
-----------------------

(1) Don't.

-

Re:Don't give them bank details

[gengee]

I think that's PayPal's business model - fuck people out of their money, and make damn sure they can't find a phone number.

They do exist though.

# Their toll free number is (888) 221-1161
# Another toll free number is (800) 836-1859
# Yet another toll free number is (877)672-9725
# Their NEW regular telephone number is: (650) 864-8000
# Their regular phone number is: (650) 251-1100
# Their fax number is: (650) 251-1101
# Their mailing address is:

PayPal
P.O. Box 45950
Omaha, NE 68145

# Their corporate offices are at:

1840 Embarcadero Rd.
Palo Alto, CA 94303
US

# The Nebraska office is at:

Paypal
11128 John Galt Boulevard
Omaha, NE 68137
(402) 935-2000
(402) 935-7733

If you're one of the legions who've been fucked, there's a class action lawsuit you might be eligible to join.

Once I finally got through to someone at PayPal, they were pretty good about getting me my money. But it was a royal pain in the ass.

Re:Don't give them bank details

[Huff]

1. Don't
2. ???
3 PROFIT!!!!!

ok ok...... i'm sorry.... i got carried away

Re:Don't give them bank details

2. Get wacky Brittish Patent.

Re:Don't give them bank details

[sporty]

l11128 John Galt Boulevard

Forgive me for asking.. but that name sounds familiar. Who is John Galt?

Re:Don't give them bank details

[DoorFrame]

Ha. Petty funny.

Re:Don't give them bank details

[VargrX]

Ask Ayn Rand. She'll tell you all about him...

Re:Don't give them bank details

[allism]

Easiest way to do it...think of PayPal as a dear but irresponsible friend who never locks his doors and sometimes forgets where he has put things. Would you trust your dear friend to do much more than hold money longer than an hour or two to pass it on to someone else? Surely you wouldn't leave money with him for weeks or months on end, who knows where he would put it...

I treat just about anything that isn't insured like that--I really hate getting ripped off...

Re:Don't give them bank details

[Ralph+Wiggam]

You got screwed by a seller who didn't ship the item you paid them for. I don't see why this is PayPal's fault. Maybe PayPal didn't do enough to help you get your money back after the fact, but they weren't the ones that screwed you.

Re:Don't give them bank details

[sg_oneill]

Isn't Ayn Rand dead or sumfin? Maybe I'm just trippin or I missed the meaning of that all together. (Grumbles about Stupid "Objectivists" and digging dead authors up JUST to kick them and bury them again).

Re:Don't give them bank details

reminds me of a book about dating my college roomate once read (the book is intended for guys)

How To Meet Her Parents

Dont.

[Next Chapter Headline Here]

Re:Don't give them bank details

[mbogosian]

This is why I don't give PayPal my banking details no matter how much they try to bluff them out of me.

Schwab has deposit-only account/routing numbers for all their accounts (they're the ones given out for direct deposit, currently under Account -> Transfers & Payments -> Direct Deposit). If money is attempted to be removed using the same numbers, an "account not found" error is given (saving the fees from both ends associated with the "account overdrawn" error). This works with PayPal, because they verify your account by depositing small amounts of money into it (which will work).

Granted, you have to have quite a bit of dough for it to make sense to use Schwab for checking, but it would be interesting to know if any other banks provide this kind of service. Of course, it would be more useful if one could pressure all banks to provide this. Then again, I guess the ultimate solution would be to have the same consumer protections that apply to credit cards also apply to one's account/routing numbers.

Re:Don't give them bank details

Southpark :)

Re:Don't give them bank details

[discHead]

I took a look at paypalwarning.com. I'm rather amused to see Citibank recommended as a more trustworthy provider. With friends like those, who needs enemas^H^Hies?

Re:Don't give them bank details

[Skuld-Chan]

I don't get it - I've used paypal since the day it came out and made literally hundreds of transactions using the system. I've never had problem one with it - and I've ever done refunds.

I've never had anyone rip me off (I rarely have any large sum of money in there actually - and neither should most people if they are wise).

Re:Don't give them bank details

The FUCK?


Slow Down Cowboy!

Slashdot requires you to wait 20 seconds between hitting 'reply' and submitting a comment.

It's been 5 seconds since you hit 'reply'!

Note: chances are, you're behind a firewall, or proxy, or clicked the Back button to accidentally reuse a form. We know about those kinds of errors. But if you think you shouldn't be getting this error, feel free to file a bug report, telling us:

Please set the Category to "Formkeys."

Thank you.

Re:Don't give them bank details

I work in IT in a Bank in Australia.

For us:
It is theoretically possible for us to open an account that is deposit only (to the outside world), although I don't believe we offer that as a product.
(almost) All transactions that come from other banks come in under the Australian Payments Clearing Association (APCA) Bulk Electronic Clearing System (BECS) Clearing System 2 (CS2)
Under that system, all transactions have a transaction code. This code marks the type of transactions. There is only 1 allowable debit code (code 13).
We could create a rule that will reject all transactions on type 13.
We can further restrict it by transaction origin, so we can stop transactions of type 13 that come from interbank clearing.

In our case the transactions would be rejected, and we would send it back the next day with "Transaction Refused"
Not quite what schwab does, but we're a fairly specialised bank, so it's not really in our line of business.

What surprises me

[einhverfr]

is that any business which faces any regulatory liability would not stand by their customers, esp. under a threat of letter writing campagns to congressmen who have the potential to do some real damage via congressional inquiries....

Re:What surprises me

[shepd]

Maybe if paypal acted good-hearted, and at least put up some easy contact info so you could get some help tracking down the scammers they wouldn't have such a hard time.
This is like putting your stuff in public storage, having the garage broken into, all your stuff stolen, only to find out they've replaced the attendant with an automated box and have chosen to leave you no way to contact a person.
It's despicable, and it stinks of fraud.

Re:What surprises me

[ElvenDrake]

Narc.

Re:What surprises me

[alexburke]

PayPal isn't a bank. They don't claim to be a bank. They are not insured like a bank. So why should they have to act like one? They are a payment clearinghouse.

I call bullshit -- or at least misinformed.

Not only do you accrue interest on the cash balance in your PayPal "account", they also have a money market fund you can invest in.

If they aren't trying to be a bank but saying otherwise, I... never mind.

My point is that PayPal are whores with the ethics of a petty thief, and I sincerely hope eBay straightens them right out.

However, since I read about the debacle of eBay CSRs getting told off for shutting down questionable auctions because those auctions belonged to Power Sellers (eBay's most profitable customers), I'm now questioning eBay's ethics/morals as well.

*sigh*...

Re:What surprises me

[alexburke]

To clarify:

(1) The first line should have been italicised, since I was quoting the parent comment.

(2) The eBay CSRs were being told off by their supervisors, not by the Power Sellers.

Re:What surprises me

[shepd]

Being hard to contact isn't fraudulent, but I believe it is a good indication of possible fraudulent behaviour. Sort of like when a store quits answering the phone all of a sudden for weeks on end... you get this feeling that something isn't right there. And, strangely enough, it's never failed for me.
And if paypal wants to be an internet only company, fine. They should act like it, though, and get the asses moving on the emails. An internet only company should have given him an answer in under 24 hours. If any internet only company takes more than 48 hours to get something done for me, I get antsy.
This guys been waiting weeks! I've seen letters cross the atlantic and pacific oceans faster than they respond to problems.
Saying "Don't like it? Take your business elsewhere." is a cop-out. I'm soon going to be running a computer company, and if it were broken into and a customers machine stolen, I wouldn't tell them "too bad, and don't bother talking to me again". I'd probably go to jail.
So, if I can't cop-out, why can PayPal? Because everyone "knows" they're a bunch of crooks? That's a pathetic excuse.
[ And yes, I do do my business elsewhere. I'd rather give the crack addict my money to look after than PayPal. At least I'd know where it ends up. ]

Re:What surprises me

[Grax]

There is no excuse for not having live telephone-answering customer service. Imagine if your local bookstore quit answering the phone because they do all their business in the store and none on the phone.

I quit using Amazon.com after I decided I needed to call them and discovered that their "Contact Us" page does not contain a phone number.

I encourage everyone to boycott companies that try to avoid spending money on a very necessary call center. Sprint ($5 if you want to make a credit card payment while talking to a live representative), Amazon.com (I dare you to find a phone number on the 'Contact Us' page), and any others.

Re:What surprises me

[edwolb]

Bullshit. If you're going to provide a service such as accepting credit card payments, you have to have a secure way of handling them. It's absurd that you could legally provide a service such as money collection and not guarantee that you were given every penny you were promised. Shame on paypal...

Re:What surprises me

[nyseal]

The problem isn't whether or not they're a bank; it's whether or not they're a 'secured' service. Believe it or not there are nightmare stories of this 'service' stealing people's money in what they call an 'account'; you get no access, no retrieval and no reprieve. if you trust this type of 'service' with your money....go right ahead; don't complain when they screw you too.

Re:What surprises me

[alexburke]

You accrue minimal interest. It is not substantial.

The same can be said of nearly every checking account in the country.

Money markets are not exclusive to banks. I could open one up tomorrow.

Okay then, what about their debit cards? Think you could open up your own debit card system tomorrow and hook yourself up to the national ACH (automated clearinghouse) network?

I didn't think so.

If it flies like a duck, and waddles like a duck, and quacks like a duck...

PayPal, as much as they claim not to be, is a bank.

Re:What surprises me

[sql*kitten]

PayPal isn't a bank. They don't claim to be a bank. They are not insured like a bank. So why should they have to act like one? They are a payment clearinghouse.

They take deposits and pay interest, and are covered by FDIC. That legally makes them a bank, whatever they may claim.

Re:What surprises me

+1-206-266-2187 (from WHOIS record, so could be a lie)

Re:What surprises me

[alexburke]

Western Union does not permit you to carry a balance on account with them.

Western Union does not permit you to have an account in the common sense with them whatsoever.

Re:What surprises me

[boopus]

So, by that logic can I be a bank by saying "I'm a Bank"? Can I not be a person by never claiming to be one? I'm more of a believer in being defined by actions, not words...

Re:What surprises me

[SurfsUp]

"There is no excuse for not having live telephone-answering customer service. Imagine if your local bookstore quit answering the phone because they do all their business in the store and none on the phone."

I dont see that'd be a problem. I live in area with sidewalk merchants. Are they dastardly because they dont have phone numbers? No. Of course not.

Make your choices, and have fun. But I think its stupid. If you perform 99% of all transactions with a company online, why should you switch to phone for that last 1%? It doesn't make sense.

The whole point of the Internet is that Its Not Phone.

Where are you coming from? It sounds like you are arguing that fraudulent business conduct should be condoned; you'd prefer we all just wink and look the other way. What, you don't think Pay Pal really does anything wrong? You'd do well to stop spouting and start doing your research.

Read here. I can personally assure you that this is highly accurate, as it has in fact happened to me.

Or if you prefer, read court documents. Yes, there are plenty of those to read.

Re:What surprises me

[Grax]

You can talk directly to the sidewalk merchant in person. You can probably go back and find them in the same spot if your Rollex quits working.

I see more value to the existence of the internet beyond just "Its Not Phone". Phone doesn't provide pictures and documentation and reviews.

I don't like the de-personalization of business. If I feel that a company has no soul I will move on. I want a company that tries to treat me like a human being.

Re:What surprises me

[Moonwick]

Maybe if you weren't so prone to having problems it wouldn't matter.

I've placed qutie a few orders with amazon in the past, never once encountering a problem that would have only been solved in a timely manner by talking to someone on the phone.

Do me a favor and keep my costs low by taking your business elsewhere.

Re:What surprises me

[SurfsUp]

Western Union isn't a bank, and neither is PayPal.

Why did you just post 17 articles in defense of Pay Pal?

Re:What surprises me

[mosch]

I've had to deal with amazon.com's customer service, and it's no problem. They don't have a phone number, but they answer emails quickly and helpfully.

sprint on the other hand is a really disappointing company... i'm getting rid of sprint, though for entirely different reasons.

Re:What surprises me

[Black+Copter+Control]

Make your choices, and have fun. But I think its stupid. If you perform 99% of all transactions with a company online, why should you switch to phone for that last 1%?

If that bad 1% costs you half the income from the other 99%, when what's the value of doing the work to begin with?? You might as well walk away from the process and save yourself the trouble of doing all that work for the benefit of some crook.

Re:What surprises me

[rew]

The whole time you deal with PayPal, you do it all through website/e-mail, right? Why should that change just because you got screwed?

Whoa there! That would be fine and convenient, yes, but then they would be required to properly handle the issue over the EMail. They are allowed to have a couple of "canned" responses ready for popular questions, but you have to be able to get through to a human one way or another.

It is the flexibility of then screwed customer that they are willing to switch to some other form of communication than "the internet". But it usually only happens if contacting a human through the internet doesn't work.....

Roger.

Re:What surprises me

[Mnemia]

I don't think PayPal should "eat" any costs for these fradulent transactions. They do not provide insurance on transfers. But I think they have an absolute obligation to investigate complaints of fraud, including publication of detailed contact information and tracking of illicit purchases such as this. Paypal could easily work with the merchant involved in that transaction and get the order stopped and the individual found through shipping information, etc. The could go to the FBI or some other authority with this data. But they refuse to do so because they do not want to employ even enough staff to do minimal protection of their customers.

It *is* a problem with their security because they don't have any security other than a password. A password will not magically protect you from all evildoers and is even a rather weak form of authentication when they could be using e.g. some sort of downloadable client with a private key signature scheme. This is necessary IMHO for these sorts of high risk environments like the one Paypal serves. And authentication alone is not enough - they must take steps to investigate claims of fraud and punish those who perpetrate it.

It is well known and has been for a long time among criminal elements online that Paypal is an easy target for fraud and that little investigation is done. This attracts more of this tyoe of person to Paypal.

I know I made the right decision when I closed my account with them a long time ago, when their abuses first began to surface. If they are handling people's money, security should be their foremost concern, and I didn't trust them with the security of my money. Not to mention that they are probably stealing people's money directly themselves.

I'd like to know why you seem to support this behavior as strongly as seem to based on your comment history. Do you have some interest in promoting Paypal?

Re:What surprises me

It sounds like you are arguing that fraudulent business conduct should be condoned

I don't think he's saying anything of the sort. I think what's he saying is that it's slightly irrational to expect that a company, which does all it's business over the internet, be required to have a phone number to call so you can bitch at someone.

I understand people get peeved, but you know what? If you're talking about money, a letter sent certified mail to their US address alerting them to what has happened will count a HELL of a lot more than you yammering away at some poor guy in India for several hours.

I'm reminded of working in tech support when we made the switch from 800- to long-distance support. May I suggest, sir, that when Jim-Bob down the street builds your next computer, that he try to use components that were built by at least third world labor? And, yes, I know, it's our fault that your drivers weren't written properly, and yes, it's our fault that you have to call on your own dime to vent your frustration.

Re:What surprises me

Paypal is just stupid. All of their business are based on credit. When they lost their credit amount their users, they are out of business. I can see it coming

Re:What surprises me

[jgerman]

I dont see that'd be a problem. I live in area with sidewalk merchants. Are they dastardly because they dont have phone numbers? No. Of course not.

If course you don't see the problem. With the sidewalk merchant's you haven't given up the immediate and direct-response two way communication in the case or having problems with whatever business you have to discuss. Perhaps, you have never had a problem with an online only merchant, so you really don't understand. But for the people who have been screwed it's very important to talk directly to someone to find out what exactly is being done about their situation. It makes total sense.

Re:What surprises me

[jgerman]

No matter how hard you pretend, PayPal isn't a bank

bank - An establishment in which money is kept for saving or commercial purposes or is invested, supplied for loans, or exchanged

Nuff said, nice try PayPal employee.

Re:What surprises me

if I come up to you on the street and say: "if you give me $5 a week, I will give you back $5.25 when you take the money out". Does that make me a bank? Should I be federally regulated? Whats the difference if PayPal does it on a large scale?

What difference if Chase or CitiBank do it on a large scale?

Re:What surprises me

[DrPepper]

I'm sure you are correct for the US, but for the UK they do have a phone number - and, in my experience, it's better than the email support.

I recently ordered some video tapes, and one was blank after the first five minutes. Initially I tried their email support, but spent a week receiving just form emails that didn't answer the question.

So I gave them a call (expecting to be on hold for ages) but got answered within a minute and had new tapes sent over next day.

Next time I have a problem of course, I'll call first rather than email - which won't do much for their bottom line.

Re:What surprises me

[gilroy]

Blockquoth the poster:

Does that make me a bank? Should I be federally regulated? Whats the difference if PayPal does it on a large scale?

Oh, that's just silly. The difference lies entirely in the scale. Or are you saying Chase Manhattan should be allowed to run just like you, if they stop calling themselves a bank? You are taking a small example between people who know each other and extrapolating way beyond belief to a situation wherein the whole process is institutionalized and commercialized.

PayPal is much more a bank than a friend.

Re:What surprises me

Boy O Boy,

If I had some mod points I would be hitting you with -1 Astro Turfer on every post.

No one posts 17 times on the defense of a foreign entity. They make their point and move on.

Unless you require some drugs to maintain a normal state of psychosis...

Re:What surprises me

[ZeLonewolf]

Second, if I come up to you on the street and say: "if you give me $5 a week, I will give you back $5.25 when you take the money out". Does that make me a bank? Should I be federally regulated? Whats the difference if PayPal does it on a large scale?

No, that makes you a racketeer :-)

Re:What surprises me

[Natalie's+Hot+Grits]

IANAL but...

Being hard to contact in itself isn't fradulent. However, it is fraud when they are avoiding customers who have legitamate claims against them, wether they know it or not. In this case, it is fraud. Period.

Any company who is accepting money from anybody and ignores those same people when they attempt to contact them for a complaint against the service or product is fraudulent. therefore, PayPal may be fradulent. This is evidence that can be presented in court against PayPal and it would stand up as well. (Unless there is a contract that was signed stating otherwise)

Re:What surprises me

[Dwonis]

A password will not magically protect you from all evildoers and is even a rather weak form of authentication when they could be using e.g. some sort of downloadable client with a private key signature scheme.

Or client SSL certificates, which are already standard.

Re:What surprises me

[ergo98]

Because he's defending a position and is enjoying the conversation? Is it more noble to come out with arms swinging at PayPal?

I've used PayPal for over a year now, receiving several payments and making several payments. I haven't had an ounce of trouble. I don't have the ability to know the customer satisfaction numbers, but it does seem entirely possible to me that there's a small number of very vocal cadre of disenfranchised customers who now a screaming for revenge for perceived ills. There is such a thing as noble crusader, but just as real is the revenge seeking maniac who'll stop at nothing to make an organization "pay" because they got slighted in some way.

Re:What surprises me

[mindlace23]

They have pass-through insurance. i.e. they deposit your money in an actual bank account.

The money market accounts are explicitly not covered by FDIC insurance, the same as anywhere.

Money market accounts can be offered by anyone.

They are not a bank.

Re:What surprises me

[Reziac]

I don't think Paypal has any responsibility for user-to-user fraud either, any more than your bank is responsible if you pay by check and get ripped off by the seller.

However, I think Paypal DOES have responsibility when their own system is broken into, and when their system is hacked to gain access to your personal bank account. THAT is where the real issue has been, from all I've read in the past.

As to the issue of passwords -- this is just like the PIN number used to access meatspace bank accounts. Is the bank responsible if you share or lose your PIN number or if you used something guessable like "0000" ??

Re:What surprises me

[Natalie's+Hot+Grits]

"Really? Are you high?"

sorry, yes :)

Re:What surprises me

[gaj]

I'm as interested in restoring a sense of personal responsibility to the world as you are. I'm also interested in restoring a sense of professional and/or corporate responsibilty. As part of that, I think it is reasonable to expect PayPal to at least persue fraud allegations promptly. I agree that they shouldn't be expected to eat the costs of fraud, but they shouldn't abandon their customers to the winds, either.

In the end, though, you are correct: the only real, effective recourse is to take our business elsewhere. Nothing says "You Suck!" like being put out of business because you pissed off your customers.

Re:What surprises me

[steveargonman]

Sprint's PCS Billing Department leaves a lot to be desired. So does LISTEN.COM/RHAPSODY's Customer Service.

Re:What surprises me

[mindstrm]

Unfortunately, no company "owes" you customer service the way you want it.

Paypal doesn't have great customer service because they don't need it: they are still #1, even without if. If there was more competition for them, things would be different...

Re:What surprises me

[Mnemia]

I don't think that you deserved the abusive flamebait moderation that you received, but I still disagree with you strongly.

I disagree that Paypal has not promoted itself as a secure option. Note this interview, linked on the front page of Paypal. Then surf on over to this page in which Paypal states that "The security of your information, transactions, and money is the core of our business and our top priority at PayPal." Looks to me like they are in fact promoting their business as something other than what it is. In my mind, that's unethical at best and fraud at worst.

So, I don't think everyone knows that Paypal has such poor security. You and I know that, because we make an effort to stay informed about such issues. But you sure wouldn't know that reading their site. And when I've mentioned PayPal's record to many of my less sophisticated Ebay using friends, they have in general been totally suprised and shocked to hear the evidence against Paypal.

I have NEVER suggested that Paypal should eat the costs of all consumer fraud, though you seem to think that's what I'm suggesting. I AM NOT. I agree that there is always some degree of risk in an online transaction, and that's not Paypal's fault. But just as people should take responsibility for the security of their own money, Paypal needs to take responsibility for what they have been doing. Instead, they try to hide behind a cloak of facelessness and claiming that they are exempt from the rules that apply to all other similar businesses.

This is by no means an issue of the government beating up on poor little Paypal and taking their right to run their business as they see fit. This is an issue of Paypal stealing from customers and aiding and abetting in fraud by others by refusing to even turn over evidence against those who perpetrate it.

Re:What surprises me

Hey Dan,

1. Was the password cracked?
2. Does PayPal's system accept passwords like "x", "orange", "rover", or a word that is the same as the account name? If so, isn't that the fault of their system?
3. Did the cracker obtain any information from Paypal, either from systems or by social engineering, that enabled him or her to commit theft?

You obviously know the answer to those questions, or you would not be able to place blame with apparent 100% certainty.

Re:What surprises me

"So, by that logic can I be a bank by saying "I'm a Bank"?"

Wow, you are an idiot.

Re:What surprises me

[WhiteDragon]

Client SSL certificates don't solve the problem, merely move it down one step. A client cert is frequently not even secured with a password, there is no way paypal can verify your cert password strength. With your password entered on the paypal wbesite, they could in theory at least do password strength checking. In addition, a client cert should be signed by some CA, and the CAs don't know who you are; it is not like you have to go in person to verisign and show them id to get a cert. Not to mention how easy it is to be your own CA.

Re:What surprises me

[WhiteDragon]

in the link about FDIC insurance coverage, they specifically mention that your money is stored ELSEWHERE in a FDIC insured bank. Paypal is not storing your money, they are putting your money into a third party bank account by proxy.

Re:What surprises me

[SurfsUp]

Thats all. I dont use paypal, and I dont condone paypal. But everyone knows it sucks,

That's where you are sadly, horribly wrong. Most people out there don't know it sucks,, and nonetheless do not deserve to be abused because of that. Sure, if you know and you get burned, well, you knew what you were doing. But if you didn't... that's why there are consumer protection laws. To keep people from serving you icecream with dioxin in it. Otherwise, they would - it's a big old world, and there is always someone willing to step across the line for a buck.

and if you choose to use it, its at your own risk. Essentially, do what you will. But don't crying to me when you get fucked.

OK, so I see where you are coming from, you just don't think things all the way through, and you get defensive when you get called. Plus you have all day to sit and post on Slashdot ;-)

(Earth to Dan Heskett.)

Re:What surprises me

[macdaddy]

Ha! I ordered a clock for my motorcycle from a company in Portugal. It arrived in less than 48 hours via UPS, standard shipping. The day before I made that order I placed another order for something of similar size/weight (I forget what it was now) from a Florida company. It took a total of 6 days to get to me in KANSAS! UPS, standard shipping. :)

Re:What surprises me

[macdaddy]

So your sidewalk merchants choose to do business with people that don't have physical access to their storefront? With people thousands of miles away over the Internet? I doubt it. Big, big difference.

If I need to contact somebody for an emergency, I will do it over a regulated "legally-provable" means like a telephone or via certified USPS. Email isn't regulated. Hell email isn't even garunteed. Just because an email from your MUA was received by you MTA does not mean that it managed to find a path across the Internet to their MTA, their LDA, and their MUA. Any number of things could have happened to it in the process.

Re:What surprises me

[macdaddy]

What IS Paypal's fault is not being of ANY assistance to their customer to regain their money. I'm not saying the Paypal should cough up the missing greenbacks. I'm saying that Paypal should be responsible enough to give assistance to the victim. Provide the victim with web logs (before they're rotated out of existence). Provide them with information about the fraudulent transaction that took the $$$. Would Paypal be as uncooperative to law enforcement? If there were they'd be up on obstruction charges pretty god damned fast.

One thing that I'd sure as hell do is file a formal complaint with the BBB and state AG about Paypal's uncooperativeness.

Re:What surprises me

[shepd]

Jeez, I envy you people in the US, being able to order international and all. Our (idiot) Prime Minister slapped enough taxes and tariffs on "personal" imports that you have to add another 50-100% of the sticker price to get it over the border. Uggggh... My satellite DVB card sure went from $199 US to $450 CDN in a hurry (this was before the loonie was completely worth squat -- not that it was great then).

Re:What surprises me

[j-beda]

Canada has very little in the way of duty or import fees for products from the USA.

Now what they do have are fairly significant taxes (PST and GST combine to about 15%) and many (but not all) shippers charge huge brokerage fees. I think UPS charges a minimum of $25 while the postal service chages a flat $5 for customs brokerage.

$200 US is about $300 CDN which would generate about $45 in taxes. What other charges were you hit with, $50 shipping and $50 brokerage?

While one can certainly complain about high sales taxes, it really is not a specific problem with importing stuff, and you cannot really blame the PM for the shipper's charges.

Re:What surprises me

[shepd]

>Canada has very little in the way of duty or import fees for products from the USA.

That was about 7 years ago.

Here's the new rates, UPS style. And here's basic mail rates.

So, here's the breakdown for a $300 CDN item:

$32 brokerage + duties + PMs import tax + GST = $$$$.

Read it and weep. It costs a hell of a lot to import into Canada unless you're a business. I know, I've done it enough -- it's tough to get good electronics parts in this country. And going with another carrier only shifts the responsibility of paying the brokers to it being part of shipping, rather than an extra amount at the door. $32 is pretty low -- I've seen it as high as $40 for a shipment under $100.

>$200 US is about $300 CDN which would generate about $45 in taxes. What other charges were you hit with, $50 shipping and $50 brokerage?

Well, it was shipped from Michigan to Ontario, and was in a box about the size of a large paperback novel and about the same weight. IIRC shipping was about $25 CDN. Another $25 CDN for brokerage, the rest the PMs special import tax.

This once pointed to a comprehensive set of costs to import. Interesting that now it's close to election time it's gone missing...

>and you cannot really blame the PM for the shipper's charges.

I'm looking hard for this, but the PM specifically instituted an extra tax on import goods, past the GST. And it's huge. About $50 for $100 in goods, and it went up in proportion to that.

Well... look at that. It's near election time and I just found this. The updated version of that form. Looks like they just took off the extra tax for election time. It's better than a Shawinigan slap-in-da-face, I suppose!

Of course, now they choose to limit our freedoms on stuff we can legally buy here...

"You cannot import items such as: pornography; obscene and seditious material;"...

Great... Way to sanitize the country! You go, PM! Nothing but women mounties showing it all for me!

I can assure you I've been hit by these duties multiple times. My favourite was a $70 US box of PCBs that ended up at $130 US... It was still worth it, though, since the only company that seems to sell presensitized PCBs in Canada is MG Chemicals, who charge 2x to 5x the value of any product for some reason.

[Just look on the newsgroups for some info on how bad rates to import into Canada have become since Chretien got into power].

I can try to find you an article on this extra tax if you'd like. A lot of implementing it had to do with keeping internet business and economy in Canada, IIRC. Me, if I can't find something, though, I just don't spend the money rather than find an inferior solution, which is far worse for the economy.

Re:What surprises me

[j-beda]

Well, I would be very interested in learning about this "extra" tax you speak about - I certainly can't find any reference to it anywhere. I have been ordering a fair bit of computer hardware over the past few years, and have never been charged anything by the government other than PST and GST for any of that - NAFTA seems to have eliminated any import taxes on the items that I have purchased (books, computer hardware, clothing). Please dig up your forms for your most recent shipment and let me know exactly what this tax is called so I can learn more about it.

One place to save is in the customs brokerage fees - if you are in a city with a customs house (Montreal or Vancouver for instance) you can do the brokerage yourself and not pay anything - I would imagine that CCRA has info on that somewhere. Another option is to use the postal system since Canada Post does the brokerage for $5.

Canada's obscenity restrictions have been around for much longer than our current PM.

Re:What surprises me

[shepd]

>Well, I would be very interested in learning about this "extra" tax you speak about - I certainly can't find any reference to it anywhere.

I'm looking for it. I wish I had saved a copy of the old guide. There was a table right in the middle of it that's missing in the new copy -- it clearly stated the taxation on various prices of goods, and it was always far more than 15%. Usually about 30%. This, of course, is before brokerage (or is it? that could be the missing link)...

As soon as I find something decent I will either post it here or to my journal. I recall a CTV Goldberg (or whatever they call the guy who used to do the consumer protection style news for CTV) episode where a lady bought some books from Amazon and ended up with a bill for twice what she paid. It all ended up as taxes, brokerage, and shipping... I'll try to find more.

>Please dig up your forms for your most recent shipment and let me know exactly what this tax is called so I can learn more about it.

I certainly would, but it was almost 2 years ago when I ordered my last product stateside, so I doubt I've still got them.

I only remember the total price because I phoned up FedEx asking why the heck my package from Michigan was taking a week to get here via "overnight" shipping. When they told me it was because they were clearing through customs and that the shipping charge (including, IIRC, all tarrifs/brokerage except GST or some odd thing like that) was $75 total I blew my stack and told them to shove that package where the sun don't shine. After a lot of looking about in Canada for the same thing, I gave up and phoned them back. They hadn't destroyed the package, and I just paid the $75. [Hey, what's the choice? American DVB internet is $50/US a month, equivalent Canadian DSS (there's no DVB, AFAIK) internet is $400/CDN a month -- thank God the CRTC can only tell me not to surf Canadian websites using it, and still let me buy at least _that_ from the US tax free. Coming to think of it, actually, a good chunk of my money is/was slowly disappearing to the US with emusic.com, usenet.com, and Nebulink on my CC. All in the name of competition, I suppose].

>One place to save is in the customs brokerage fees - if you are in a city with a customs house (Montreal or Vancouver for instance) you can do the brokerage yourself and not pay anything - I would imagine that CCRA has info on that somewhere. Another option is to use the postal system since Canada Post does the brokerage for $5.

Unfortunately, there's no brokerage houses here -- the nearest border is an hour away. Trying to get US companies to ship via Mail is like pulling teeth -- I always knew about their good brokerage rates but could never use them. Unless you can convince the people on the other side to ship that way, you're SOL.

Here's a couple of other horror experiences on the same subject.

A lot of it does seem to be brokerage fees. Could it be that the old pamphlet was including them, and that I'm a little confused on exactly why the PM is at fault (is it for adding a hidden tax, or for simply allowing these gross brokerage rip off scams, or could it be that GST and PST were added to the cost of importing during the PMs reign [actually, this one strikes me as the most likely, since it's the most inane of the three])? I guess we'll never know since the only few shreds of evidence are long gone.

Oh well. Either way, there's no way there should be 15% tax on something not handled or produced in Canada, and there's no excuse to let the Canadian public get fleeced by American shippers like this, and there's no way my DVB card should have ended up costing $450 CDN. But it did and that's life. I just don't buy at all if Canada doesn't have it unless the bargain is twice the price. So much for a free trade agreement. :-/

Re:What surprises me

[j-beda]

The biggest problem seems to be that many US sellers are just not aware of the brokerage issue and the first time the customer learns about it is when the shipper hands them a bill. I got burned by UPS once on this for a $10 item with their $25 minimum brokerage fee and started being much more careful. For a number of places (Apple for instance), the retailer can take care of the brokering and the shipper need do nothing. For some shippers, the brokering is included in the price of sending the shipment (FedEx was doing this in 2001, but is no longer doing this in 2002, at least for the type of shipping that I have been using). All in all, the postal system seems to be the best one to use when possible.

I try my best when dealing with any US orders to make sure that I know what the shiping method is going to impose on the total price and try to convince the seller that having a postal option is in their best interest (and explaining about customs and brokerage on their sales site is a good thing too.).

As for the application of GST, I would disagree with you. I may not like the various sales taxes, but if we are going to have them, I do think that they should be applied to everything. Giving imports a free ride isn't going to do anything other than drive business outside the country and reduce the amount of tax collected. While I would like for ME to be able to avoid all these taxes, I don't want anyone else to be able to avoid them...

Re:What surprises me

[shepd]

>Giving imports a free ride isn't going to do anything other than drive business outside the country and reduce the amount of tax collected.

Oh, I don't disagree with that. I think that when it becomes cheaper and easier to pay for imports than local goods perhaps we actually need some way to show the PM how much we hate the GST tax, which has to be the most mis-managed tax ever known to history (you wouldn't believe what's involved in collecting it). If people simply stopped buying Canadian until the tax were dropped, you'd get some things changed extra fast! But then again, he'd probably just ignore us. I mean, he already said he'd abolish the GST, but instead he "harmonized" it and got it set like Loctite.

IMHO, the only service a Canadian provided to you would be the Canadian half of the UPS shipment. So I could see taxing your shipping bill, but the actual item doesn't get handled by a Canadian until its in your hands, so I don't think it should be taxed. Just my opinion, that's all.

Re:What surprises me

[j-beda]

I dont' really follow your logic. Sales taxes are not taxes applied for the privledge of doing business, they are taxes applied for the priveldge of buying things. The Canadian is doing all of the buying, so should be subject to the taxes, regardless of where the goods or services are coming from.

In the broader picture of the GST in general, and the PM's promises in particularl, I do not really have much to disagree with you on. I have always doubted any politician's promise to eliminate the GST though - I doubt even the NDP would do so if they were ever in power federally (like that is going to happen in my lifetime...)

Pay Pal

I know this is complete flame material but...

If we all know pay pal has a very bad rep for dealing with things like this... Why does anyone still use it?

The old line of fool me once shame on you.. Fool me twice shame on me comes to mind.

Re:Pay Pal

[whereiswaldo]

Let's say you have ONE department store in your town. You heard that that department store screwed one of your friends. You hope it's an isolated incident, because there's really nowhere else to go. You continue to stop at that store, and you yourself get screwed. Is it your fault for shopping there even though your friend was ripped off?

Re:Pay Pal

[mosch]

Actually the correct version of that old tennessee saying, well I know it's in Texas it's probably in Tennessee is : 'Fool me once, shame on... shame on you.... A foolmuh canby foolduh gain'. See?

Re:Pay Pal

[rob-fu]

Possibly because it's the same reason that mostly everyone uses Microsoft products, for example. You're not really offered a choice (unless you know the alternatives).

Before the troll/flamebait alarms go off, I should say that it's simply because of the fact that Paypal has pretty much monopolized the market for that service. Seriously, how many other companies are there that provide the same thing? I only know about Paypal.

Re:Pay Pal

[whereiswaldo]

Ask any merchant who doesn't accept VISA, MasterCard, Discover, Diner's Club, etc.. how many sales they have missed out on because they only accept cash... if you can find a merchant who doesn't accept VISA, MC, ...

Re:Pay Pal

can anyone breakdown the primary reason for paypal's existance?

people are already crying monopoly, and no choice etc etc etc.

um...i've never had to use it....and i order goods and services online...all the time.

i use a credit/check card, in which i keep just enough cash to cover any desired purchases...if someone tries to clean it out...my loss is limited...plus i have recourse through visa and my bank.

wtf is everyone using pay pal for?

if the first thing you say is "I want to buy johny doe's used DVD player from alaska"...i.e. you are going to buy something sight unseen..and the seller is not a commercial entity...

god.

i'd rather buy from the worst blooksuckers on pricewatch.

at least from them you have a decent chance of getting your stuff in workable condition.

if you are using ebay and other outlets to buy or sell used items, gray market stuff, or other such merchandise...all i can say is paypay is just the visible and easy target of the whole equation.

yea i'm sure paypal itself is a bloodsucking entity worthy of criticism on it's own merit.

but has anyone looked at the underlying structure?

i think the bigger problem lies in that structure.

just look at a simple scenario:

joe sells a used cisco router to steve via ebay and paypal.

joe knows that his router is good.

steve knows his money is hard earned.

they exchange.

a week after steve receives the router...it starts to fail.

what we have now is another paypal story in the making.

joe or steve or both are going to come out of the situation pissed.

selling/buying shit where there was no intent to defraud, but something went wrong happens all the time. these scenarios alone would pretty much tank paypals reputation.

if it only ended there.

this is the internet...and a bit of anarchy exists here. The ability to sell crap equipment sight unseen and with little consequence if you pass off bad items ...this just sets up an environment for massive abuse.

there goes paypals rep some more.

then you have paypal itself making inconsistent and unpopular policies.

paypal is like a pass to enter the black market.

there are some great bargains to be had...but thieves are on every corner.

if you are stupid enough to link your bank account to your paypal account...well then, you might as well walk down the streets of some thirdworld country open market with your bright white tennis shoes, hawaian shirt, sunglasses and a wallet sticking out your back pocket.

you pretty much asked for it.

those of you who run businesses or websites that are legit...you should dump pay pal. or be associated with it and the environment it was created to serve.

Re:Pay Pal

[whereiswaldo]

You're ignoring the fact that I said *merchant*, not *charity*. In addition, you cannot send cash through the mail. How do you get a donation to an out of city or out of country charity by using cash?

Re:Pay Pal

[Twirlip+of+the+Mists]

I've never nto donated to charity because they dont accept VISA.

Yeah, and that sentence was not unmeaningless.

Re:Pay Pal

[3am]

You're ignoring the fact that I said *merchant*, not *charity*.

The entire subject of this discussion is the tip jar for the Abiword project, a CHARITY. The parent poster is trying to stay on topic.

In addition, you cannot send cash through the mail. How do you get a donation to an out of city or out of country charity by using cash?

Okay, ignoring the fact that you can easily send cash through the mail, there are these things called CHECKS. I don't have anything against PayPal, but there are obviously alternatives - people weren't stupid and running around like chickens with there heads cut off from the dawn of recorded history until about 20 years ago. Somehow, people managed to get things done without credit cards for hundreds of years.

Re:Pay Pal

Holy cow. That has to be the first triple negative I've ever seen in my life, and I've read a lot of stuff.

*Plays Zeppelin's Communication Breakdown*

Re:Pay Pal

And people got by without the internet or computers for hundreds of years. Do us a favor, dont use the internet anymore.

Re:Pay Pal

[jonnythan]

Yadda yadda yadda. I pay my landlord with Paypal, I pay Penny Arcade with Paypal, I accept credit cards for auctions via Paypal, I use Paypal to get a quick $10 cash off my roommate (live-with ATM!), and I use Paypal to pay for items which I buy from non-local people (both through auctions as well as other arrangements).

If I get burned through an eBay auction, I won't bitch about it. I'll try to resolve it, but as for "i'd rather buy from the worst blooksuckers on pricewatch," I buy from them too. Over the past 5 years I've saved many thousands of dollars by buying through eBay and pricewatch.

I'm not too worried, but I won't whine like a baby when something happens because I know the risks I'm taking.

To me, it's more than worth it, and Paypal is a wonderful thing. If you don't like taking such risks, don't use it.

It would be nice if you at least attempted to understand why some people do.

Re:Pay Pal

[Sloppy]

That's pretty much my take on things. I'm sympathetic to the AbiWord guys and sorry this happened, but ... sheesh. It was Paypal, what did you expect? It's like the Microsoft thing: I can understand someone getting fooled many years ago, but the word's out now, and has been out for quite a while.

Get this into your heads, people: Just Say No. You know better.

Re:Pay Pal

Well I just closed my account there, so I guess people dont keep using it once they learn about it.

Re:Pay Pal

well.

if you think about it...my post to slashdot *was" an attemp at understanding.

hence my first sentence from the first post:

>>> can anyone breakdown the primary reason for paypal's existance?

you posted a response, which has enlightened me to the fact that paypal is used in far more diverse ways then i imagined.

i would still say that paypal is not mainstream currency and not for the naive.

i hope for your sake that your accounts go well...i'd hate to see all your savings vanish in one bad moment.

Re:Pay Pal

Dude, you need electronic banking.

Re:Pay Pal

[Nipok+Nek]

Oh, I don't know. The Fast-Food industry seems to be getting along just fine on a cash-only basis.

Nipok Nek

Re:Pay Pal

[RadioTV]

Most of the fast food restaurants in my area take either credit of debit cards.

Re:Pay Pal

[Twirlip+of+the+Mists]

Actually, I wasn't complaining about the way the sentence parsed-- or failed to-- as much as I was just pointing out that you're an idiot. That's pretty much it.

Re:Pay Pal

[TrinSF]

I'm with this guy. I use Paypal to pay my child support. I live on one side of the country and my ex is on the other. Every other method I used caused problems of one kind or another. Checks get "held" for sometimes a week or more because they're interstate. Money orders get lost by the post office. Bank transfers are slow and unreliable -- his bank once lost a transfer for over a month and required me to jump through all kinds of hoops before they fixed the problem. So, now we use Paypal. I send the money and it's in his Paypal account instantly. He has some kind of Paypal debit card, so he gets instant access to the money, at no cost to me. We never have to worry that a check will bounce, or a bank will lose a wire transfer.

I looked over the c2it thing and I wasn't impressed. It just doesn't have the features that Paypal does.

Re:Pay Pal

People who send cash through the mail are stupid. It's untraceable, so if it gets stolen you're hosed.
Don't be stupid. By the way, checks aren't cash, so you've still not answered the question. Have a nice day.

Re:Pay Pal

[An+Onerous+Coward]

Its time for everyone to stop whinning and do their capitialistic duty.

Indeed. That's why I've closed my PayPal account. I just haven't found it useful enough to justify the risk.

By the way, to close out the account, log into PayPal, go to "My Account", then to "Profile", then click on "Close account." You'll be asked to confirm your credit card number, but other than that, there's no hassle.

Sigh. . . Slashdot says "Blender needs money!" So I open a PayPal account. Slashdot says, "PayPal is evil!" So I close my PayPal account. I guess I'll be tuning in again tomorrow for further marching orders. :)

Re:Pay Pal

It's called the "first-mover" syndrome.

Basically, everyone uses Amazon over Barnes and Noble, Yahoo over Altavista, Ebay over other auction sites, etc. because they got in the game first, established brand-name and now have presence on the net. Their trademarks & domain names are the sum total of their business. Paypall is the same way. The aforementioned companies would really have to fuck up their service in order to completely destroy their user base.

Re:Pay Pal

[3am]

People who send cash through the mail are stupid. It's untraceable, so if it gets stolen you're hosed. Don't be stupid.

You are a dense one, huh? I didn't say you should send cash through the mail, I said you could send cash through the mail.

By the way, checks aren't cash, so you've still not answered the question. Have a nice day.

First, thanks for the brilliant correction. 'checks aren't cash'. Great... Perhaps my point was that the poster was limiting him or herself to artificially restricted set of solutions. Why is there a need to send cash at all when a check would do just as well. If you want me to answer the question in the artificially restricted set of solutions, then wire it. Western Union does this. Most banks do for a small fee.

That's revolting...

[Archie+Steel]

For my part, I will personally write Paypal and tell them that I no longer feel that their service is secure enough for me and that their treatment of victims robbed through their service is rotten.

The question is, what other services are there in Internet space that does the same thing they do? Any banks trying to offer secure payment over the Internet?

Re:That's revolting...

[Mr.+Fusion]

Western Union currently has a similar service, BidPay, which is a rather reasonable way to pay online auction sellers and the like. The site automates the process of making and sending a money order, complete with e-mail notification of not only when the order was processed but also shipped out via snail mail. I know it's not purely digital, but it better than nothing!

Mr. Fusion

Re:That's revolting...

In addition to the bank mentioned by the other poster, I have the name 'c2it' for a Citibank-offerred equivalent.

The Canadian banks have a similar monetary transfer system set up, but they want ridiculous fees for it. (Well, right now they've got a decently priced introductory rate, but it's going up drastically pretty soon.)

Re:That's revolting...

[CoolVibe]

Yes, indeed... I showed my trust in them by closing my paypal account.

They won't be seeing any service from me. Fuck them.

$581 dollars

Not a tremendous amount, but certainly a majority of the ~$800 they had at the time. Hopefully the publicity of this slashdot article will help them get the money back, either by putting pressure on PayPal or soliciting additional donations (NOT through PayPal, I would hope).

Re:$581 dollars

$581? That's, what, like three copies of Microsoft Word? Open source business model my ass...

Re:$581 dollars

[korgull]

only three copies ?
You must be kidding, in China I get at least 250 copies for that sort of money.
MS business model my ass......

I would like to know how they did it

[motox]

Frankly, I suspended my PayPal account months ago. This episode just confirms my doubts about their service. It's like your bank gets robbed and tells you sorry, your account is zero now... I think everyone who owns a Paypal account should write and eventually cancel their own account. It happened to Abiword but it could happen, and i -bet- it's happening, to anyone. They just targeted a substantial account, this time.. Ofcoures it's internet, its point and click, its insecure, bla bla bla but it's real money. People has to realize it's real money. It shouldnt make a difference if they rob my PayPal account or if they rob my house, but alas, it does. Internet has reached a critical mass of people years ago, but still when you do business there you feel like you are not in 21th century, but back in the far west...

Re:I would like to know how they did it

[motox]

People doenst get bitchy ? did you ever get your house robbed or you still live with mommy dude ?

Re:I would like to know how they did it

People get bitchy, but they dont expect the cops to pay for their stolen stuff.


But they DO expect the cops to help find the crook.

Re:I would like to know how they did it

[Maxwell_E]

Are you a paid apologist for paypal, or what? What is your burning interest in playing paypal's slashdot watchdog? I think some disclosure is in order here.

Re:I would like to know how they did it

[nolife]

People don't get all bitchy and ask the cops to replace their stuff, do they?

My parents own a small electronics repair shop. It was robbed recently. My parents had to pay each customer what their stolen tv,vcr,stereo etc.. was worth. Paypal is password protected, my parents business was locked with a key. Sorry but I do not see much of a difference. My parents eventually got most of the money back via the insurance company and some of the stuff was recovered within a few weeks.

I think every person with a tv claimed they were less then 1 year old and 5 inches larger, it was a comical event to watch them back peddle when their stuff was recovered.

Re:I would like to know how they did it

[Stradivarius]

PayPal is a payment middleman, not a bank

True. In essence Paypal is a money delivery service - you give them money, they deliver it to someone you specify.

As a result, it seems to me that Paypal has a moral (and maybe legal, IANAL) obligation to safeguard that money while it's in Paypal's possession. And they should be responsible for ensuring that the person they deliver the money to is indeed the person you specified should receive it.

OTOH, Paypal should not be responsible for anything more than this. If you decide to send someone money, and it turns out you were scammed, well that's not Paypal's fault.

In the AbiWord case, it sure looks like it was a case of the money being outright stolen from the Paypal account. Paypal should refund the money to AbiWord (which really ought to be covered by insurance, anyway. Insurance is a basic part of running any business). And they should certainly assist the victim in launching a criminal investigation for wire fraud.

Re:I would like to know how they did it

[cburley]

I think every person with a tv claimed they were less then 1 year old and 5 inches larger

Huh?? I mean, I can understand the 5 inches larger part, but less than 1 year old? That's a combination I'll have trouble getting out of my mind's eye for awhile!

(Oh, you meant "it was", not "they were"? Nevermind! ;-)

didn't you already know this?

I had a paypal account. As soon as I saw the site http://www.paypalwarning.com I deleted it. This was out of simple self preservation, everyone gets bad press, but that much, and to that degree?? I have shown everyone I know that uses paypal that site - I feel duty bound to do so. Veteran Netizens certainly have seen or heard of this site, yet AbiWord decided to use it as their merchant account. Well, you knew the risks didn't you...

Yes, it sucks. It is pretty terrible that donations where robbed. But common sence could have avoided it. You call for a boycott now - well hundreds have been saying this for some time and it was ignored... People have been attempting to get PayPal to have to live up to the same standards of a bank for a long time now. I am sure it is a shock when it is you that gets ripped off but it shouldn't shock you that much that PayPal is being less than helpful.

NR

Re:didn't you already know this?

[Dog+and+Pony]

I've had a PayPal account for a long time and I get and send money that way now and then. Never any trouble. Actually, often things have gone smoother than they promised.

I also saw those paypalwarnings sites. I didn't cancel because of that, for one because I think lots of it is about someone not being PayPal screwing up, but mainly because PayPal does not screw you over more than any bank. Actually, to me it seems they screw you lots less, especially if you are right.

You really mean I should trust a bank instead? That is laughable. As it is now, I "trust" them both. That is laughable enough for me. :)

Re:didn't you already know this?

That's right - I just cancelled my account. Not worth the risk.

eBay and PayPal were good vehicles of online commerce years ago, but now turn a blind eye to user problems in favor of profits. Those who built the system are falling through the cracks in favor of the "power sellers".

Vote with your dollars.

T

Re:didn't you already know this?

My father also keeps his account to do business online because he has never had any trouble and merchant accounts are so expensive.

Problem is, reading those sites shows that everything is great until the screw you over. Some people never get the benefit of having been screwed over by PayPal, but enough have that I seriously question the logic of doing business with them at all.

Trust a bank, no. But banks are insured by the federal government and are required to meet certain standards to be called a bank. Banks can't just permanently lock your funds because they "suspect fraud". When a bank is robbed the people get their money back.

NR

Hey! He uses Mozilla!

Paypal scam screen cap.

Good for him!

Now if it was Apple...

[AnyoneEB]

If it was Apple's PayPal donations everyone around here would be happy... or mad, it seems random around here.

Oh, wait, no one here reads Joy of Tech

Re:Now if it was Apple...

if it was apple everyone would say how great it was they were using paypal and what a travesty it was about the theft.

apple can do no wrong here

AbiWord chooses PayPal over Supporters

Dom Lachowicz writes: 'I'm duty bound to let you all know that the AbiWord Fund/Tip Jar has been robbed approximately three weeks ago. I'm telling you this now, rather than sooner, since I believed that Paypal would do something about my complaints during the interim, and that this would all be resolved quietly.

Let's see a show of hands: who here is pleased that AbiWord decided to keep this quiet from those generous enough to help them out just so they could cover PayPal's ass?

Hey, Lachowicz, you were duty bound to report this to US, the people giving you money immediately!

Re:AbiWord chooses PayPal over Supporters

[ProtonMotiveForce]

Sorry - bullshit. I call bullshit.

Duty bound in what world, your bullshit make-believe world? Once people give the money it's no longer theirs. End of story.

In related news...

[rgoer]

In related news, the recent surge of in-depth bookkeeping oversight measures enacted in light of rampant corporate malfeasance has turned up a $600 credit on the Microsoft Office team's balance sheet that they can not account for.

Pro-bono lawyers might help here

[no_such_user]

I hate to jump to "lawsuit!", but this is an instance where a sternly-worded letter from a lawyer might at the very least get their attention. Unfortunately, you'll end up spending more than the stolen funds to pay said lawyer.

Any lawyers out there willing to help out AbiWord pro bono?

no different than eBay

Makes sense: PayPal is owned by eBay.
They are equally pathetic when it comes to dealing with fraud - it's not in their business interest to do so.
Hopefully one day government will have the balls to do something about this.

a new name?

[gasgesgos]

PayPal should be renamed to PayGuyWhoSaysHeWillHoldYourMoneyButWillUseItForDru gsInsteadOrGiveItAwayToRandomPeopleBecauseTheyDont CareIfItsReallyYouOrNot. paypal doesn't really care.. neither does ebay.. just look at all the auction fraud going on...

Paypal Sucks

[AntiFreeze]

Ever wanted a good reason to not use paypal? There are tons at: PayPalSucks.com. Now I guess they have to add this AbiWord travesty to their list.

I, for one, cannot understand how paypal is allowed to get away with all this. People even suggested that things might change once eBay took them over, but apparently that hasn't happened yet. What a shame, I remember when PayPal was actually quite a helpful service. Now it just appears to be too much trouble, especially if something goes wrong.

Re:Paypal Sucks

[pla]

I, for one, cannot understand how paypal is allowed to get away with all this.

I'll second that...

I've read through the various links people have posted about why PayPal doesn't count as a bank, and regardless of that, I still don't get one part of all this - Why don't they have some liability in terms of failing to provide the service people pay them for?

Okay, they don't accept "deposits". But they act as a 3rd party transaction processor, so presumeably they have a responsibility to make sure *BOTH* halves of the transaction work out like they should.

To make an analogy, if I ship something via FedEx and they drop it off at the wrong house, they owe me for *their* mistake. I pay them to send a package to house X, it doesn't get there, they owe me the value of that package, end of story.

In Paypal's situation, the "package" only exists virtually, but it still has a real and clearly defined monetary value, no?

($581 * 2) + tax == ~$1,200

[hacker]

Anyone notice that the failed credit card deduction is almost the same as the stolen amount(x2)? Maybe the thief wanted to get 2 of these camera/PDA devices, and couldn't get them both when the credit card was denied, so he just took the max from the cash value purchase price of one of them, $581.00.

This truly sucks. As a maintainer of a few open source packages myself, who currently is using PayPal to keep the project websites, cvs, et al. bandwidth paid for, I'm at a loss to find any alternatives. Anyone else?

Re:($581 * 2) + tax == ~$1,200

This truly sucks. As a maintainer of a few open source packages myself, who currently is using PayPal to keep the project websites, cvs, et al. bandwidth paid for, I'm at a loss to find any alternatives. Anyone else?

well, you could always open a p.o. box and have people snail-mail you their donations...

Re:($581 * 2) + tax == ~$1,200

[gnuadam]

Just a thought...

You might accept payments there, but daily, weekly...often anyway...take the money out and put it in a real bank.

Paypal shouldn't be used as a bank account. They're not a bank.

Re:($581 * 2) + tax == ~$1,200

As a maintainer of a few open source packages myself, who currently is using PayPal to keep the project websites, cvs, et al. bandwidth paid for, I'm at a loss to find any alternatives.

For panhandling, I find that major freeway offramps are pretty good. Or, you could always try getting a fucking job.

"Hi, I'm an unemployed computer programmer, and I find that people are less inclined to give me handouts if I don't have a PayPal account. Can anyone help me come up with an equally convenient way to completely divest myself of all pride and live off the kindness of others? kthx."

Re:($581 * 2) + tax == ~$1,200

[nyseal]

Again, EVERYONE KNOWS THEY'RE NOT A BANK; so why would any reasonable person set up an 'account' without ANY reasonable expectaction of protection? Just stupid if you ask me; especially after reading the websites that show the horror stories.

Re:($581 * 2) + tax == ~$1,200

[gaudior]

That's all well and good, but paypal has a widely reported habit of suspending people's accounts for long periods of time, and for little or no reason. This is behaviour that is getting the attention of regulatory authorities.

Robbed?

[empee]

Due to the lack of details given about the fund being 'robbed', I'm going to guess that the password was compromised, as opposed to some sort of hack on paypal's servers. So... isn't it this guy's fault (at least as opposed to paypal's)? Paypal didn't do anything wrong.. sure maybe they could be a bit more helpful in trying to track down who did it, but they certainly aren't obligated to do so.

Re:Robbed?

[sql*kitten]

Due to the lack of details given about the fund being 'robbed', I'm going to guess that the password was compromised, as opposed to some sort of hack on paypal's servers. So... isn't it this guy's fault (at least as opposed to paypal's)? Paypal didn't do anything wrong.. sure maybe they could be a bit more helpful in trying to track down who did it, but they certainly aren't obligated to do so.

If you pay at a restaurant with your Visa card, and the waiter keeps a copy of the carbons and later spends money on your card, Visa will take care of that for you - you aren't liable unless you have been woefully careless.

If AbiWord left their password and account details written down on a postit note then maybe it's their fault, but if their account was brute-forced, then PayPal should be responsible.

Re:Robbed?

[empee]

I agree mostly, as long as you don't include a guessed password under 'brute-force'.

Re:Robbed?

You're an idiot, but thanks for playing!

No Recourse?

[phriedom]

Isn't there an address that the camera seller has? If this is inter-state fraud doesn't that bring the FBI into the picture? Why rely on PayPal to give you justice?

Now of course, PayPal SHOULD have to be a bank to do what they do and should be responsible for the money entrusted to them that they allowed to be stolen, but just because they aren't I don't see how that is the end of it.

Re:No Recourse?

[lizzybarham]

Hand the information over to the FBI or other authorities; have this investigated if possible

Re:No Recourse?

> Hand the information over to the FBI or other authorities; have this investigated if possible

For a $600 camera? It might be nice if that's how the FBI worked. Though if it did, taxpayers would have to cover the expense of doubling or tripling the number of agents, to do nothing but eBay/PayPal investigations. I think their minimum amount to take down a report is a $5,000 loss, but in practice they generally won't investigate a case unless it involves several times that.

Re:No Recourse?

[joshki]

The FBI doesn't care unless there's over something like 25k involved. 600 dollars in a donation fund isn't even going to get them to bat an eye, unfortunately.

Re:No Recourse?

I don't understand why this guy is freaking out. The seller shipped the item to somewhere - and most sellers will ship to the verified paypal address.

The account was compromised, but it was, from PayPal's point of view, a legal transaction (the uname/pw verifies the identity, in accordance with the digital signature law, I believe).

Don't blame paypal! I'd start checking your staffers to see who got the camera, find the address the camera was mailed to, then complain to the USPS and get the postal inspectors on the case.

Whining about PayPal is silly - I mean, it's not their fault that your password was lame!

Well...

[jvmatthe]

Boycotting Paypal because of these reasons, and the fact that their system is notoriously insecure, and encouraging others to do the same.

One has to wonder if the Abi folks knew about PayPal's failings ahead of time. If so, then had they looked into other ways of obtaining donations? That is to say, if the Abi folks are saying "Look, we knew that PayPal sucked and was insecure, but we used them anyway, so please write them to tell them how much they suck" then it's a little harder to take their complaint seriously.

I've used PayPal for auction stuff. I was fortunate enough to get payments mostly through PayPal from a large USENET auction I held a while ago. But once that big chuck of money was in there (we're talking less than $1k) I had them cut me a check and send it to me so I could put the money somewhere I trusted...a real bank! Even now, I never keep more in the account than I could bear to lose, should something go wrong.

That the Abi folks weren't taking better care of their money hardly seems like PayPal's fault. Many people know PayPal has been difficult to deal with...it's no big secret and it's even been talked about on /. lots of times. Many people are wary of the fact that PayPal wants all of the benefits of being a bank without the responsibility...again it's no big secret. And the ability to use PayPal to get contributions while still holding onto your money (by asking them to cut you a check every month, say) isn't hard to do.

I don't want to defend PayPal too much here. They're clearly sleazy sometimes (if not all the time). But that doesn't absolve the Abi folks from being more careful with their benefactors' cash.

Re:Well...

[whereiswaldo]

That is to say, if the Abi folks are saying "Look, we knew that PayPal sucked and was insecure, but we used them anyway, so please write them to tell them how much they suck" then it's a little harder to take their complaint seriously.

What the AbiWord folks think of PayPal should have absolutely no bearing on PayPal's liability in this theft. PayPal is bound to provide a certain service, and should be responsible enough to remedy this situation, if only because required by law.

Re:Well...

[jvmatthe]

Just from the bit posted here (too sleepy now to go read much more) the Abi folks aren't claiming that PayPal is ducking their responsibilities, right? Just that they complained to PayPal and hadn't gotten a positive response. For all we know, PayPal isn't obligated (by contract) to do anything if your account is hacked. After all, if the "hack" is "I left my password out in the open and someone took it", then that's not PayPal's fault, now is it? I'm sure they've spelled out the conditions, if any, under which they'd cover theft and it isn't clear (from what I've seen here) that PayPal owes the Abi folks a dime.

Suppose the weakness in the security here is that one of the Abi people used a weak password or left it out for someone else to see? Or that a vindictive former Abi team member decided to wreak havoc on his former colleagues? Suppose (against all hope) that it really isn't that PayPal has some latent insecurity in their system that was exploited. Then it's just tough cookies for the Abi people.

The Abi folks might be victims of a crime, but until someone makes clear that PayPal has broken a contractual agreement with the Abi people, I can't fault them.

Re:Well...

[arkane1234]

All of that is well and good, but PayPal at least knows where the money went. That would be a good enough lead for law enforcement to start an examination into it.

Re:Well...

[shri]

Everyone knows where the money went. The guy who sold the camera. The original email has the name of the person.

While I am not in anyway condoning what happened... folks this is similar to leaving a blank check (signed) lying around. You leave your password around.. people are going to use it. Is there any indication that Abiword lost the money because of Paypal's negligence?

Re:Well...

[mindstrm]

That doesn't matter; their cooperation is necessary to track down the culprint. If I leave a blank check in my house, and someone steals it and cashes it, it's still fraud, and the bank still has to turn over whatever evidence they have in order to find out who did it.

Re:Well...

[Black+Copter+Control]

After all, if the "hack" is "I left my password out in the open and someone took it", then that's not PayPal's fault, now is it?

From reading the PayPal agreement, it seems that a seller is supposed to only send to a verified address of the buyer. If this is the case, then the $600 camera should be going to the paypal address. If not, then they should be able to demand a payment reversal.

It would be the fault of this Jun Jiang if (s)he didn't send the camera to the proper verified address. Complicity in fraud is not innocence.

Monopolies are a drag

[Lord+of+the+Fries]

I remember viewing the eBay purchase of PayPal with some trepidation. Thinking, this just can't be in my (the consumer's) best interest. And while I'm sure there were problems before, the sort of heightened injustice in the light of a move that was supposed to benefit the defacto public online auction place, just fries me.

So, what are my choices (that's what we love to jump up and down about having)? Are there other online aucctions that even have a chance of being as large as eBay? Or other payment methods? I see the whole PayPal-as-part-of-Ebay, so much like the Microsoft having become the defacto desktop and then pushing it's web browser and subsequent internet policies on everyone.

Re:Monopolies are a drag

You are fscking idiot. Go read an economics textbook before posting again.

Market leader != monopoly, fuqtard.

Who cares?

What difference does it make that this was stolen from an Open Source company? Is it any less a crime if it were just stolen from you in general?

Further, why doesn't the author just find out who Jin Jiang mailed the camera to? I'm sure someone would be happy to pay the buyer a little visit.

Haiku

Re:Who cares?

[Provolo]

Well..does it matter if money is stolen from an orphanage or a kindergarten?

There's always something about being 'free' that is directly connected to 'charity'..these were donations, not paid fees, and that makes it important in the sense that it represented the support of OSS users.

Just simply don't use PayPal in the future

[saha]

This isn't the first time I've heard of MAJOR problems with PayPal and their terms of agreement for their customers. To put it simply, PayPals terms relieve them of all liabilty. Even if its their faulty for not having the correct protection mechanism for their customers. The day Ebay and PayPal merged is the day I became wary of Ebay, I brought this up with a professor in the School of Information researching information ecomomics on the internet. This doesn't bode well for Ebays reputation and this is another example why users shouldn't use PayPal.

http://www.paypalwarning.com/
"A thorough reading of the Paypal terms of service will reveal that you cannot even sue them should you have a legitimate claim. Their terms of service make it very hard to sue them! There have been several class-action lawsuits filed against Paypal."

How was it stolen?

[Call+Me+Black+Cloud]

He says, "...their system is notoriously insecure."

It seems to me that if the system is that insecure, the perps could have found something more lucrative to rob than the Abiword tip jar. I'm sure there are power sellers on ebay that do more business in a week than the tip jar sees in a year.

Perhaps his fund password was something like "abiword" or he responded to a scam e-mail...

Reading the complete post, I see "...Their silence implies to me that they are treating this matter as if I got mugged on the street, rather than as if someone walked into their bank and withdrew my money without my consent."

So it sounds as if it was not a hole but rather an error on Dom's part. I look forward to reading more about this to find out just how this happened.

Re:How was it stolen?

[murgee]

This is, of course, assuming that everyone trying to get into PayPal is after big bucks anyway (doing it professionally).. when it's quite likely they could have been targeted by someone who's just experimenting and hit something small to lessen their chances of getting caught (or, at least, trying not to get into too much trouble.. you might suspect that if the person raided a several thousand/tenthousand dollar account they'd be up against a lot more, punishment-wise).

Of course, isn't the purpetrator's name tagged to the transaction? You have to have a valid bank account to move funds out of your PayPal account.. wouldn't it just make it that much harder to hide from the authorities if you broke in to someone's account and moved stuff over?

This reminds me of when lowendmac got hit last month (earlier this month.. something like that). It's unfortunate PayPal has "critical mass" or whathaveyou. You'd think that someone big would care, but they can't even be bothered to work with all banks.

Re:How was it stolen?

[burns210]

"Perhaps his fund password was something like "abiword" or he responded to a scam e-mail... " A programmer is generally well versed in most aspects of computing, as they have to deal with computers for their living, they get to know the ins and outs (dos and don'ts). Do you honestly think that a programmer of this caliber, would have a password of "abiword"?

Re:How was it stolen?

[austad]

As a network security engineer, YES. I've seen many programmers have unbelievably stupid passwords on accounts that offer them great levels of access on the network. Things as stupid as "dog", or "password1". Just because someone can program something doesn't mean they know about, or give a shit about security. That's why there are such things as password policies, and I believe paypal actually has one. But just because they have a password policy doesn't mean that the password is strong, plus, maybe someone did something stupid and sent the password over email or stored it on a machine that was cracked.

Re:How was it stolen?

[nosfucious]

Programmers (generally) see security as a hinderance and not something requried.

I've come in to plenty of sites and seen programmers logged in as Administrator/root/(QSECOFR or ALLOBJ) ... just because they can. It's even worse when just because they know about a computer, they have been given the task of administering the system by various management.

Likewise, these programs produced utterly fail to run if not in the same Administrator/root/QSECOFR context.

Never assume "programmer" == "knowledge of security". (Of course, the reverse is also true, there are many who do understand security).

Re:Free as in Beer

[SparafucileMan]

Oh cmon. 3/4 of the world is poor and you downgrade me because information is power? Shit. I might as well forsake the computer and program with rocks and sticks (it can be done, you euber hackers!). Fuck. Pussies. You can't code worth a damn, or you'd elsee you'd have already freed the world.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Close them down!

[mazg]

This incident is not one of a kind. If you want to you can sign the petition to shut them down here

Re:Close them down!

[welshsocialist]

While I wish that the Abi people get everything resolved to their liking and for PayPal to be dismantled and sold for parts, an online petition is not the way due to many factors which are talked about in this essay. Before filling out an online petition, it's a very good read.

WWW.paypalwarning.com

Http://www.paypalwarning.com

Thousands of storys just like this one. Just don't use them, its that simple.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Actions

I'm particularly glad that this has been reported by Slashdot, for though I use AbiWord, I believe that many like myself, if not for slashdot, would not have heard of such acts.

However, with all due respect let us also conduct this in the most honourable way possible, as we certainly do not want news coverage (if any) to turn into PayPal showing mean/degrading messages from developers. A sincere message expressing our concern is sufficient. There is absolutely NO NEED for four-letter excemplatives, hate messages, or any of the such.

Lastly, I'd like to say to the AbiWord Team: Great Job! Keep up the work! Don't like such a stupid miser mess up the great work of the general public.

(On the other hand, if each slashdot user with a job donated just $1.00 .... this could quickly pass over the stolen amount; hint .. hint ... hint)

John Goodman

John Goodman stole them to buy octopus outfit. He will be Dr. Octopus in Spider-Man 2.

why AbiWord?

[negativethirsty]

..because thats where the money was =)

Re:why AbiWord?

Funny.

I'm sure that most people don't get the reference.

Done and Done...

[Incongruity]

After reading about all the trouble with paypal, I have cancelled my account. I will now also be sending their customer service folks an email explaining why I cancelled my account.

Even if they do outsource their support to India, I'd bet they keep some sort of stats about emails and the issues covered...maybe if enough people complain and cancel their accounts someone will listen...unlikely but it's worth a hope.

-tcp

Re:Done and Done...

We should all do this... I just did... if it's as easy to get a new account as the one I had, closing my account was probably as easy... as was writing to those psuedo-bankers.

Joe

Re:Done and Done...

[NightHwk1]

mine is now closed as well..
and they received a nice email detailing exactly why it was closed.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Another one bites the dust

[Erebus]

I used my checking account to 'secure' my paypal account, and purposefully kept very little money in it, in order to avoid problems. When I used PayPal to subscribe to totalfark.com a few days ago, I was alarmed to see a notice at the bottom of the screen: "If you have insufficient funds in your paypal account, they will be automatically withdrawn from your checking account without notice". So much for keeping $20 bucks in there; it appears they can, even within their TOS, pull money from an account without your permission. This story was the last straw; I can't afford to have our family's account wiped out by these shitheels. Account closed!

I'm sure this has been said a lot already...

[fatwreckfan]

...but I just closed my Paypal account and sent them an email expressing my disgust. I urge others to do the same.

Re:I'm sure this has been said a lot already...

[luap2000]

maybe this will be the incident to make them start to take it seriously?

I've taken their donate buttons off my site, but want to wait to see what their reaction to this is if they have one at all.

Who knows if this story might make it to the mainstream press too.

Comment removed

[account_deleted]

Comment removed based on user account deletion

how to speak to a human at paypal

[kraksmoka]

i had to revive my old business account last week, had lost all information even down to which email address was it on and did i still have that address. thankfully, i knew the credit card number assigned to the account

it is entirely possible that your thief did this very same process and used it to gain access.

if you go through the password retrieval process in a completely unsatisfactory way, it will present a telephone number for you to call. the wait on hold wasn't even that long. the human was nice, and its far more immediate than sending an email.

if you can't get through that way, i suggest calling ebay's fraud prevention and taking it up with them. ebay just bought paypal, remember?

hope this helps

This calls for a class action legal siut!!!

[urbieta]

lawsuit!
1. the people against the thief
2. the people against paypal
3. the people against ebay
4. the people against the camera salesman

All north american Abiword donators should make this cases heared in court!

So sad

[sasquatchoflove]

Why abiword is a good question. Why not some warez cd distributor?? Either chosen at random, they made the wrong people angry, or ms really needs to learn to play nice when it comes to competition :). But seriously, if you were to do this, why would you choose abiword? I can't think of a single reason besides a grudge or randomness... Makes you think.

Re:So sad

Why Abiword? B/C, Abiword has decided to share this information with us so we will know about it. I bet there are thousands of compromised accounts out there. Abiword is not the only one. As a business owner that is currently transitioning away from PayPal, I can attest these hackers have broken into many accounts and try to buy goods from them. I would recognize a fraudulent transaction from one of them and s/he would come back with a different account and try again. This has gone on for months. It seems like they have an endless supply.

Comment removed

[account_deleted]

Comment removed based on user account deletion

I'll cancel my PayPal account...

[davmoo]

...just as soon as someone explains how the theft occured and why it is PayPal's fault. If the theft occured by someone hacking PayPal, then it is indeed their fault and I will cancel. But if the theft occured because Abiword had a simple to guess password, 47 people knew the password, or some other idiocy like that, then I have no sympathy...and I will continue to be a happy PayPal customer who has conducted thousands of dollars worth of transactions (both directions) and had no problems what so ever.

I do notice that the referenced note is long on inuendo and short on facts, and that in itself makes me suspicious.

Re:I'll cancel my PayPal account...

[adriccom]

Here, here.

As soon as someone tells us what happened, then [re]action will be called for ..

Re:I'll cancel my PayPal account...

As soon as someone tells us what happened, then [re]action will be called for ..

But that's just not the Slashdot way.

here is an idea

[Azoth's+Revenge]

Why doesn't Dom Lachowicz create an account on one of the alternative *paypal like* sites mentioned before so we can replace the money, which was lost. This whole unfortunate episode can be used to remind us of our obligations to the open-source software that we use. This doesn't really change the business practices of paypal or offer any form of justice, but at least it solves the current funds problem. ...Waiting for a slashback

Criminals and Honor

[maniac1860]

Of all the groups to steal from -- AbiWord?

Is he saying that criminals just rob people regardless of their political beliefs? I'm shocked. Shocked.

The guy didn't do anything wrong...

[SlimFastForYou]

unless you consider trusting paypal.

I havent read the details yet, but I am a little curious as to how the money was stolen. If the password was "abiword", for example, I would not think less of PayPal if they laughed.

On the other hand, if a server was hacked or a rep socially engineered, PayPal should fire whoever didn't follow the security policy and give the money back no questions asked. Perhaps even slip in a little more money so that the robbed will keep quiet.

Like most people, I think governments should do something to keep PayPal in check (assuming this whole ordeal is their fault).

Re:Robbed?-Blind trust.

Dear Mr Empee

I'm sorry to inform you that your landlord had put cheap locks on your place, and it was subsequently broken into. Because you didn't change the locks. As your insurance company we will have to deny your claim. Sorry but that's the breaks.

It's not news, stuff like that is usual with PP

[prostoalex]

As much as I detest stealing, it's hard to ignore the fact that stuff like that has been going on for a while.

I saw previous posters say they closed their accounts after they found out about AbiWord theft, I closed my account as soon as I've read through posts on the site above.

Re:It's not news, stuff like that is usual with PP

ive read all those sites but never cancelled my account because i rarely used it, and when i did it was for small charges, which i immediately withdrew... but now i cancelled my account because im mad they havent helped get abiwords money back... it didnt make me worry about my account, its just the fact that they suck so fuck em =p

Re:It's not news, stuff like that is usual with PP

[prostoalex]

I thought that just not using it without cancelling would be okay, but then I read about people complaining on sudden withdrawals from their checking accounts and that was the red flag for me.

Re:It's not news, stuff like that is usual with PP

[BlueUnderwear]

Well at least in this case, Paypal didn't freeze the remaining $200 after the thief took $600...

Question Regarding Paypal Fees vs. Greed

[Babbster]

I'm not going to write a long screed about Paypal since I haven't done business with them (frankly, I'm wary of anybody who gives away money like I saw Paypal advertising at one point). However, I am wondering something:

How much money should someone be allowing to accumulate in a Paypal "donation" account? I ask because I think that anyone who lets the account grow too much (like beyond $100 or one transaction, whichever is greater) is begging for trouble. I know that there are transaction fees when you take money out of the account, so were the Abiword people being cheap by not withdrawing earlier?

For example, if there is a 2.9%+$0.30 charge to receive $100 from the account (see Paypal for details), that would be a charge of $3.20 leaving $96.80 in the check I assume they would send out. Even at $50, you're looking at $2.25 with $47.75 of actual money coming at you.

Clearly, were I running the deal I wouldn't be leaving money in this "fund" and I think that Mr. Lachowicz was a damned fool to do so, whether Paypal is generally believed to be a security risk or not.

Frankly, I have more sympathy for someone who loses $30 or $40 from their Paypal account because of this kind of fraud than I do in this case. Someone who loses such a small amount of money could have had some valid reason to have the money in their. Someone who leaves $800 sitting around, doing nothing (savings account interest rates are small, but Paypal interest rates, well, are nonexistant), probably needs a lesson taught to them.

Blaming Paypal alone would be a mistake.

Re:Question Regarding Paypal Fees vs. Greed

[dominator]

PayPal charges a fee in return for providing one+ services. These services are explained in painful clarity in their terms and conditions page.

One of these said services is the ability for a redress of greivances, and for a speedy resolution of said greivances.

"PayPal will investigate your complaint and attempt to recover any funds you are owed. You will be entitled to the return of any funds PayPal is able to collect on your behalf. However, fund recovery is not guaranteed."

Please read:

https://www.paypal.com/cgi-bin/webscr?cmd=p/gen/ te rms#insurance
and
https://www.paypal.com/cgi-bin /webscr?cmd=p/gen/te rms#consumer_protection

The fact that my money was stolen is inconsequential to what I feel is the main body of my argument, namely that PayPal isn't living up to the terms and conditions that we both entered into when I hit the "Agree" button. This is what I blame PayPal for. Their behavior after money being stolen is merely an unfortunate case-in-point of this.

I'm not a demanding person. I don't necessarily want my money back, though that would be the most ideal resolution to this problem. What I want is for PayPal/EBay to send me a fscking email saying "we're investigating your complaint." That's all. Even better, they could find out the address where the camera was sent and give that to me, or contact some authority a
about the problem. Or at least give me the ability to do so myself without having to get a subpeona against them.

And, FYI, PayPal's money-market account interest rate is 2%. Fleet's passbook savings is is 0.95%. You do the math.

Dom

Re:Question Regarding Paypal Fees vs. Greed

[Babbster]

You're absolutely right to want customer service, and certainly that part of your complaint is well justified.

As far as interest rates go, I guess in retrospect it's a question of risk versus reward. Certainly anyone else who would consider leaving money in any Paypal account should be extra wary, and it's good (though unsatisfying for you) that your situation may increase awareness of the problems there.

I hope that at the least somebody tracks down the jerk who stole the money and prosecutes him or her for that theft. Good luck to you in the meantime.

I would also apologize for being overly judgmental in my assessment. I have a terrible tendency to respond to kneejerk reactions [of other Slashdotters] in kind. :)

Paypal PR sucks.

[bobdole34]

Paypal works fine as long as you have no need for any human interaction. While you're sending money, they are happy to skim 5-10% off each transaction.
When the unimaginable happens and you need customer service, there is no one to help you.

I have had to deal with them several times, not one of which was a positive experience. They are the worst company I have ever had the displeasure of working with. I was looking forward to seeing eliminated by friendlier competition; but now we'll have to see what EBay does with it.

those bastards!

[Maskirovka]

Paypal should pay.

Have you considered.....

[TechnoGrl]

A lasuit against Ebay itself since they have acquired PayPal?

FWIW I will worte to paypal and express my extreme dissatisfaction with this turn of events.

Bets of luck to you guys!

Paypal: Excellent Service (until you need help)

[R-2-RO]

Paypal is quite convienient, but should something like this happen that requires Paypal to step in, you're SCREWED!

Paypals complaint resolution works like this:

File complaint

Paypal emails other party on your behalf

Paypal receives no response for other party after X number of days(duh)

Paypal deems your money unrecoverable (sorry)

Filed fraud w/ my CC company

CC company investigates (and when they finally stop laughing) remove charge from my CC (thank you!)

Recieve nastygram from PayPal for not initiating the charge back through Paypal for the 10 dollar fee instead of the free service my CC provides.. (dick heads!)

Luckily my CC company came through with no problem. But I was scammed on a PS2 system on Ebay (long story) the sad part is that there were about 20 of us that lost out on the ebay thing. A couple of them used paypal and got nothing! and since they didn't use a CC (which paypal would rather u use a straight bank transfer) they got screwed. Got nothing back. Sad.

Re:Paypal: Excellent Service (until you need help)

[SecretAsianMan]

I was scammed on a PS2 system on Ebay

I'd say so! But surely you had *some* idea how obsolescent those IBM PS2's are...

Sure just...

[Mmmrky]

Sure just send money to their paypal account and...oh wait

Slashdot Subscriptions

[forged]

So was the early subscriptions system a lure to get as many Slashdot fellow readers as possible into using PayPal ?

closed my account

[koolkao]

glad to be informed of this. Just close my account.

Squeeky wheel gets the grease

[cybermint]

After reading this ridiculous story, I'm going to open a C2IT (Citibank) account and try to use that push that as my main auction payment method. I'm also going to send several e-mail and/or letters.

I am unsure how effective this would be, but what about petitiononline.com?

To Close Your Account

[BrianWCarver]

To close your paypal account follow that link. I just closed mine.

Then send them an e-mail explaining why. I'm going to now.

P.S. It seems to me the seller of the camera/PDA must have mailed the thing somewhere. Get that address. Contact local police. Contact EBay's fraud division. ETC. I'd be surprised if this money cannot be recovered. In the meantime, I hope Abiword is busy setting up a C2it account.

Re:To Close Your Account

[sverrehu]

I couldn't close my account, because it had $1.95 on it. And I could not remove those money, as the PayPal people do not transfer money internationally unless the amount is at least $25.00.

Oh, well. I did at least remove my credit card info. If you're a bad-guy and happen to pick up my $1.95, please close the account afterwards. ;-)

Re:To Close Your Account

[andyf]

PayPal me the $1.95 and I'll send you the cash through good old postal mail. :)

PayPal is unregulated.. treat it that way..

[Dr.+Awktagon]

That really stinks. I wish Dom the best of luck getting his money back.

But, I'm not going to cancel my PayPal account over this just yet. I've had the account since the service began (remember when it was for Palm Pilots?). Never had a problem. I treat PayPal with kid gloves because they are not regulated the same way banks are (and they shouldn't be: they are a payment service, not a full-service bank), and they are a huge hacker's target.

Here what I do with my PayPal account (I use it quite a bit on eBay for buying and selling):

1) Set up a separate bank account for PayPal. I have a money market fund whose sole purpose in life is to transfer money between paypal and my regular savings account. I transfer the money out at least once a month or so.

2) never give PayPal any more information than they need. Give them one credit card (preferably exclusive to PayPal with a PO box billing address). Don't sign up for the piss-ant Money Market fund that requires giving them your Social Security Number. No extra emails, phone numbers, or mailing addresses. Change password often.

3) NEVER UNDER ANY CIRCUMSTANCES leave a balance in your PayPal account. Because it's PayPal's money, not yours, until you take it out (remember, it's not a bank). Withdraw immediately. Even if you need to pay for an auction later, use your bank/credit card to pay for it. (I use a Citibank card that gives a cash back bonus, so I actually get a small benefit from doing this.)

4) If they send you a free Debit card, cancel it. Don't sign up for the credit card either.

You have to keep in mind also, PayPal can freeze your money at any time. All that has to happen is someone file a complaint against you. They can lock your account. They can do various silly things.

I don't want to "blame the victim", but if your money is not in the PayPal account, it can't be stolen. And if there's a fraudulent charge on your credit card, it can be taken care of with a signed affidavit, or maybe just a letter, like any problem with your card. Your card has consumer protection laws associated with it, your PayPal account doesn't.

I did have one of my other cards stolen once and used on PayPal (had nothing to do with my paypal account, the perp opened his own). I wrote them and received a response and an affidavit to fill out, the next day. In fact, all my PayPal customer service mails have been answered the next day. (I have a "premier" / "merchant rate" account, which gets better treatment, ymmv).

By this point, with all the horror stories out there, I'm surprised anyone would keep a balance in their PayPal account.

Re:PayPal is unregulated.. treat it that way..

[Erebus]

I don't want to "blame the victim", but if your money is not in the PayPal account, it can't be stolen.

Wrong. If you sign up for a 'subscription', and there's not anough money in your paypal account when the 'subscription' renewal date arrives, they will automatically take it out of your account, without asking. (My guess is, since they tell you this when you sign up for the 'subscription', that constitutes their 'asking'. Nevertheless, they can and will take money from your bank account/credit card if they so choose.)

Re:PayPal is unregulated.. treat it that way..

((((If you sign up for a 'subscription', and there's not anough money in your paypal account when the 'subscription' renewal date arrives, they will automatically take it out of your account....they tell you this when you sign up for the 'subscription')))))

uh, having problems with the new brain?

Re:PayPal is unregulated.. treat it that way..

[Ron+Bennett]

Yes...but the point is that one has recourse in regards to unauthorized transactions from a checking account via ACH - this is by an act of law.

Contrast that with money in a PayPal account...no legal protection. None!

The other poster's emphasis was to withdraw the money out of PayPal on a frequent basis.

With that said, there's a wrinkle the other poster may have not considered...ACH withdrawals can be reversed for a period of time. So even if one withdraws the money to their checking account, PayPal can get it back with little hassle by reversing the ACH transaction - one has little recourse (withdrawing all money in the bank account won't work - the bank will just issue a bill!) in stopping such a reversal; not saying one can't, but is significantly difficult.

Bottom line is that PayPal is risky for both buyers and sellers alike - both sides assume relatively large risks when compared to other types of transactions like credit cards, on-line checks (ACH), etc that come with legal protections.

Re:PayPal is unregulated.. treat it that way..

[Erebus]

So sorry...here's an extra word that may help those ACs who can't count parentheses:

If you sign up for a 'subscription', and there's not anough money in your paypal account when the 'subscription' renewal date arrives, they will automatically take it out of your bank account....they tell you this when you sign up for the 'subscription'

Re:PayPal is unregulated.. treat it that way..

[/dev/trash]

What you descibe is call recuring payments. They are convenient, thus if they had to ask every month to take out the money. the conveneince would go away.

Re:PayPal is unregulated.. treat it that way..

[drinkypoo]

That's right, and if you open a new checking account specifically for paypal and only provide them with that account information, they can't take out any money you don't intend them to have access to.

Most banks will give members additional free checking accounts.

Re:PayPal is unregulated.. treat it that way..

[John+Hasler]

> Most banks will give members additional free
> checking accounts.

Don't open your special PayPal account at any bank at which you have any other accounts. To understand why, read your bank's terms of service.

Put responsibility where it belongs

[Chester+K]

"...system is notoriously insecure"

Bullshit. How about "I had an insecure password", or "I responded to one of those emails from a scammer that claimed to be PayPal", or "Another system I use was compromised and I stupidly use the same password everywhere" instead?

I'm gonna guess one of those scenarios is more likely than any security failing on PayPal's part. Certainly if there was a security hole in PayPal itself, there are much bigger fish to go after -- any of eBay's Power Sellers, for instance, probably have much more than $500 or so in their accounts at any given moment.

Re:Put responsibility where it belongs

i cancelled my account and wrote them a letter, and in that letter i made note that the password was probably stolen, but the reason for cancelling was because they havent helped abiword, and others, get their money back, and just overall bad customer support. i havent used my account in 6+ months but i just wanted to do something... i wonder how many others cancelled their accounts tonight, what id give to have access to their cancellation logs.

Re:Put responsibility where it belongs

[dominator]

Actually, I never respond to emails from scammers who claim to be paypal, my passwords are quite long and not the same everywhere, I change my PayPal password once every 2 weeks, etc...

I don't really blame PayPal for my fund being robbed. I do blame PayPal for not responding to my customer support emails. This is the crux of my complaint.

All I asked for was an address of my grievance. I'd be pleased if they acknowledged my existence as a member of this planet. But they don't, and in my opinion, it would be the least that they could do to keep a customer happy, nevermind their legal obligations.

Paypal proclaims to be a trusted third party, collecting, holding, and disbursing your money as only you see fit. My money was disbursed from their coffers without my permission. This is robbery. No, Paypal did not rob me, someone else did. But Paypal as a trusted third party is responsible for providing certain safeguards to make sure that they're not duped too easily. And if someone tells them that they've been duped, they have an obligation to at least investigate my charge. Or at least they should.

Paypal is a company that manages and holds others property on behalf of them. As such, they are duty-bound to protect those properties. There are laws for companies that do this, and names for businesses that do this. Namely, they're called banks. As such, my money should be protected under laws and statutues similar to FDIC. It is not. Am I stupid for using PayPal? Maybe. Shame on me.

Now, if PayPal had merely responded saying "We're investigating this charge" *EVEN* if they came back saying that my charge had no merit, I would not have sent this email. I refer you to these quotes from paypal's own site:

"PayPal will investigate your complaint and attempt to recover any funds you are owed. You will be entitled to the return of any funds PayPal is able to collect on your behalf. However, fund recovery is not guaranteed."

Please read:

https://www.paypal.com/cgi-bin/webscr?cmd=p/gen/ te rms#insurance
and
https://www.paypal.com/cgi-bin /webscr?cmd=p/gen/te rms#consumer_protection

This inaction when dealing with my funds pisses this one customer off. And, IMO, rightly so.

Dom

Re:Put responsibility where it belongs

[illegalien]

I agree that users should take more responsibility with respect to security in general.

I still believe PayPal should rethink security issues. Most PayPal users fall into the "Assume the user is an Idiot" catagory. That being the case, PayPal should enforce stricter password policies and check systems. They could do something like... if you wanna make a withdrawl larger than $XXX, you have to do XYZ. It could even be set up so that it is not a mandatory system but optional (so that the "inconvenience factor" is limited only to those who choose... ON be default, opt-out instructions provided when making widthdrawl)... you get the idea.

To say that it's the users fault just isn't right.

It would be like going to your bank to withdraw money and finding out that the teller gave Joe Shit all your money because he said he was you and then saying it was your fault because his name was the same as yours.

Suggested potential course of action....

[CathedralRulz]

1) Sue Ebay (who own Paypal)
2) Boycott Ebay.
3) Write Ebay's board of directors (it's a public company)
4) Find out where that money was transfered and bring a lawsuit.
5) Yeah, Paypal is beginning to look like a bank. And if it starts to reach a critical mass, don't worry about YOU having to contact your congressman, odds are your bank will, and they will make something happen.

click here

[ramzak2k]

firstly show them some love by clicking here
I am sure someone checks their referral logs & they should get some idea on whats being discussed here.

Paypal is not considered a bank...

[stubear]

...under US federal banking laws and this article from CNET explains why better than I could.

Mod me redundant, but...

[Whatsthiswhatsthis]

In a show of support, I have closed my account. Not like there was any money in my account, but I did have 4 accounts tied to it. As a college student, I cannot afford for people like PayPal to dick me around. They didn't ever screw up and probably wouldn't. But I believe that customer support is more important than the service offered. I've worked in the banking industry and learned that people aren't loyal to their banks. Good luck PayPal: you have not yet realized "customers first, profits second," but, rather, you have taken up a "profits first, customers second" attitude. The latter attitude never becomes successful in the long run and will always come back to bite like a viper.

Mod me redundant but...

Solution

[bangzilla]

So contact "Jun Jiang", find out to where he shipped the camera and arrange a little "visit..." Looks like the perp also bought another camera so if Jun Jiang can't /won't provide the address (which he should 'cos he got money from "you") - then ask the other seller. Then arrange the "visit". I'm sure a number of folks would be only too happy to help with the "visit", especially those who contributed to the tip jar.

Re:Robbed?-Blind trust.

[empee]

I'm sorry to inform you that your landlord had put cheap locks on your place, and it was subsequently broken into. Because you didn't change the locks. As your insurance company we will have to deny your claim. Sorry but that's the breaks.

No, see, YOU put the locks on your place. The landlord made you put a lock on there, but you chose the lock. You decided if it was a stainless-steel master lock, or one of those crappy cord-looking bike locks that could be cut through with a pair of grade-school safety scissors. Paypal doesn't set your password, YOU DO.

In all seriousness, isn't the security of a password still sacred? I mean, you can log in to any server, anywhere, with nothing more than an absconded password; do you really expect Paypal to do more than that?

Wait a minute...

If I cancel my account, how am I supposed to paypal Cezar teh moniez?!?!

Re:bye bye paypal

[rob-fu]

You can pay for your EBay stuff besides Paypal. IIRC you can pay electronic check, credit card, etc. Paypal only acts as an intermediary between seller and buyer, I think. It's been a while since I've sold/bought anything from there.

FDIC

[warp1]

PayPal makes a fine s fine spume about "FDIC
Pass-Through Insurance". Just a fancy way of saying they don't have
insurance and probably can't get it.

I think it's pretty obvoius

There was no theft. He just took the money out to buy a copy of MS Office XP and didn't want you all to look down on him.

Questions?

[greenskyx]

Ok I have a few questions: 1. Should I be worried about people stealing money from my bank account using paypal if I have an un-guessable password? 2. Do I just need to work about the money currently in my PayPal account? 3. Are there any viable alternatives to PayPal? 4. How could paypal change to make them a good solution? I think that's all I have questions about. Thanks in advance for the help and don't destroy me if these are dumb questions...

Re:Questions?

[Babbster]

They're dumb questions only in the sense that they've all been answered above (though in far more inflammatory fashion than I'm about to). :)

1. No, you shouldn't be worried about it, BUT you shouldn't be giving Paypal your bank account information. You should only be dealing with Paypal on the basis of a bank-issued credit (not debit) card.

2. If you have more than $50 in Paypal, you should take it out immediately. You shouldn't keep a balance with Paypal. If someone buys something from you and the money goes to Paypal, just take it out ASAP (though if they are small transactions, for convenience you might want to wait until you are up to $50 or so).

3. There are indeed viable alternatives to Paypal. One example is Bidpay from Western Union. There's no account balance, you simply buy a Western Union money order (online, of course) and they send confirmation to the seller who can then be assured that their money is on the way. Each transaction is its own beast and nobody leaves any money hanging with them. Some of the above messages contain other alternatives.

4. I don't know if Paypal has to change. I think the consumer perception of them is the problem. Too many people think of them as a bank when they clearly are not. They can't even be confused with a bank if people would simply maintain ZERO balances with them and use them purely as the money middleperson as they were originally intended.

Of course, Paypal has a tendency to foster the impression that they're a bank, so their marketing can take some blame as well.

It's all about education. If somebody isn't giving you interest on money they're holding for you or isn't federally insured - i.e. credit unions, banks, savings and loans - you really need to either move your money elsewhere or, as in my case, SPEND IT.

Re:Questions?

Nice job responding to a troll, dumbass.

NO, Paypal is what it is!!! Leave it that way.

Paypal is not a bank, if somebody guesses your password and robs you blind, you are screwed.

Knowing this, do not keep large balances in your paypal account! This isn't that hard people.

If you want the hand holding that a bank will provide, be prepared to lose much of the flexibility that Paypal offers. Millions of us use it and love it. Don't ruin it for us because you have a bad password.

Hints for Paypal.

1. Use a good password.
2. Give that password to nobody else.
3. Do not keep a large balance at Paypal, transfer the funds to your bank account, it is free. Do so frequently.
4. Do not EVER pay for something with funds from your Paypal account. Withdraw all funds and use a credit card via Paypal. If things go wrong, cancel with your credit card company.

I have read all the sites warning of the problems with Paypal. If you follow these simple rules you will not have any real trouble with Paypal. Even if somebody does get your password, steps 3 and 4 will make sure that your loss is minimal.

Don't ruin this for us because a select few didn't take the time to protect themselves. Paypal is a wonderful service, if you take some very basic and simple precautions. Really, how hard is it to follow the 4 simple steps I listed above?

Re:NO, Paypal is what it is!!! Leave it that way.

[Skapare]

5. NEVER give paypal your bank account information. If they have it now, then open a new bank account and transfer all your money to the new account. Then close the old account.

And keep in mind that you can lose money in your Paypal account without having done anything wrong and without your password even being involved.

Geez, all this whining - read up on free markets!

What a bunch of whiney-asses! Here is how to stay safe on Paypal:

(1) Use your credit card ONLY - you can always do a charge-back to Paypal via your credit card company of a disputed charge, therefore you are protected! I had to do this once and it all worked out OK;

(2) DO NOT maintain a balance in yoru Paypal account - they allow you to "sweep" any blanace into a regular bank checking account nightly!

(3) Choose a strong password.

Was that simple enough?! If you want a free-market society, you can't jump on the "sue them" bandwagon just because you lost money - no-one will want to provide services. A previous poster said it best when they said - SOMEONE stole the money, so Paypay is not at fault - they do not guarantee your money in any way - get it? If they had used Paypal's "balance sweep" service to move their Paypal balance to their normal (FDIC insured) bank account each night this have happened, correct?

I for one, don't want to pay additional fees for Paypal to become a bank and insure my money (I never keep a paypal balance), so take your business elsewhere (we've got too many laws on the books already!).

Blame the victims? Where are the regulators?

[greenskyx]

Certainly... let's blame the victim here.. That's so asenine. In a capitalist society we should have a reasonable expectation of security when working with businesses like this. The problem isn't with people using the service, the prople is that our Government no longer has the balls to enforce our laws. Should we blame everyone who invested in Enron for being stupid? Our government better start acting very soon here or people are going to start to loose confidence in the system?

Re:Blame the victims? Where are the regulators?

[Babbster]

The victim HAS to share some blame, if only for the AMOUNT of money that was lost. Obviously, if the thief can be tracked down they should suffer the brunt end of the criminal justice system, and there the blame would most properly be placed. However, if someone is stupid, then they're going to be penalized for it.

Example: I start a bank account with online banking options. I then make the password "babbster" (or my real first name). If someone comes along and steals money from me, I *am* to blame. I may have some recourse (assuming that FDIC covers it) and someone else may go to jail for stealing the money BUT I am STILL to blame for being stupid.

As to your example of Enron: Yes, we should blame everyone who [stupidly] invested in a company whose true assets consisted almost entirely of their stock certificates. We can just as easily blame people for investing in Internet companies because they had some ephemeral idea and little else. It's less a question of government intervention than of consumer/investor responsibility:

If you throw money at a company by buying their stock, you are supposed to be doing so because you believe in their product and want them to be successful (which is why you are capitalizing the company). Unfortunately, people more likely buy a particular stock because they think that the value of the stock might go up. While this can be a benefit to the stockholder, investing in the stock market is SUPPOSED to be different than playing the lottery.

It's also way off-topic, but that'll happen sometimes. :)

Re:Blame the victims? Where are the regulators?

[phaze3000]

I think you're only serving to muddy the waters by comparing this to people who invested in Enron. People who invested in Enron knew (or should reasonably have known) that share prices can fall. People who put their money in Ebay can reasonably assume that their money won't be stolen.

Re:Blame the victims? Where are the regulators?

[greenskyx]

That's very true... I stand corrected...

How much was lost?

[httpamphibio.us]

Topic...

Negligence

[adb]

There isn't enough information in the announcement to tell if that's what happened here, but if PayPal failed to do their job (e.g., they didn't take reasonable security precautions in proportion to their responsibility), a lawsuit is exactly the right thing. In most (i.e., libertarian rather than anarchist) conceptions of the free market, it's part of the gummint's job to enforce contracts, and there's clearly a contract here, even if some parts are just implied by the nature of the relationship: "in exchange for a cut, we will hold onto your money for you" => "if we fuck up and cause you to lose your money, we'll pony up".

Re:$5 to make a credit card payment.

You try making a credit card payment where your bank has your new address but still has the old address attached to your credit card so they reject payments verified by address and then finding out a month later that the payment didn't go through.

All my bills are current, all my debts are paid off, and my platinum credit card just raised my limit.

Find the Buyer

[jhunsake]

They know who the seller was. Surely he had to transmit the camera to the buyer somehow. Trace him through that.

I would find the guy that did (trust me, I *would* find him). I wouldn't even ask for the money back. I would just beat the shit out of him, destroy any of his possessions I could get my hands on, and fly home.

I think to many people try resolve things through the police and legal system. It's a waste of time. If these fuckers started getting their asses beat, this shit wouldn't happen as much.

Re:Find the Buyer

PS That's a warning to any fucker that tries to cheat me. I'll gladly pay $500 for an airline ticket and $60 for a nice wooden bat to pay you a visit.

Re:Find the Buyer

ha.. just like a slashdot geek to bring a bat to a gun fight...

YOU can select how you pay.

Yes, YOU. I put that in all caps, did that help? YOU selected how to pay.

If YOU want paypal to hold your hand like a bank, Paypal will have to charge us much higher fees to pay for the insurance.

I like not paying fees. 1. Don't leave a balance in your Paypal account. 2. Always pay with credit card.

Those two steps will remove any chance of damages. Yet, YOU would rather have us all pay tons of fees. How hard are those two simple things? Take some responsibility for yourself, don't make us all pay to have Paypal do it for you.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Use a second checking account!

[Fencepost]

I've said this before and I'll say it again:

Set up a separate checking account for use with PayPal and other online payments!

• Don't put much money in, just enough to cover your regular expenses - when you need more, most banks have phone or Internet systems you can go through to transfer money between accounts.
• Don't let the bank set up the account with automatic overdraft protection. Some will do this by default. Make it clear that overdraft protection from your other accounts is unacceptable and be willing to back it up by changing banks
• Don't bother getting checks, just the numbers that would be in that MICR line at the bottom of the check.
• Use a credit union if you have one available - in general, the account there will be free.
• Never depend on that account for anything important - rent, groceries, car payments, etc. all come out of your normal account. This one is a pile of money left on a desk in a busy office.

Re:Use a second checking account!

[Roblimo]

Exactly. My wife has a small Internet-based business, DebbieCentral.com. She accepts payments through PayPal (although most of her clients pay by check), and has a separate bank account for PayPal and other online transactions.

I signed up for a PayPal account when they were first getting started, and I have never been able to close it. I have, however, closed the bank account it was connected to (for other reasons, not because of PayPal), so I'm fairly safe.

- Robin "Roblimo" Miller

Personal site: http://roblimo.com

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Abiword STILL using paypal?????

[tannhaus]

I just checked the abiword website..and to donate funds they say you must have a paypal account...and give you a link to contribute...that sends you to PAYPAL. Is this a joke??

Re:Abiword STILL using paypal?????

[Ron+Bennett]

Bizarre isn't it :-;

Anyways, one can either expect that by Monday, PayPal will have made them "whole" or their PayPal account will be suspended and no longer work.

PayPal is a great idea, but it's a shame their customer service is so poor. Hopefully the eBay folks improve things with PayPal...otherwise PayPal could be end up being eBays's undoing :-(

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Robbed by who?

My guess: PayPal themselfs.
They have a notorious history of restricting accounts, withdrawing the wrong (more) ammounts, and such. And and you use them to sell software, DON'T
They assume all software is owned by microsoft, and will demand that you prove that you are licenced by microsoft to sell the code. It doesn't matter if your distributing Linux distros, other various GPL software, BSD licenced code, home written code, anything, you gotta prove that MS gave you permission. I wrote a console app to manage DNS records. It was a small C/Perl application for BIND on BSD. They fucking restricted me and cited there AUP. MY code. It's absolutly assinine.
If I ever meet anyone who works for paypal IRL
I will, literally, beat my owed money out of them. The pure satisfaction would be worth the jail time.
The moral I learned: Keep buisness in real stores and off the net.

Re:Robbed by who?

Note: Moral two: Use the freaking preview button.
Oh well, I needed the humility to calm me back down :)

Comment removed

[account_deleted]

Comment removed based on user account deletion

IFCCFBI

[malachid69]

Report them to the IFCCFBI (ifccfbi.gov). That is the combined efforts of the FBI and the FCC to fight Internet Fraud. I finally got tired of being ripped off by LCIS (read: Computer Books Direct/bookspan) and filed a complaint against them. You should file an official complaint against PayPal.

"Notoriously Insecure"

[chazbot]

If paypal is "notoriously insecure" as he puts it, then why was he doing business with them?

Obligatory Slashdot metaphor: It is like buying a house in a neighborhood knowing it has a high crime rate and bitching because you got shot.

(Obligatory Slashdot counter-metaphor to follow this post.)

Comment removed

[account_deleted]

Comment removed based on user account deletion

PayPal Security and what THEY think about it...

[CyberBill]

So, about a year ago I broke into 10+ accounts at paypal, and moved a couple of bucks (12k or so) around, didnt TAKE anything, just moved back and forth from accounts. After a good amount of time after that, I contacted paypal and told them how I was able to do it, and how EASY it was. I got in touch with someone, who, I presume is one of, if not the only security guy at PayPal. According to him, its not worth there time to impliment more security features as it makes it harder for the user to gain their access to the account. Plus, its not PayPals loss if they get hacked... so why pay money and lose users to not gain anything?

Bill

Comment removed

[account_deleted]

Comment removed based on user account deletion

Terrorist Alert!

[jhunsake]

Arrest this guy! He's a terrorist!

(I'm kidding of course, just trying to be a Patriot.)

Thief!

I think abiworld guy is covering up stealing from the fund. Thief!!! I have a idea let's all go file a fraud report on Dom Lachowicz.

Pay Pal is sleazy

[SurfsUp]

My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers. We didn't see that money again for three months, as they pretended to be "investigating" the transaction for possible fraud. Never mind that we talked to them many times on the telephone, and send proof of our ownership of the accounts several times, and pleaded with them to resolve this, as we needed the money.

The delay was beyond any point of being able to pretend that they actually made any effort to resolve the situation. It was in fact more than 10 days after we first contacted them before they would even open what they call an "investigation". They claim that their procedures are set up to combat fraud, but it's just a way of establishing deniability. That is, they pretend that they have no intention whatever of stringing me along as long as they can, while they collect interest on my money. (And no, they never did offer any compensation for the lost interest, let alone the many hours we were forced to spend pursuing them, to get our money back.)

You think mine is an isolated case? It is by no means. Just do a web search for paypal+complaint. See all the distressed people. See the lawsuits.

It's a transparent scam: by locking up the money of only a certain percentage of their customers, and treating the rest reasonably well, the people who claim that Pay Pal engages in a pattern of sleazy misconduct will never be believed, because they will always be outnumbered by customers who have never had a problem.

That doesn't make it right.

Re:Pay Pal is sleazy

"My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers."

Why? *WHY*?

There must be something in the water, cuz all I smell is bullshit.

Re:Pay Pal is sleazy

"My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers."

Why? *WHY*?

Most likely, they were trying to get a cash advance by charging a credit card through paypal as a purchase toward the second account. This is straight-up against the PayPal TOS, because it is also against every CC TOS I've ever seen. If you want a cash advance, you have to do it the CC company's way, or they'll get heaps of mad over the extra finance charges they're "losing".

Re:Pay Pal is sleazy

[SurfsUp]

"My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers."

Why? *WHY*?

There must be something in the water, cuz all I smell is bullshit.

It was instead of a wire transfer, junior.

Re:Pay Pal is sleazy

[Call+Me+Black+Cloud]

Or instead of writing you a check, or getting a cashier's check, or getting a money order...

"Hey honey, let's ignore tried and true banking principles that have been in place for years and are regulated by the government and let's use this new website that just opened up instead!" "Ok, sounds great!"

[beep][beep][beep]Oh sorry, gotta run, my bullshit detector is going off...

Re:Pay Pal is sleazy

[/dev/trash]

My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers.

I don't know, but it sounds pretty suspicious to me....

Re:Pay Pal is sleazy

[SurfsUp]

Or instead of writing you a check, or getting a cashier's check, or getting a money order...

"Hey honey, let's ignore tried and true banking principles that have been in place for years and are regulated by the government and let's use this new website that just opened up instead!" "Ok, sounds great!"

[beep][beep][beep]Oh sorry, gotta run, my bullshit detector is going off...

It might seem funny now, but at the time we believed that Pay Pal was reputable, and did not see any reason not to transfer money through them. Hopefully, it would have been faster than a cheque or a wire transfer. Instead it turned out to be a real horror. Just don't use them... for anything.

There is no good reason to patronize an unethical business.

Wait a minute... A dot com?!

[Bowie+J.+Poag]

Come on... PayPal isn't corrupt! Theres no such thing as a corrupt dot com company. They're all fine, upstanding companies with untarnished reputations.

Take your PayPal troll somewhere else, buddy!

A Possible Alternative to PayPal

[NeuroManson]

I'm not sure what others' experiences have been with this company, but I'm looking into getting it myself... A new company, called NetSpend (www.netspend.com) is offering reloadable MasterCards which you can either put money onto at any store or check cashing location that allows it, or get money deposited to via online transaction... The bonus, of course, is that you can access your money directly (while paying the average $1-$2 fee for ATM usage), and a paltry $20 per year charge to maintain your account...

The only apparent drawback of the program is that you can only transfer funds from one NetSpend account to another, so of course, your buyers/contributers need to have a card themselves... Considering that the fee is extremely low, and the fact that NetSpend is on the BBB, they seem a bit more straightforward than PayPal... Also, they don't need to pass any credit application procedures, or open a bank account (unlike secured credit cards), it can be extremely simple to obtain.

Another added bonus is that the credit card acts as a secondary form of ID...

Here's how you SHOULD do it..

[daitengu]

I have $30 taken out of my paycheck, and put into a bank account every 2 weeks, This is the only bank account I have that is listed on Paypal. I leave all the money in my bank account, so that if anyone DOES manage to 'rob' my Paypal account, the account has a minimum amount of money in it, and they'll have no clue as to how much money is actually availible. (I'd rather loose $25, from a overdraft fee from the bank, than have someone rape $100 from my paypal account.

Granted, the easiest way to prevent this is to not use paypal, but up to this point, they haven't done me wrong, they've actually backed me up on an auction I won, and paid for, and the seller never shipped the product... Paypal got my money back for me within a week of submitting the dispute.

So, Paypal isn't ALL bad, granted their security should be a bit better, and perhaps they are a bit understaffed, because complaints do take quite awhile to respond to. (but *3* weeks?)

I've heard enough

I have heard enough warnings about paypal. I am no longer able to trust them with any financial information and have closed my account. The final kick in the pants? A $1.50 "check processing" fee to refund your final balance.

sign the petition RIGHT NOW

sign the petition RIGHT NOW
sign the petition RIGHT NOW
sign the petition RIGHT NOW
sign the petition RIGHT NOW

Am I the only one PayPal hasn't screwed up with?

[M3wThr33]

Everything's been peachy with me so far. Why is it other people have problems? A lot of people also complained about UpstateGames.com REALLY REALLY REALLY late GBA shipments last year, but mine arrived early. For once, I'd like to actually get on the butt end of these problems so I can relate.

PayPal Alternative... Yahoo PayDirect

[Phasedshift]

A nice alternative to paypal (for some purposes) is Yahoo's PayDirect.. paydirect.yahoo.com..

Paypal sucks, Abiword doesn't so...

[wdr1]

... since there have been enough paypal bashing for one day, how about folks kicking in a buck or two to raise some more funds for abiword?

Heck, if some nimwit in NYC can raise 20k to help pay off their credit card bill from donations, surely at least $600 can be raised to help abiword? Hell, maybe we can get some of that infamous Slashdot effect directed towards kicking a buck to their back account.

-Bill

Re:Paypal sucks, Abiword doesn't so...

[Gunzour]

Ummm... donate to Abiword by putting more money into an account that is apparently insecure? I don't think so.

From the Abiword page:

In order to donate money, you must have a PayPal account.

I tend to side with the folks in this thread who suspect a bad password or something like that -- there's been no evidence presented that I have seen which indicates any responsibility on PayPal's part.

Whether PayPal or Abiword is to blame, there needs to be some assurance that donations are secure before *anyone* donates more money, especially to the same Paypal account.

Re:Paypal sucks, Abiword doesn't so...

[tswinzig]

since there have been enough paypal bashing for one day, how about folks kicking in a buck or two to raise some more funds for abiword

Ummm, because that would require me to setup a PayPal account?

I think I'll wait until they get a better donation service provider. What about c2it, which is run by CitiBANK (I stress the bank part).

Re:Paypal sucks, Abiword doesn't so...

[archen]

Why would I donate money to anyone that leaves their tip jar on the street? There have been more than a few projects that I was actually planning on making donations to, but didn't because they only accepted payment through paypal.

I feel bad for the maker(s) of Abiword (although I don't use it), but if you let the fat kid hold the cookie jar, don't be too surprised when only crumbs are left.

Re:Paypal sucks, Abiword doesn't so...

[jimmy_dean]

I was informed by the creator of that password that it was 12 characters long and was not based on any single word in the dictionary. It was a very strong password and he is very protective of the password too.

Re:bye bye paypal

Ever heard of a Money Order? I have yet to see an auction that didn't accept these....

God forbid wait an extra week for your Collectors Edition Velvet Elvis.....

FBI?

[Russellkhan]

Isn't this a case of theft and/or fraud, probably crossing state lines? It's my impression that this is the sort of thing that's supposed to be handled by the FBI.

Have they been contacted on the matter?

Russ

Paypal and their phone support

[StarHeart]

Paypal does have phone support, but you only get it with their business/premier accounts. If you have a business account it trivial to find a 1-888 number for them. Now I have read it has been outsourced to India which doesn't sound great, but at least you can talk to someone if they are actually making money off you. They shave 2.2-3.9% + 30 cents off each of my incoming money. 2.2% + 30 cents is for Merchant accounts which have qualification requirements. 3.2% + 30 cents is merchant receiving money from someone outside the country. 2.9% + 30 cents is standard business caaounts receiving money and 3.9% + 30 cents is standard receiving money from outside the country.
The prices are like a form of sales tax, but at least they are better than c2it, western union, or bank wire. Checks would be cheaper in the US, but also less convientent. Not sure checks from out of the country would work.

Overall I am just going to require payments be charge + paypal sales tax. It makes me wonder if the government is going to get especially upset with ebay/paypal now they they have found a way to virtually collect a sales tax on the internet.

I am definitely use the methods mentioned above to protect myself and look for something better. So far I haven't found anything as cheap online.

Re:Paypal and their phone support

[vegetablespork]

It makes me wonder if the government is going to get especially upset with ebay/paypal now they they have found a way to virtually collect a sales tax on the internet.

Considering that governments don't seem particularly upset that credit card merchant fees effectively act as a tax on most face to face retail transactions, I doubt that particular fact of PayPal will cause them any ire.

Re:Paypal and their phone support

[StarHeart]

Yeah, I thought of that after I posted it. Though humans aren't known for being always rational. They may see PayPal as different. I have sense decided to cancel my PayPal account and I am looking into c2it. The major problem with them is they don't allow me to accept money from people internationally.

Re:Paypal and their phone support

[vegetablespork]

True enough on rationality. I have a PayPal account, but I've never given them a checking account that contains a significant amount of money, and never kept any money in it. It seems PayPal is a necessary evil, but that we can mitigate our risk by not trusting them with other than a "chump" checking account and not leaving money in the account for any longer than it takes to transfer and withdraw it.

I expect that being regulated as a bank will be PayPal's undoing. Certainly they're a bank by the "duck test."

Re:Paypal and their phone support

[StarHeart]

Actually after doing more research into c2it they are free for transactions inside the country, $10 for sending money outside the country, and you simply can't receive money from outside the country. They are backed by Citibank and have bank/credit card company rules and protections. This is great for me for things like Ebay and US Clients. Though it is useless for my clients in England.

It's Abiword's fault you shitstabber!

Their password was guessed, probably because rabid Open Source advocates only ever choose passwords like "m$sux0rz".

Abiword DESERVE to be ripped off. Their pitiful attempt at a 'word processor' is a pathetic joke, like all OS software.

I really hope some GNU/Shitheads starve this Xmas because of this. Maybe then they'll grow up and get a real job.

Talk, talk, talk... It's time for action

[bouis]

AbiWord needs our help! With the resources available to us here on slashdot, I'm sure that we can raise the money in no time.

Someone set up a paypal account.

The advantages of PayPal?

[claes]

Can someone from the US explain what the advantages of PayPal are that are not solved by your regular bank?

In Sweden you can transfer money from your bank to a friends account using the internet, even if he has another bank. This is the way I use now to "pay a pal". I think it is also possible to attach a message to this transfer so that you can say "payment for tickets" or something like that.

There are limits for the transfer amount though, but it is in the 2500 dollar range.

Re:The advantages of PayPal?

[BenjyD]

I don't get it either. All you need is their account number and sort code, you type in the amount on your account web page and off it goes within two days, with all the usual banking practices observed. Even the venerable Lloyds TSB in the UK let you do that.

Am I missing something about PayPal?

Re:The advantages of PayPal?

[rabbits77]

In the US most financial institutions will charge a bank to bank transfer fee of , usually, $20 . This is actually a selling point of paypal.com in the US. You can link 2 seperate bank accounts to your paypal account and then transfer money between the two for free.
Not so much a selling point for me anymore. I closed my paypal account earlier this morning.

Re:The advantages of PayPal?

[EnglishTim]

It's the same in the UK, but I'm always a little unsure about giving some guy I've never met my bank account number... You should only be able to pay stuff in with it, but even so it makes me nervous...

Re:The advantages of PayPal?

[claes]

Ok, that fee is pretty high. There is no fee for money transfer between banks here, at least not if you "do it yourself" on the internet. If you enter the office there probably is. Also, there is quite a steep fee for money transfer to foregin banks, even within the nordic countries or the EU. So there is still a long way to go.

Q Re: Bank accounts

I use PayPal, I've heard the stories. It's just too convenient not to.

I never leave a balance in my account, almost always pay via credit card, and am critical of those I send money to.

They do, however, have bank information for one of my main accounts. Opening a separate "PayPal" account is too much trouble.

Have there been any cases of PayPal actually going and taking money from your *bank account* without specific prior authorization? Do I have legal recourse (via my bank) if they do this?

I've kind of wondered about this in general -- what protections are there with ACH transactions? The routing/account number combo is at least as dangerous as a credit card, if not more so.

Re:Q Re: Bank accounts

[dincubus]

actually there could be recourse if they took money out of your checking account without authorization. it would have to depend on the circumstances. with in my limited amount of legal knowledge, engaged to a lawyer so i am learning a bit more everyday, and her and i had a discussion about this a few months ago. she had said that there have to be certain points that need to be met for them to yank cash out of your account.. i.e. proven fraud on the part of a customer or buyer from an online auction.. that kind of thing. as for them freezing accounts and not allowing access to legit funds in there.. we have not touched on that issue yet

Re:Q Re: Bank accounts

I switched banks after registering with PayPal(not for this reason), so now that info is irrelevant. I always pay by credit card. Seems ideal.

Re:Q Re: Bank accounts

I had a joint bank account with a girlfriend. We broke up and I took my name off the joint account. Since I did not have to get a new bank card I did not think to change my Paypal bank account information - the credit/debit card did not change, was verified already, and charges should have transferred to the credit card when bank account did not work. I ring up three charges, all three went to the old account and bounced. One went forward to the credit card like it was supposed to. The other two did not. Girlfriend gets charged 17 times for overdraft - she closes account and signs fraud statement. I go to bank and fix problem with them. Paypal insists on me sending affidavit stating that I have permission to transfer funds from bank account I no longer own nor is no longer in existence...even when new account is verified and old bank card is verified with it. Did find out however that their operators are not allowed to hang up on you.... nicely berated the idiot who decided to cop an attitude with me for 2 hours more...oh, I almost forgot! I have since sent funds via electronic transfer and Bidpay. I have no guarantees from Paypal that they will not send the sellers a second payment once my account is no longer "limited", even if they have copies of the transfer receipts. Nice business practices.

Anyway YES THEY CAN REVERSE PAYMENTS and take money right out of you or your payee's account!

Re:Q Re: Bank accounts

[dincubus]

update... i talked to my fiancee` last night about paypal and how they have frozen accounts. and she said they are really skirting the law with regards to blanket freezing of accounts. and to boot it may not be just a state charge they could get nailed on.. she has said more than likely it would be federal. so that did kind of brighten my day knowing i could , and read this .. would, file charges federally (least here in the US) charges against paypal if they ever froze my accounts. but this would be a huge pain in the butt

Re:Geez, all this whining - read up on free market

[Chris+Johnson]

If a free-market society means I'd have to go to a lot of extra trouble, with no benefit to myself, just to not get ripped off all the time, then why would I want one?

Probably an astroturfer

He is probably paid to promote PayPal - Slashdot is a prime target for astroturfers.

My wife's horror story...

[weave]

She made a typo when making a payment, instead of entering something like 60.09 she slipped and entered it without a period, 6009.

Sure enough Paypal processed the payment to some individual for $6,009. Wife freaks. Writes to paypal, they tell her tough shit, they can't do a thing about it, please ensure she has money in her accounts to fund the transaction.

So the wife cancels her credit card, talks to bank to make sure they will bounce the draft, etc...

Sure enough, next day, a draft for over six grand bounces, first $29 bank bounce charge fee. Pay pal autowrites her a nastygram saying to fund the account, that she MUST fund the account due to her paypal user agreement and they will try again in two days. Wife writes back, DON'T TRY AGAIN. Again, they say there is nothing they can do about it.

Again, another bounce, another $29 fee from bank. Finally, paypal gives up.

Some tips for all that she uses that saved her....

1. Separate checking account at a separate bank with a low balance. Remember, banks can rape other accounts you have with them to satisfy your debts to them in worse case scenarios (default, etc).
2. Credit card with a low (~$500) line of credit. However, this isn't security enough since some banks will still pay charges that go over your credit limit. It's really up to them.

Like another posted said earlier, Paypal is like playing the stock market, don't put in what you can't afford to lose. Just in her case, it looked like she was going to lose much more than that for a while there.

Freeciv uses paypall too

Hi!

I noticed that freeciv.org uses paypall too .. lets hope every freesoftware project will cease to use paypall .. cause they realy suck.

The money belongs to PAYPAL!

[Skapare]

The money belongs to PAYPAL! So the theft was from PAYPAL, not ABIWORD. So it's PAYPAL that should be calling up the FBI. Why haven't they? Because maybe they'd end up being investigated for their shoddy business practices.

Not too much of a stretch

Contact the seller of the Sony and get the serial number. Contact Sony and tell them this serial number is stolen. Write them a follow-up letter, registered return reciept requested detailing the scam/theft. Notify the authorities in the State the Sony seller resides in. Tell them the same story. Wait, the asswipe who eventually gets the camera will register it for warranty purposes and you will have a trail to backtrack on, voila'. Busted asswipes! QED. Sure you may have purchased the stolen camera at a flea market, but the lower than normal price should have been a tip-off. No excuses loser!

Yes. No.

And speaking of recourse and chargebacks, there isn't much of that anymore. All the card companies want to know is if there was a signature, an itemized list of charges, and that the exp date was checked. If those 3 conditions are met, you are on the hook.

AmEx is the worst.

If you've hooked up PayPal with a checking account, you be totally fuxord. No recourse at all, ever. Think *debit card*.

Appeal for new moderation

Please add a new "Page widening" (or "Lay-out breaker") moderation category, and let those posts be modded down below -1.

I don't want to raise my browsing treshold above -1, the trolls are half the reason to why we read Slashdot after all, and we readers naturally do not always agree with the moderators on what deserves to be modded down.

By browsing at -1, we choose to read everything, "raw and uncut". The keyword is "read". The page-wideners are attempting to prevent us from doing this. Let the page-widening posts rot in -2 hell.

(Score: -2, Page-widener)
Is that too much to ask for?

Re:Appeal for new moderation

[Gordonjcp]

I second this proposal. I love a good troll, but all too often the best stuff is modded down to -1 before I get a chance to read it. Also, quite often, posts that are on-topic and *not* trolls, but merely espouse an unpopular point of view, are modded to -1. Now this is an abuse of moderation - just because you disagree with something, doesn't mean it's a troll, or off-topic, or over-rated. It just means it's different from what you think, and if you're small-minded to mod it down, *you* are the one at fault.

Getting back to it, I'd love to be able to mod the crapflooders below -1, so I can enjoy the -1 posts in peace. Page-wideners don't really affect me, because I'm one of those l337 open-sores Mozilla users :-)

The option to mod a layout-breaker (let's use that term to include page-wideners, crapflooders, and all the other obnoxious behaviour) would have to detect whether or not the post actually had questionable markup. Now, this would differ from actually filtering at the time of posting by allowing the post to actually be made - how many times have you had links broken, or lines of code rejected as "ASCII art"? This would allow a real live human to decide that the post was aimed at breaking layout and mod down to -2. Incidentally, ASCII Goatse.cx guy posts and indeed goatse.cx links, while they may be trolls, are part of accepted /. culture, and should be left in peace. If you're stupid enough to click on them, so be it...

Taco, please hear our cry!

BTW - Yes, this is offtopic. I've got more karma than I know what to do with.

Re:Appeal for new moderation

Hear hear!

Somebody mod that up!

And yes, that particular page-widening introduces side-scrolling in Mozilla too, at least if you don't use microscopic fonts, don't have the Moz windows maximised or don't use an insanely high resolution.

Here I get the damn scrollbar even if I maximize the Moz window to 1024 px wide.

But what are the other options?

[solostring]

There are many organisations/people (including myself) who simply cannot afford to use credit card acquirers, yet rely on credit card donations through the internet.

Whilst I have had no problems myself with paypal, these stories scare me. What other companies/options do people like myself have? Are we stuck with paypal?

Just wondering...

[__aahlyu4518]

" ... Writing or calling your Congressman/woman, pointing out that Paypal is acting like a bank, but not operating under formal banking laws. 4) Boycotting Paypal because of these reasons, and the fact that their system is notoriously insecure"

So I'm wondering... why did they have that account there in the first place?

People must be stupid.

[MikeFM]

First off I'll say I like AbiWord and use it and wish their project well.. that being said.. on with my rant..

Every time someone has a problem with PayPal they whine that it is actting like a bank without being a bank. Obviously they must be stupid because PayPal states clearly that it is not a bank and has no federal insurance. Somehow they think being a bank would make it better. IMO banks suck. They've ripped me off countless times. I don't want PayPal to be a bank. They've never done me wrong and they give me freedoms a bank wouldn't be able to. If you want a bank go open a bank account. If you want a PayPal account open a PayPal account. If your not bright enough to know the difference than spare us the cry story.

I've had very good customer support from PayPal. They were a little slow but no worse than the banks I've dealt with and at least they didn't give me the run around like banks usually do. If a security flaw in PayPal allowed your money to be stolen I'd suspect they'll be willing to refund your money. If you just picked the name of your dog as a password and some bozo guessed it then I'd say tough luck. If you pissed off an ex-girlfriend and she took your money then again tough luck.

If you are smart you won't leave very large funds all in one place in PayPal, a bank, under your bed, or anywhere. This is common sense. PayPal makes it easy to transfer your money back into the bank account of your choice. If you wanted to do this you had the option open to you.

So try contacting them again. It's not that difficult to do. Make sure you have a good password on your account. Frequently empty your account into one or more bank accounts, PayPal accounts, or coffee cans (Whatever you like) so that you don't have a giant honeypot tempting all the bees. Just stop whining about them not being a bank. Hope ya get your money back.

Re:People must be stupid.

[tchapin]

The average person is a complete idiot. As you walk around, look at the number of people who,

a) don't wear seatbelts while driving
b) smoke
c) eat fast food
or
d) think with their mouths open.

Unfortunately, the world is run by idiots. Look at George W Bush, Jerry Falwell, Jesse Helms, the number of spelling / grammar mistakes on /., or even Stan Jones.

Is it any surprise that people get bilked so easily? P.T. Barnum had it right, "There's a sucker born every minute." I'm not usually so negative (oh, wait, I am...), but this sort of thing is no surprise to me at all.

In addition, people are innately greedy. Check out the CEO scandals, the number of people who drive SUVs needlessly, the people who beg online for donations to relieve their credit card debt, pork-barrel politics, or people at a buffet. Greediness, combined with the stupidity of the general public makes for a bad combination. I'm not one of those nuts who thinks that everything should be regulated into some hippy-like hell, but people need to think before they act.

ObArticleRelatedComment: I wish I could get my company to switch to AbiWord; it's pretty cool.

Todd

Going after pay pal shows their true colors

[Benjamin+McFree]

It's the Treasury department and Congress who robbed abisource; hackers have ethics and there is none out there who are in the private sector (ie.. non-government hackers) who would rob such a wonderful group. Face it the government feels threatened by Pay Pal, as they'd loose all their power if Pay Pal became more popular then the dollar becomes crap, congress folds their tent, the usa as a superpower is no more, etc...

Think about what is needed to enable cracking of an anonymous p2p payment system, ie.. a network sniffer (carnivore) and super computers for cracking the encryption. Besides, I just heard a republican speaking at the christian coalition about a week and a half ago, saying they were going to "go after the pay pal's".

paypal?? they don't sound like a pal to me

[dincubus]

Reading this post and then some of the associated pages about paypal are making me consider closing my account i have there. I have used paypal for a couple of years. makes buying things thru auctions and the like waaay to easy. now this, i mean what is going on there, i woudl really like to hear something specific on how it was done, from the standpoint of was it a hack or was it from the inside. now keep in mind i do not know anyone from the open source community personally, i dont want it to sound like i am trhowing out accusations about anyone involved in Abiword. if it has come across that way i apologize. now back to my point here, if it was a hack then that makes me very uncomfortable with their security. would anyone put their money in a back that hired a guard that slept all day while he/she was supposed to be watching for criminal activity?

good news for people refusing paypal

bad news for abiword.
but honestly. either the money should have been "backed up" on a non-pay-pal account or the money should have been collected similar to blender.
by the way i am sure blender didnt use paypal cause it was outside the u.s. which as you see is often not a bad thing(tm).

like everything as i live in europe i see us legislation rather barbaric (death penalty) and american culture very dependent on some enemies on the outside like communism, al quaida, some mad sniper, or saddam hussein.

Re:$5 to make a credit card payment.

[Gordonjcp]

Actually, a lot of customers I deal with (large satellite tv company) like to pay monthly by credit card, because they get airmiles and stuff when they use their cards. They don't get that if they set up direct debit. Now normally, they set up a continuous credit card payment mandate, but quite a few people prefer to just ring up and pay. Why should it cost them extra?

Some Useful analogies

[Hott+of+the+World]

It seems paypal equates to a warehouse with lots of lockboxes full of money. Money comes in or moves from lockbox to lockbox, and then goes out. However, there's no attendant, so the only thing between your money and a thief is just a key (bare with me on the bank info part, it just makes things more complicated) and a lockbox number. When a thief breaks into a lockbox, in a warehouse, normally we would call the police. But this warehouse is electronic, the lockboxes are electronic, the money, well, you get the idea.

Hell, I would probably feel safer giving my money to a backwoods county fair carney. Least I can try to kick his ass if he loses it, and would have some knowlege of who stole it from him, if he were robbed.

my god!

[Vilim]

this is why i use alternatives to paypal whenever possible. ZMy god, steal from people who are putting out such great software for free. They obviously have a knowledge of computers, so they obviously know how great abiword is. Why would someone steal from a non profit organisation

E-Currencies are better than PrayPal

[RandySC]

I have had good experience with http://www.Evocash.com
http://www.E-Gold.com (gold backed)
http://www.E-Bullion.com (gold backed)
E-Bullion has an option for a credit card sized DigiPass security device for logging in.

If I would've posted this post....

[croftj]

I would've done it as AC as well. Balless Windows using wimp! All shit and no goose!

Re:If I would've posted this post....

[x0m3g4]

Actually he probably uses linux, and doesnt beleive a word of what he said, its just a ploy to piss everyone off and get attention/replies.

Re:Yes. No.

[ShadowBlasko]

This is not entirely true.

Visa now requires (if you are processing a card without being able to swipe the actual plate) a zip code for the account holder as well as the card exp date.

This catches alot of would be number swipers off guard. No zip, No charge. End of Line.

Just deleted my account

[LinuxGeek]

I have only used PayPal to make donations in the past. From now on I will only donate to organisations that don't put *my* remaining funds at risk. I used my visa check card as the payment source at PP and any screw-up or complaint and PP could have frozen or captured all of my readily available funds. If even a small fraction of the stories on the forums are completely true, I can't justify supporting their business.

Re:Yes. No.

This catches alot of would be number swipers off guard. No zip, No charge. End of Line.

Well, many e-commerce sites, such as for example our beloved Pet Swearhouse do store both credit card and zip code in their online database, which is trivially accessible through sql injection. Other online retailers even store the credit card verification number (CVV).

irresponsible "reporting"

again, VA lairy et AL, trashing the name of yet another company, without ANY supporting/rebuttal/2nd/3rd party information.

it's OBVIOUS that at least 1/2 of this "story" missing.

paypal's treated US very well. as far as leaving your virtual "dough" on a web server somewhere, think about IT.

heres why

[goombah99]

it's a convenient way to transfer money from an account to another or to pay off a credit card bill. Not all credit cards offer online payment. And if the credit card is not in your name you cant even begin. Not all banks offer online banking and even if they did you might not want to set them up when you already have pay pal. In the early days pay pal did not have fees so this was a very handy meta-banking system.

Re: Who is John Galt?

[gcondon]

Shouldn't this be moderated +1, Ironic ?

quid pro quo

Yeah, rob/larry & "co." should (be compelled to) do a lengthy story on their stint as stock markup "billionaires", & the frauduleNT behaviours they/their "bankers" may have engaged in. The prize of lnux going from 300$ per "share", to a nickle, represents grand larceny to many. 'course nobody's responsible(tm) for that, write?

That's almost as despicable...

[stevejsmith]

Stealing from an open source project to buy a shitty camera is almost as despicable as stealing from the homeless guy.

Screw Paypal, contact Ebay

[brunes69]

Don't even bother with Paypal customer service, they have been stonewalling everyone for years. Try talking to Ebay customer service,... and try to talkyou way up to amore senior Manager or someone else who has the authority to call up the Paypal losers and demand "whats going on here?" Hopefully Ebay doesn't want to risk its reputation going gown the tubes as quickly as Paypal's did a few years back.

Re: Who is John Galt?

[sporty]

Not if I was joking ;)

silence of the lames

You must be confused. How can you compare the petty larceny that "may" have taken place at the hobbyist's site, with the massive fraud associated with the lnux scam? What are you saying? Theft/deception is theft/deception, be IT a dime or a billyun dollars? How absurd.

Who is he for real?

[Flamesplash]

For those of us who are really at a lost who is he?

Re:Who is he for real?

[naasking]

Character from Ayn Rand's novel Atlas Shrugged. Throughout much of the first part, it was a widespread fad to ask "who is John Galt?" whenever one didn't know the answer to a difficult question.

Re:Who is he for real?

[Delkenninho]

Why don't you try google before you ask?

Re:Who is he for real?

Why don't you shove a red hot poker up your ass?

Re:Who is he for real?

A Scottish author.

Re:Who is he for real?

You think using Google is equivalent to shoving a red-hot poker up your own ass? Wow. I've always found the Google interface clean and responsive. Whereas even a room-temp poker would be far too painful for me to even consider shoving up my ass. If it were red-hot as well, I believe that I would start puckering as soon as I felt the heat, and would be helpless to prevent myself from bucking wildly at the sound of my ass-hairs burning!

So I guess it takes all kinds.

Re:Who is he for real?

[CamelTrader]

because google is not a discussion forum. Although it would provide better, more accurate and more detailed information, the sense of friendship and camaraderie developed by 'chatting' with your slashdot buddies is priceless!

Re:Who is he for real?

[sporty]

How can we make friends with someone who trades animals who would spit in your eye? Unacceptable :)

Re:Who is he for real?

And for some of us, /. is the only real form of person to person contact we have all day.

Re:Who is he for real?

[Zorikin]

Not even Google Groups? Okay, so it's really just another node on usenet in the end, but if all the others were to go away, it would still be a lively place ...

Re:Who is he for real?

...

I love you man.

Re:Who is he for real?

Read the parent, and you'll realize the question was rhetorical.

Re:Who is he for real?

It's amazing what people say when they THINK they're anonymous.

Re:Who is he for real?

Excellent. Just brilliant. You Sir, have made my day!

Slow Down Cowboy!

Slashdot requires you to wait 20 seconds between hitting 'reply' and submitting a comment.

It's been 17 seconds since you hit 'reply'!

Please set the Category to "Formkeys."

If you get your money back the seller will lose!

If you get your money back the seller will lose! The chargeback will be taken from his account, and he's out a camera.

There was a dual failure here. Your account was compromised, either through PayPal hacking or your poor password (I suspect the password's at fault). The second failure is one by the seller. He probably accepted the transaction even though the ship-to address didn't match the "verified" address of the account owner.

My point here is that unless you can prove that your password was compromised even though it was secure, PayPal DOES have adequate security procedures in this instance.

If you indeed had a bad password or failed to protect it properly, you should accept blame for this and take the loss. Otherwise, the seller of this item will end up at the short end of this deal. True, he made a mistake by disregarding PayPal's non-verified address warning (and he was warned), but this was likely all your fault to begin with.

At least this is going to make me change MY password to be more secure...

paypal sucks!

[p01]

i was about to join paypal and use thier services but before i did that, i had done some research on the net. a shit load of people complained bout money loss and how they couldnt get it back... blah blah blah. im guessing that when they join X.com or whatever they had changed thier policys on frauds. meaning if they suspect you of money fraud they will automatically close your account and you cant get your shit back, and thats it.

risking ebay's "reputation"

that's hysterical. thanks.

Finally...a good reason to close my PayPal account

I wonder how PayPal would react to several hundred or (thousand?) accounts being closed over one weekend. I'm sure they see tons of accounts being closed and opened all the time, but all at once would be neat. I just closed mine.

I wonder if anything will change with PayPal once Ebay officially takes over control.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Am I the only one PayPal hasn't screwed up with

[R-2-RO]

Nope. Paypal works really well for a lot of people. As long as transactions are smooth there is no issue. The main problem with Paypal is when something doesn't go as planned and you need their intervention. It doesn't happen. Read my other comment: http://slashdot.org/comments.pl?sid=43431&cid=4540 353

Comment removed

[account_deleted]

Comment removed based on user account deletion

Paypal Damon

[Jesus+IS+the+Devil]

One of the best ways is to visit the hundreds/thousands of webmaster forums out there and spread the word about Paypal being the non-paying non-caring bitches that they are.

Why webmaster forums? Because they cater to the very people that Paypal often makes lots of $ from. If webmasters stop using paypal as a payment option, paypal loses lots of potential revenue.

I can assure you that within a day a guy aptly named "Paypal Damon" will show up to do damage control. This guy is always pop out of nowhere when people say crap about paypal. If you do this they often cave in and honor get their asses off the potty. Believe me, I've seen this happen before.

Here are a few that Paypal Damon has been known to troll around:

- vbulletin.com
- webhostingtalk.com
- anandtech.com
- tomshardware.com (not sure)
- sitepointforums.com
- any other webmaster or online business-related forums

Re:Paypal Damon

[Jesus+IS+the+Devil]

Here's proof of paypal damon popping up when his company is talked about negatively:

http://www.vbulletin.com/forum/showthread.php?th re adid=54532

http://www.vbulletin.com/forum/showthread.php?th re adid=55432

http://www.webhostingtalk.com/showthread.php?s=& th readid=83263

http://www.webhostingtalk.com/showthread.php?s=& th readid=77308

http://www.webhostingtalk.com/showthread.php?s=& th readid=75572&perpage=15&pagenumber=2

Re:bye bye paypal

[Ponty]

Sometimes you have to have things now. And when it comes to velvet paintings of the King, no delay is acceptable. I'm sorry, but you're clearly out of tune with middle America. If we can't have our velvet Elvis paintings at once, the terrorists win.

Heh. Sorry. You're right: if you're worried about security, go with a money order. Heck, they can even be as anonymous as you want. It's a great service offered by the post office, really.

Comment removed

[account_deleted]

Comment removed based on user account deletion

No wonder his password was stolen

[MobyDisk]

Check out the screen shot from the article: he uses Hotmail! Microsoft probably transferred the money and used it legally, since they own anything that goes through their email service.

(Okay, I admit this not a fair judgement, but still... And how does he know that the thief bought a camera?)

Comment removed

[account_deleted]

Comment removed based on user account deletion

Anti-Paypal Site

[dtobias]

My own anti-Paypal site is at paypal.haters.info .

The thing I hate the most about PayPal is how their "viral marketing" succeeded so well that anyone who can't or won't use them is put at a serious disadvantage because so many sites on the Net use PayPal as their only means of payment, including various online auctions, sites seeking donations, and affiliate programs.

Paypal isn't all bad

[Alari]

I've been using Paypal for both auction payments and subscriptions for over a year now and haven't had any problems.. I see so many negative comments about the service, but they're not all bad. (And *no*, I'm not affiliated.. =P =)

Of course, I'll probably get modded down for this.. =) Bring it on! My karma is 't3h sUxX0r' anyway.

Alari

Re:Paypal isn't all bad

[Veovis]

Post your PayPal e-mail address in this board, I guarantee your account will at least get frozen

Re:Paypal isn't all bad

[Alari]

... from people trying to hack my account? =) No thanks.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

SHouldn't we be writing Ebay?

[Rareul]

After all, they bought them: Cnet

?sp

God, you people are such idiots

Does no one take responsibility for their own actions anymore?

paypal is a useful service, with several caveats. Use at your own risk.

Don't be so incredibly irresponsible and idiotic to cry and whine when something bad happens, you simply should have taken better precautions. ESPECIALLY since you all seem to distrust paypal already, then DONT use it, or use it with caution!

Complaining to the government about paypal's policies is the absolute height of hypocrisy! If you don't agree with them, then simply DONT use them!

Re:God, you people are such idiots

[too_bad]

Anonymous coward, you surely are a paypal guy. Why dont you atleast mention it ? People sue companies which have dubious and questionable contract exactly to make them run a sound business. This may or maynot be loophole in their software, or even in their policies, but the very fact that they try to slip away from any responsibility raises doubts. Free market doesnt mean freedom to run fraudulent businesses blaming the customers for being stupid. Free market means being able to run legitimate businesses freely.

Did they miss the obvious solution

[fname]

So this Jun character bought the camera with stolen money. What I don't get is this. As soon as that transaction went through, abiword should have contacted all parties involved in the transaction and told them to stop. In other words, don't ship the camera, by explaining to the seller that it is being paid for fraudulently. This shifts the burden.

Then, was this money left in the Paypal account, or was paypal just used as a conduit to rip off the bank?

I have to agree with a lot of others, who say to not leave much money in the account. There's just no upside, unless they were saving up to pay a seller who wouldn't take credit card payments.

Finally, to further protect yourself if you need to se Paypal: 1) sweep your account daily, 2) contact your bank and tell them to not allow transfers to Paypal, or 3) attach a bank account to Paypal that has a low balance.

Paypal is not a bank, they don't claim to be. And you can sue Paypal, as a judge ruled their arbitration process was unreasonable , more or less.

Good luck recovering those funds. Go after the transaction endusers, as they have some liability here for receiving stolen goods/ property.

Create a dedicated account

[Reziac]

Better yet, get a dedicated bank account, and make sure you move money out of Paypal's reach *promptly*. That means both out of your Paypal account, AND out of the dedicated bank account (which should be used solely as a buffer, not for keeping real money in).

This incident is not the first time Paypal has been hacked, and there have been cases where personal bank accounts have been depleted as well, via their Paypal connexion. So you do NOT want your Paypal account pointing at your regular bank account!!

I have a 2nd bank account just for Paypal. This account has a token $20 in it. Don't know about other banks, but at Washington Mutual, this costs me nothing (no fees of any sort). Because it's at the same bank and branch as my regular account, it's simple to transfer funds out of the "online account" ASAP.

Re:Create a dedicated account

[jerdenn]

Yup - And I've got one word for you:

Overdraft.

It doesn't matter if there is no money in the account - if paypal thinks that they have authorization to make the transaction, and they attempt to do so, your bank will most likely give them the money, give you a negative account balance, and stick you with overdraft fees.

I hate to be the bearer of bad news, but your solution is not really optimal. It still leaves you exposed to greater risk than a credit card only solution.

Jerry

Re:Create a dedicated account

[Reziac]

Yes, that is a very good point, as several folk pointed out -- the account used for Paypal should have a zero overdraft limit.

But this also needs to apply to credit cards to be "safe". If you have well-established credit (and sometimes by policy regardless of your credit), they will often approve amounts well over your normal maximum balance (you just have to pay the difference off with the next bill, as part of the minimum payment). Disputes don't always go in the cardholder's favour.

Either way, it pays to know what's the maximum you could possibly get stuck with.

Re:Create a dedicated account

I would expect that most banks would have a system for automatic redirections.

I work in an Australian Bank, and we can set your account up so that any credits to it would automatically be tranferred into a separate account.
However debits would not, so PayPal would have no access to your funded account.

Re:Create a dedicated account

[Tycho]

Or like me through your own stupidity you could allow your bank account to be closed. (I didn't have any activity on the account for three months.) PayPal hasn't noticed/cared and there appears to be no way to remove the closed account.

Re:Create a dedicated account

[macdaddy]

Almost all banks have the ability to not authorize overdrafts. Overdrafts are a privelege and something you can request be taken away.

Personally I'm still using my Visa Check Card on Paypal. I'm lucky they've only tried to screw me once. A seller didn't ship the product so I called to report it to Paypal. They said there wasn't anything they could do about it. I asked why I couldn't just contest the charges. Then the seller would loose the $$. She said that it couldn't be done and would be illegal to boot. (What was she smoking?). I said that was fine. I'd just call my bank and contest the charges since my bank can make the Visa contest on my behalf like they have before. The woman quickly forwarded me on to another operator who tried to jump down my throat and threaten me with Paypal's legal staff that would love to haul me into court. He was prepped for this. I've come to believe that it's his whole job. He didn't know anything about me. He only knew that calls forwarded to him were people that were wanting to contest charges. That's my belief. In the end I contested the charges. The bank credited my account 2 weeks later. I never heard back from the dicks at Paypal.

I really do need to use a separate account for online purchases though. The way I'm doing it now just isn't safe. American Express has disposable credit cards. This would be something similar.

Re:Create a dedicated account

[Rob+Parkhill]

Egads, if you are going to all the trouble of having a seperate account just for PayPal use, don't use the same bank as your other accounts.

When PayPal tries to withdraw money from your "empty" account, your bank will happily look for money in your other accounts, transfer it to the "empty" account, give PayPal the money, and then screw you with a "transaction fee" for doing this without asking you.

I'm not saying that every bank will do this, or that they will do it every time, but it does happen.

Your best bet is to open an account with one of the no-fee online only banks, like ING Direct or President's Choice Financial. You can move money in and out as you please, and it is isolated from your "regular" accounts quite nicely.

Re:Create a dedicated account

[Reziac]

Yeah, that's a good point. Some banks consider all accounts under one name to be a single account with money in several places, and behave accordingly (moving money to cover overdrafts, etc). Different name won't help, they ID you by SSN.

An online-only bank that could be set up to automagically move any funds above X-dollars to your real account would indeed likely be the best solution.

Haven't used paypal for a long time

According to their EULA, they are not responsible for anything. Therefor, they can take your money at any time they wish and you can't do sh*t about it.

Maybe if he had used a secure browser...

...this wouldn't have happened to him. Why would anybody use a browser that people wrote for free? It obviously won't be any good.

Internet Explorer is the most secure browser on the face of the earth!

Sue them

Abiword is released under the GNU General Public License. This means that everybody that benifits from the GNU was hurt by PayPal's actions. Smells like class action to me. The damages caused by Paypal is actually much greater then the money that was taken. We need a good lawyer.

Re:MOD GREAT GREAT GRANDPARENT UP!!!

The truth shall not be hidden!

How can I steal from Slashdot's Paypal Acct?

Do I have to go to a site? Guess their password? What?

PayPal IS Secure

[Superfreaker]

The stealing likely was done during the most reliable hacking tool in the world, social engineering.

Anyone who has a PayPal account, likely got an email recently asking them to log in to log into their PayPal account to confirm for security purposes. This email looked exactly like any other PayPal email but linked to a fake paypal web site (again, one that looked perfect). Many people gave up their login information to this site. I even did the first time and had to change mey login info.

There are NO cases where people can point out that PayPal themselves have been hacked. When they do, they freeze the accounts.

Mex Levin (cofounder) is a crypto guy and security is #1 for him. I am on their developer advisory board and I know before anything rolls out, they make sure it is as secure as can be.

EVERY case I have seen regarding these issues have been either the merchant's fault, or PayPal freezing an account becuase it is involved in suspicious activity.

Just my $.02

Re:PayPal IS Secure

[Veovis]

>EVERY case I have seen regarding these issues have been either the merchant's fault, or PayPal freezing an account becuase it is involved in suspicious activity. PayPal dosn't have the right to freeze accounts more then lets say a 30 day period, after 30 days, they should unfreeze it, or mail a check + whatever interest is on it for that period. PayPal froze my account once for no reason, so I made a new account, sent the amount plus another $30 for the inconvenience+the fee recovery, and did a chargeback, end result? Money is mine, no charges in my bill. Thanks PayPal!

PayPal Lies

[telstar]

Last week I completed a transaction using PayPal which I explicitly indicated that I wanted 100% of the funds to come from my registered credit card. I even got the confirmation email stating that it would come from that credit card, so I could keep a balance in my PayPal account.

What they ended up doing was debiting my PayPal balance to $0.00, and deducting the remainder of the transaction from my credit card.

PayPal saved me the trouble of debiting my account down to zero. Now it'll be easy to close.

I inquired and got the following email:

- - - - -

When you use PayPal to send money, the balance in your PayPal Account is used first. If you do not have enough money in your PayPal Account to cover the whole transaction, please refer to the information below:

If you do have a registered credit card, but do not have a confirmed bank account listed on your PayPal Account
PayPal will first use the balance in your account and charge the rest to your registered credit
card.

If you do not have a registered credit card, but you do have a confirmed bank account listed on your PayPal Account
The balance will not be used. The entire amount of the payment will be drawn from your bank
account. The payment will take 4 business days to complete.

If you have both a registered credit card and a bank account
The "Instant Transfer" method is the default method of payment (an instant electronic funds transfer from your checking account) when there are insufficient funds in your PayPal Account to complete the transfer.

If you have more than one positive currency balance on your PayPal Account
The entire amount will be funded from this balance. If the balance used to send the payment is insufficient, it may default to another currency balance depending on the amount of funds available.

You can view the "Source of Funds" on the "Check Payment Details" page. If the payment that you are sending exceeds the amount of funds in your PayPal Account, you can click the "More Funding Options" link to choose whether to draw funds from your checking account or your credit card. If you choose to draw funds from your checking account, you have the option of an "Instant Transfer" or "eCheck" transfer. Instant Transfer is backed up by either your credit card or a secondary bank account and occurs immediately, whereas the eCheck payments may take four business days to post as complete.

Please note that once a payment has been sent, it is not possible to alter
the method of funding.

Okay, good.

[mstyne]

You have successfully closed your account.

I had been meaning to do this for awhile, this was enough to get me off my duff and actually do it.

lol it was only 600 bucks

[zaqattack911]

From the sound of the post, it I figured it was at least a few grand :)

This isn't exactly the biggest scam in the universe, a drop in the bucket in-terms of the amount of money swindled in other Ebay or PayPal related transactions. (if you can even call it a transaction).

"Oh sure.. I'll just send you this $1k check in the mail and ASSUME my hardware is on the way.... what could possibly go wrong."

"He seemed like a perfectly honest person in the email!! ... hell he was even more honest sounding than King Mobutu from Nigeria who needed my help the other day!"

--Me

Money Lessons

[mindstrm]

A few facts (more or less) for the uninitiated:

- Banks are federally insured in most countries. That means that the funds you have on deposit are insured by the government up to a certain point. Even if the bank goes bankrupt, they will pay you.

- Credit cards offer fraud protection, often by contract, more often by law, usually by both.

- Paypal is not a bank. Paypal is just a company. They have contracts with you, but ultimately they are an unregulated clearinghouse. The service they provide is easy financial transactions at a higher than average price.

- It follows that if you leave any significant amount of money in your paypal account, you are asking for trouble.

- There are other methods of payment; anyone working with more than a small amount of money should look into getting a visa merchant account, and other business banking tools. Banks WILL help you with this.

paypall tries to overbill

[MadBurner]

I run a small website offering adult digital content. A few weeks ago I recieved a letter stating that i had to pay paypal a total of $1500 setup fees plus $750 a year for paypal to continue processing my VIsa and Mastercard transactions. they classified me as high risk even though we have never had one customer complaint or refund request. The more questions I asked to paypal the ruder their responces became. After a week of research I finally have found that visa is charging these "high-risk" fees. Other companies I've talked to have heard nothing about mastercards fees though. I have looked around and found several other oreder processing sites that will do the job. I wonder how much profit paypal will make off these extra charges. HAs anyone else recieved this letter? Encluded is the letter in full for your readign pleasure. Notice it doesn't have paypal's protect your password sig.

-----Original Message-----
From: Setup@PayPal.com [mailto:Setup@paypal.com]
Sent: Wednesday, October 16, 2002 5:25 PM
Subject: Important message from PayPal

Dear Merchant,


We would like to update you on new Visa & MasterCard regulations that affect the way Internet Payment Service Providers (IPSPs) such as PayPal conduct business. Both Visa & MasterCard require high-risk merchants to complete a registration form, pay an initial registration fee, and pay renewal fees on an annual basis (details below).

We value our Merchants and are dedicated to providing you with the high quality service to which you are accustomed. Please note that these fees are imposed by Visa and MasterCard, not by PayPal. In keeping with PayPal's core policy of not charging set-up costs and/or annual fees to our Merchants, PayPal (in contrast with many IPSPs) will not add any additional or hidden costs to these Visa & MasterCard fees.


PayPal, like all other IPSPs, must comply with the regulations. In order to assure your continued access to PayPal's transaction platform, we need you to provide the requested information by November 1st. If we do not hear from you by the close of business on November 1st, PayPal will be unable to process your transactions until all such information has been submitted.


While some IPSPs have announced that they will cease processing for non-US merchants, that is not the case with PayPal. PayPal will continue to process transactions for high-risk merchants in the United States, Canada and Europe through our existing banking arrangements in these areas. In addition, we will continue working to expand our banking relationships worldwide.


Below is a summary of the requirements for both Visa and MasterCard:


VISA:

* Visa will require an initial registration fee of $500
* Visa will require an annual renewal fee of $250
* Paypal must provide Visa with monthly sales, chargebacks and refund information on each Adult merchant.


MasterCard:
* MasterCard will require an initial registration fee of $1,000
* MasterCard will require an annual renewal fee of $500


We will be sending another email out shortly requesting the specific information we will need to bring your business into compliance with the new regulations. We will also provide instructions on fee collection.


Should you have any questions, please send an email to setup@paypal.com. We will endeavor to respond in a timely manner.


Very truly yours,
The PayPal Team

Whom do you serve?

[verbatim]

It's the same question that affects the banks: who pays who?

The bank offers the service of holding your money in a safe location so that you don't have to worry about losing it. The bank also provides money services that require a certain amount of trust - chequing, lines of credit, etc. You pay the bank for these services.

On the other hand, you are providing the bank a service too. You allow them to use your money (for many reasons) and, in exchange, the bank pays you for this service in interest (although, not very well).

A bank requires trust not only from those who bank with them but also with those third parties who interact with customers of the bank. A cheque (and credit cards, too) only works if everyone trusts that the bank system works (sure, you can overdraft on a cheque, but the bank will report that).

PayPal _is_ a bank by definition. They can skirt around the issue as much as they want to, but they are a bank. More importantly, they are a (or should be a) trust. That is, everyone _trusts_ that PayPal is honest to the core - that you can trust them to hold your money and provide the services that they offer in a legitatmite and honest way.

They are not a savings bank, however, and should not be required to fall under the same laws as a savings bank. They are not (should not) be required to provide insurance on deposits and they should be allowed to verify all transfers and 'money movement' at their discretion.

The abiword theft doesn't make sense - did this person steal a password or something? Did (s)he compromise the PayPal system in some way? If the former is true, PayPal would not, necessarily, be liable - the person who stole the password would be. If, however, there was a security compromise, then PayPal should be accountable for the money - they should put the money back and sue the thief.

--

I want to touch on something that I've read alot on sites like paypalsucks - the issue of PayPal "double-dipping" and taking funds without permission to settle accounts.

IF YOU ARE STUPID ENOUGH TO AUTHORIZE ANY COMPANY TO DIRECTLY WITHDRAWL / DEBIT MONEY FROM ANY OF YOUR ACCOUNTS THEN YOU GET WHAT YOU DESERVE.

Don't be so fucking stupid and ignorant as to give _ANY_ company the keys to your accounts. So what if you have to enter your credit card # on each transaction? Or send a cheque instead of allowing them to directly withdrawl from any bank account. Don't get me wrong, if PayPal takes your money without authorization then it's still wrong on their part - you just helped it along. By not authorizing them to save your information you catch them in a much tighter corner.

In the end, it's all about trust. If enough people stop trusting them then they will either fold up or mandate themselves under the same laws that control the banks.

Re:Whom do you serve?

You mean who pays WHOM. Please learn the difference between objective and subjective case.

Some useful links on paypal

http://www.paypalwarning.com http://www.aboutpaypal.org/ http://www.paypalsucks.com/ Enough said

My Email To PayPay:

[WiseWeasel]

Here is the mail I sent them from the web-form email contacting option in their Help section. Feel free to use it as a template for your comments to them:

I was going to sign up for a PayPal account, but have just been informed that AbiWord has had their donation PayPal account robbed, highlighting the lack of security and customer protection within your service. The coercion to give bank account information upon payment receipt is unacceptable, and your use of debit functions rather than credit on cards that support both shows great disregard for your customers' protection offered by VISA and other credit services. Until you rethink your service with the thought of protecting your customers' transactions, and working for them to make PayPal as convenient, customer-friendly and
secure as possible, I will keep using my credit card and checks through snailmail for all online transactions.

Sadly no,

[SHEENmaster]

But you can beat the crap out of a guy, steal his computer, murder his children, and charge him with copyright violation.

Re:yeah really

[JM_the_Great]

actually, ~$600 was stolen. Or approximately 75% of AbiWord's fund. Open source projects aren't excactly "rollin' in the dough", and $600 is a big loss for AbiWord. Not sure who's dumb enough, but they're definately pretty dumb. They should be able to find where he lives from the shipping address. If there are some open-source nerds within a few miles, maybe he'll be getting a visit from some of them =)

Hotmail linked?

I did some research and it turned up this posting of somebody who was also using a Hotmail account. The thief could have gotten the password from his Hotmail account and used it to gain access to his paypal account.

Re: Who is John Galt?

[crawling_chaos]

No, +1 Appropriate. After all the Objectivist motto is "I've got mine. Fuck the rest of you."

YOU ANALOGY WHORES!

Wow! This is like a bank which was robbed by an insurance company who unlocked a door to my house to raid my filing cabinet to get a post-it note which had my password written on it for use with a hardcore midget porn website.

Wait, no its not...

There's also c2it

[Glendale2x]

There's also the c2it service, which is part of Citibank. They don't seem as free-wheeling as PayPal (They have limits on how much money you can transfer around), and they don't charge stupid percentage fees to accept money from credit cards! They will, of course, charge you for international transfers, but so does my bank if I deposit a check drawn on Canadian dollars.

On the other hand, when someone sends me money, it gets transferred to my real bank account. But the no-fees transactions of c2it are nice. That's how a real credit card works anyway, right? (Pay in full, no fees, pay partial and there's a finance charge.)

Don't pretend PayPal is a bank. It isn't. Get a real bank account, transfer it out of PayPal, and keep the money in there.

Why risk being shafted by PayPal? Use another service like c2it, and if someone wants to deal with you, then they have to get an account with them too.

Not True

[waldoj]

IF YOU ARE STUPID ENOUGH TO AUTHORIZE ANY COMPANY TO DIRECTLY WITHDRAWL / DEBIT MONEY FROM ANY OF YOUR ACCOUNTS THEN YOU GET WHAT YOU DESERVE

That's a common misunderstanding. I know that it seems logical that there would be some sort of a cash-withdrawal authentication system but, amazingly, there's not. Anybody that wants to, via a bank transfer, withdraw any sum of cash from your account is free to. The burden of proof is on the consumer to prove that this is not a requirement.

I know this sounds crazy, and it took a while for me to be convinced, too. My brother was billed for over a year by a local Internet service provider via monthly withdrawals of ~$20 before he noticed. (He and his wife had just gotten married, and her employer's payroll company has the same name as the local ISP, and confusion reigned.) He went to our local bank to express his outrage, and left without satisfaction. I'm friends with pretty much ever employee at this local bank, so I went down to follow up. They explained this system to me as I have to you -- there's no authentication system whatsoever. There is currently no system in place at this particular bank to block such transfers, and they know of no such system in place at other banks. Truth be told, they regarded me as a little paranoid. But I get that a lot. ;)

Giving a company permission to withdraw from your account certainly isn't helping the situation any, but it is in no way a requirement for them to rip you off. Anybody with one of your personal checks and a little know-how can do the same thing.

-Waldo Jaquith

Re:Not True

[verbatim]

Really?

Every time I sign-up for something that is going to have some kind of recurrant billing, they give you a choice: billed statement, credit card, pre-authorized debit.

For pre-authorized debit they usually provide a form that you give a void cheque (so they can get the account info, I presume) and a signed statement authorizing withdrawls in a specific amount.

Credit card billing works much the same - they just apply the charge monthly and you approve it when you pay the statement (an unauthorized charge is still an unauthorized charge and you can, depending on the cc provider, dispute it).

A statement billing procedure works by them sending you a bill and you paying that bill. It can be annoying because you'll get a bill every billing period, but so what?

"My brother was billed for over a year by a local Internet service provider via monthly withdrawals of ~$20 before he noticed."

Sorry, if you don't look at the charges on your statement... well.. one month - I can agree - WTF are they doing? BASTARDS! But if you let it go for a year, well... sorry.

1) they have to get your account info. This is an absolute necessity. However, regardless of what billing option you choose, you are going to hand this info over (unless you use a cc, I guess, but they could always charge the cc again).

2) they are supposed to obtain your approval for the recurring billing.

If someone tried to charge my account without approval and the bank released the money to them, I would go after the bank. The bank would likely (1) return the money and (2) sue the other party for fraud.

"Anybody with one of your personal checks and a little know-how can do the same thing."

Yes, that's called fraud. Identity theft works in a similar way: someone grabs your SSN and starts pretending to be you. They can do it; the system will let them; but it's still illegal.

"no system in place at this particular bank"

Then I would switch banks. I don't know about you, but it seems kind-of funny for the bank to be letting anyone withdrawl from an account simply because they have the account #.

Maybe you're right, but it doesn't seem trustworthy to me at all.

In other news...

[ufotofu]

Abisource competitor Microsoft finds extra cash for its political lobbying fund.

You clearly don't realize the issues at hand then

[theLOUDroom]

It doesn't need to be their fault.
They claim to be insured. It doesn't need to be the insurance company's fault that my car gets totaled for me to get my money.
Do you get it? I rent an apartment. The group that owns the apt. is insured. If something in my apt is damaged, their insurance covers it.
If you leave something in someone else's care you expect them to take a certain amount of care with it. I don't really care if abiword's password was easy to guess. Their system shouldn't be set up to allow people to sit there and try to guess passwords. After x failed login attempts in y minutes, all login attempts should be blocked for z minutes. If this happens more than a few times in one day, it should be looked into. Also, if I leave my car unlocked, it's not okay for you to steal it and my insurance company still has to pay up if you do.
I don't wanna hear any crap about their terms of service either. While it's true that you can write whatever you want in your terms of service, it doesn't mean that those terms will hold up in court. By law, there are certain liabilities that can't be discalaimed and certain rights that can't be signed away.

Re: Who is John Galt?

Ayn Rand would be proud of you, dude.

Re:You clearly don't realize the issues at hand th

[davmoo]

Yes, I do realize the issues at hand.

The difference is, unlike you, I expect people to take responsibility when they get ripped off because of their own stupidity. If you left your car (since you want to use that analogy) on a street corner with the keys in it and the engine running and it got stolen, I'd have no sympathy what so ever for you either. Whether stealing it is "right" or "wrong" is irrelevant...if you didn't use reasonable common sense to protect your property (take the keys out, lock the doors), you're an idiot.

If Abiword got ripped because of security hole in PayPal, PayPal should pay up, and I'll join the line of people writing nastygrams and canceling their PayPal accounts. However I have yet to see any indication that this is the case, at least in this instance.

But on the other hand, if Abiword got ripped because 147 people had the password, or the password was "sex" or something equally stupid, then Abiword should use what funds they have left to go purchase a fucking clue.

Why not using smartcards for critical stuff

[Schugy]

HBCI homebanking is intended to be safe. As I enter that pin on that chipcard reader it should be safe. The 768bit key should be safe too. So what's the usual way to get my money? Hack through the oppenent server and get acces for all accounts. From that point there couldn't be any fault on my side. Of course the bank or attached service should be responsible for anything by law. Otherwise the bank shouldn't tell me that smartcards systems are secure and shouldn't make them a requierement for any of their services. Damn, I wonder if there was any transaction over the internet with such a law. :-)

Re:You clearly don't realize the issues at hand th

[theLOUDroom]

You still don't get it.
If I leave my car running on a street corner and it is stolen it is still a crime.

• If I had insurance on the car I get paid.
• If I can find my car, I get it back.
  
• If I can prove you stole my car, you go to jail.
• If your friend steals my car, and you know about it, and don't report it to the police you're an accessory. What you feel I deserve would be irrelevant.
• If you are a used car dealer and I contact you to tell you that my stolen car is sitting in your lot, you can't just sell it and say tough shit. If you do you're guilty of a crime.

Even if the password was "password", if the guys in charge of the abiword account know who took the money, contact paypal and paypal refuses to freeze the account, then paypal is doing something wrong. If paypal refuses to acknowledge legitimate complaints of fraud, which they could have done something about but chose not to, the there may be grounds for a civil or criminal complaint.

Even the stupid have rights. That may be a good thing or a bad thing, but it's the way things are.

Yes...and don't use them

[0x0d0a]

It never ceases to amaze me that people continue to use PayPal despite the number of pissed off people that feel that they've been ripped off. If you're dumb enough to *use* it, despite their by-now-well-known policies, I hate to say it, but I don't feel entirely sympathetic if you lose money.

It sucks that an Open Source project got ripped off, but it also sucked that one of the people involved decided to use PayPal.

Its your fault for using PayPal

[Veovis]

http://www.paypalwarning.com http://www.nopaypal.com Your Loss, Your Problem, but most importantly, Your PayPal. Shouldn't have used it.

Paypal needs to grow up.

[Roskolnikov]

A email I just fired off, this was the last straw....

Recently I had a rather unpleasant experience with your service. I attempted to purchase an item from Ebay using the click through link provided; having forgotten my previous account I filled out all information required to open a new account including the Credit card that I wished to use; Apparently your procedure for error checking isn't as good as it should be, I was presented with a page that looked to be authorize/continue, I clicked it and the purchase went through, not using the new info, but using the old; So my checking account was overdrawn by several hundred dollars and I DID NOT AUTHORIZE the use of my bankcard; after this and reading about abiwords account being robbed with your *wonderful* service I choose to bank different.

Until they start acting like a REAL bank I will not use them, for folks that only use them, well my business will go elsewhere :)

Other Payment Options: My 2 cents

[Veovis]

Here is my reviews of the other alternatives:

http://www.propay.com Accept VISA/MASTERCARD directly like a merchant account, charges appear on the cardholder's statement as your e-mail address, ProPay offers PayPal like P2P payment system as well:

PRO: Accept Cards directly, be your own risk management, sponsored by real bank

CON: Money transfers often take longer to process (up to a week)

http://www.payingfast.com

PRO: Money comes in the form of a Money Order in U.S. mail, kinda difficult for someone to steal it

CON: Marketed mainly for Auction users, with transaction limits up to $500, all other uses its limited to $75/transaction

--Payingfast.com Fee Schedule-- Transactions up to $20 $ 2.99 Transactions from $20 to $100 $ 3.99 Transactions over $100 $ 3.99 + 2.25% of money order amount

http://www.ecount.com

PRO: Money can be withdrawn by checking account, a virtual debit card (used online to buy goods) or via a ATM Mastercard (POS transactions and ATM withdrawl (one time card fee of $6.95) No percentage user-to-user transfer fee.

CON: Sending money or loading money to your account from a credit card is $2.00. No chargeback protection

http://www.moneyzap.com

PRO: Backed by Western Union

CON: Difficult to use, transaction approval process slow.

Letter I sent to PayPal regarding this.

[iggly_iguana]

Because of the problem relating to the AbiWord fiasco, I will no longer allow people to use PayPal as an accepted method of payment for auctions that I run. While I know this may cause me some problems with the auctions, I'm afraid that I'm suffering from a case of "but for ____, there goes me".

So, I just wanted to let you know that I have tried to keep an open mind where PayPal was concerned. I do not feel that I can trust PayPal to accept payments relating to my life and business.

It's a shame, but I had just run my successful test group of auctions and am getting ready to roll out with a continuous stream of computer parts auctions.

Respectfully,

My name was here... Really...

New Marriage Accounting

[waldoj]

"My brother was billed for over a year by a local Internet service provider via monthly withdrawals of ~$20 before he noticed."
Sorry, if you don't look at the charges on your statement... well.. one month - I can agree - WTF are they doing? BASTARDS! But if you let it go for a year, well... sorry.

Well, that's pretty much what I told him. :) I gather that a good part of the problem was the merging-of-finances that went along with getting married. It took them about a year to get everything in order, the savings and checking accounts, merging duplicate services, making one person in charge of all such things, etc. Part of the awkwardness of getting married. I'm told. :)

-Waldo Jaquith

Oop

[Niscenus]

The name is the seller of the camera not the buyer; dom doesn't blame the seller as there is no way for him to know that the money was illicit. As to why dom left the dough in the account is lost on me.

Re:Oop

[fname]

OK, it's the seller. Why did the seller ship? Where did he ship it to? If I saw someone sent $600 of my money to a 3rd party, I'd track that guy down and explain the situation. The seller may be a victim, but it's Abi-word paying the full price.

Imagine the scene (was: Re:Pay Pal)

[stephenbooth]

You need to do buisiness with a company, to buy their product. Realistically there is no other possible supplier for what you need, other suppliers in the market are a poor fit interms of product features that you need. This particular company only accepts payment by Visa or MasterCard (those being the two biggest players with greatest penetration), you don't have either of those cards but do have a Bank of Ethel charge card. You are one of literally thousands of customers, virtually all of whom have Visa or MasterCard and none of whom have a Bank of Ethel charge card. What are the odds that you're going to have to get a Visa or MasterCard?

That's why a lot of people use Paypal, in terms of supplier penetration they are the Visa or MasterCard of online payments. Yes, there are other online payment systems out there but few, if any, have the prevalence of Paypal. Virtually all of the sites I use on a regular basis use Paypal, most of those that didn't in the past are now adopting it as a payment method, a few use Worldpay. Many of those that do offer alternative methods will only do for for US citizens (I'm in the UK).

Until a large number of ecommerce sites use a different system, and agree on one particular system, users are going to be stuck with Paypal.

Stephen

Re: Who is John Galt?

[vldmr_krn]

No, +1 Appropriate. After all the Objectivist motto is "I've got mine. Fuck the rest of you."

That's an interesting* interpretation of the position that initiation of physical force is immoral.

* I lied. It's not interesting at all. It's unoriginal and fuckwitted to the extreme.

stupid

stupid for using paypal, it's your own damn fault

The $500 spanking

[amyhughes]

The first time (and last time) I used paypal they attempted to steal $500. They ran some kind of mickey mouse security check on my account *after* the charge went through, incorrectly concluded it was fraudulent, and asked the seller to return the money. If they thought my card was used fraudulently, you'd think they'd want the money back so they could reverse the charge, right? That's not what they had in mind. They told the seller *I* was the criminal and kept the money for themselves. Not only did they ignore my requests for help, but as a delaying tactic they told the seller to tell me there was no problem with the transaction. www.paypalwarning.com has hundreds of similar stories in their "wall of shame". Amy

Slashback - Things seem a little bit better...

[gnugnugnu]

The problem seems to be resolved, thanks to all for their support.

http://abisource.com/mailinglists/abiword-dev/02 /O ct/0462.html

Date: Mon, 28 Oct 2002 11:53:06 -0500
From: Dom Lachowicz
To: abiword-dev@abisource.com
Cc: abiword-user@abisource.com
Subject: PayPal update

A very nice and polite woman named Heather from PayPal called my home
number this morning in order to resolve this dispute between AbiWord
and PayPal.

She emailed me 2 affidavits that I must sign, notarize, and then mail
via post back to the PayPal headquarters in Omaha, Nebraska. The $581
will be credited to my account immediately thereafter. This means that
within one working week the AbiWord Fund will have its $581 back, less
the cost of postage and a notary's fee. All in all, that isn't so bad.

To the folks at PayPal, I applaud you for doing the right thing, even
if it took a while to do it. In my eyes, I feel that your company has
redeemed itself. I only pray that your company handles all future
complaints with the due-diligence that they deserve.

To all of those who have written letters of support to both me and
PayPal on my behalf, I thank you. I think that if nothing else, we've
helped raise some awareness in the general community. At the very
least, we've gotten our money back :)

Thanks,
Dom

---
*) The PayPal documents were multi-page MS Word documents. AbiWord
opened and printed both copies (paper output in my hands) before
OpenOffice even loaded. Abi's versions look better, to boot.

*) Omaha is also the US city where Nyorp, our "little BSD server that
could" resides.

Re:Slashback - Things seem a little bit better...

[Veovis]

Let's see if they actually give you the credit back to your account, chances are, they will just give you the "We didn't receive it" or "We need more information" type deal

He didn't know

[Niscenus]

Jun already had the money before Dom found out (you know, this modern electronic world and all). Dom did track him down and talked to him. As he explained in the letter to the lists, he doesn't fault the receiver, but PayPal and theif. Though, he also points out that he faults PayPal mostly for poor customer support, but I fault them for everything! Well, until next week when I clarify that point.

Comment removed

[account_deleted]

Comment removed based on user account deletion

+1 Informative

[lorcha]

Too bad prolly no one saw this comment. I wish e-gold, et al had more market penetration so that they could be useful for doing business with anyone online. Problem is: most Internet users have credit cards already, and don't really understand the case for real digital currencies until they get screwed by situations such as this.

I mean, try explaining to the average American that he cannot buy your goods with his credit card, which he already has. Instead, he must send money to a "Market Maker", who will then fund his e-gold account, and then, days later, he can actually make a purchase. Hah. E-gold is great for people who already have gold, but it's a tough sell to try to get someone to open a new account, fund it, and still hold interest in your product enough to come back and purchase it after N hours/days.

Re: Who is John Galt?

[Shwag]

Hey gcondon!

Can you recommend and books on Memes?

This is in reference to your comment to Dan Gillmor.

Thanks,
Shwag

Re: Who is John Galt?

[gcondon]

Hey Shwag!

Check out Susan Blackmore's article "The Power of Memes" which was originally published in Scientific American. She's a little out there but it will at least get you started. She is also an editor at the online Journal of Memetics.

You're welcome,
gcondon

p.s. I think Dan Gillmor's answer was a cop-out.

Last Post!

[alpg]

In a hierarchy every employee tends to rise to his level of incompetence ...
in time every post tends to be occupied by an employee who is incompetent
to carry out its duties ... Work is accomplished by those employees who
have not yet reached their level of incompetence.
-- Dr. Laurence J. Peter, "The Peter Principle"

- this post brought to you by the Automated Last Post Generator...