Just a heads up if you have a sweetwater account with a card on file I got hacked. I even have two factor authentication so not sure how they logged in but someone managed a purchase. Person also changed it to their phone number so I can’t log in and sweetwater couldn’t do anything about that until IT is back in office tmr 
Not sure what the end game is but if you see this software for sale could be the scammer.
Do you have their number ? Phone them up … pretend they’ve won a competition and you need their address to send the item.
I hope you get refunded… and freeze that card.
Ouch! Hopefully you can get this mess sorted out. Not to make you panic but if your phone number was set up for 2FA, that could imply your SIM security is compromised no? I’d suggest you check “SIM swapping” and what the next steps are for you to mitigate risks. Good luck!
lol I was thinking that, but its just last four digits of phone. Also sweetwater wont give me info on my account now.
Yeah! I was wondering and asked sweetwater how they got past the 2FA, but the only method must be sim swapping. They suggested my email is compromised but I also have 2FA w/ apple which doesn’t involve phone numbers.
What a headache. I hope they get this taken care of for you man.
Now is probably the time to start checking other purchase accounts as well. I’m wondering how this came to your attention though, was it just a coincidence that you logged in to check?
I try not to keep my card info on file anywhere if I can avoid it, stuff like this happens much too often.
Anyways good luck and make sure you check with the CC company to make sure it was not their info which got compromised. Also, if that card is tied to paypal I’d log in from a secure device and check for any new activity.
Also, I don’t know about your bank, but my bank has a feature in the online account which shows a login history, if you have similar, I might look at that as well just to be safe.
Thanks i appreciate it! It’s just Sweetwater, only purchase on there.
I got a notification from Cap One someone was trying to do back to back purchases over $800 at sweetwater.
Too easy to buy from sweetwater, this is why i have too much gear too… lol. Took one click and now i have a new Prophet X.
It’s a DAW criminal with horrible taste…
I think software is hard to cancel, easy to make paperless or sell behind a mask. No physical product but still holds value and doesn’t really depreciate when resold (although it should).
It’s a scammer with some experience. There’s nothing to ship and they don’t need to put any of their info out there, just use yours and reap the benefits.
I mean, it sounds like someone who has done this before so you looked back on sweetwater to make sure there were no other isolated incidents? Also the question arises of how you were specifically targeted for a sweetwater fraud thing like this. Have you sold anything recently that might have indicated you buy from sweetwater?
Did you log into sweetwater from an non-secure work terminal or airport slash coffee shop wifi? Just anything random that might correlate the issue with the root cause.
I don’t really buy that your email was compromised, but what do I know. Sounds too convenient, you know?
Haven’t had issues with sweetwater from what I remember. I sold my murmux recently on reverb which I got from sweetwater.
Checked with Verizon and no sim swap going on.
Truly puzzled by this one because the 2FA with sweetwater is finger print on my devices.
Inside job at sweetwater?!?!?! or it feels like an ex is getting the best of me why the blipbox? lol
What about the hosa power cord, was that your purchase or theirs? That had to be going to a physical address, they won’t tell you anything about that?
This seems like a pretty specific selection of software as well, did you check to see if those are on the sweetwater top sellers list or did they choose these like they were shopping for themselves?
I’m wondering if they were trying to keep it under X amount because they know that transactions over a certain amount get flagged.
I wouldn’t feel comfortable until I figured it out.
Are you sure that you had 2fa on? The reason I ask is because Sweetwater also has an option for biometric login which is separate from 2fa. With biometric login you can still just use a password as well. The options are right next to each other in account settings.
Also, if you can’t get into your account, I assume that screenshot is from an email receipt. It seems odd that they would change the password and phone number to order stuff but not the email. And order physical items that need shipped somewhere.
Does your credit card have fraud protection?
Are you sure it was a hack and not a sweetwater blunder? Only ask because my school allowed me to purchase Push, Live, and some other audio equipment via sweetwater. When they sent my school the invoice, they overcharged us just over ten thousand dollars. I of course called and they said it was a “glitch.” There was no harm done because the payment hadn’t gone through but it seemed like a pretty crazy oversight. There wasn’t even additional gear added to account for the discrepancy, just horrendous math on the total. This was about two weeks ago…
Edit: Also, not trying to just trash sweetwater here. Their customer service is friendly and responsive, just saying that mistakes happen and I have a hard time believing that a hacker who beat 2fa would leave their number haha…
Your access to the phone would instantly stop working.
Odd if it’s a scam that they’d buy the two items that require a physical delivery address. Blipblox After Dark ??
Is Sweetwater positive this isn’t all on their side and not a scam, including the change in phone number – that this is a legit buyer ? It seems maybe not likely but possible. Somebody with a similar name and somebody in sales forced some changes – “Oh you changed your phone and address, let me fix that.”
Will be watching this thread, as i have purchased from SW, a long time ago.
Thanks for all the investigative efforts from all, cheers to that.
Definitely a scam of sorts, I have many cards on file and they put through 3 orders total on different cards. Two of the cards don’t have money though so Sweetwater flagged it … or not sure entirely. All around $900.
Also you’re right I just had biometric login not 2FA, and the SW password is a really basic one that was in a leak that I never changed bc… well didn’t think I’d be scammed at SW! lol
Yeah, without 2FA the biometric login just makes your local access more convenient, doesn’t make it more difficult for anyone else.
Thanks for the feedback! Using the same password on multiple sites is one of the easier things to fix in someone’s internet safety, at least. Good to know it wasn’t on Sweetwater’s end. I would be surprised if this was commonplace.
Did this get figured out / reversed ?
What did Sweetwater have to say finally ?
