Shopping IDK why but not secure.

I have this problem too. I've emailed the companies about it, but usually they say it's fine on their end. I don't know why the connection isn't secure. I wish something would be done about it. I feel really uneasy about it. It gives me so much anxiety. I wonder if VPN can protect the info you input on a non-secure site... does anyone know if it can?

 

Most doll company sites are like that... not sure why, but that's just how it's always been.

However, the payment part is secure as they usually go through PayPal. As long as the payment is secure, you shouldn't really have to worry.

 

Yeah, like @namika said, the only reason I don’t have reservations about the non-secure retailer sites is because it sends me directly to PayPal to do the actual transaction, and PayPal is most definitely secure. A good reason to not use the same password as any important stuff though, just in case

 

The reason they are most likely not secure is simply because they never got their SSL certificate or let it expire. If it's not https, it ain't secure.

Most BJD stores are just a standard kit one they tweaked for their usage, not self-made, and I doubt the majority of them even have anyone on their team for IT stuff. Keep in mind that many "companies" are often just small studios.
If it's risky or not, depends. How likely is it that a hacker decides to target some Korean niche website that doesn't even handle payments themselves vs a bigger, more well known one?

 

A lot of BJD sites are outdated and/or hosted overseas which can set off alarms. My internet tries to block Clover Singing and Legend Doll but not any other BJD sites

 

From personal experience, I’d think that you’re far more likely to have your info stolen at the gas station or buying a video game off the Playstation network. I’ve been in the hobby a long time, and I’ve never heard of a company announcing a data breach like that.

 

I just ignore it and go on with my purchase. As others said the site not being secure doesn't really matter as long as payment is. Again as others said even if you pay on the site, who's hacking a website only a few hundred people visit a month. Most attackers wouldn't even know the sites exist to exploit them. Even if they do, there just more lucrative targets to spend their time on. 10 years deep of not caring and I've never had my data breeched or even heard of one, so I think worrying about it may be overkill.

 

You can ignore it, but keep in mind every piece of info you type in on the page to send to them is being sent unencrypted over plain text. A VPN will not help. At the very very minimum, don't use the same username and password anywhere else. If anyone is listening to your network traffic, they will see it as well as your address. Your credit card info shouldn't be seen if processed through PayPal.

I personally will not use these sites at all.

 

This.

Last year I got some vile spam emails that included a password I used on some overseas doll websites, among them Dollmore. I changed my password, and fortunately Dollmore has stepped up their site security when they revamped it. Then I became more aware of the "connection is secure" padlock in the tab bar, and noticed that Alice's Collections wasn't secure, so much as I wanted something from that site, I decided to forego making an account and any purchases.

 

I don't save my CC info on sites generally, and if a site doesn't use PayPal I'm less likely to buy from them.

 

TBH, any website or company can be hacked, but most people are going to go to bigger targets. Even credit bureaus like Equifax have been hacked and they use secure sites and all that; there are also data breaches that happen in major retailers in store (Target had one a few years ago iirc). Use a different password for each account you have, preferably one that is a mix of upper and lowercase letters, numbers and characters, or use one generated by a password manager like LastPass. Use a secure payment processor like Paypal and your bank account information should be fine.