Back to all cases

You don't have to lose your credit card to have it stolen

Mark’s advice to others

Get a VPN, differ your passwords, never log into your bank on the open “surface” internet – instead log in under a VPN so that your data is not visible. Never use public (coffee shop, hotel, etc.) WiFi without a VPN!

Mark A.

Age 32, Canada, team lead

The story

I've lived in the UK and New Zealand before moving to Canada and, about eight years ago, I was the victim of a credit card hack in the UK. Normally you believe that people will hack your card number online to use it far overseas, but they'd attempted to make a £400 purchase at Tesco, a British grocery store chain.

In Canada, just last year, I had my Canadian credit card hacked, and somebody had successfully used it in a Pizza shop right here in the city I live in.

This was the event that spurred me on to get a VPN, review the way I use the internet, and review my passwords.

The consequence was a disturbance of my daily routine. Having your cards canceled means waiting for the replacement cards to come in the mail, which means putting payment methods on hold until they arrive.

cyber crime shattering credit card thumbnail

Sherjeel K · Age 29 · USA · student

Never go online without a VPN

Find out more

Mike F. · Age 71 · Canada · business owner

Hit by ransomware: lesson learned.

Find out more

cyber crime malicious connection thumbnail

Tina · Age 22 · Norway · manual worker

How my Spotify got hacked

Find out more

Cookie name	Description	Expiration
__cfduid	Used by the content delivery network, Cloudflare, to identify trusted web traffic.	29 days
rc::c	This cookie is used to identify the difference between humans and bots.	Session
PHPSESSID	Preserves user session state across page requests.	Session
csrf	Ensures visitor browsing-security by preventing cross-site request forgery.	30 days
Oauth2_authentication_csrf	Ensures visitor browsing-security by preventing cross-site request forgery during the OAuth 2.0 authentication and consent flow.	30 days
oauth2_consent_csrf	Ensures visitor browsing-security by preventing cross-site request forgery during the OAuth 2.0 authentication and consent flow.	30 days

Cookie name	Description	Expiration
locale	The cookie determines the preferred language and country-setting of the visitor.	1 year
cookieconsent_status	Determines whether the visitor has accepted the cookie consent box.	1 year
fontsCssCache	Determines whether the visitor has cached fonts so the font would not be cached again upon re-entry.	7 days
CurrentSession	Retrieving the traffic sources data (source, medium, campaign, term, content, date) of the different sessions.	182 days
FirstSession	Retrieving the traffic sources data (source, medium, campaign, term, content, date) of the different sessions.	182 days
ReturningSession	Retrieving the traffic sources data (source, medium, campaign, term, content, date) of the different sessions.	182 days
_domainTest{timestamp}	Determines websites domain value for cross-domain support.	Session
popups_referrer	Used for popup management.	7 days
popups_session_duration	Used for popup management.	7 days
popups_session_pageviews	Used for popup management.	7 days
popups_chains	Used for popup management.	7 days
popups_chains_finished	Used for popup management.	7 days
bc.visitorToken	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
bc.visitor_token	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
3E6DB64A	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
u	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
session	Contains a session identifier that is used to remember the user’s agent and allows the system to re-authenticate users without credentials.	30 days

Cookie name	Description	Expiration
_ga	Registers an ID that is used to generate statistical data on how the visitor uses the website.	2 years
_gid	Registers an ID that is used to generate statistical data on how the visitor uses the website.	1 year
_gat	Used by Google Analytics to throttle request rate.	1 year
collect	Used to send data to Google Analytics about the visitor's device and on-site behavior.	Session
personalization_id	The cookie allows the visitor to share content from the website onto their Twitter profile.	2 years
_gat_gtag_UA_42858496_11	Used to throttle request rate.	1 minute
client_dimension	Prevent fire client_dimension event more than 1 time per session.	Session

Cookie name	Description	Expiration
__cfduid	Used by the content delivery network, Cloudflare, to identify trusted web traffic.	29 days
rc::c	This cookie is used to identify the difference between humans and bots.	Session
PHPSESSID	Preserves user session state across page requests.	Session
csrf	Ensures visitor browsing-security by preventing cross-site request forgery.	30 days
Oauth2_authentication_csrf	Ensures visitor browsing-security by preventing cross-site request forgery during the OAuth 2.0 authentication and consent flow.	30 days
oauth2_consent_csrf	Ensures visitor browsing-security by preventing cross-site request forgery during the OAuth 2.0 authentication and consent flow.	30 days

Cookie name	Description	Expiration
locale	The cookie determines the preferred language and country-setting of the visitor.	1 year
cookieconsent_status	Determines whether the visitor has accepted the cookie consent box.	1 year
fontsCssCache	Determines whether the visitor has cached fonts so the font would not be cached again upon re-entry.	7 days
CurrentSession	Retrieving the traffic sources data (source, medium, campaign, term, content, date) of the different sessions.	182 days
FirstSession	Retrieving the traffic sources data (source, medium, campaign, term, content, date) of the different sessions.	182 days
ReturningSession	Retrieving the traffic sources data (source, medium, campaign, term, content, date) of the different sessions.	182 days
_domainTest{timestamp}	Determines websites domain value for cross-domain support.	Session
popups_referrer	Used for popup management.	7 days
popups_session_duration	Used for popup management.	7 days
popups_session_pageviews	Used for popup management.	7 days
popups_chains	Used for popup management.	7 days
popups_chains_finished	Used for popup management.	7 days
bc.visitorToken	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
bc.visitor_token	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
3E6DB64A	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
u	Used by chat widget from Nanorep.Determines unique visitor ID used on the new reporting page to group queries performed by the same visitor.	1 year
session	Contains a session identifier that is used to remember the user’s agent and allows the system to re-authenticate users without credentials.	30 days

You don't have to lose your credit card to have it stolen

The story

Essential

Functionality

Analytics

Advertising

Essential

Functionality

Analytics

Advertising