The print-on-demand publisher Xlibris has sent out a mass email to its customers and authors from Xlibris’ CEO John Feldman which warns of an email scam built around the company. Under the email address [email protected], the scammers claim that a recent order placed by the recipient cannot be filled due to incomplete credit card information and asks that the recipient reply to that address with their CVC number which is the three or four digit number on the back of credit cards used most often to help verify online purchases. Xlibris is firmly denying any relationship at all to this domain name or its originators and is strongly cautioning its customers to report any such emails received to the recipients’ Internet Service Provider.
Xlibris is also taking steps to change how it handles credit card information provided by its customers in order to provide greater security against attempts to access this information. They no longer keep that information in the database. For those customers who place orders often, that information is currently transferred to a third party who specifically handles such information and Xlibris assures its customers that this third party is much more secure than Xlibris itself. They have disabled their online bookstore while authorities investigate the scam to protect future customers and to assure that their own systems are not compromised.
The email from Mr. Feldman includes an exact copy of the fraudulent email and a telephone number with which to contact Xlibris to report any such emails received and to direct any questions or concerns through. Also included is a step by step suggestion on what to do upon receiving the scam email, exactly how to most safely conduct a transaction with Xlibris and their new policies on how to do so, and important contact information if one has become a victim of identity theft. Xlibris also reminds its customers that credit agencies suggest consumers should obtain a copy of their credit report for review at least once a year and provide several websites that specialize in this sort of thing.
All of this by no means indicates that any of Xlibris’ customers or authors have been scammed per se only that the scam exists. However, the company is strongly encouraging its customers to take necessary precautions and to report any such emails immediately.
Xlibris promises to re-enable their online bookstore as soon as investigations are complete and it is safe to their customers to so. If you wish to buy a book published by Xlibris in the meantime, you may do so through Amazon.com, Barns and Noble.com, or through the author’s website.
For more information regarding phishing and identity theft, go to the Federal Trade Commission’s Website at http://www.ftc.gov/bcp/edu/microsites/idtheft.
If you have become a victim of identity theft you can contact the following agencies:
U.S. Government Agencies
Federal Trade Commission
Identity Theft Clearing House
Hotline: 877-438-4338
IDD: 202-326-2502
Website: http://www.consumer.gov/idtheft
Social Security Administration
Fraud Hotline: 800-269-0271
Credit Reporting Agencies
Experian
To request a credit report and/or to report fraud: 888-397-3742
Website: http://www.experian.com/
Equifax
To request a credit report: 800-685-1111 Option 4
To report fraud: 800-525-6285
Website: http://www.equifax.com/
TransUnion Corporation
To request a credit report: 800-916-8800
To report fraud: 800-680-7289
Website: http://www.transunion.com/
Reference:
- Email received from Xlibris
