Abiword's PayPal Donation Fund Robbed

SabberFlapper writes "According to this Announcement to the developer list of Abiword the Abiword fund was robbed. Dom Lachowicz writes: 'I'm duty bound to let you all know that the AbiWord Fund/Tip Jar has been robbed approximately three weeks ago. I'm telling you this now, rather than sooner, since I believed that Paypal would do something about my complaints during the interim, and that this would all be resolved quietly. Today, 23 days later, this does not look like it will happen. [..] I do however, recommend doing several things: 1) Writing to Paypal, in letter, email, or fax form alerting them to this travesty. 2) Calling Paypal on AbiWord's behalf. 3) Writing or calling your Congressman/woman, pointing out that Paypal is acting like a bank, but not operating under formal banking laws. 4) Boycotting Paypal because of these reasons, and the fact that their system is notoriously insecure, and encouraging others to do the same.'" Of all the groups to steal from -- AbiWord?

Screw Paypal.

[rob-fu]

That's why I hide all of my money in a mattress.

Re:Screw Paypal.

[selderrr]

found it !

How was it done?

Can somebody explain how this theft occurred. It's not clear to me from the post.

Re:How was it done?

It doesn't make sense to me how this could happen. Someone took money out of AbiWords account to buy a digital camera. That camera has to be delivered to the person who hacked into Abiwords account. Find out that adress, go over then and beat the crap out of the guy!

Re:How was it done?

[Black+Copter+Control]

Find out that adress, go over then and beat the crap out of the guy!

My thoughts is more along the lines of: find out who it is, track them down, and have them charged with wire fraud.

Chances are that the cost to paypal of dealing with the court order, etc. would be more than the cost of them dealing with this in a more sane manner... but what the hell!

And I really do think that the cretin that did this deserves to get a criminal record for this anyways... Chances are that this isn't the only account that (s)he's robbed.

Re:How was it done?

Can you beat the crap out of the guy AND charge him with wire fraud ;) ?

Re:How was it done?

And the moderation of your post is yet another example.

Sigh... why do all these petulant children think that they will ever get any respect for their little hobby? On one hand the hairy, unwashed RMS spews forth completely irrational demands for this or that to be made "Free", in a manner and in terms reminiscent of Karl Marx. On the other hand reasonable discussion is actively squashed by a bunch of defensive pouting wannabes who instinctively squash dissent with a single mindedness more suited to J.Edgar Hoover than people who supposedly believe in "Freedom".

Please play nice children.

Re:How was it done?

[frost22]

[...]going to the link [...] you could very easily determine whether or not your 'theory' was true.

You, Sir, are a troll.

Either you haven't read that mail as well, or you are intentionally lying. The mail at the link does not contain any information how this fraud was possible.

Re:How was it done?

[alexburke]

Can somebody explain how this theft occurred. It's not clear to me from the post.

How about this? Could Dom have been suckered by such a message? (More details here.)

Re:How was it done?

[BitterOak]

As someone who has been the victim of credit card fraud myself, I can tell you that nine times out of ten, the address is a Mailbox's Etc. address, or a similar service that allows anonymous mail pickup.

Re:How was it done?

[Black+Copter+Control]

Can you beat the crap out of the guy AND charge him with wire fraud ;) ?

Depends on the mood of the cops that deal with him. I was once involved in the citizens arrest of a guy that was abusing his girlfriend on the street. I was on the bus, and when we saw this, the bus driver stopped, and a bunch of us got out to help the woman. As soon as he saw that help was comming, the guy just stopped, and didn't offer any resistance. When we asked him what was going on, he said "That's OK, she's just my ex". That's when I placed him under arrest.

While we were waiting for the cops to show up (took maybe 2 minutes), another passenger got off the bus, called the guy a fu*king asshole and punched him in the face, giving him a bloody nose.

When the cops showed up, they asked about the bloody nose, and I replied, "somebody hit him". They didn't blink and they didn't bother to ask any further.

Although I'm generally anti-violence and waved off the guy that hit this bastard, I'm not completely sad about that outcome. I'm presuming that he plead guilty because I haven't heard any further from the cops about this incident.

Re:How was it done?

[Jucius+Maximus]

"Can somebody explain how this theft occurred. It's not clear to me from the post."

Typically what happens with PayPal cases like these (they're extremely common) is that the account is "restricted" from some trivial reason like a cancelled payment or for no reason at all, and then it is impossible to withdraw money from the account. Then PayPal will start making unauthorised withdrawals from you bank account and credit card. They won't unrestrict the account until you fax them utility bills, social security card scans, drivers license scans, etc multiple times because they always claim they they didn't receive the information. Even then, it is rare to get the account un-restricted. Complaints and investigations by police, government, etc tend to get the account nuked. And of course you never get your money back.

Hence, you have been 'robbed' by paypal.

Re:How was it done?

[Jucius+Maximus]

I take it back.

In true slashdot style I did not read the article, but now I see that this specific case does not (seem) to involve a paypal imposed account restriction. I just assumed that this was another case of the typical "paypal stole my money" story.

Paypal is unsafe!

[Jucius+Maximus]

"I believed that Paypal would do something about my complaints during the interim, and that this would all be resolved quietly."

Do your research. I never donate if it's a paypal tip jar because of things like this and this. Paypal based donations are a disaster waiting to happen.

Don't give them bank details

[Kris_J]

This is why I don't give PayPal my banking details no matter how much they try to bluff them out of me. Just credit card -- that way if they let any of this crap through I can block the credit card payment.

They actually tried to tell me that I couldn't accept a payment without bank details a couple of days ago. When I pressed the only button that didn't cancel the payment I was *then* given the option to accept without adding bank details.

PayPal is like the stock market -- don't put anything in that you can't afford to lose.

Re:Don't give them bank details

[whereiswaldo]

That's great advice - wish I'd heard it earlier. I got screwed just this way. I purchased something using PayPal and when the seller screwed me, I tried to get my money back through the bank. Too bad PayPal didn't use the VISA option on my debit card, but the debit account. So, my purchase wasn't automatically insured as it would have been had the payment went through VISA. PayPal is comprised of a bunch of blood sucking leeches. That goes for EBay, too. By the way, try and contact somebody at either establishment. Have fun.

Re:Don't give them bank details

[Ron+Bennett]

Someone has...check out these sites:

paypalwarning.com
paypalsucks.com

Re:Don't give them bank details

[Alsee]

Maybe somebody should write a PayPal HOWTO so people can avoiding making mistakes like that.

Sure, no problem!

PAYPAL HOWTO
-----------------------

(1) Don't.

-

Re:Don't give them bank details

[gengee]

I think that's PayPal's business model - fuck people out of their money, and make damn sure they can't find a phone number.

They do exist though.

# Their toll free number is (888) 221-1161
# Another toll free number is (800) 836-1859
# Yet another toll free number is (877)672-9725
# Their NEW regular telephone number is: (650) 864-8000
# Their regular phone number is: (650) 251-1100
# Their fax number is: (650) 251-1101
# Their mailing address is:

PayPal
P.O. Box 45950
Omaha, NE 68145

# Their corporate offices are at:

1840 Embarcadero Rd.
Palo Alto, CA 94303
US

# The Nebraska office is at:

Paypal
11128 John Galt Boulevard
Omaha, NE 68137
(402) 935-2000
(402) 935-7733

If you're one of the legions who've been fucked, there's a class action lawsuit you might be eligible to join.

Once I finally got through to someone at PayPal, they were pretty good about getting me my money. But it was a royal pain in the ass.

Re:Don't give them bank details

[sporty]

l11128 John Galt Boulevard

Forgive me for asking.. but that name sounds familiar. Who is John Galt?

Re:Don't give them bank details

[sg_oneill]

Isn't Ayn Rand dead or sumfin? Maybe I'm just trippin or I missed the meaning of that all together. (Grumbles about Stupid "Objectivists" and digging dead authors up JUST to kick them and bury them again).

Re:Don't give them bank details

[mbogosian]

This is why I don't give PayPal my banking details no matter how much they try to bluff them out of me.

Schwab has deposit-only account/routing numbers for all their accounts (they're the ones given out for direct deposit, currently under Account -> Transfers & Payments -> Direct Deposit). If money is attempted to be removed using the same numbers, an "account not found" error is given (saving the fees from both ends associated with the "account overdrawn" error). This works with PayPal, because they verify your account by depositing small amounts of money into it (which will work).

Granted, you have to have quite a bit of dough for it to make sense to use Schwab for checking, but it would be interesting to know if any other banks provide this kind of service. Of course, it would be more useful if one could pressure all banks to provide this. Then again, I guess the ultimate solution would be to have the same consumer protections that apply to credit cards also apply to one's account/routing numbers.

Re:Don't give them bank details

[Skuld-Chan]

I don't get it - I've used paypal since the day it came out and made literally hundreds of transactions using the system. I've never had problem one with it - and I've ever done refunds.

I've never had anyone rip me off (I rarely have any large sum of money in there actually - and neither should most people if they are wise).

What surprises me

[einhverfr]

is that any business which faces any regulatory liability would not stand by their customers, esp. under a threat of letter writing campagns to congressmen who have the potential to do some real damage via congressional inquiries....

Re:What surprises me

[shepd]

Maybe if paypal acted good-hearted, and at least put up some easy contact info so you could get some help tracking down the scammers they wouldn't have such a hard time.
This is like putting your stuff in public storage, having the garage broken into, all your stuff stolen, only to find out they've replaced the attendant with an automated box and have chosen to leave you no way to contact a person.
It's despicable, and it stinks of fraud.

Re:What surprises me

[alexburke]

PayPal isn't a bank. They don't claim to be a bank. They are not insured like a bank. So why should they have to act like one? They are a payment clearinghouse.

I call bullshit -- or at least misinformed.

Not only do you accrue interest on the cash balance in your PayPal "account", they also have a money market fund you can invest in.

If they aren't trying to be a bank but saying otherwise, I... never mind.

My point is that PayPal are whores with the ethics of a petty thief, and I sincerely hope eBay straightens them right out.

However, since I read about the debacle of eBay CSRs getting told off for shutting down questionable auctions because those auctions belonged to Power Sellers (eBay's most profitable customers), I'm now questioning eBay's ethics/morals as well.

*sigh*...

Re:What surprises me

[alexburke]

To clarify:

(1) The first line should have been italicised, since I was quoting the parent comment.

(2) The eBay CSRs were being told off by their supervisors, not by the Power Sellers.

Re:What surprises me

[shepd]

Being hard to contact isn't fraudulent, but I believe it is a good indication of possible fraudulent behaviour. Sort of like when a store quits answering the phone all of a sudden for weeks on end... you get this feeling that something isn't right there. And, strangely enough, it's never failed for me.
And if paypal wants to be an internet only company, fine. They should act like it, though, and get the asses moving on the emails. An internet only company should have given him an answer in under 24 hours. If any internet only company takes more than 48 hours to get something done for me, I get antsy.
This guys been waiting weeks! I've seen letters cross the atlantic and pacific oceans faster than they respond to problems.
Saying "Don't like it? Take your business elsewhere." is a cop-out. I'm soon going to be running a computer company, and if it were broken into and a customers machine stolen, I wouldn't tell them "too bad, and don't bother talking to me again". I'd probably go to jail.
So, if I can't cop-out, why can PayPal? Because everyone "knows" they're a bunch of crooks? That's a pathetic excuse.
[ And yes, I do do my business elsewhere. I'd rather give the crack addict my money to look after than PayPal. At least I'd know where it ends up. ]

Re:What surprises me

[Grax]

There is no excuse for not having live telephone-answering customer service. Imagine if your local bookstore quit answering the phone because they do all their business in the store and none on the phone.

I quit using Amazon.com after I decided I needed to call them and discovered that their "Contact Us" page does not contain a phone number.

I encourage everyone to boycott companies that try to avoid spending money on a very necessary call center. Sprint ($5 if you want to make a credit card payment while talking to a live representative), Amazon.com (I dare you to find a phone number on the 'Contact Us' page), and any others.

Re:What surprises me

[edwolb]

Bullshit. If you're going to provide a service such as accepting credit card payments, you have to have a secure way of handling them. It's absurd that you could legally provide a service such as money collection and not guarantee that you were given every penny you were promised. Shame on paypal...

Re:What surprises me

[alexburke]

You accrue minimal interest. It is not substantial.

The same can be said of nearly every checking account in the country.

Money markets are not exclusive to banks. I could open one up tomorrow.

Okay then, what about their debit cards? Think you could open up your own debit card system tomorrow and hook yourself up to the national ACH (automated clearinghouse) network?

I didn't think so.

If it flies like a duck, and waddles like a duck, and quacks like a duck...

PayPal, as much as they claim not to be, is a bank.

Re:What surprises me

[sql*kitten]

PayPal isn't a bank. They don't claim to be a bank. They are not insured like a bank. So why should they have to act like one? They are a payment clearinghouse.

They take deposits and pay interest, and are covered by FDIC. That legally makes them a bank, whatever they may claim.

Re:What surprises me

[alexburke]

Western Union does not permit you to carry a balance on account with them.

Western Union does not permit you to have an account in the common sense with them whatsoever.

Re:What surprises me

[boopus]

So, by that logic can I be a bank by saying "I'm a Bank"? Can I not be a person by never claiming to be one? I'm more of a believer in being defined by actions, not words...

Re:What surprises me

[SurfsUp]

"There is no excuse for not having live telephone-answering customer service. Imagine if your local bookstore quit answering the phone because they do all their business in the store and none on the phone."

I dont see that'd be a problem. I live in area with sidewalk merchants. Are they dastardly because they dont have phone numbers? No. Of course not.

Make your choices, and have fun. But I think its stupid. If you perform 99% of all transactions with a company online, why should you switch to phone for that last 1%? It doesn't make sense.

The whole point of the Internet is that Its Not Phone.

Where are you coming from? It sounds like you are arguing that fraudulent business conduct should be condoned; you'd prefer we all just wink and look the other way. What, you don't think Pay Pal really does anything wrong? You'd do well to stop spouting and start doing your research.

Read here. I can personally assure you that this is highly accurate, as it has in fact happened to me.

Or if you prefer, read court documents. Yes, there are plenty of those to read.

Re:What surprises me

[SurfsUp]

Western Union isn't a bank, and neither is PayPal.

Why did you just post 17 articles in defense of Pay Pal?

Re:What surprises me

[mosch]

I've had to deal with amazon.com's customer service, and it's no problem. They don't have a phone number, but they answer emails quickly and helpfully.

sprint on the other hand is a really disappointing company... i'm getting rid of sprint, though for entirely different reasons.

Re:What surprises me

[Black+Copter+Control]

Make your choices, and have fun. But I think its stupid. If you perform 99% of all transactions with a company online, why should you switch to phone for that last 1%?

If that bad 1% costs you half the income from the other 99%, when what's the value of doing the work to begin with?? You might as well walk away from the process and save yourself the trouble of doing all that work for the benefit of some crook.

Re:What surprises me

[rew]

The whole time you deal with PayPal, you do it all through website/e-mail, right? Why should that change just because you got screwed?

Whoa there! That would be fine and convenient, yes, but then they would be required to properly handle the issue over the EMail. They are allowed to have a couple of "canned" responses ready for popular questions, but you have to be able to get through to a human one way or another.

It is the flexibility of then screwed customer that they are willing to switch to some other form of communication than "the internet". But it usually only happens if contacting a human through the internet doesn't work.....

Roger.

Re:What surprises me

[Mnemia]

I don't think PayPal should "eat" any costs for these fradulent transactions. They do not provide insurance on transfers. But I think they have an absolute obligation to investigate complaints of fraud, including publication of detailed contact information and tracking of illicit purchases such as this. Paypal could easily work with the merchant involved in that transaction and get the order stopped and the individual found through shipping information, etc. The could go to the FBI or some other authority with this data. But they refuse to do so because they do not want to employ even enough staff to do minimal protection of their customers.

It *is* a problem with their security because they don't have any security other than a password. A password will not magically protect you from all evildoers and is even a rather weak form of authentication when they could be using e.g. some sort of downloadable client with a private key signature scheme. This is necessary IMHO for these sorts of high risk environments like the one Paypal serves. And authentication alone is not enough - they must take steps to investigate claims of fraud and punish those who perpetrate it.

It is well known and has been for a long time among criminal elements online that Paypal is an easy target for fraud and that little investigation is done. This attracts more of this tyoe of person to Paypal.

I know I made the right decision when I closed my account with them a long time ago, when their abuses first began to surface. If they are handling people's money, security should be their foremost concern, and I didn't trust them with the security of my money. Not to mention that they are probably stealing people's money directly themselves.

I'd like to know why you seem to support this behavior as strongly as seem to based on your comment history. Do you have some interest in promoting Paypal?

Re:What surprises me

[jgerman]

I dont see that'd be a problem. I live in area with sidewalk merchants. Are they dastardly because they dont have phone numbers? No. Of course not.

If course you don't see the problem. With the sidewalk merchant's you haven't given up the immediate and direct-response two way communication in the case or having problems with whatever business you have to discuss. Perhaps, you have never had a problem with an online only merchant, so you really don't understand. But for the people who have been screwed it's very important to talk directly to someone to find out what exactly is being done about their situation. It makes total sense.

Re:What surprises me

[jgerman]

No matter how hard you pretend, PayPal isn't a bank

bank - An establishment in which money is kept for saving or commercial purposes or is invested, supplied for loans, or exchanged

Nuff said, nice try PayPal employee.

Re:What surprises me

[DrPepper]

I'm sure you are correct for the US, but for the UK they do have a phone number - and, in my experience, it's better than the email support.

I recently ordered some video tapes, and one was blank after the first five minutes. Initially I tried their email support, but spent a week receiving just form emails that didn't answer the question.

So I gave them a call (expecting to be on hold for ages) but got answered within a minute and had new tapes sent over next day.

Next time I have a problem of course, I'll call first rather than email - which won't do much for their bottom line.

Re:What surprises me

[gilroy]

Blockquoth the poster:

Does that make me a bank? Should I be federally regulated? Whats the difference if PayPal does it on a large scale?

Oh, that's just silly. The difference lies entirely in the scale. Or are you saying Chase Manhattan should be allowed to run just like you, if they stop calling themselves a bank? You are taking a small example between people who know each other and extrapolating way beyond belief to a situation wherein the whole process is institutionalized and commercialized.

PayPal is much more a bank than a friend.

Re:What surprises me

[Dwonis]

A password will not magically protect you from all evildoers and is even a rather weak form of authentication when they could be using e.g. some sort of downloadable client with a private key signature scheme.

Or client SSL certificates, which are already standard.

Re:What surprises me

[Reziac]

I don't think Paypal has any responsibility for user-to-user fraud either, any more than your bank is responsible if you pay by check and get ripped off by the seller.

However, I think Paypal DOES have responsibility when their own system is broken into, and when their system is hacked to gain access to your personal bank account. THAT is where the real issue has been, from all I've read in the past.

As to the issue of passwords -- this is just like the PIN number used to access meatspace bank accounts. Is the bank responsible if you share or lose your PIN number or if you used something guessable like "0000" ??

Re:What surprises me

[gaj]

I'm as interested in restoring a sense of personal responsibility to the world as you are. I'm also interested in restoring a sense of professional and/or corporate responsibilty. As part of that, I think it is reasonable to expect PayPal to at least persue fraud allegations promptly. I agree that they shouldn't be expected to eat the costs of fraud, but they shouldn't abandon their customers to the winds, either.

In the end, though, you are correct: the only real, effective recourse is to take our business elsewhere. Nothing says "You Suck!" like being put out of business because you pissed off your customers.

Re:What surprises me

[Mnemia]

I don't think that you deserved the abusive flamebait moderation that you received, but I still disagree with you strongly.

I disagree that Paypal has not promoted itself as a secure option. Note this interview, linked on the front page of Paypal. Then surf on over to this page in which Paypal states that "The security of your information, transactions, and money is the core of our business and our top priority at PayPal." Looks to me like they are in fact promoting their business as something other than what it is. In my mind, that's unethical at best and fraud at worst.

So, I don't think everyone knows that Paypal has such poor security. You and I know that, because we make an effort to stay informed about such issues. But you sure wouldn't know that reading their site. And when I've mentioned PayPal's record to many of my less sophisticated Ebay using friends, they have in general been totally suprised and shocked to hear the evidence against Paypal.

I have NEVER suggested that Paypal should eat the costs of all consumer fraud, though you seem to think that's what I'm suggesting. I AM NOT. I agree that there is always some degree of risk in an online transaction, and that's not Paypal's fault. But just as people should take responsibility for the security of their own money, Paypal needs to take responsibility for what they have been doing. Instead, they try to hide behind a cloak of facelessness and claiming that they are exempt from the rules that apply to all other similar businesses.

This is by no means an issue of the government beating up on poor little Paypal and taking their right to run their business as they see fit. This is an issue of Paypal stealing from customers and aiding and abetting in fraud by others by refusing to even turn over evidence against those who perpetrate it.

Re:What surprises me

[SurfsUp]

Thats all. I dont use paypal, and I dont condone paypal. But everyone knows it sucks,

That's where you are sadly, horribly wrong. Most people out there don't know it sucks,, and nonetheless do not deserve to be abused because of that. Sure, if you know and you get burned, well, you knew what you were doing. But if you didn't... that's why there are consumer protection laws. To keep people from serving you icecream with dioxin in it. Otherwise, they would - it's a big old world, and there is always someone willing to step across the line for a buck.

and if you choose to use it, its at your own risk. Essentially, do what you will. But don't crying to me when you get fucked.

OK, so I see where you are coming from, you just don't think things all the way through, and you get defensive when you get called. Plus you have all day to sit and post on Slashdot ;-)

(Earth to Dan Heskett.)

Re:What surprises me

[macdaddy]

Ha! I ordered a clock for my motorcycle from a company in Portugal. It arrived in less than 48 hours via UPS, standard shipping. The day before I made that order I placed another order for something of similar size/weight (I forget what it was now) from a Florida company. It took a total of 6 days to get to me in KANSAS! UPS, standard shipping. :)

Re:What surprises me

[macdaddy]

So your sidewalk merchants choose to do business with people that don't have physical access to their storefront? With people thousands of miles away over the Internet? I doubt it. Big, big difference.

If I need to contact somebody for an emergency, I will do it over a regulated "legally-provable" means like a telephone or via certified USPS. Email isn't regulated. Hell email isn't even garunteed. Just because an email from your MUA was received by you MTA does not mean that it managed to find a path across the Internet to their MTA, their LDA, and their MUA. Any number of things could have happened to it in the process.

Re:What surprises me

[macdaddy]

What IS Paypal's fault is not being of ANY assistance to their customer to regain their money. I'm not saying the Paypal should cough up the missing greenbacks. I'm saying that Paypal should be responsible enough to give assistance to the victim. Provide the victim with web logs (before they're rotated out of existence). Provide them with information about the fraudulent transaction that took the $$$. Would Paypal be as uncooperative to law enforcement? If there were they'd be up on obstruction charges pretty god damned fast.

One thing that I'd sure as hell do is file a formal complaint with the BBB and state AG about Paypal's uncooperativeness.

Re:What surprises me

[j-beda]

Canada has very little in the way of duty or import fees for products from the USA.

Now what they do have are fairly significant taxes (PST and GST combine to about 15%) and many (but not all) shippers charge huge brokerage fees. I think UPS charges a minimum of $25 while the postal service chages a flat $5 for customs brokerage.

$200 US is about $300 CDN which would generate about $45 in taxes. What other charges were you hit with, $50 shipping and $50 brokerage?

While one can certainly complain about high sales taxes, it really is not a specific problem with importing stuff, and you cannot really blame the PM for the shipper's charges.

Re:What surprises me

[j-beda]

Well, I would be very interested in learning about this "extra" tax you speak about - I certainly can't find any reference to it anywhere. I have been ordering a fair bit of computer hardware over the past few years, and have never been charged anything by the government other than PST and GST for any of that - NAFTA seems to have eliminated any import taxes on the items that I have purchased (books, computer hardware, clothing). Please dig up your forms for your most recent shipment and let me know exactly what this tax is called so I can learn more about it.

One place to save is in the customs brokerage fees - if you are in a city with a customs house (Montreal or Vancouver for instance) you can do the brokerage yourself and not pay anything - I would imagine that CCRA has info on that somewhere. Another option is to use the postal system since Canada Post does the brokerage for $5.

Canada's obscenity restrictions have been around for much longer than our current PM.

Re:What surprises me

[j-beda]

The biggest problem seems to be that many US sellers are just not aware of the brokerage issue and the first time the customer learns about it is when the shipper hands them a bill. I got burned by UPS once on this for a $10 item with their $25 minimum brokerage fee and started being much more careful. For a number of places (Apple for instance), the retailer can take care of the brokering and the shipper need do nothing. For some shippers, the brokering is included in the price of sending the shipment (FedEx was doing this in 2001, but is no longer doing this in 2002, at least for the type of shipping that I have been using). All in all, the postal system seems to be the best one to use when possible.

I try my best when dealing with any US orders to make sure that I know what the shiping method is going to impose on the total price and try to convince the seller that having a postal option is in their best interest (and explaining about customs and brokerage on their sales site is a good thing too.).

As for the application of GST, I would disagree with you. I may not like the various sales taxes, but if we are going to have them, I do think that they should be applied to everything. Giving imports a free ride isn't going to do anything other than drive business outside the country and reduce the amount of tax collected. While I would like for ME to be able to avoid all these taxes, I don't want anyone else to be able to avoid them...

Re:What surprises me

[j-beda]

I dont' really follow your logic. Sales taxes are not taxes applied for the privledge of doing business, they are taxes applied for the priveldge of buying things. The Canadian is doing all of the buying, so should be subject to the taxes, regardless of where the goods or services are coming from.

In the broader picture of the GST in general, and the PM's promises in particularl, I do not really have much to disagree with you on. I have always doubted any politician's promise to eliminate the GST though - I doubt even the NDP would do so if they were ever in power federally (like that is going to happen in my lifetime...)

That's revolting...

[Archie+Steel]

For my part, I will personally write Paypal and tell them that I no longer feel that their service is secure enough for me and that their treatment of victims robbed through their service is rotten.

The question is, what other services are there in Internet space that does the same thing they do? Any banks trying to offer secure payment over the Internet?

Re:That's revolting...

[Mr.+Fusion]

Western Union currently has a similar service, BidPay, which is a rather reasonable way to pay online auction sellers and the like. The site automates the process of making and sending a money order, complete with e-mail notification of not only when the order was processed but also shipped out via snail mail. I know it's not purely digital, but it better than nothing!

Mr. Fusion

Re:That's revolting...

[CoolVibe]

Yes, indeed... I showed my trust in them by closing my paypal account.

They won't be seeing any service from me. Fuck them.

I would like to know how they did it

[motox]

Frankly, I suspended my PayPal account months ago. This episode just confirms my doubts about their service. It's like your bank gets robbed and tells you sorry, your account is zero now... I think everyone who owns a Paypal account should write and eventually cancel their own account. It happened to Abiword but it could happen, and i -bet- it's happening, to anyone. They just targeted a substantial account, this time.. Ofcoures it's internet, its point and click, its insecure, bla bla bla but it's real money. People has to realize it's real money. It shouldnt make a difference if they rob my PayPal account or if they rob my house, but alas, it does. Internet has reached a critical mass of people years ago, but still when you do business there you feel like you are not in 21th century, but back in the far west...

Re:I would like to know how they did it

[nolife]

People don't get all bitchy and ask the cops to replace their stuff, do they?

My parents own a small electronics repair shop. It was robbed recently. My parents had to pay each customer what their stolen tv,vcr,stereo etc.. was worth. Paypal is password protected, my parents business was locked with a key. Sorry but I do not see much of a difference. My parents eventually got most of the money back via the insurance company and some of the stuff was recovered within a few weeks.

I think every person with a tv claimed they were less then 1 year old and 5 inches larger, it was a comical event to watch them back peddle when their stuff was recovered.

Re:I would like to know how they did it

[Stradivarius]

PayPal is a payment middleman, not a bank

True. In essence Paypal is a money delivery service - you give them money, they deliver it to someone you specify.

As a result, it seems to me that Paypal has a moral (and maybe legal, IANAL) obligation to safeguard that money while it's in Paypal's possession. And they should be responsible for ensuring that the person they deliver the money to is indeed the person you specified should receive it.

OTOH, Paypal should not be responsible for anything more than this. If you decide to send someone money, and it turns out you were scammed, well that's not Paypal's fault.

In the AbiWord case, it sure looks like it was a case of the money being outright stolen from the Paypal account. Paypal should refund the money to AbiWord (which really ought to be covered by insurance, anyway. Insurance is a basic part of running any business). And they should certainly assist the victim in launching a criminal investigation for wire fraud.

didn't you already know this?

I had a paypal account. As soon as I saw the site http://www.paypalwarning.com I deleted it. This was out of simple self preservation, everyone gets bad press, but that much, and to that degree?? I have shown everyone I know that uses paypal that site - I feel duty bound to do so. Veteran Netizens certainly have seen or heard of this site, yet AbiWord decided to use it as their merchant account. Well, you knew the risks didn't you...

Yes, it sucks. It is pretty terrible that donations where robbed. But common sence could have avoided it. You call for a boycott now - well hundreds have been saying this for some time and it was ignored... People have been attempting to get PayPal to have to live up to the same standards of a bank for a long time now. I am sure it is a shock when it is you that gets ripped off but it shouldn't shock you that much that PayPal is being less than helpful.

NR

Re:didn't you already know this?

[Dog+and+Pony]

I've had a PayPal account for a long time and I get and send money that way now and then. Never any trouble. Actually, often things have gone smoother than they promised.

I also saw those paypalwarnings sites. I didn't cancel because of that, for one because I think lots of it is about someone not being PayPal screwing up, but mainly because PayPal does not screw you over more than any bank. Actually, to me it seems they screw you lots less, especially if you are right.

You really mean I should trust a bank instead? That is laughable. As it is now, I "trust" them both. That is laughable enough for me. :)

Pro-bono lawyers might help here

[no_such_user]

I hate to jump to "lawsuit!", but this is an instance where a sternly-worded letter from a lawyer might at the very least get their attention. Unfortunately, you'll end up spending more than the stolen funds to pay said lawyer.

Any lawyers out there willing to help out AbiWord pro bono?

Paypal Sucks

[AntiFreeze]

Ever wanted a good reason to not use paypal? There are tons at: PayPalSucks.com. Now I guess they have to add this AbiWord travesty to their list.

I, for one, cannot understand how paypal is allowed to get away with all this. People even suggested that things might change once eBay took them over, but apparently that hasn't happened yet. What a shame, I remember when PayPal was actually quite a helpful service. Now it just appears to be too much trouble, especially if something goes wrong.

Re:Paypal Sucks

[pla]

I, for one, cannot understand how paypal is allowed to get away with all this.

I'll second that...

I've read through the various links people have posted about why PayPal doesn't count as a bank, and regardless of that, I still don't get one part of all this - Why don't they have some liability in terms of failing to provide the service people pay them for?

Okay, they don't accept "deposits". But they act as a 3rd party transaction processor, so presumeably they have a responsibility to make sure *BOTH* halves of the transaction work out like they should.

To make an analogy, if I ship something via FedEx and they drop it off at the wrong house, they owe me for *their* mistake. I pay them to send a package to house X, it doesn't get there, they owe me the value of that package, end of story.

In Paypal's situation, the "package" only exists virtually, but it still has a real and clearly defined monetary value, no?

($581 * 2) + tax == ~$1,200

[hacker]

Anyone notice that the failed credit card deduction is almost the same as the stolen amount(x2)? Maybe the thief wanted to get 2 of these camera/PDA devices, and couldn't get them both when the credit card was denied, so he just took the max from the cash value purchase price of one of them, $581.00.

This truly sucks. As a maintainer of a few open source packages myself, who currently is using PayPal to keep the project websites, cvs, et al. bandwidth paid for, I'm at a loss to find any alternatives. Anyone else?

Re:($581 * 2) + tax == ~$1,200

[gnuadam]

Just a thought...

You might accept payments there, but daily, weekly...often anyway...take the money out and put it in a real bank.

Paypal shouldn't be used as a bank account. They're not a bank.

Re:($581 * 2) + tax == ~$1,200

[gaudior]

That's all well and good, but paypal has a widely reported habit of suspending people's accounts for long periods of time, and for little or no reason. This is behaviour that is getting the attention of regulatory authorities.

Robbed?

[empee]

Due to the lack of details given about the fund being 'robbed', I'm going to guess that the password was compromised, as opposed to some sort of hack on paypal's servers. So... isn't it this guy's fault (at least as opposed to paypal's)? Paypal didn't do anything wrong.. sure maybe they could be a bit more helpful in trying to track down who did it, but they certainly aren't obligated to do so.

Re:Robbed?

[sql*kitten]

Due to the lack of details given about the fund being 'robbed', I'm going to guess that the password was compromised, as opposed to some sort of hack on paypal's servers. So... isn't it this guy's fault (at least as opposed to paypal's)? Paypal didn't do anything wrong.. sure maybe they could be a bit more helpful in trying to track down who did it, but they certainly aren't obligated to do so.

If you pay at a restaurant with your Visa card, and the waiter keeps a copy of the carbons and later spends money on your card, Visa will take care of that for you - you aren't liable unless you have been woefully careless.

If AbiWord left their password and account details written down on a postit note then maybe it's their fault, but if their account was brute-forced, then PayPal should be responsible.

No Recourse?

[phriedom]

Isn't there an address that the camera seller has? If this is inter-state fraud doesn't that bring the FBI into the picture? Why rely on PayPal to give you justice?

Now of course, PayPal SHOULD have to be a bank to do what they do and should be responsible for the money entrusted to them that they allowed to be stolen, but just because they aren't I don't see how that is the end of it.

Re:No Recourse?

> Hand the information over to the FBI or other authorities; have this investigated if possible

For a $600 camera? It might be nice if that's how the FBI worked. Though if it did, taxpayers would have to cover the expense of doubling or tripling the number of agents, to do nothing but eBay/PayPal investigations. I think their minimum amount to take down a report is a $5,000 loss, but in practice they generally won't investigate a case unless it involves several times that.

Re:No Recourse?

[joshki]

The FBI doesn't care unless there's over something like 25k involved. 600 dollars in a donation fund isn't even going to get them to bat an eye, unfortunately.

Well...

[jvmatthe]

Boycotting Paypal because of these reasons, and the fact that their system is notoriously insecure, and encouraging others to do the same.

One has to wonder if the Abi folks knew about PayPal's failings ahead of time. If so, then had they looked into other ways of obtaining donations? That is to say, if the Abi folks are saying "Look, we knew that PayPal sucked and was insecure, but we used them anyway, so please write them to tell them how much they suck" then it's a little harder to take their complaint seriously.

I've used PayPal for auction stuff. I was fortunate enough to get payments mostly through PayPal from a large USENET auction I held a while ago. But once that big chuck of money was in there (we're talking less than $1k) I had them cut me a check and send it to me so I could put the money somewhere I trusted...a real bank! Even now, I never keep more in the account than I could bear to lose, should something go wrong.

That the Abi folks weren't taking better care of their money hardly seems like PayPal's fault. Many people know PayPal has been difficult to deal with...it's no big secret and it's even been talked about on /. lots of times. Many people are wary of the fact that PayPal wants all of the benefits of being a bank without the responsibility...again it's no big secret. And the ability to use PayPal to get contributions while still holding onto your money (by asking them to cut you a check every month, say) isn't hard to do.

I don't want to defend PayPal too much here. They're clearly sleazy sometimes (if not all the time). But that doesn't absolve the Abi folks from being more careful with their benefactors' cash.

Re:Well...

[whereiswaldo]

That is to say, if the Abi folks are saying "Look, we knew that PayPal sucked and was insecure, but we used them anyway, so please write them to tell them how much they suck" then it's a little harder to take their complaint seriously.

What the AbiWord folks think of PayPal should have absolutely no bearing on PayPal's liability in this theft. PayPal is bound to provide a certain service, and should be responsible enough to remedy this situation, if only because required by law.

Re:Well...

[jvmatthe]

Just from the bit posted here (too sleepy now to go read much more) the Abi folks aren't claiming that PayPal is ducking their responsibilities, right? Just that they complained to PayPal and hadn't gotten a positive response. For all we know, PayPal isn't obligated (by contract) to do anything if your account is hacked. After all, if the "hack" is "I left my password out in the open and someone took it", then that's not PayPal's fault, now is it? I'm sure they've spelled out the conditions, if any, under which they'd cover theft and it isn't clear (from what I've seen here) that PayPal owes the Abi folks a dime.

Suppose the weakness in the security here is that one of the Abi people used a weak password or left it out for someone else to see? Or that a vindictive former Abi team member decided to wreak havoc on his former colleagues? Suppose (against all hope) that it really isn't that PayPal has some latent insecurity in their system that was exploited. Then it's just tough cookies for the Abi people.

The Abi folks might be victims of a crime, but until someone makes clear that PayPal has broken a contractual agreement with the Abi people, I can't fault them.

Re:Well...

[arkane1234]

All of that is well and good, but PayPal at least knows where the money went. That would be a good enough lead for law enforcement to start an examination into it.

Re:Well...

[Black+Copter+Control]

After all, if the "hack" is "I left my password out in the open and someone took it", then that's not PayPal's fault, now is it?

From reading the PayPal agreement, it seems that a seller is supposed to only send to a verified address of the buyer. If this is the case, then the $600 camera should be going to the paypal address. If not, then they should be able to demand a payment reversal.

It would be the fault of this Jun Jiang if (s)he didn't send the camera to the proper verified address. Complicity in fraud is not innocence.

Monopolies are a drag

[Lord+of+the+Fries]

I remember viewing the eBay purchase of PayPal with some trepidation. Thinking, this just can't be in my (the consumer's) best interest. And while I'm sure there were problems before, the sort of heightened injustice in the light of a move that was supposed to benefit the defacto public online auction place, just fries me.

So, what are my choices (that's what we love to jump up and down about having)? Are there other online aucctions that even have a chance of being as large as eBay? Or other payment methods? I see the whole PayPal-as-part-of-Ebay, so much like the Microsoft having become the defacto desktop and then pushing it's web browser and subsequent internet policies on everyone.

How was it stolen?

[Call+Me+Black+Cloud]

He says, "...their system is notoriously insecure."

It seems to me that if the system is that insecure, the perps could have found something more lucrative to rob than the Abiword tip jar. I'm sure there are power sellers on ebay that do more business in a week than the tip jar sees in a year.

Perhaps his fund password was something like "abiword" or he responded to a scam e-mail...

Reading the complete post, I see "...Their silence implies to me that they are treating this matter as if I got mugged on the street, rather than as if someone walked into their bank and withdrew my money without my consent."

So it sounds as if it was not a hole but rather an error on Dom's part. I look forward to reading more about this to find out just how this happened.

Re:How was it stolen?

[murgee]

This is, of course, assuming that everyone trying to get into PayPal is after big bucks anyway (doing it professionally).. when it's quite likely they could have been targeted by someone who's just experimenting and hit something small to lessen their chances of getting caught (or, at least, trying not to get into too much trouble.. you might suspect that if the person raided a several thousand/tenthousand dollar account they'd be up against a lot more, punishment-wise).

Of course, isn't the purpetrator's name tagged to the transaction? You have to have a valid bank account to move funds out of your PayPal account.. wouldn't it just make it that much harder to hide from the authorities if you broke in to someone's account and moved stuff over?

This reminds me of when lowendmac got hit last month (earlier this month.. something like that). It's unfortunate PayPal has "critical mass" or whathaveyou. You'd think that someone big would care, but they can't even be bothered to work with all banks.

Re:How was it stolen?

[austad]

As a network security engineer, YES. I've seen many programmers have unbelievably stupid passwords on accounts that offer them great levels of access on the network. Things as stupid as "dog", or "password1". Just because someone can program something doesn't mean they know about, or give a shit about security. That's why there are such things as password policies, and I believe paypal actually has one. But just because they have a password policy doesn't mean that the password is strong, plus, maybe someone did something stupid and sent the password over email or stored it on a machine that was cracked.

Re:How was it stolen?

[nosfucious]

Programmers (generally) see security as a hinderance and not something requried.

I've come in to plenty of sites and seen programmers logged in as Administrator/root/(QSECOFR or ALLOBJ) ... just because they can. It's even worse when just because they know about a computer, they have been given the task of administering the system by various management.

Likewise, these programs produced utterly fail to run if not in the same Administrator/root/QSECOFR context.

Never assume "programmer" == "knowledge of security". (Of course, the reverse is also true, there are many who do understand security).

Re:Pay Pal

[whereiswaldo]

Let's say you have ONE department store in your town. You heard that that department store screwed one of your friends. You hope it's an isolated incident, because there's really nowhere else to go. You continue to stop at that store, and you yourself get screwed. Is it your fault for shopping there even though your friend was ripped off?

Re:Pay Pal

[mosch]

Actually the correct version of that old tennessee saying, well I know it's in Texas it's probably in Tennessee is : 'Fool me once, shame on... shame on you.... A foolmuh canby foolduh gain'. See?

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Pay Pal

[whereiswaldo]

Ask any merchant who doesn't accept VISA, MasterCard, Discover, Diner's Club, etc.. how many sales they have missed out on because they only accept cash... if you can find a merchant who doesn't accept VISA, MC, ...

Done and Done...

[Incongruity]

After reading about all the trouble with paypal, I have cancelled my account. I will now also be sending their customer service folks an email explaining why I cancelled my account.

Even if they do outsource their support to India, I'd bet they keep some sort of stats about emails and the issues covered...maybe if enough people complain and cancel their accounts someone will listen...unlikely but it's worth a hope.

-tcp

Comment removed

[account_deleted]

Comment removed based on user account deletion

I'm sure this has been said a lot already...

[fatwreckfan]

...but I just closed my Paypal account and sent them an email expressing my disgust. I urge others to do the same.

Comment removed

[account_deleted]

Comment removed based on user account deletion

how to speak to a human at paypal

[kraksmoka]

i had to revive my old business account last week, had lost all information even down to which email address was it on and did i still have that address. thankfully, i knew the credit card number assigned to the account

it is entirely possible that your thief did this very same process and used it to gain access.

if you go through the password retrieval process in a completely unsatisfactory way, it will present a telephone number for you to call. the wait on hold wasn't even that long. the human was nice, and its far more immediate than sending an email.

if you can't get through that way, i suggest calling ebay's fraud prevention and taking it up with them. ebay just bought paypal, remember?

hope this helps

Comment removed

[account_deleted]

Comment removed based on user account deletion

I'll cancel my PayPal account...

[davmoo]

...just as soon as someone explains how the theft occured and why it is PayPal's fault. If the theft occured by someone hacking PayPal, then it is indeed their fault and I will cancel. But if the theft occured because Abiword had a simple to guess password, 47 people knew the password, or some other idiocy like that, then I have no sympathy...and I will continue to be a happy PayPal customer who has conducted thousands of dollars worth of transactions (both directions) and had no problems what so ever.

I do notice that the referenced note is long on inuendo and short on facts, and that in itself makes me suspicious.

The guy didn't do anything wrong...

[SlimFastForYou]

unless you consider trusting paypal.

I havent read the details yet, but I am a little curious as to how the money was stolen. If the password was "abiword", for example, I would not think less of PayPal if they laughed.

On the other hand, if a server was hacked or a rep socially engineered, PayPal should fire whoever didn't follow the security policy and give the money back no questions asked. Perhaps even slip in a little more money so that the robbed will keep quiet.

Like most people, I think governments should do something to keep PayPal in check (assuming this whole ordeal is their fault).

It's not news, stuff like that is usual with PP

[prostoalex]

As much as I detest stealing, it's hard to ignore the fact that stuff like that has been going on for a while.

I saw previous posters say they closed their accounts after they found out about AbiWord theft, I closed my account as soon as I've read through posts on the site above.

Re:It's not news, stuff like that is usual with PP

[BlueUnderwear]

Well at least in this case, Paypal didn't freeze the remaining $200 after the thief took $600...

Question Regarding Paypal Fees vs. Greed

[Babbster]

I'm not going to write a long screed about Paypal since I haven't done business with them (frankly, I'm wary of anybody who gives away money like I saw Paypal advertising at one point). However, I am wondering something:

How much money should someone be allowing to accumulate in a Paypal "donation" account? I ask because I think that anyone who lets the account grow too much (like beyond $100 or one transaction, whichever is greater) is begging for trouble. I know that there are transaction fees when you take money out of the account, so were the Abiword people being cheap by not withdrawing earlier?

For example, if there is a 2.9%+$0.30 charge to receive $100 from the account (see Paypal for details), that would be a charge of $3.20 leaving $96.80 in the check I assume they would send out. Even at $50, you're looking at $2.25 with $47.75 of actual money coming at you.

Clearly, were I running the deal I wouldn't be leaving money in this "fund" and I think that Mr. Lachowicz was a damned fool to do so, whether Paypal is generally believed to be a security risk or not.

Frankly, I have more sympathy for someone who loses $30 or $40 from their Paypal account because of this kind of fraud than I do in this case. Someone who loses such a small amount of money could have had some valid reason to have the money in their. Someone who leaves $800 sitting around, doing nothing (savings account interest rates are small, but Paypal interest rates, well, are nonexistant), probably needs a lesson taught to them.

Blaming Paypal alone would be a mistake.

Re:Question Regarding Paypal Fees vs. Greed

[Babbster]

You're absolutely right to want customer service, and certainly that part of your complaint is well justified.

As far as interest rates go, I guess in retrospect it's a question of risk versus reward. Certainly anyone else who would consider leaving money in any Paypal account should be extra wary, and it's good (though unsatisfying for you) that your situation may increase awareness of the problems there.

I hope that at the least somebody tracks down the jerk who stole the money and prosecutes him or her for that theft. Good luck to you in the meantime.

I would also apologize for being overly judgmental in my assessment. I have a terrible tendency to respond to kneejerk reactions [of other Slashdotters] in kind. :)

those bastards!

[Maskirovka]

Paypal should pay.

Paypal: Excellent Service (until you need help)

[R-2-RO]

Paypal is quite convienient, but should something like this happen that requires Paypal to step in, you're SCREWED!

Paypals complaint resolution works like this:

File complaint

Paypal emails other party on your behalf

Paypal receives no response for other party after X number of days(duh)

Paypal deems your money unrecoverable (sorry)

Filed fraud w/ my CC company

CC company investigates (and when they finally stop laughing) remove charge from my CC (thank you!)

Recieve nastygram from PayPal for not initiating the charge back through Paypal for the 10 dollar fee instead of the free service my CC provides.. (dick heads!)

Luckily my CC company came through with no problem. But I was scammed on a PS2 system on Ebay (long story) the sad part is that there were about 20 of us that lost out on the ebay thing. A couple of them used paypal and got nothing! and since they didn't use a CC (which paypal would rather u use a straight bank transfer) they got screwed. Got nothing back. Sad.

Slashdot Subscriptions

[forged]

So was the early subscriptions system a lure to get as many Slashdot fellow readers as possible into using PayPal ?

Re:Pay Pal

[whereiswaldo]

You're ignoring the fact that I said *merchant*, not *charity*. In addition, you cannot send cash through the mail. How do you get a donation to an out of city or out of country charity by using cash?

To Close Your Account

[BrianWCarver]

To close your paypal account follow that link. I just closed mine.

Then send them an e-mail explaining why. I'm going to now.

P.S. It seems to me the seller of the camera/PDA must have mailed the thing somewhere. Get that address. Contact local police. Contact EBay's fraud division. ETC. I'd be surprised if this money cannot be recovered. In the meantime, I hope Abiword is busy setting up a C2it account.

Re:Pay Pal

[3am]

You're ignoring the fact that I said *merchant*, not *charity*.

The entire subject of this discussion is the tip jar for the Abiword project, a CHARITY. The parent poster is trying to stay on topic.

In addition, you cannot send cash through the mail. How do you get a donation to an out of city or out of country charity by using cash?

Okay, ignoring the fact that you can easily send cash through the mail, there are these things called CHECKS. I don't have anything against PayPal, but there are obviously alternatives - people weren't stupid and running around like chickens with there heads cut off from the dawn of recorded history until about 20 years ago. Somehow, people managed to get things done without credit cards for hundreds of years.

PayPal is unregulated.. treat it that way..

[Dr.+Awktagon]

That really stinks. I wish Dom the best of luck getting his money back.

But, I'm not going to cancel my PayPal account over this just yet. I've had the account since the service began (remember when it was for Palm Pilots?). Never had a problem. I treat PayPal with kid gloves because they are not regulated the same way banks are (and they shouldn't be: they are a payment service, not a full-service bank), and they are a huge hacker's target.

Here what I do with my PayPal account (I use it quite a bit on eBay for buying and selling):

1) Set up a separate bank account for PayPal. I have a money market fund whose sole purpose in life is to transfer money between paypal and my regular savings account. I transfer the money out at least once a month or so.

2) never give PayPal any more information than they need. Give them one credit card (preferably exclusive to PayPal with a PO box billing address). Don't sign up for the piss-ant Money Market fund that requires giving them your Social Security Number. No extra emails, phone numbers, or mailing addresses. Change password often.

3) NEVER UNDER ANY CIRCUMSTANCES leave a balance in your PayPal account. Because it's PayPal's money, not yours, until you take it out (remember, it's not a bank). Withdraw immediately. Even if you need to pay for an auction later, use your bank/credit card to pay for it. (I use a Citibank card that gives a cash back bonus, so I actually get a small benefit from doing this.)

4) If they send you a free Debit card, cancel it. Don't sign up for the credit card either.

You have to keep in mind also, PayPal can freeze your money at any time. All that has to happen is someone file a complaint against you. They can lock your account. They can do various silly things.

I don't want to "blame the victim", but if your money is not in the PayPal account, it can't be stolen. And if there's a fraudulent charge on your credit card, it can be taken care of with a signed affidavit, or maybe just a letter, like any problem with your card. Your card has consumer protection laws associated with it, your PayPal account doesn't.

I did have one of my other cards stolen once and used on PayPal (had nothing to do with my paypal account, the perp opened his own). I wrote them and received a response and an affidavit to fill out, the next day. In fact, all my PayPal customer service mails have been answered the next day. (I have a "premier" / "merchant rate" account, which gets better treatment, ymmv).

By this point, with all the horror stories out there, I'm surprised anyone would keep a balance in their PayPal account.

Re:PayPal is unregulated.. treat it that way..

[Erebus]

I don't want to "blame the victim", but if your money is not in the PayPal account, it can't be stolen.

Wrong. If you sign up for a 'subscription', and there's not anough money in your paypal account when the 'subscription' renewal date arrives, they will automatically take it out of your account, without asking. (My guess is, since they tell you this when you sign up for the 'subscription', that constitutes their 'asking'. Nevertheless, they can and will take money from your bank account/credit card if they so choose.)

Re:PayPal is unregulated.. treat it that way..

[Ron+Bennett]

Yes...but the point is that one has recourse in regards to unauthorized transactions from a checking account via ACH - this is by an act of law.

Contrast that with money in a PayPal account...no legal protection. None!

The other poster's emphasis was to withdraw the money out of PayPal on a frequent basis.

With that said, there's a wrinkle the other poster may have not considered...ACH withdrawals can be reversed for a period of time. So even if one withdraws the money to their checking account, PayPal can get it back with little hassle by reversing the ACH transaction - one has little recourse (withdrawing all money in the bank account won't work - the bank will just issue a bill!) in stopping such a reversal; not saying one can't, but is significantly difficult.

Bottom line is that PayPal is risky for both buyers and sellers alike - both sides assume relatively large risks when compared to other types of transactions like credit cards, on-line checks (ACH), etc that come with legal protections.

Re:PayPal is unregulated.. treat it that way..

[drinkypoo]

That's right, and if you open a new checking account specifically for paypal and only provide them with that account information, they can't take out any money you don't intend them to have access to.

Most banks will give members additional free checking accounts.

Re:PayPal is unregulated.. treat it that way..

[John+Hasler]

> Most banks will give members additional free
> checking accounts.

Don't open your special PayPal account at any bank at which you have any other accounts. To understand why, read your bank's terms of service.

Put responsibility where it belongs

[Chester+K]

"...system is notoriously insecure"

Bullshit. How about "I had an insecure password", or "I responded to one of those emails from a scammer that claimed to be PayPal", or "Another system I use was compromised and I stupidly use the same password everywhere" instead?

I'm gonna guess one of those scenarios is more likely than any security failing on PayPal's part. Certainly if there was a security hole in PayPal itself, there are much bigger fish to go after -- any of eBay's Power Sellers, for instance, probably have much more than $500 or so in their accounts at any given moment.

Re:Put responsibility where it belongs

[dominator]

Actually, I never respond to emails from scammers who claim to be paypal, my passwords are quite long and not the same everywhere, I change my PayPal password once every 2 weeks, etc...

I don't really blame PayPal for my fund being robbed. I do blame PayPal for not responding to my customer support emails. This is the crux of my complaint.

All I asked for was an address of my grievance. I'd be pleased if they acknowledged my existence as a member of this planet. But they don't, and in my opinion, it would be the least that they could do to keep a customer happy, nevermind their legal obligations.

Paypal proclaims to be a trusted third party, collecting, holding, and disbursing your money as only you see fit. My money was disbursed from their coffers without my permission. This is robbery. No, Paypal did not rob me, someone else did. But Paypal as a trusted third party is responsible for providing certain safeguards to make sure that they're not duped too easily. And if someone tells them that they've been duped, they have an obligation to at least investigate my charge. Or at least they should.

Paypal is a company that manages and holds others property on behalf of them. As such, they are duty-bound to protect those properties. There are laws for companies that do this, and names for businesses that do this. Namely, they're called banks. As such, my money should be protected under laws and statutues similar to FDIC. It is not. Am I stupid for using PayPal? Maybe. Shame on me.

Now, if PayPal had merely responded saying "We're investigating this charge" *EVEN* if they came back saying that my charge had no merit, I would not have sent this email. I refer you to these quotes from paypal's own site:

"PayPal will investigate your complaint and attempt to recover any funds you are owed. You will be entitled to the return of any funds PayPal is able to collect on your behalf. However, fund recovery is not guaranteed."

Please read:

https://www.paypal.com/cgi-bin/webscr?cmd=p/gen/ te rms#insurance
and
https://www.paypal.com/cgi-bin /webscr?cmd=p/gen/te rms#consumer_protection

This inaction when dealing with my funds pisses this one customer off. And, IMO, rightly so.

Dom

Suggested potential course of action....

[CathedralRulz]

1) Sue Ebay (who own Paypal)
2) Boycott Ebay.
3) Write Ebay's board of directors (it's a public company)
4) Find out where that money was transfered and bring a lawsuit.
5) Yeah, Paypal is beginning to look like a bank. And if it starts to reach a critical mass, don't worry about YOU having to contact your congressman, odds are your bank will, and they will make something happen.

Paypal is not considered a bank...

[stubear]

...under US federal banking laws and this article from CNET explains why better than I could.

Solution

[bangzilla]

So contact "Jun Jiang", find out to where he shipped the camera and arrange a little "visit..." Looks like the perp also bought another camera so if Jun Jiang can't /won't provide the address (which he should 'cos he got money from "you") - then ask the other seller. Then arrange the "visit". I'm sure a number of folks would be only too happy to help with the "visit", especially those who contributed to the tip jar.

Re:Robbed?-Blind trust.

[empee]

I'm sorry to inform you that your landlord had put cheap locks on your place, and it was subsequently broken into. Because you didn't change the locks. As your insurance company we will have to deny your claim. Sorry but that's the breaks.

No, see, YOU put the locks on your place. The landlord made you put a lock on there, but you chose the lock. You decided if it was a stainless-steel master lock, or one of those crappy cord-looking bike locks that could be cut through with a pair of grade-school safety scissors. Paypal doesn't set your password, YOU DO.

In all seriousness, isn't the security of a password still sacred? I mean, you can log in to any server, anywhere, with nothing more than an absconded password; do you really expect Paypal to do more than that?

Re:Pay Pal

[jonnythan]

Yadda yadda yadda. I pay my landlord with Paypal, I pay Penny Arcade with Paypal, I accept credit cards for auctions via Paypal, I use Paypal to get a quick $10 cash off my roommate (live-with ATM!), and I use Paypal to pay for items which I buy from non-local people (both through auctions as well as other arrangements).

If I get burned through an eBay auction, I won't bitch about it. I'll try to resolve it, but as for "i'd rather buy from the worst blooksuckers on pricewatch," I buy from them too. Over the past 5 years I've saved many thousands of dollars by buying through eBay and pricewatch.

I'm not too worried, but I won't whine like a baby when something happens because I know the risks I'm taking.

To me, it's more than worth it, and Paypal is a wonderful thing. If you don't like taking such risks, don't use it.

It would be nice if you at least attempted to understand why some people do.

Re:bye bye paypal

[rob-fu]

You can pay for your EBay stuff besides Paypal. IIRC you can pay electronic check, credit card, etc. Paypal only acts as an intermediary between seller and buyer, I think. It's been a while since I've sold/bought anything from there.

Negligence

[adb]

There isn't enough information in the announcement to tell if that's what happened here, but if PayPal failed to do their job (e.g., they didn't take reasonable security precautions in proportion to their responsibility), a lawsuit is exactly the right thing. In most (i.e., libertarian rather than anarchist) conceptions of the free market, it's part of the gummint's job to enforce contracts, and there's clearly a contract here, even if some parts are just implied by the nature of the relationship: "in exchange for a cut, we will hold onto your money for you" => "if we fuck up and cause you to lose your money, we'll pony up".

Re:Questions?

[Babbster]

They're dumb questions only in the sense that they've all been answered above (though in far more inflammatory fashion than I'm about to). :)

1. No, you shouldn't be worried about it, BUT you shouldn't be giving Paypal your bank account information. You should only be dealing with Paypal on the basis of a bank-issued credit (not debit) card.

2. If you have more than $50 in Paypal, you should take it out immediately. You shouldn't keep a balance with Paypal. If someone buys something from you and the money goes to Paypal, just take it out ASAP (though if they are small transactions, for convenience you might want to wait until you are up to $50 or so).

3. There are indeed viable alternatives to Paypal. One example is Bidpay from Western Union. There's no account balance, you simply buy a Western Union money order (online, of course) and they send confirmation to the seller who can then be assured that their money is on the way. Each transaction is its own beast and nobody leaves any money hanging with them. Some of the above messages contain other alternatives.

4. I don't know if Paypal has to change. I think the consumer perception of them is the problem. Too many people think of them as a bank when they clearly are not. They can't even be confused with a bank if people would simply maintain ZERO balances with them and use them purely as the money middleperson as they were originally intended.

Of course, Paypal has a tendency to foster the impression that they're a bank, so their marketing can take some blame as well.

It's all about education. If somebody isn't giving you interest on money they're holding for you or isn't federally insured - i.e. credit unions, banks, savings and loans - you really need to either move your money elsewhere or, as in my case, SPEND IT.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Use a second checking account!

[Fencepost]

I've said this before and I'll say it again:

Set up a separate checking account for use with PayPal and other online payments!

• Don't put much money in, just enough to cover your regular expenses - when you need more, most banks have phone or Internet systems you can go through to transfer money between accounts.
• Don't let the bank set up the account with automatic overdraft protection. Some will do this by default. Make it clear that overdraft protection from your other accounts is unacceptable and be willing to back it up by changing banks
• Don't bother getting checks, just the numbers that would be in that MICR line at the bottom of the check.
• Use a credit union if you have one available - in general, the account there will be free.
• Never depend on that account for anything important - rent, groceries, car payments, etc. all come out of your normal account. This one is a pile of money left on a desk in a busy office.

Re:Use a second checking account!

[Roblimo]

Exactly. My wife has a small Internet-based business, DebbieCentral.com. She accepts payments through PayPal (although most of her clients pay by check), and has a separate bank account for PayPal and other online transactions.

I signed up for a PayPal account when they were first getting started, and I have never been able to close it. I have, however, closed the bank account it was connected to (for other reasons, not because of PayPal), so I'm fairly safe.

- Robin "Roblimo" Miller

Personal site: http://roblimo.com

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Blame the victims? Where are the regulators?

[Babbster]

The victim HAS to share some blame, if only for the AMOUNT of money that was lost. Obviously, if the thief can be tracked down they should suffer the brunt end of the criminal justice system, and there the blame would most properly be placed. However, if someone is stupid, then they're going to be penalized for it.

Example: I start a bank account with online banking options. I then make the password "babbster" (or my real first name). If someone comes along and steals money from me, I *am* to blame. I may have some recourse (assuming that FDIC covers it) and someone else may go to jail for stealing the money BUT I am STILL to blame for being stupid.

As to your example of Enron: Yes, we should blame everyone who [stupidly] invested in a company whose true assets consisted almost entirely of their stock certificates. We can just as easily blame people for investing in Internet companies because they had some ephemeral idea and little else. It's less a question of government intervention than of consumer/investor responsibility:

If you throw money at a company by buying their stock, you are supposed to be doing so because you believe in their product and want them to be successful (which is why you are capitalizing the company). Unfortunately, people more likely buy a particular stock because they think that the value of the stock might go up. While this can be a benefit to the stockholder, investing in the stock market is SUPPOSED to be different than playing the lottery.

It's also way off-topic, but that'll happen sometimes. :)

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

PayPal Security and what THEY think about it...

[CyberBill]

So, about a year ago I broke into 10+ accounts at paypal, and moved a couple of bucks (12k or so) around, didnt TAKE anything, just moved back and forth from accounts. After a good amount of time after that, I contacted paypal and told them how I was able to do it, and how EASY it was. I got in touch with someone, who, I presume is one of, if not the only security guy at PayPal. According to him, its not worth there time to impliment more security features as it makes it harder for the user to gain their access to the account. Plus, its not PayPals loss if they get hacked... so why pay money and lose users to not gain anything?

Bill

Comment removed

[account_deleted]

Comment removed based on user account deletion

Pay Pal is sleazy

[SurfsUp]

My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers. We didn't see that money again for three months, as they pretended to be "investigating" the transaction for possible fraud. Never mind that we talked to them many times on the telephone, and send proof of our ownership of the accounts several times, and pleaded with them to resolve this, as we needed the money.

The delay was beyond any point of being able to pretend that they actually made any effort to resolve the situation. It was in fact more than 10 days after we first contacted them before they would even open what they call an "investigation". They claim that their procedures are set up to combat fraud, but it's just a way of establishing deniability. That is, they pretend that they have no intention whatever of stringing me along as long as they can, while they collect interest on my money. (And no, they never did offer any compensation for the lost interest, let alone the many hours we were forced to spend pursuing them, to get our money back.)

You think mine is an isolated case? It is by no means. Just do a web search for paypal+complaint. See all the distressed people. See the lawsuits.

It's a transparent scam: by locking up the money of only a certain percentage of their customers, and treating the rest reasonably well, the people who claim that Pay Pal engages in a pattern of sleazy misconduct will never be believed, because they will always be outnumbered by customers who have never had a problem.

That doesn't make it right.

Re:Pay Pal is sleazy

"My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers."

Why? *WHY*?

Most likely, they were trying to get a cash advance by charging a credit card through paypal as a purchase toward the second account. This is straight-up against the PayPal TOS, because it is also against every CC TOS I've ever seen. If you want a cash advance, you have to do it the CC company's way, or they'll get heaps of mad over the extra finance charges they're "losing".

Re:Pay Pal is sleazy

[SurfsUp]

"My wife opened a Paypal account for me, and one for herself, then transferred $6,000 from my account to hers."

Why? *WHY*?

There must be something in the water, cuz all I smell is bullshit.

It was instead of a wire transfer, junior.

Re:Pay Pal is sleazy

[SurfsUp]

Or instead of writing you a check, or getting a cashier's check, or getting a money order...

"Hey honey, let's ignore tried and true banking principles that have been in place for years and are regulated by the government and let's use this new website that just opened up instead!" "Ok, sounds great!"

[beep][beep][beep]Oh sorry, gotta run, my bullshit detector is going off...

It might seem funny now, but at the time we believed that Pay Pal was reputable, and did not see any reason not to transfer money through them. Hopefully, it would have been faster than a cheque or a wire transfer. Instead it turned out to be a real horror. Just don't use them... for anything.

There is no good reason to patronize an unethical business.

Re:Abiword STILL using paypal?????

[Ron+Bennett]

Bizarre isn't it :-;

Anyways, one can either expect that by Monday, PayPal will have made them "whole" or their PayPal account will be suspended and no longer work.

PayPal is a great idea, but it's a shame their customer service is so poor. Hopefully the eBay folks improve things with PayPal...otherwise PayPal could be end up being eBays's undoing :-(

A Possible Alternative to PayPal

[NeuroManson]

I'm not sure what others' experiences have been with this company, but I'm looking into getting it myself... A new company, called NetSpend (www.netspend.com) is offering reloadable MasterCards which you can either put money onto at any store or check cashing location that allows it, or get money deposited to via online transaction... The bonus, of course, is that you can access your money directly (while paying the average $1-$2 fee for ATM usage), and a paltry $20 per year charge to maintain your account...

The only apparent drawback of the program is that you can only transfer funds from one NetSpend account to another, so of course, your buyers/contributers need to have a card themselves... Considering that the fee is extremely low, and the fact that NetSpend is on the BBB, they seem a bit more straightforward than PayPal... Also, they don't need to pass any credit application procedures, or open a bank account (unlike secured credit cards), it can be extremely simple to obtain.

Another added bonus is that the credit card acts as a secondary form of ID...

Here's how you SHOULD do it..

[daitengu]

I have $30 taken out of my paycheck, and put into a bank account every 2 weeks, This is the only bank account I have that is listed on Paypal. I leave all the money in my bank account, so that if anyone DOES manage to 'rob' my Paypal account, the account has a minimum amount of money in it, and they'll have no clue as to how much money is actually availible. (I'd rather loose $25, from a overdraft fee from the bank, than have someone rape $100 from my paypal account.

Granted, the easiest way to prevent this is to not use paypal, but up to this point, they haven't done me wrong, they've actually backed me up on an auction I won, and paid for, and the seller never shipped the product... Paypal got my money back for me within a week of submitting the dispute.

So, Paypal isn't ALL bad, granted their security should be a bit better, and perhaps they are a bit understaffed, because complaints do take quite awhile to respond to. (but *3* weeks?)

PayPal Alternative... Yahoo PayDirect

[Phasedshift]

A nice alternative to paypal (for some purposes) is Yahoo's PayDirect.. paydirect.yahoo.com..

Paypal sucks, Abiword doesn't so...

[wdr1]

... since there have been enough paypal bashing for one day, how about folks kicking in a buck or two to raise some more funds for abiword?

Heck, if some nimwit in NYC can raise 20k to help pay off their credit card bill from donations, surely at least $600 can be raised to help abiword? Hell, maybe we can get some of that infamous Slashdot effect directed towards kicking a buck to their back account.

-Bill

Re:Paypal sucks, Abiword doesn't so...

[tswinzig]

since there have been enough paypal bashing for one day, how about folks kicking in a buck or two to raise some more funds for abiword

Ummm, because that would require me to setup a PayPal account?

I think I'll wait until they get a better donation service provider. What about c2it, which is run by CitiBANK (I stress the bank part).

Paypal and their phone support

[StarHeart]

Paypal does have phone support, but you only get it with their business/premier accounts. If you have a business account it trivial to find a 1-888 number for them. Now I have read it has been outsourced to India which doesn't sound great, but at least you can talk to someone if they are actually making money off you. They shave 2.2-3.9% + 30 cents off each of my incoming money. 2.2% + 30 cents is for Merchant accounts which have qualification requirements. 3.2% + 30 cents is merchant receiving money from someone outside the country. 2.9% + 30 cents is standard business caaounts receiving money and 3.9% + 30 cents is standard receiving money from outside the country.
The prices are like a form of sales tax, but at least they are better than c2it, western union, or bank wire. Checks would be cheaper in the US, but also less convientent. Not sure checks from out of the country would work.

Overall I am just going to require payments be charge + paypal sales tax. It makes me wonder if the government is going to get especially upset with ebay/paypal now they they have found a way to virtually collect a sales tax on the internet.

I am definitely use the methods mentioned above to protect myself and look for something better. So far I haven't found anything as cheap online.

Re:Paypal and their phone support

[StarHeart]

Yeah, I thought of that after I posted it. Though humans aren't known for being always rational. They may see PayPal as different. I have sense decided to cancel my PayPal account and I am looking into c2it. The major problem with them is they don't allow me to accept money from people internationally.

Re:Paypal and their phone support

[StarHeart]

Actually after doing more research into c2it they are free for transactions inside the country, $10 for sending money outside the country, and you simply can't receive money from outside the country. They are backed by Citibank and have bank/credit card company rules and protections. This is great for me for things like Ebay and US Clients. Though it is useless for my clients in England.

The advantages of PayPal?

[claes]

Can someone from the US explain what the advantages of PayPal are that are not solved by your regular bank?

In Sweden you can transfer money from your bank to a friends account using the internet, even if he has another bank. This is the way I use now to "pay a pal". I think it is also possible to attach a message to this transfer so that you can say "payment for tickets" or something like that.

There are limits for the transfer amount though, but it is in the 2500 dollar range.

Re:The advantages of PayPal?

[EnglishTim]

It's the same in the UK, but I'm always a little unsure about giving some guy I've never met my bank account number... You should only be able to pay stuff in with it, but even so it makes me nervous...

Re:The advantages of PayPal?

[claes]

Ok, that fee is pretty high. There is no fee for money transfer between banks here, at least not if you "do it yourself" on the internet. If you enter the office there probably is. Also, there is quite a steep fee for money transfer to foregin banks, even within the nordic countries or the EU. So there is still a long way to go.

Re:Pay Pal

[TrinSF]

I'm with this guy. I use Paypal to pay my child support. I live on one side of the country and my ex is on the other. Every other method I used caused problems of one kind or another. Checks get "held" for sometimes a week or more because they're interstate. Money orders get lost by the post office. Bank transfers are slow and unreliable -- his bank once lost a transfer for over a month and required me to jump through all kinds of hoops before they fixed the problem. So, now we use Paypal. I send the money and it's in his Paypal account instantly. He has some kind of Paypal debit card, so he gets instant access to the money, at no cost to me. We never have to worry that a check will bounce, or a bank will lose a wire transfer.

I looked over the c2it thing and I wasn't impressed. It just doesn't have the features that Paypal does.

Q Re: Bank accounts

I use PayPal, I've heard the stories. It's just too convenient not to.

I never leave a balance in my account, almost always pay via credit card, and am critical of those I send money to.

They do, however, have bank information for one of my main accounts. Opening a separate "PayPal" account is too much trouble.

Have there been any cases of PayPal actually going and taking money from your *bank account* without specific prior authorization? Do I have legal recourse (via my bank) if they do this?

I've kind of wondered about this in general -- what protections are there with ACH transactions? The routing/account number combo is at least as dangerous as a credit card, if not more so.

Re:Q Re: Bank accounts

[dincubus]

actually there could be recourse if they took money out of your checking account without authorization. it would have to depend on the circumstances. with in my limited amount of legal knowledge, engaged to a lawyer so i am learning a bit more everyday, and her and i had a discussion about this a few months ago. she had said that there have to be certain points that need to be met for them to yank cash out of your account.. i.e. proven fraud on the part of a customer or buyer from an online auction.. that kind of thing. as for them freezing accounts and not allowing access to legit funds in there.. we have not touched on that issue yet

Re:Geez, all this whining - read up on free market

[Chris+Johnson]

If a free-market society means I'd have to go to a lot of extra trouble, with no benefit to myself, just to not get ripped off all the time, then why would I want one?

Re:NO, Paypal is what it is!!! Leave it that way.

[Skapare]

5. NEVER give paypal your bank account information. If they have it now, then open a new bank account and transfer all your money to the new account. Then close the old account.

And keep in mind that you can lose money in your Paypal account without having done anything wrong and without your password even being involved.

My wife's horror story...

[weave]

She made a typo when making a payment, instead of entering something like 60.09 she slipped and entered it without a period, 6009.

Sure enough Paypal processed the payment to some individual for $6,009. Wife freaks. Writes to paypal, they tell her tough shit, they can't do a thing about it, please ensure she has money in her accounts to fund the transaction.

So the wife cancels her credit card, talks to bank to make sure they will bounce the draft, etc...

Sure enough, next day, a draft for over six grand bounces, first $29 bank bounce charge fee. Pay pal autowrites her a nastygram saying to fund the account, that she MUST fund the account due to her paypal user agreement and they will try again in two days. Wife writes back, DON'T TRY AGAIN. Again, they say there is nothing they can do about it.

Again, another bounce, another $29 fee from bank. Finally, paypal gives up.

Some tips for all that she uses that saved her....

1. Separate checking account at a separate bank with a low balance. Remember, banks can rape other accounts you have with them to satisfy your debts to them in worse case scenarios (default, etc).
2. Credit card with a low (~$500) line of credit. However, this isn't security enough since some banks will still pay charges that go over your credit limit. It's really up to them.

Like another posted said earlier, Paypal is like playing the stock market, don't put in what you can't afford to lose. Just in her case, it looked like she was going to lose much more than that for a while there.

The money belongs to PAYPAL!

[Skapare]

The money belongs to PAYPAL! So the theft was from PAYPAL, not ABIWORD. So it's PAYPAL that should be calling up the FBI. Why haven't they? Because maybe they'd end up being investigated for their shoddy business practices.

Just wondering...

[__aahlyu4518]

" ... Writing or calling your Congressman/woman, pointing out that Paypal is acting like a bank, but not operating under formal banking laws. 4) Boycotting Paypal because of these reasons, and the fact that their system is notoriously insecure"

So I'm wondering... why did they have that account there in the first place?

People must be stupid.

[MikeFM]

First off I'll say I like AbiWord and use it and wish their project well.. that being said.. on with my rant..

Every time someone has a problem with PayPal they whine that it is actting like a bank without being a bank. Obviously they must be stupid because PayPal states clearly that it is not a bank and has no federal insurance. Somehow they think being a bank would make it better. IMO banks suck. They've ripped me off countless times. I don't want PayPal to be a bank. They've never done me wrong and they give me freedoms a bank wouldn't be able to. If you want a bank go open a bank account. If you want a PayPal account open a PayPal account. If your not bright enough to know the difference than spare us the cry story.

I've had very good customer support from PayPal. They were a little slow but no worse than the banks I've dealt with and at least they didn't give me the run around like banks usually do. If a security flaw in PayPal allowed your money to be stolen I'd suspect they'll be willing to refund your money. If you just picked the name of your dog as a password and some bozo guessed it then I'd say tough luck. If you pissed off an ex-girlfriend and she took your money then again tough luck.

If you are smart you won't leave very large funds all in one place in PayPal, a bank, under your bed, or anywhere. This is common sense. PayPal makes it easy to transfer your money back into the bank account of your choice. If you wanted to do this you had the option open to you.

So try contacting them again. It's not that difficult to do. Make sure you have a good password on your account. Frequently empty your account into one or more bank accounts, PayPal accounts, or coffee cans (Whatever you like) so that you don't have a giant honeypot tempting all the bees. Just stop whining about them not being a bank. Hope ya get your money back.

Re:Appeal for new moderation

[Gordonjcp]

I second this proposal. I love a good troll, but all too often the best stuff is modded down to -1 before I get a chance to read it. Also, quite often, posts that are on-topic and *not* trolls, but merely espouse an unpopular point of view, are modded to -1. Now this is an abuse of moderation - just because you disagree with something, doesn't mean it's a troll, or off-topic, or over-rated. It just means it's different from what you think, and if you're small-minded to mod it down, *you* are the one at fault.

Getting back to it, I'd love to be able to mod the crapflooders below -1, so I can enjoy the -1 posts in peace. Page-wideners don't really affect me, because I'm one of those l337 open-sores Mozilla users :-)

The option to mod a layout-breaker (let's use that term to include page-wideners, crapflooders, and all the other obnoxious behaviour) would have to detect whether or not the post actually had questionable markup. Now, this would differ from actually filtering at the time of posting by allowing the post to actually be made - how many times have you had links broken, or lines of code rejected as "ASCII art"? This would allow a real live human to decide that the post was aimed at breaking layout and mod down to -2. Incidentally, ASCII Goatse.cx guy posts and indeed goatse.cx links, while they may be trolls, are part of accepted /. culture, and should be left in peace. If you're stupid enough to click on them, so be it...

Taco, please hear our cry!

BTW - Yes, this is offtopic. I've got more karma than I know what to do with.

Re:$5 to make a credit card payment.

[Gordonjcp]

Actually, a lot of customers I deal with (large satellite tv company) like to pay monthly by credit card, because they get airmiles and stuff when they use their cards. They don't get that if they set up direct debit. Now normally, they set up a continuous credit card payment mandate, but quite a few people prefer to just ring up and pay. Why should it cost them extra?

Some Useful analogies

[Hott+of+the+World]

It seems paypal equates to a warehouse with lots of lockboxes full of money. Money comes in or moves from lockbox to lockbox, and then goes out. However, there's no attendant, so the only thing between your money and a thief is just a key (bare with me on the bank info part, it just makes things more complicated) and a lockbox number. When a thief breaks into a lockbox, in a warehouse, normally we would call the police. But this warehouse is electronic, the lockboxes are electronic, the money, well, you get the idea.

Hell, I would probably feel safer giving my money to a backwoods county fair carney. Least I can try to kick his ass if he loses it, and would have some knowlege of who stole it from him, if he were robbed.

Re:Yes. No.

[ShadowBlasko]

This is not entirely true.

Visa now requires (if you are processing a card without being able to swipe the actual plate) a zip code for the account holder as well as the card exp date.

This catches alot of would be number swipers off guard. No zip, No charge. End of Line.

Just deleted my account

[LinuxGeek]

I have only used PayPal to make donations in the past. From now on I will only donate to organisations that don't put *my* remaining funds at risk. I used my visa check card as the payment source at PP and any screw-up or complaint and PP could have frozen or captured all of my readily available funds. If even a small fraction of the stories on the forums are completely true, I can't justify supporting their business.

heres why

[goombah99]

it's a convenient way to transfer money from an account to another or to pay off a credit card bill. Not all credit cards offer online payment. And if the credit card is not in your name you cant even begin. Not all banks offer online banking and even if they did you might not want to set them up when you already have pay pal. In the early days pay pal did not have fees so this was a very handy meta-banking system.

Re:Blame the victims? Where are the regulators?

[phaze3000]

I think you're only serving to muddy the waters by comparing this to people who invested in Enron. People who invested in Enron knew (or should reasonably have known) that share prices can fall. People who put their money in Ebay can reasonably assume that their money won't be stolen.

Re: Who is John Galt?

[gcondon]

Shouldn't this be moderated +1, Ironic ?

Screw Paypal, contact Ebay

[brunes69]

Don't even bother with Paypal customer service, they have been stonewalling everyone for years. Try talking to Ebay customer service,... and try to talkyou way up to amore senior Manager or someone else who has the authority to call up the Paypal losers and demand "whats going on here?" Hopefully Ebay doesn't want to risk its reputation going gown the tubes as quickly as Paypal's did a few years back.

Re:Who is he for real?

[naasking]

Character from Ayn Rand's novel Atlas Shrugged. Throughout much of the first part, it was a widespread fad to ask "who is John Galt?" whenever one didn't know the answer to a difficult question.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

Comment removed

[account_deleted]

Comment removed based on user account deletion

SHouldn't we be writing Ebay?

[Rareul]

After all, they bought them: Cnet

?sp

Did they miss the obvious solution

[fname]

So this Jun character bought the camera with stolen money. What I don't get is this. As soon as that transaction went through, abiword should have contacted all parties involved in the transaction and told them to stop. In other words, don't ship the camera, by explaining to the seller that it is being paid for fraudulently. This shifts the burden.

Then, was this money left in the Paypal account, or was paypal just used as a conduit to rip off the bank?

I have to agree with a lot of others, who say to not leave much money in the account. There's just no upside, unless they were saving up to pay a seller who wouldn't take credit card payments.

Finally, to further protect yourself if you need to se Paypal: 1) sweep your account daily, 2) contact your bank and tell them to not allow transfers to Paypal, or 3) attach a bank account to Paypal that has a low balance.

Paypal is not a bank, they don't claim to be. And you can sue Paypal, as a judge ruled their arbitration process was unreasonable , more or less.

Good luck recovering those funds. Go after the transaction endusers, as they have some liability here for receiving stolen goods/ property.

Re:Who is he for real?

[CamelTrader]

because google is not a discussion forum. Although it would provide better, more accurate and more detailed information, the sense of friendship and camaraderie developed by 'chatting' with your slashdot buddies is priceless!

Create a dedicated account

[Reziac]

Better yet, get a dedicated bank account, and make sure you move money out of Paypal's reach *promptly*. That means both out of your Paypal account, AND out of the dedicated bank account (which should be used solely as a buffer, not for keeping real money in).

This incident is not the first time Paypal has been hacked, and there have been cases where personal bank accounts have been depleted as well, via their Paypal connexion. So you do NOT want your Paypal account pointing at your regular bank account!!

I have a 2nd bank account just for Paypal. This account has a token $20 in it. Don't know about other banks, but at Washington Mutual, this costs me nothing (no fees of any sort). Because it's at the same bank and branch as my regular account, it's simple to transfer funds out of the "online account" ASAP.

Re:Create a dedicated account

[jerdenn]

Yup - And I've got one word for you:

Overdraft.

It doesn't matter if there is no money in the account - if paypal thinks that they have authorization to make the transaction, and they attempt to do so, your bank will most likely give them the money, give you a negative account balance, and stick you with overdraft fees.

I hate to be the bearer of bad news, but your solution is not really optimal. It still leaves you exposed to greater risk than a credit card only solution.

Jerry

Re:Create a dedicated account

[Reziac]

Yes, that is a very good point, as several folk pointed out -- the account used for Paypal should have a zero overdraft limit.

But this also needs to apply to credit cards to be "safe". If you have well-established credit (and sometimes by policy regardless of your credit), they will often approve amounts well over your normal maximum balance (you just have to pay the difference off with the next bill, as part of the minimum payment). Disputes don't always go in the cardholder's favour.

Either way, it pays to know what's the maximum you could possibly get stuck with.

Re:Create a dedicated account

[Tycho]

Or like me through your own stupidity you could allow your bank account to be closed. (I didn't have any activity on the account for three months.) PayPal hasn't noticed/cared and there appears to be no way to remove the closed account.

Re:Create a dedicated account

[macdaddy]

Almost all banks have the ability to not authorize overdrafts. Overdrafts are a privelege and something you can request be taken away.

Personally I'm still using my Visa Check Card on Paypal. I'm lucky they've only tried to screw me once. A seller didn't ship the product so I called to report it to Paypal. They said there wasn't anything they could do about it. I asked why I couldn't just contest the charges. Then the seller would loose the $$. She said that it couldn't be done and would be illegal to boot. (What was she smoking?). I said that was fine. I'd just call my bank and contest the charges since my bank can make the Visa contest on my behalf like they have before. The woman quickly forwarded me on to another operator who tried to jump down my throat and threaten me with Paypal's legal staff that would love to haul me into court. He was prepped for this. I've come to believe that it's his whole job. He didn't know anything about me. He only knew that calls forwarded to him were people that were wanting to contest charges. That's my belief. In the end I contested the charges. The bank credited my account 2 weeks later. I never heard back from the dicks at Paypal.

I really do need to use a separate account for online purchases though. The way I'm doing it now just isn't safe. American Express has disposable credit cards. This would be something similar.

Re:Create a dedicated account

[Rob+Parkhill]

Egads, if you are going to all the trouble of having a seperate account just for PayPal use, don't use the same bank as your other accounts.

When PayPal tries to withdraw money from your "empty" account, your bank will happily look for money in your other accounts, transfer it to the "empty" account, give PayPal the money, and then screw you with a "transaction fee" for doing this without asking you.

I'm not saying that every bank will do this, or that they will do it every time, but it does happen.

Your best bet is to open an account with one of the no-fee online only banks, like ING Direct or President's Choice Financial. You can move money in and out as you please, and it is isolated from your "regular" accounts quite nicely.

Re:Create a dedicated account

[Reziac]

Yeah, that's a good point. Some banks consider all accounts under one name to be a single account with money in several places, and behave accordingly (moving money to cover overdrafts, etc). Different name won't help, they ID you by SSN.

An online-only bank that could be set up to automagically move any funds above X-dollars to your real account would indeed likely be the best solution.

Re:Pay Pal

[An+Onerous+Coward]

Its time for everyone to stop whinning and do their capitialistic duty.

Indeed. That's why I've closed my PayPal account. I just haven't found it useful enough to justify the risk.

By the way, to close out the account, log into PayPal, go to "My Account", then to "Profile", then click on "Close account." You'll be asked to confirm your credit card number, but other than that, there's no hassle.

Sigh. . . Slashdot says "Blender needs money!" So I open a PayPal account. Slashdot says, "PayPal is evil!" So I close my PayPal account. I guess I'll be tuning in again tomorrow for further marching orders. :)

PayPal Lies

[telstar]

Last week I completed a transaction using PayPal which I explicitly indicated that I wanted 100% of the funds to come from my registered credit card. I even got the confirmation email stating that it would come from that credit card, so I could keep a balance in my PayPal account.

What they ended up doing was debiting my PayPal balance to $0.00, and deducting the remainder of the transaction from my credit card.

PayPal saved me the trouble of debiting my account down to zero. Now it'll be easy to close.

I inquired and got the following email:

- - - - -

When you use PayPal to send money, the balance in your PayPal Account is used first. If you do not have enough money in your PayPal Account to cover the whole transaction, please refer to the information below:

If you do have a registered credit card, but do not have a confirmed bank account listed on your PayPal Account
PayPal will first use the balance in your account and charge the rest to your registered credit
card.

If you do not have a registered credit card, but you do have a confirmed bank account listed on your PayPal Account
The balance will not be used. The entire amount of the payment will be drawn from your bank
account. The payment will take 4 business days to complete.

If you have both a registered credit card and a bank account
The "Instant Transfer" method is the default method of payment (an instant electronic funds transfer from your checking account) when there are insufficient funds in your PayPal Account to complete the transfer.

If you have more than one positive currency balance on your PayPal Account
The entire amount will be funded from this balance. If the balance used to send the payment is insufficient, it may default to another currency balance depending on the amount of funds available.

You can view the "Source of Funds" on the "Check Payment Details" page. If the payment that you are sending exceeds the amount of funds in your PayPal Account, you can click the "More Funding Options" link to choose whether to draw funds from your checking account or your credit card. If you choose to draw funds from your checking account, you have the option of an "Instant Transfer" or "eCheck" transfer. Instant Transfer is backed up by either your credit card or a secondary bank account and occurs immediately, whereas the eCheck payments may take four business days to post as complete.

Please note that once a payment has been sent, it is not possible to alter
the method of funding.

Okay, good.

[mstyne]

You have successfully closed your account.

I had been meaning to do this for awhile, this was enough to get me off my duff and actually do it.

paypall tries to overbill

[MadBurner]

I run a small website offering adult digital content. A few weeks ago I recieved a letter stating that i had to pay paypal a total of $1500 setup fees plus $750 a year for paypal to continue processing my VIsa and Mastercard transactions. they classified me as high risk even though we have never had one customer complaint or refund request. The more questions I asked to paypal the ruder their responces became. After a week of research I finally have found that visa is charging these "high-risk" fees. Other companies I've talked to have heard nothing about mastercards fees though. I have looked around and found several other oreder processing sites that will do the job. I wonder how much profit paypal will make off these extra charges. HAs anyone else recieved this letter? Encluded is the letter in full for your readign pleasure. Notice it doesn't have paypal's protect your password sig.

-----Original Message-----
From: Setup@PayPal.com [mailto:Setup@paypal.com]
Sent: Wednesday, October 16, 2002 5:25 PM
Subject: Important message from PayPal

Dear Merchant,


We would like to update you on new Visa & MasterCard regulations that affect the way Internet Payment Service Providers (IPSPs) such as PayPal conduct business. Both Visa & MasterCard require high-risk merchants to complete a registration form, pay an initial registration fee, and pay renewal fees on an annual basis (details below).

We value our Merchants and are dedicated to providing you with the high quality service to which you are accustomed. Please note that these fees are imposed by Visa and MasterCard, not by PayPal. In keeping with PayPal's core policy of not charging set-up costs and/or annual fees to our Merchants, PayPal (in contrast with many IPSPs) will not add any additional or hidden costs to these Visa & MasterCard fees.


PayPal, like all other IPSPs, must comply with the regulations. In order to assure your continued access to PayPal's transaction platform, we need you to provide the requested information by November 1st. If we do not hear from you by the close of business on November 1st, PayPal will be unable to process your transactions until all such information has been submitted.


While some IPSPs have announced that they will cease processing for non-US merchants, that is not the case with PayPal. PayPal will continue to process transactions for high-risk merchants in the United States, Canada and Europe through our existing banking arrangements in these areas. In addition, we will continue working to expand our banking relationships worldwide.


Below is a summary of the requirements for both Visa and MasterCard:


VISA:

* Visa will require an initial registration fee of $500
* Visa will require an annual renewal fee of $250
* Paypal must provide Visa with monthly sales, chargebacks and refund information on each Adult merchant.


MasterCard:
* MasterCard will require an initial registration fee of $1,000
* MasterCard will require an annual renewal fee of $500


We will be sending another email out shortly requesting the specific information we will need to bring your business into compliance with the new regulations. We will also provide instructions on fee collection.


Should you have any questions, please send an email to setup@paypal.com. We will endeavor to respond in a timely manner.


Very truly yours,
The PayPal Team

Whom do you serve?

[verbatim]

It's the same question that affects the banks: who pays who?

The bank offers the service of holding your money in a safe location so that you don't have to worry about losing it. The bank also provides money services that require a certain amount of trust - chequing, lines of credit, etc. You pay the bank for these services.

On the other hand, you are providing the bank a service too. You allow them to use your money (for many reasons) and, in exchange, the bank pays you for this service in interest (although, not very well).

A bank requires trust not only from those who bank with them but also with those third parties who interact with customers of the bank. A cheque (and credit cards, too) only works if everyone trusts that the bank system works (sure, you can overdraft on a cheque, but the bank will report that).

PayPal _is_ a bank by definition. They can skirt around the issue as much as they want to, but they are a bank. More importantly, they are a (or should be a) trust. That is, everyone _trusts_ that PayPal is honest to the core - that you can trust them to hold your money and provide the services that they offer in a legitatmite and honest way.

They are not a savings bank, however, and should not be required to fall under the same laws as a savings bank. They are not (should not) be required to provide insurance on deposits and they should be allowed to verify all transfers and 'money movement' at their discretion.

The abiword theft doesn't make sense - did this person steal a password or something? Did (s)he compromise the PayPal system in some way? If the former is true, PayPal would not, necessarily, be liable - the person who stole the password would be. If, however, there was a security compromise, then PayPal should be accountable for the money - they should put the money back and sue the thief.

--

I want to touch on something that I've read alot on sites like paypalsucks - the issue of PayPal "double-dipping" and taking funds without permission to settle accounts.

IF YOU ARE STUPID ENOUGH TO AUTHORIZE ANY COMPANY TO DIRECTLY WITHDRAWL / DEBIT MONEY FROM ANY OF YOUR ACCOUNTS THEN YOU GET WHAT YOU DESERVE.

Don't be so fucking stupid and ignorant as to give _ANY_ company the keys to your accounts. So what if you have to enter your credit card # on each transaction? Or send a cheque instead of allowing them to directly withdrawl from any bank account. Don't get me wrong, if PayPal takes your money without authorization then it's still wrong on their part - you just helped it along. By not authorizing them to save your information you catch them in a much tighter corner.

In the end, it's all about trust. If enough people stop trusting them then they will either fold up or mandate themselves under the same laws that control the banks.

Some useful links on paypal

http://www.paypalwarning.com http://www.aboutpaypal.org/ http://www.paypalsucks.com/ Enough said

My Email To PayPay:

[WiseWeasel]

Here is the mail I sent them from the web-form email contacting option in their Help section. Feel free to use it as a template for your comments to them:

I was going to sign up for a PayPal account, but have just been informed that AbiWord has had their donation PayPal account robbed, highlighting the lack of security and customer protection within your service. The coercion to give bank account information upon payment receipt is unacceptable, and your use of debit functions rather than credit on cards that support both shows great disregard for your customers' protection offered by VISA and other credit services. Until you rethink your service with the thought of protecting your customers' transactions, and working for them to make PayPal as convenient, customer-friendly and
secure as possible, I will keep using my credit card and checks through snailmail for all online transactions.

Re: Who is John Galt?

[crawling_chaos]

No, +1 Appropriate. After all the Objectivist motto is "I've got mine. Fuck the rest of you."

There's also c2it

[Glendale2x]

There's also the c2it service, which is part of Citibank. They don't seem as free-wheeling as PayPal (They have limits on how much money you can transfer around), and they don't charge stupid percentage fees to accept money from credit cards! They will, of course, charge you for international transfers, but so does my bank if I deposit a check drawn on Canadian dollars.

On the other hand, when someone sends me money, it gets transferred to my real bank account. But the no-fees transactions of c2it are nice. That's how a real credit card works anyway, right? (Pay in full, no fees, pay partial and there's a finance charge.)

Don't pretend PayPal is a bank. It isn't. Get a real bank account, transfer it out of PayPal, and keep the money in there.

Why risk being shafted by PayPal? Use another service like c2it, and if someone wants to deal with you, then they have to get an account with them too.

Not True

[waldoj]

IF YOU ARE STUPID ENOUGH TO AUTHORIZE ANY COMPANY TO DIRECTLY WITHDRAWL / DEBIT MONEY FROM ANY OF YOUR ACCOUNTS THEN YOU GET WHAT YOU DESERVE

That's a common misunderstanding. I know that it seems logical that there would be some sort of a cash-withdrawal authentication system but, amazingly, there's not. Anybody that wants to, via a bank transfer, withdraw any sum of cash from your account is free to. The burden of proof is on the consumer to prove that this is not a requirement.

I know this sounds crazy, and it took a while for me to be convinced, too. My brother was billed for over a year by a local Internet service provider via monthly withdrawals of ~$20 before he noticed. (He and his wife had just gotten married, and her employer's payroll company has the same name as the local ISP, and confusion reigned.) He went to our local bank to express his outrage, and left without satisfaction. I'm friends with pretty much ever employee at this local bank, so I went down to follow up. They explained this system to me as I have to you -- there's no authentication system whatsoever. There is currently no system in place at this particular bank to block such transfers, and they know of no such system in place at other banks. Truth be told, they regarded me as a little paranoid. But I get that a lot. ;)

Giving a company permission to withdraw from your account certainly isn't helping the situation any, but it is in no way a requirement for them to rip you off. Anybody with one of your personal checks and a little know-how can do the same thing.

-Waldo Jaquith

Re:Not True

[verbatim]

Really?

Every time I sign-up for something that is going to have some kind of recurrant billing, they give you a choice: billed statement, credit card, pre-authorized debit.

For pre-authorized debit they usually provide a form that you give a void cheque (so they can get the account info, I presume) and a signed statement authorizing withdrawls in a specific amount.

Credit card billing works much the same - they just apply the charge monthly and you approve it when you pay the statement (an unauthorized charge is still an unauthorized charge and you can, depending on the cc provider, dispute it).

A statement billing procedure works by them sending you a bill and you paying that bill. It can be annoying because you'll get a bill every billing period, but so what?

"My brother was billed for over a year by a local Internet service provider via monthly withdrawals of ~$20 before he noticed."

Sorry, if you don't look at the charges on your statement... well.. one month - I can agree - WTF are they doing? BASTARDS! But if you let it go for a year, well... sorry.

1) they have to get your account info. This is an absolute necessity. However, regardless of what billing option you choose, you are going to hand this info over (unless you use a cc, I guess, but they could always charge the cc again).

2) they are supposed to obtain your approval for the recurring billing.

If someone tried to charge my account without approval and the bank released the money to them, I would go after the bank. The bank would likely (1) return the money and (2) sue the other party for fraud.

"Anybody with one of your personal checks and a little know-how can do the same thing."

Yes, that's called fraud. Identity theft works in a similar way: someone grabs your SSN and starts pretending to be you. They can do it; the system will let them; but it's still illegal.

"no system in place at this particular bank"

Then I would switch banks. I don't know about you, but it seems kind-of funny for the bank to be letting anyone withdrawl from an account simply because they have the account #.

Maybe you're right, but it doesn't seem trustworthy to me at all.

In other news...

[ufotofu]

Abisource competitor Microsoft finds extra cash for its political lobbying fund.

You clearly don't realize the issues at hand then

[theLOUDroom]

It doesn't need to be their fault.
They claim to be insured. It doesn't need to be the insurance company's fault that my car gets totaled for me to get my money.
Do you get it? I rent an apartment. The group that owns the apt. is insured. If something in my apt is damaged, their insurance covers it.
If you leave something in someone else's care you expect them to take a certain amount of care with it. I don't really care if abiword's password was easy to guess. Their system shouldn't be set up to allow people to sit there and try to guess passwords. After x failed login attempts in y minutes, all login attempts should be blocked for z minutes. If this happens more than a few times in one day, it should be looked into. Also, if I leave my car unlocked, it's not okay for you to steal it and my insurance company still has to pay up if you do.
I don't wanna hear any crap about their terms of service either. While it's true that you can write whatever you want in your terms of service, it doesn't mean that those terms will hold up in court. By law, there are certain liabilities that can't be discalaimed and certain rights that can't be signed away.

Re:You clearly don't realize the issues at hand th

[davmoo]

Yes, I do realize the issues at hand.

The difference is, unlike you, I expect people to take responsibility when they get ripped off because of their own stupidity. If you left your car (since you want to use that analogy) on a street corner with the keys in it and the engine running and it got stolen, I'd have no sympathy what so ever for you either. Whether stealing it is "right" or "wrong" is irrelevant...if you didn't use reasonable common sense to protect your property (take the keys out, lock the doors), you're an idiot.

If Abiword got ripped because of security hole in PayPal, PayPal should pay up, and I'll join the line of people writing nastygrams and canceling their PayPal accounts. However I have yet to see any indication that this is the case, at least in this instance.

But on the other hand, if Abiword got ripped because 147 people had the password, or the password was "sex" or something equally stupid, then Abiword should use what funds they have left to go purchase a fucking clue.

Re:You clearly don't realize the issues at hand th

[theLOUDroom]

You still don't get it.
If I leave my car running on a street corner and it is stolen it is still a crime.

• If I had insurance on the car I get paid.
• If I can find my car, I get it back.
  
• If I can prove you stole my car, you go to jail.
• If your friend steals my car, and you know about it, and don't report it to the police you're an accessory. What you feel I deserve would be irrelevant.
• If you are a used car dealer and I contact you to tell you that my stolen car is sitting in your lot, you can't just sell it and say tough shit. If you do you're guilty of a crime.

Even if the password was "password", if the guys in charge of the abiword account know who took the money, contact paypal and paypal refuses to freeze the account, then paypal is doing something wrong. If paypal refuses to acknowledge legitimate complaints of fraud, which they could have done something about but chose not to, the there may be grounds for a civil or criminal complaint.

Even the stupid have rights. That may be a good thing or a bad thing, but it's the way things are.

Yes...and don't use them

[0x0d0a]

It never ceases to amaze me that people continue to use PayPal despite the number of pissed off people that feel that they've been ripped off. If you're dumb enough to *use* it, despite their by-now-well-known policies, I hate to say it, but I don't feel entirely sympathetic if you lose money.

It sucks that an Open Source project got ripped off, but it also sucked that one of the people involved decided to use PayPal.

Imagine the scene (was: Re:Pay Pal)

[stephenbooth]

You need to do buisiness with a company, to buy their product. Realistically there is no other possible supplier for what you need, other suppliers in the market are a poor fit interms of product features that you need. This particular company only accepts payment by Visa or MasterCard (those being the two biggest players with greatest penetration), you don't have either of those cards but do have a Bank of Ethel charge card. You are one of literally thousands of customers, virtually all of whom have Visa or MasterCard and none of whom have a Bank of Ethel charge card. What are the odds that you're going to have to get a Visa or MasterCard?

That's why a lot of people use Paypal, in terms of supplier penetration they are the Visa or MasterCard of online payments. Yes, there are other online payment systems out there but few, if any, have the prevalence of Paypal. Virtually all of the sites I use on a regular basis use Paypal, most of those that didn't in the past are now adopting it as a payment method, a few use Worldpay. Many of those that do offer alternative methods will only do for for US citizens (I'm in the UK).

Until a large number of ecommerce sites use a different system, and agree on one particular system, users are going to be stuck with Paypal.

Stephen

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re: Who is John Galt?

[gcondon]

Hey Shwag!

Check out Susan Blackmore's article "The Power of Memes" which was originally published in Scientific American. She's a little out there but it will at least get you started. She is also an editor at the online Journal of Memetics.

You're welcome,
gcondon

p.s. I think Dan Gillmor's answer was a cop-out.