Another Hack attempt!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-29-2024 05:26 AM
received another message today from a so called Zazzle support!! < can someone please explain to me why zazzle have yet to protect its users by reserving sensitive usernames? making them unavailable to scammers to use to try to trick unsuspecting members! i just cannot fathom how anyone managing a community can know their sit is targeted by many hackers but have done nothing suggested by previous victims of said scam attempts!
i would really appreciate an explanation of this mindset? Why are you still allowing users to register names such as zazzle staff, zazzle support ?? and why are new accounts not moderated ie not able to send messages until such time a member of teh zazzle team has looked at the account to ensure they aren't using zazzle logo as theirs? this dumbfounds me to be honest,
please , someone make sense of this total lack of action from zazzle i just do not understand it at all? i see some notices relating to hacks on the community pages but there is no requirement to have read them prior to accessing the platform features to design and sell. i feel it should be a requirement for new members to click to confirm they have read the warnings and understand how insecure the message center is here.
I was a member here for over a month before i even knew about the community forum so adding warnings there is good but isn't a fix for the problem, ensuring thee have been read prior to generating content should be a MUST in my humble opinion. If Zazzle user security is a priority of course.
regards
DD
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-29-2024 05:56 AM - edited 03-29-2024 05:59 AM
Zazzle has issued (as you are aware) a warning notice at the top of every message to let you know how to tell if the message is from Zazzle.
They have also confirmed the details via forum notices and their are numerous threads about this including the suggestion to prohibit users creating names with Zazzle and support in the store name. It is possible this update is in 'progress'.
In all honesty, I don't see what more they can do.
If users don't read the large yellow warning, who is to say they will read any notice to read it before clicking they've read it and won't just click it?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-30-2024 02:25 AM
lol you don't se what else they can do... they are legally obliged to do a lot more than they are currently doing under EU GDPR data protection laws! As site owners they have many tools at their disposal to curb this scam activity! reserving those sensitive names so that users cannot create accounts with them is a requirement, not doing so shows blatant breach of user data security allowing your systems to be used for deception! it is such a simple thing to reserve certain usernames, is zazzle simply created a few accounts using the sensitive names that could be used to trick users then its impossible for new users to create such usernames if they aren't available. its so simple its frightening but to have still not done so after months of hack attempt reports is quite concerning to me.
Not allowing external, links from chat is a super simple server setting that again, hasn't ben implemented and is the main reason the hackers keep coming back because they know if they can trick a user to click a link they can scam them. If this was my site, it would be the first action i would take to safeguard my members, if you cant post external links in chat there is no way of processing payments, hence its pointless them even trying but while the owners of this site continue to allow external links all new members are at risk.
The popup warning actually gave me the impression it was verifying the message in my inbox as it was the first time i had used the message center and it was the first message i received with that banner saying make sure they have a zazzle badge.. and the scammer had used a Z logo which i wrongly assumed was what they were referring to.. If however, in that banner was examples of the official badges they refer to, i would of immediately released the message was fraudulent.
I understand a lot of you are veteran zazzlers and cant understand why these people get tricked but please remember that new members here are simply looking at the homepage and creating an account and are immediately in design mode concentrating on learning the site functions, thinking about your store, there are no forced popups to let new users know the message center is not a secure staff internal msssage center as i initially assumed but is an insecure message center.
look at how ebay handles messages it's tied to a product so the message arrives with the seller as a product enquiry which is proper, not as an open message that you can change the title and use fake usernames and site logos.
I just don't think it is too much to ask the site owners to help protect us more, with a few really simple changes this place could be infinitely more secure and less of a risk to users.
regards
DD
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-30-2024 03:58 AM - edited 03-30-2024 04:04 AM
I only know Etsy is flooded similarly with these messages so it seems to be they find a way but yes banning and sifting the users names is a good idea and has been suggested . They are actioning things and I assume this is in the works. It has also been suggested to ban external links in messages. It’s a good idea to use search to see if thread has already been posted and is under review. And to post these issues in technical forum. It helps admin see them. Have a review of that forum along with tips and ideas etc. lots of great info for new and older members.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2024 08:19 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2024 09:03 AM
I agree that Zazzle can be more proactive in protecting members other than just putting up a banner or warning. And it's in Z's best interest as well, just think of this scenario - someone gets scammed out of their savings and then sues zazzle as providing the means to facilitate the scam.
StyleArtc.com

