Lurker1999

My account was compromised. No letter yet from Nashbar. Still fighting some of the charges.

Two thumbs way down for Nashbar. Nothing on the website and the delay of 3 months is completely unacceptable. It's as if they hoped that if they just ignored it and kept quiet people wouldn't put it together.

jewelthief

Discover just sent me a replacement credit card. When I called asking why they said a retailer that I use reported compromised security. They would not reveal the retailer but this thread makes me think it might have been Nashbar.

FredOak

This really makes me even more PO'd. Never got a letter.

If you have a comprimise at least let all you customers know.

It took us 2 months to clean up the mess this caused. Just glad my bank and cell phone carrier were so cooperative.

Hot Potato

I had a credit card being fraudulently charged last April. It was being used for online gaming. I must have used it on hundreds of online and telephone orders, how would I know who was responsible? Back then, the internet and rumor buzz was that paypal was the culprit. I had to cancel the account because the card company was very slow, seeminly uninterested in my complaints and notifications of the fraud.

ItsJustMe

I got the letter from Nashbar, but of course we knew this was going on back in March.

I went out to Nashbar to try to take advantage of their offer of a 30% discount, but honestly, they never have anything I want anymore. If I want goofy $90 jerseys, they're all over it, but if I want a decent cheap pair of tires and some new brake pads and the right BB to fit my bike, I have to go elsewhere.

They USED to have stuff in stock. Not so much, anymore. AEBike, here I come.

ItsJustMe

I just got my letter 3 days ago so they are still mailing them out.

DSchlichting

Got my letter tonight.

Grim

Is it off the total order or just one item?

I hope to see one soon as they do have some tires I want and their price is one of the best to start with. Few other things I may get if the cupon is good of total order. Really like their real Cork bar tape. Can't seem to find it local and when I do it is twice the price.

Hate it but I am real hesitant to do business with them becasue of this. I was really happy with the fast service and the prices knowing my stolen CC number this past spring was from their negligence and while I was lucky that my CC company caught this right as it happened it was still a BIG inconvenience. I really feel for the folks that screwed up and used a Debit card and had that fight. The only reason I keep a CC is because of the better protection in situations like this.

ItsJustMe

I don't have any problem doing business with them. This happened at either the hosting or credit card house level, and could have happened to any company. They've taken steps, so I don't think there's any reason to believe that it's any more likely to happen at Nashbar than at any other mid-size reseller.

Jtgyk

I monitor my accounts, and haven't had any problem from the last three orders.

lil brown bat

Data doesn't just get compromised at the retailer level -- there was a major one earlier this year from a company that handled credit card *** transactions for many many many different banks. I got hit with that one; fortunately my bank uses a great watchdog service and it cost me nothing but a little time to fill out some forms. Unless you know for sure that Nashbar was responsible for the breach, I'd hesitate to blame them, and I wouldn't have reservations about buying from them.

..edit...I can't believe the lame autocensor on this site actually bleeped out P O S. POINT OF SALE, DUH!

FredOak

Got my letter yesterday. Based on their description in the letter it makes sense. But who ever their original transaction vendor was sure had no clue about security. Hopefully the new one is better.

I'm looking for something to take advantage of the 30% and will just watch what card I put it on.

EGUNWT

I got compromised. I haven't gotten a letter or a coupon or anything but a call telling me I'd be getting a letter....

int19

Crap! This is probably why I've started getting weird charges... Nashbar needs to fix their stuff...

Hot Potato

Got my letter today.

Unauthorized access to data began December 2008.
Compliants began mid February 2009.
Attack confirmed May 18, 2009.

They offered me a 30% discount on my next purchase if made before 8/28/2009.

My credit card WAS fraudulently used to pay for online gaming services in 2009, and I reported the unauthorized use within 24 hours of it posting online. Yeah, I monitor my card charges several times a week, if not daily. I spent hours on the phone, writing letters, and filling out forms to get the charges reversed. I ended up cancelling the card because of how stupidly the card company responded to my notifications of fraud. Now I know why it all happened.

Gee, should I give them my new card number just because they offered me 30 percent off?

baldsue

300% off doesn't make it worth giving them either of my new card numbers. I had 2 credit cards breached because of them and they're not going to get another chance. I'm still receiving fraudulent email because of them.

Tommyr

Well I'll never order from them. Isn't Performance affiliated with them? I've had no problems with performance....

Hot Potato

Looking at my letter, I just now realized that they took 5 months to detect and confirm the security compromise, but my "discount" is good for about 30 days. Heck, it took them two and a half months just to notify me of the misuse of my sensitive info. I doubt I will take advantage of it.

Schwinnrider

My bank called me a couple of months ago(at 9PM on a Friday night, no less) to inform me of some suspicious activity on my card. It was a bunch of iTunes purchases. They blocked all charges and I wasn't out any money. I thought the culprit was the ticket service Green Day used for presales, but I guess it could have been Nashbar. Got my letter on Friday.

jewelthief

After reading the article in this post: https://www.bikeforums.net/showpost.p...2&postcount=16 I've decided that I'll keep using Nashbar. Apparently they did listen to their customers and eventually found the problem. Obviously, no one is thrilled that it took 7 or 8 months and several investigations to find the breach, but cyber crime is still new and law enforcement hasn't caught up to the capabilities of the crooks.

This process has taught me that I need to give serious consideration to protecting the items in my "cyber self". IE: credit, ssn, b-day, etc. Maybe it is worth a couple of hundred a year to pay a company to watch things for me.

Regardless, I'll give Nashbar and Performance my business again.