At Avangate, we would like to thank you for the time invested in reporting this issue. In regards to the reported incident below, given the fact that online shopper security in our payment environment is of utterly great importance for us as eCommerce providers, we`d like to state the following:
Avangate Services are PCI DSS Level 1 Certified (Payment Card Industry Data Security Standard). PCI DSS is the most important security standard for the card payment industry. All online transactions are made using a SSL connection (128 bytes) provided by Verisign. The data sent from end-users browser to Avangate servers is always encrypted.
All Avangate servers are certified McAfee Secure and scanned daily by ScanAlert for known vulnerabilities. Additionally and most important, Avangate does not store any credit card sensitive information.
Also, we advise and advertise to all customers, the 3D Secure Standard (Verified by Visa & Mastercard Secure Code) from which all transactions made through our terminals, benefit in full.
For cards issued under MasterCard and VISA, card information is filled in directly on bank's systems, hence the risk of sensitive data-loss is reduced to 0.
From our experience, in your case, we can conclude that your personal information may have been lost to 3rd parties due to a previously (accidentally) installed Malware software like a Trojan horse / key-logger etc.
One other possibility would be the usage of a public (wireless) network who`s traffic can be scanned in real-time, and even a remote key-logger software be installed directly on the router. The information in the above cases, may have been lost during the check-out process, but because of outside factors predetermined by the your local environment. Factors that cannot be in anyway managed by Avangate.
To avoid this kind of situation in the future, we advise you to change all passwords to your private accounts / sensitive data from any previously accessed secure terminals, on-top of getting your card and account changed. Additionally we`d recommend you to install a strong antivirus solution coupled with a security solution and in the future CAREFULLY use public / unprotected (Wifi) networks.
Please note that Avangate processes thousands of transactions daily; if Avangate would have suffered any kind of security breach, we`d be soon out of business. Our main line of business is to offer a safe and secure environment for processing online payments.
We hope the above clarifies the situation. For any other question, don`t hesitate to contact us at support [at] avangate [dot] com
Avangate Risk Team