GetBMWParts - TradeMotion

snaimpally · 06-30-2014, 07:09 AM

A few weeks ago, the fraud dept. of my credit card (CC) company called me and told me that my account had been compromised and someone had tried to purchase items using my CC number. They canceled the card and sent me a new card but I had to go and change all my passwords etc.

I couldn't figure out how my CC had been compromised until Saturday, when I received a letter from MileOne Automotive that operates GetBMWParts. Their website is operated by a company called TradeMotion, which experienced a security breach resulting in the "unauthorized acquisition of customer credit card information."

So if you have an account with GetBMWParts, I suggest you change your passwords and closely monitor your credit cards for suspicious activity.

roll_the_dice · 06-30-2014, 02:04 PM

I had the same thing happen to me with my AMEX except someone used it for $4500 for NY Mets tickets over a 2 week period! AMEX took care of it for me and got me a new card, etc, but was still a hassle. I suspected there was a breach with getbmwparts servers because my charges happened almost immediately after I used it for the first time at Getbmw...

I received the same letter Saturday. I monitor my CC's pretty closely and use my AMEX all the time online...this is the 4th time in 4 years my AMEX number has been stolen. Always a hassle, but always taken care of...AMEX does a great job taking care of me when this happens.

This is the first time a company has sent me a letter to inform me and actually are paying for fraud alert for everyone that was on the server....so that is good!

WRichieX · 06-30-2014, 02:26 PM

Got the same notice. I got a new card in the mail which I thought was odd since I just replaced it not too long ago as it cracked in half. I called my CC company and they told me there were some weird activity and just issued a new card. Then last week, I get a letter in the mail from a company that represents getbmwparts. We get free fraud protection!! whoo hoo!

Evan@Tischer · 07-02-2014, 09:01 AM

Dear valued getBMWparts.com customers and forum members,

Regarding the security breach notice our Corporation – MileOne Automotive recently sent only to customers recognized as potentially at risk - we can certainly understand your questions and frustration. As stated in the notification letter, however, the security incident did not occur on MileOne’s systems or on our GetBMWParts.com or SubaruPartsDepot.com websites. Rather, the incident originated at one of our third party vendors, TradeMotion. TradeMotion is an e-commerce service provider that we, and hundreds of other online retailers (including other vendors on these forums), use to process online transactions including payment processing. Nonetheless, we recognize that you purchased one or more of our products and we take the privacy and security of our customers extremely seriously. That is why, despite the fact the incident did not originate with our systems, we took proactive steps to help you minimize potential harm from the incident.

As to any concerns regarding the timing of the incident and the notification, the dates identified in the letter reflect the period of time that TradeMotion has determined account information was vulnerable to unauthorized acquisition. The March 5, 2014 date is not the date when the security incident was discovered. Rather, it is the beginning of the security breach period which was determined after the breach was discovered and TradeMotion completed its investigation. The notice was provided only to customers identified as potentially at risk after TradeMotion completed its investigation, including the following:

Notifying the appropriate law enforcement authorities;
Investigating to determine the cause and scope of the breach;
Investigating to determine which businesses’ customer information was affected (because TradeMotion is a service provider for more than just GetBMWParts.com and SubaruPartsDepot.com);
Implementing corrective action to secure the system to protect customer information from further compromise; and,
Identifying the affected customers and the customer information that may have been compromised.

We continue to encourage you to take advantage of the complementary ProtectMyID program being offered through the notice. In addition to the ProtectMyID program, you are also encouraged to consider the “Additional Actions” described in the notice, including:

Placing a fraud alert on the your consumer reporting agency file;
Placing a security freeze on your consumer reporting agency file;
Obtaining a copy of your free annual credit report from reporting agencies and reviewing it carefully for any discrepancies;
Reviewing account statements carefully for signs of unauthorized transactions; and,
Reviewing the FTC’s identify theft website for additional information.

Should you have any additional questions or comments regarding this matter, please do not hesitate to contact us at getHelp@getBMWparts.com - further questions will not be answered here.

Sincerely,

getBMWparts.com
MileOne Automotive
Email: getHelp@getBMWparts.com

snaimpally · 07-03-2014, 09:19 AM

Yes - the breach occurred at TradeMotion which operates the e-commerce part of GetBmwParts website.

mythek · 07-03-2014, 10:37 PM

lol wow great timing, i just purchased something from tischer's website like last week. what a timing!

but just fyi for those concerned, something like this happens everyday. if you are really worried, simply call your bank to replace your debit/credit card. I work for the largest bank in america, and i deal with these types of issue on a regular basis.

DT_F80 · 07-08-2014, 12:21 PM

Wow these guys are quick. Someone used my card in Las Vegas on Sunday so my bank flagged it. Luckily it was only a charge of $7.75 at Caesars Palace...

06-30-2014, 07:09 AM	#1
snaimpally Major 136 Rep 1,192 Posts Drives: 2011 335i MT Join Date: Mar 2014 Location: Austin, TX iTrader: (9) Garage List 2011 BMW 335i [0.00]	GetBMWParts - TradeMotion - Security Breach of Credit Card Info A few weeks ago, the fraud dept. of my credit card (CC) company called me and told me that my account had been compromised and someone had tried to purchase items using my CC number. They canceled the card and sent me a new card but I had to go and change all my passwords etc. I couldn't figure out how my CC had been compromised until Saturday, when I received a letter from MileOne Automotive that operates GetBMWParts. Their website is operated by a company called TradeMotion, which experienced a security breach resulting in the "unauthorized acquisition of customer credit card information." So if you have an account with GetBMWParts, I suggest you change your passwords and closely monitor your credit cards for suspicious activity. __________________ PTF Map, Pure Turbo Stage 1, GFB DV+, Mfactory LSD, AA FMIC, B12 Pro Kit, M3 FCA, AR DP and Dynavin N6, Mosconi AS100.4, AS100.4, AS200.2, Micro Precision tweeters & woofers, Esotar2 1200
	Appreciate 0 Tweet Quote

06-30-2014, 02:04 PM	#2
roll_the_dice Colonel 508 Rep 2,981 Posts Drives: 2013 BMW F30 EBII Join Date: Apr 2013 Location: Upstate, NY iTrader: (23) Garage List 1988 Porsche 944 Ce ... [0.00] 2010 BMW E90 328xi [10.00]	I had the same thing happen to me with my AMEX except someone used it for $4500 for NY Mets tickets over a 2 week period! AMEX took care of it for me and got me a new card, etc, but was still a hassle. I suspected there was a breach with getbmwparts servers because my charges happened almost immediately after I used it for the first time at Getbmw... I received the same letter Saturday. I monitor my CC's pretty closely and use my AMEX all the time online...this is the 4th time in 4 years my AMEX number has been stolen. Always a hassle, but always taken care of...AMEX does a great job taking care of me when this happens. This is the first time a company has sent me a letter to inform me and actually are paying for fraud alert for everyone that was on the server....so that is good! __________________ Drives: 2011 Porsche 958, 1965 Chevy C10, 1988 Porsche 944 Sold:2010 e90 Montego Blue, 2013 F30 EBII, 2013 Tangerine Scream Ford Focus ST, 2006 Mini R50,2004 VW Touareg, 2012 Camaro Convertible, 2008 Porsche 911 Convertible, 2007 Corvette, 2004 BMW e64 convertible, 2000 Dodge Dakota, 1999 Ford F150, 1999 Porsche Boxster, 1999 Ferrari Modena, 1992 BMW e36, 1990 Nissan 240sx, 1979 Celica, 1974 Mustang II My Build Thread
	Appreciate 0 Quote

06-30-2014, 02:26 PM	#3
WRichieX Major 80 Rep 1,076 Posts Drives: 07 335i e93 6MT Join Date: May 2013 Location: Chicago iTrader: (0) Garage List 2007 BMW 335i E93 [0.00]	Got the same notice. I got a new card in the mail which I thought was odd since I just replaced it not too long ago as it cracked in half. I called my CC company and they told me there were some weird activity and just issued a new card. Then last week, I get a letter in the mail from a company that represents getbmwparts. We get free fraud protection!! whoo hoo! __________________ 07 BMW 335i E93 6MT (Praying neighborhood doesn't get flooded...again) 04 Infiniti G35 Coupe 6MT (Flooded) 08 Audi TT 2.0T DSG (Flooded) 03 Subaru WRX 5MT (Flooded)
	Appreciate 0 Quote

07-02-2014, 09:01 AM	#4
Evan@Tischer 3390 Rep 22,757 Posts Drives: Online Parts Sales Join Date: Jul 2007 Location: Silver Spring, MD iTrader: (46)	Dear valued getBMWparts.com customers and forum members, Regarding the security breach notice our Corporation – MileOne Automotive recently sent only to customers recognized as potentially at risk - we can certainly understand your questions and frustration. As stated in the notification letter, however, the security incident did not occur on MileOne’s systems or on our GetBMWParts.com or SubaruPartsDepot.com websites. Rather, the incident originated at one of our third party vendors, TradeMotion. TradeMotion is an e-commerce service provider that we, and hundreds of other online retailers (including other vendors on these forums), use to process online transactions including payment processing. Nonetheless, we recognize that you purchased one or more of our products and we take the privacy and security of our customers extremely seriously. That is why, despite the fact the incident did not originate with our systems, we took proactive steps to help you minimize potential harm from the incident. As to any concerns regarding the timing of the incident and the notification, the dates identified in the letter reflect the period of time that TradeMotion has determined account information was vulnerable to unauthorized acquisition. The March 5, 2014 date is not the date when the security incident was discovered. Rather, it is the beginning of the security breach period which was determined after the breach was discovered and TradeMotion completed its investigation. The notice was provided only to customers identified as potentially at risk after TradeMotion completed its investigation, including the following: Notifying the appropriate law enforcement authorities; Investigating to determine the cause and scope of the breach; Investigating to determine which businesses’ customer information was affected (because TradeMotion is a service provider for more than just GetBMWParts.com and SubaruPartsDepot.com); Implementing corrective action to secure the system to protect customer information from further compromise; and, Identifying the affected customers and the customer information that may have been compromised. We continue to encourage you to take advantage of the complementary ProtectMyID program being offered through the notice. In addition to the ProtectMyID program, you are also encouraged to consider the “Additional Actions” described in the notice, including: Placing a fraud alert on the your consumer reporting agency file; Placing a security freeze on your consumer reporting agency file; Obtaining a copy of your free annual credit report from reporting agencies and reviewing it carefully for any discrepancies; Reviewing account statements carefully for signs of unauthorized transactions; and, Reviewing the FTC’s identify theft website for additional information. Should you have any additional questions or comments regarding this matter, please do not hesitate to contact us at getHelp@getBMWparts.com - further questions will not be answered here. Sincerely, getBMWparts.com MileOne Automotive Email: getHelp@getBMWparts.com __________________ Evan Winstead · Internet Parts Director Contact Us \| Facebook \| Twitter \| New: Shop Porsche & Audi parts!
	Appreciate 0 Quote

07-03-2014, 09:19 AM	#5
snaimpally Major 136 Rep 1,192 Posts Drives: 2011 335i MT Join Date: Mar 2014 Location: Austin, TX iTrader: (9) Garage List 2011 BMW 335i [0.00]	Yes - the breach occurred at TradeMotion which operates the e-commerce part of GetBmwParts website. __________________ PTF Map, Pure Turbo Stage 1, GFB DV+, Mfactory LSD, AA FMIC, B12 Pro Kit, M3 FCA, AR DP and Dynavin N6, Mosconi AS100.4, AS100.4, AS200.2, Micro Precision tweeters & woofers, Esotar2 1200
	Appreciate 0 Quote

07-03-2014, 10:37 PM	#6
mythek Captain 40 Rep 823 Posts Drives: 2008 335i Coupe TIAG Join Date: Jun 2013 Location: Orange County, CA, USA, NA, EARTH. iTrader: (5)	lol wow great timing, i just purchased something from tischer's website like last week. what a timing! but just fyi for those concerned, something like this happens everyday. if you are really worried, simply call your bank to replace your debit/credit card. I work for the largest bank in america, and i deal with these types of issue on a regular basis.
	Appreciate 0 Quote

07-08-2014, 12:21 PM	#7
DT_F80 Enlisted Member 0 Rep 33 Posts Drives: '16 F80 Join Date: Dec 2013 Location: Los Angeles, CA iTrader: (0)	Wow these guys are quick. Someone used my card in Las Vegas on Sunday so my bank flagged it. Luckily it was only a charge of $7.75 at Caesars Palace...
	Appreciate 0 Quote