Slashdot Mirror
Blu-ray Update Sent To User Via Credit Card Records
wmoyes writes "Back in September I ran into a Best Buy store to buy a Samsung BD-P2550 Blu-ray player. I didn't give the clerk my name, telephone number, or address, just my debit card. The player has sat happily in my living room without ever being networked or registered. Today I was shocked to find a package waiting for me at home from Best Buy — inside was a firmware update CD for the player. I used to think Windows Update was scary, but Samsung's update service tracked me to my house using the mag stripe from my bank card. Has this happened to any other Blu-ray owners?" Or is there a simpler explanation?
This is why I use federal reserve notes for everything I can. I bought my Wii with federal reserve notes. I bought my PS3 with federal reserve notes.
--
End The Fed
Have you EVER used that debit card at the same store and provided your address or phone number? If you've ever done that then they have that information readily available.
I think it's more likely that he gave the cashier his Reward Zone card and is neglecting to remember that piece of information.
I tend to believe that sometime in the past you ordered something from Best Buy and perhaps gave them more information at that time. Perhaps you even had a home delivery of a bulky item.
If they are doing data mining at the level you think that they are I tend to say congratulations to them for "going modern".
The joy of data collection is that the general public should have the same power to collect data as companies do. Putting information in the hands of the public is sort of like putting Al Franklin in the senate. One knows that a shoe is about to drop.
Yes, it was Best Buy who shipped the update DVD, not Samsung. But still... an update service who ships updates to you based on your mag stripe. Scary.
of course Best Buy has access to your home address, via your credit card.
Of course? WTF? If the issuing bank gave a shit about customer privacy, it would "no fucking way" not "of course." When I go into Best Buy and pay with cash, they don't get my billing address, the same thing should apply when using a credit card. They certainly do not have a legitimate need to know my billing address without first asking for my permission.
When information is power, privacy is freedom.
But even that's wrong. There's no reason for Best Buy to know your address. They know the creditor's address, and the creditor has certified the transaction. If there's a problem with the funds, that's between the creditor and you. Best Buy is out of that loop.
[
If you have signed up with best buy's reward zone program and have used that credit card at least once with your reward zone card, they will know it is you...even if you didn't flash your reward zone card during the purchase of your blu ray player. Likewise, if you sent a rebate to best buy (although not necessarily to a 3rd party) using that credit card, its likely they will know it is you. Similar things happened with people who bought HD DVD players at best buy...when HD DVD was killed off, best buy decided to send folks $50 gift cards as a 'sorry things didn't work out with HD DVD' gesture...they mostly fed off info they already had from reward zone, rebates, or extended warranties to send the cards out.
I dine out at a local eatery and they give change in 50c and $2 bills as appropriate based on your order. I tend to re-use the bills at other local places, and usually get some combination of NOOP and Cool! I've never had any issues, but also don't tend to hand them to someone who may die due to drooling on themselves.
The Wikipedia article does not state that the comma is optional. It states that compound sentences can be formed with or without a comma. Eliminating a comma is only permissible under very specific circumstances dealing with the flow and complexity of the sentence.
e.g.
"I've been waiting for this letter but now I wish it hadn't come."
vs.
"I've stayed at home all day waiting for this letter, but now I wish I hadn't received it."
Situations dealing with confusion ABSOLUTELY require a comma. e.g. "We finished eating dinner and then the children..." The remaining part of the sentence is unimportant. It has already caused confusion. Whereas the following example is much clearer: "We finished eating dinner, and then the children..."
Reference: http://grammartips.homestead.com/compoundsentences.html
--The Grammar Communist
I once (and only once) bought an expensive Hermes tie at a shop in a Las Vegas casino's mall, paying with a credit card. I never gave them my address, so it had to come from my credit card info. Ever since, I've been getting Hermes catalogs in the mail. They're expensive things too, zillion-color offset printings on expensive paper, stencil cuts, etc. By now, whatever profit they made on that one tie has long vanished in the costs of producing and sending me that catalog.
Yeah I agree with the parent. I bet that there was some critical flaw in the drive that was fixable through the firmware. Instead of waiting to get sued, it looks like Samsung did the honorable thing to do and preempted it by shipping the fix. Once a company is sued successfully in a class action, they often are required to resort to these things. I get letters once every few years about various products I've purchased that are in litigation because of defects. If say, the company were sending you unsolicited advertisements using this method, that is annoying, or using it to sue their customers, that would be scary, but this behavior isn't scary, it's helpful.
Gentlemen! You can't fight in here, this is the war room!
The package in the OP was from Best Buy for a Samsung player. Best odds are that Samsung knows absolutely nothing about this guy, they just told Best Buy that "hey, here's a firmware update for player model xyz."
"What if that player had a tendency to explode after 25 hours of use. Would you want to be notified of the recall? "
That all depends on who I bought it for.
No Nyarlathotep, No Chaos
Know Nyarlathotep, Know Chaos
Yes, highly unlikely...the magstripe doesn't store that info, so they would have to get that info from the card issuer (not Visa or Mastercard, the issuing bank) recursively. The card acquirer isn't even privy to that info unless there is a chargeback case or something where the consumer needs to be contacted. Card-issuing banks are beholden to regulations that would make most industries not even want to get out of bed in the morning and turn on the cash register; and they are extremely careful with what they do with cardholder info (lest they lose their charter with Visa/MC and have to close shop).
Also, consider it from a business standpoint: even if you can get around the regulatory stuff, the CC issuer isn't going to pass that info along for free (they would have to have frame circuits or encrypted FTP channels or some secure way to send batches of data safely from the issuer to BB and then to Samsung--and no, it's not going over the same pipes that the authorization and capture are being passed through...that's going to be a totally different environment, likely through a third party processor; then there are operational expenses, etc...nobody does this stuff for free). How much is that data really worth to Samsung? BB has to be in that loop, because the cardhlder didn't by the device from Samsung; the issuer doesn't care that it's a Samsung device, they aren't a part of that transaction chain, so the data would have to go to BB directly. And is BB going to go through the expense to do that for just Samsung? If not, are enough companies going to want this to make it worthwhile? Again, strains credulity from a business standpoint.
And even if they did have some kind of affiliate info-sharing deal with BestBuy (which, again, is highly unlikely), they aren't going to go through he expense and trouble so that you can get firmware updates for your Blu Ray player.
Samsung got that info some other way, like a rewards card application or rebate submission that BB was able to link to an address via one of the many data aggregators out there.
All credit card industry stuff aside: yes, that is indeed scary as hell. I wouldn't be happy at all.
My debut novel AMITY now available: http://jeremydbrooks.c
There is most likely some other thing at work here.
Maybe it was aliens? Or little toys come to life? The guy bought the player at best buy. He received a package from best buy with an update. It doesn't take that much to figure it out.
Do best buy do anything like customer reward cards where they would have your address on file? Still, the guy says he only used his debit card. The simplest and most logical assumption would be that buying one of these players automatically puts you down to receive updates and they take the address from your debit card. Privacy nuts may hate that idea but I think it shows that Best Buy cares ;)
which is totally what she said
yesterday i got a message that tmobile pushed a performance update onto my @home linksys router. i was thinking about trying to reverse it and discover how i can push my own firmware onto others @home linksys routers..but then i figured i'll just let the cat out of the bag and let someone else do it......
"The simplest and most logical assumption would be that..." ...they looked him up in the phonebook?
caritj.org
See subject.
It's my regular signature with two lines through the first letter of my name.
Sounds like a lot of work; what's wrong with an "X"? Home Depot et al. happily accept it.
Credit Card numbers are quite reliable and for 1 dollar we would get *all* of the information on the card holder. This included name, address, age, spouse's name and age, children's names and ages, your income, and various demographic information for your neighbourhood.
So, uh, basically everything you'd need to impersonate the person whose card number you have? No wonder credit card companies are so eager to do chargebacks and eat the loss on fraud... There's actually negative personal security by having a credit card.
Just how choosy was the company you were doing lookups with? Can any cheapo web store get an account with them?
I'm fairly sure being sent anything unsolicited doesn't allow you to flaunt copyright or patents.
If you can't see the value in jet powered ants you should turn in your nerd card. - Dunbal (464142)
" Today I was shocked to find a package waiting for me at home from Best Buy"
Looks like Best Buy didn't share the information with anyone. Looks to me like Samsung asked BB to send out the updates to everyone who bought the player, and they did so without sharing that information with anyone else.
Not a Twitter sockpuppet... but I wish I was.
Putting information in the hands of the public is sort of like putting Al Franklin in the senate. One knows that a shoe is about to drop.
Thank god it's nowhere near as horrible as putting GW Bush in the White House.
In which case, a shoe is about to be ducked?
Support my political activism on Patreon.
One knows that a shoe is about to drop.
Or be thrown.
... and then they built the supercollider.