If you have Nitrosell, beware.
My shopping cart has been hacked, and it was being used to test stolen credit cards to see if they would be accepted or declined. My merchant account had hundreds of transactions with a charge, then a void, then a charge, then a void. I only found out because the thieves made a mistake and one transaction actually went through. My processor disabled my account until Nitrosell and I could show them the security measures taken to prevent this.
Nitrosell's response was that it wasn't hacked, that someone had created an account or multiple accounts and was using the front end to test the credit card charges. I notified them that it wasn't possible, because how would they be able to void the charge? There is no void function on the site. I even sent them the report of all the charges and voids. They had no response, and then they LEFT FOR THE WEEKEND. My card processing is disabled, and I am stuck.
What kind of customer service is this? How can they possibly say that someone wasn't hacking, and when presented with evidence HOURS before they closed, they do nothing? I called them at 4:00 p.m. their time, there was no answer, and I left a message to call me back. Nothing. No update to my ticket, no response, and I am out of online processing for the foreseeable future.
To make matters worse, when I told them that my processor required us to update our security credentials, they didn't even know what that meant! I have a separate merchant account for in-store transactions, so it has to be Nitrosell with the issue, and not my system.
If you process with Nitrosell, take care to review your credit card transactions daily on your merchant site, and look for voids. None of these show up in RMS, nor will they appear on your regular statement.
I cannot believe that Nitrosell is doing this, and that they have the audacity to say that their system is secure when all evidence points otherwise.