Vendors claim the transaction dialogue is safe, but who determines that?
Other big corps who are in bed with the vendors.
I seriously doubt Apple or Microsoft is the safest place for me to store my personal info. The "Heartbleed" virus has even shut down Canada Revenue Agency for a short while, and you know how badly tax collectors want everyone's money. Facebook has admitted to intruder thefts of user's info. Health agencies in Canada have admitted to similar thefts. Even banks have gotten identity thefts from criminal vendors fixing the transaction readers to steal crucial info. I believe this loophole has since been closed.
As for Slimware, I was charged twice for software I never received. I would've been better off sending my credentials to Pyongyang, Damascus or to General Delivery: El Qaeda.
What about Paypal, you may ask. Paypal is listed as an option on many suspect websites. It won't stop criminal vendors from taking your money, even though it's supposed to protect your credit card info. However, Paypal is another corporation which is trying to make a profit. They will side with vendors over consumers to stay in business.
Transactions should be an open-to-the-public process where the vendor gets no financial info, simply a yes/no answer from the bank or credit card agency confirming the funds will be transferred. Personal info, such as names and mailing addresses would be available for vendors, but credit card numbers, verifier keys and passwords should be kept in a separate database with oversight from the public.
This should've done from the start. If it doesn't happen soon, citizens will ultimately be on the hook. Don't forget the trillion dollars that Wall Street gamblers received from US taxpayers. Don't forget that Federal Reserve Banks are private clubs with loyalties to international bankers.
One thing about The Cloud: When it rains, it pours.