Another Best Buy Scam???

[Eltano1]

I called BestBuy, and they didn't know anything about this email, they asked me to forward the whole thing, and they will call me back.
So guys be careful, don't fall into the trap.

Best regards

Eltano

Order Information
7/7/2003

Dear XXXXXXXX:

Our Web site is currently undergoing improvements that will make your online shopping experience better than ever. One of the improvements includes a minor modification to the "My Account" passwords. On our enhanced Web site, the password length must be 6-10 characters. Our records indicate that your current password falls outside the required character length.

Your relationship with Best Buy is very important to us and we want to continue providing you with important order and account information. So the next time you visit us at BestBuy.com, please take some time to change your password by following the directions below:
After entering BestBuy.com, please click on "Sign-In" link at the top of the page and enter your old password when prompted.
You will immediately receive a message indicating your password is "Invalid".
Click on the Get Password icon. An email will be sent to you with your new password.
On your next visit to BestBuy.com, use this new password to access your account. You will then be able to change your password to your liking.
For your security, you will need to re-enter all of your credit card information and your billing address. All order history and other account information will still be available.

We sincerely apologize for any inconvenience this may have caused. If you have any questions or would like assistance in changing your password, please feel free to contact our Customer Care. Just call us toll-free at 1-888-BEST BUY (1-888-237-8289).

We look forward to your next visit to one of our stores or to www.BestBuy.com.

Best wishes from Best Buy,
Best Buy Customer Care



Do not use the Reply button to respond to this message.




Get More Info | Conditions of Use | Legal Policies | Privacy Statement



postfuture® powered


And a search on Whois:


postfuture.com Back-order this name


Registrant:
Richard Merrick (POSTFUTURE-DOM)
1600 N. Collins #1800
Richardson, TX 75080
US

Domain Name: POSTFUTURE.COM

Administrative Contact:
Sanders, Bradley (BSL438) bsanders@POSTFUTURE.COM
Postfuture, Inc.
1600 N COLLINS BLVD
RICHARDSON, TX 75080-3591
US
972-889-2226
Technical Contact:
Christiansen, Niels (NCL221) nchristiansen@POSTFUTURE.COM
Postfuture, Inc.
1600 N COLLINS BLVD STE 1800
RICHARDSON, TX 75080-3567
US
972-889-2226

Record expires on 15-Mar-2005.
Record created on 19-Sep-2002.
Database last updated on 7-Jul-2003 19:44:17 EDT.

Domain servers in listed order:

NS1.THEPLANET.COM 216.234.234.30
NS2.THEPLANET.COM 12.96.160.115

 

[chowderhead]

I got this same email. I did not give it much thought as there were no weird links to click or anything. I just figured that they were having so many problems with the website that it spit out this odd email. My password fits those criteria anyway. I did make a purchase very recently from them so I dunno.

 

[WallyKid]

i got the same email, wonder if its legit.

 

[Finalnight]

same here, and I am concerned because it used my first name, and I am still remembering that BB scam a few weeks ago.

 

[cliftonite]

Originally posted by: Finalnight
same here, and I am concerned because it used my first name, and I am still remembering that BB scam a few weeks ago.

WTF it used my fist name too :|

 

[conehead433]

If they ask for your credit card information it definitely is not legit. Forward copies of the e-mail along with all the header information to Best Buy so they can prosecute whoever is doing this.

 

[SgtZulu]

This deal is smoking HOT

 

[s0ssos]

what i don't understand is that if you're going to bestbuy.com, how would anybody else get your info? unless they had hacked into bestbuy's site.

 

[conehead433]

"This deal is smoking HOT "

OK maybe this is not a hot deal, but a lot of people buy on-line from Best Buy and should be informed about what's going on so they take guard against scammers like this. If you ever get e-mailed from anyone claiming to be a site you have done business with and they want your credit card information, notify that business with whatever information you can so they can take legal action to prosecute whoever is doing it. Two things give them away- 1) They need your credit card information, 2) They state 'Do not reply to this e-mail' , they want you to click on a link that will direct you to a bogus website that looks just like the retailer's. Getting ripped off is definitely not a hot deal. Unfortunately it would seem that someone wants to pick on Best Buy here recently.

 

[fraeone]

Has anyone checked bestbuy.com to see if their password has been changed to the one included in the email? Seems like that would be an easy way to check out how legit this is.

fraeone

 

[smartt]

You may also want to Copy and paste the Mime information from the email and post it to SPAMCOP.NET. It will blacklist any email address associated with this domain. If you are not sure how, PM me with the Mime information and I can do it for you. SPAMCOP is ruthless, rightfully so, and may even have more power than vendors in at least stopping these kind of emails from being mass mailed.

 

[Armoth]

Originally posted by: smartt
You may also want to Copy and paste the Mime information from the email and post it to SPAMCOP.NET. It will blacklist any email address associated with this domain. If you are not sure how, PM me with the Mime information and I can do it for you. SPAMCOP is ruthless, rightfully so, and may even have more power than vendors in at least stopping these kind of emails from being mass mailed.

DIE SPAM DIE! Keep up the good fight!

 

[emmpee]

Originally posted by: fraeone
Has anyone checked bestbuy.com to see if their password has been changed to the one included in the email? Seems like that would be an easy way to check out how legit this is. fraeone

There is no password included in the email.

 

[WhiteKnight]

I got it too. Does anyone know if the phone number in the email is legit?

 

[conehead433]

"I got it too. Does anyone know if the phone number in the email is legit?"

Duh! If you call the # in the e-mail you will surely get someone answering 'Best Buy', and after you explain that you received this e-mail the first thing they will do is ask for your credit card information.

 

[grooveman]

Hi all!

FWIW, just thought I might toss a note in here, too. The Postfuture.com site you mention describes itself as, "Postfuture® is the premier provider of enterprise-wide messaging and digital marketing applications and services to retail organizations, including specialty retailers, franchisees, dealer/ distributors, agencies and location-based e-tailers. The company distinguishes itself from ordinary e-mail marketing, eCRM and e-mail ASP offerings by providing an enterprise-wide technology platform that links centrally offerings by providing an enterprise-wide technology platform that links centrally managed customer databases with locally managed marketing programs." (In part, at least.)

Among others (ebay, Compaq, Core Intellect, BSA, Guiness, etc.), Best Buy is listed as one of their customers.

When signing in to the new Best Buy site, the error message that comes up for a forgotten (perhaps just a short?) password is: The password must be between 6 and 10 alphanumeric characters long. (#0054-U) I would guess that, perhaps, when they transitioned to their new site, they updated their password scheme.

It doesn't look like the email is asking for credit info, per se - think it might just mean that the next time you sign in, if you had a short password, you will have to reset it. Once it is reset, your previously entered info might have to be entered again, as well. As long as there are no links in the email and it only tells you to go to BestBuy.com, think everything should be OK. (If there are links and they *only* point to Bestbuy.com and they are truly valid (i.e., not just a text of http://BestBuy.com with an actual link to http://meansitehere.com) it might be OK - can always just manually type in BestBuy.com in your address bar to be sure that nothing is amiss instead of clicking on any link. If the link goes somewhere else, that would suggest something is not too cool.)

Although, with all of that said, it is sort of unnice that BB didn't mention more about their last fiasco in the letter. :\ (Perhaps if they'd just had an update password dialog come up during the next time one logged on to the new site, it might've decreased worry a bit.)


HTH and have a good one,
Groove

 

[rickon66]

Thanks for the warning!!

 

[freeflyer]

Looks like a legit message to me. It's common for sites that have remembered CC #'s on its registered users, to wipe out that data whenever the password is reset, just in case the person changing the password is not the original user.

And apparently the web folks haven't given the call centers the heads-up on this letter going out. Left hand doesn't know what right hand is doing etc. Not all that uncommon but embarrassingly unprofessional for Best Buy.

 

[TTM77]

If it's not legit, then just create a new account. I don't like anyone or anything to rem. my credit card # at all. Just remember the shipping address is good enough. I'll put the rest in when I order. My credit card go everywhere with me so I always have it available. Also every time I pull out my credit card, it remind me how many crab I already spent on it.

 

[Akira13]

I figure it's legit because they ask you to go to the official website.

 

[XZeroII]

Where's the scam? If you're doing everything through BB's website, then there's nothing to worry about. If it told you to go to another website like www.bestbuysite.com or something, then it is probably a scam. However, what can someone scam you about if you are going through BB's own website? Also, you can just forget about it unless you actually get a prompt from BB's website telling you to actually do this.

 

[Crucial]

Nothing to see here, move along people.

 

[Bacinator]

Originally posted by: SgtZulu
This deal is smoking HOT

STFU n00b. Free scam warnings is definately hot, which opposes fraud on your accounts, which is cold.
And if you dont like it, dont read it. Go troll over at FW.

 

[tadr]

except this isn't a scam.

Going to bestbuy.com != scam.

moron

 

[devers]

Thanks for the warning.

To those saying this looks perfectly legit, does the fact that Eltano called Best Buy and they didn't know anything about it carry no weight with you?

I mean... having to change thousands of account passwords is a pretty major thing for a website to do. Even given the average ineptitude of Best Buy cust. care, you'd think they'd know about something major like this.

It's true that there's nothing explicitly in the email which asks you to go to a fraudulent site.... so maybe it is legit. But I appreciate the warning anyway, it is pretty weird.