Credit Card Fraud.. A pre Christmas warning.

[bythesea]

Don't bin the laptop..I'll have it...don't forget to wipe your details off first

[Pen Simon]

On our credit card terminal, we have to input some of the cardholders address details and the three digit security number on the back of the card for it to be accepted for payment - hopefully as more places use these kind of terminals, it will make it more difficult for the fruadsters to get away with "generated" details.

[SilvaFish]

On our credit card terminal, we have to input some of the cardholders address details and the three digit security number on the back of the card for it to be accepted for payment - hopefully as more places use these kind of terminals, it will make it more difficult for the fruadsters to get away with "generated" details.

All card not present type transactions (in the UK) should be matching your name, house number and postcode details (in addition to the normal card number, expiry date and CVV checks).

(Identity theft? Am so paranoid about it that I don't bin bits of paper with my name or address on - I personally shred these at work or burn them in the back garden).

[witchieblackcat]

Not Quite, the first 6 numbers are the identifier and the last digit is a checkdigit

e.g. How To Generate *Valid* Credit Card Numbers — Money, Matter, and More Musings

Im sure the checksum creater is on the internet somewhere so it would be the work of a moment to generate Credit Card Numbers

I used to write software that checked these sort of things and the checksum generation algorithm is very simple. However the card issuers require the vast majority of card transactions carried out on-line (i.e. customer not present) require the card number and matching start, end dates and issue numbers and CSV number or they won't authorise the transaction. The less security around the transaction, the more the card issuers charge the shop.

That's why there's so much scamming and phishing because the bad guys need all of the card details rather than a random card number.

[Gordon Mackie]

Now - I just gave my bank account details to a nice Mr Bgola Kamanindu in Nigeria so that he can give me $25,000,000 that his father left in the bank......doh

[Sean]

Be careful out there. I have just had £784 put on my credit card by someone - and it wasn't me..

Avis Car hire, Dartford, Kent put this money on the card. My card has been harvested by a Trojan somewhere - as the guy "Mr Gbenga Kabli" (according to the Avis advisor) had a couple of attempts at putting the payment through (according to the fraud dept here) - this suggests a card was handed over by this person - and therefore a cloned card, which suggests organised crime - as it must have been phished (I never pay in person with it (only online) - so it cannot have been swiped and then cloned by a person).

My bank are returning the money and stopped the card now. For my part - I have a load of paperwork now to fill in - fraud reports, new DD authorities etc.

I am SOOOOO careful with these things - I am shocked that I've been had. Thinking now - there are only about 3 or 4 places it could have happened. My laptop is being binned tonight - but I see a Desktop rebuild at home coming on - or deep scan at the very least. Hmmm.

So please treat this as a real life and timely reminder (coming up to Christmas)

I would not think it’s an issue with someone putting something on your PC, I would suggest that you card has been skimmed, this is very easy to do you can get a card skimmer from Ebay quite cheep. Happens a lot at petrol stations and restaurant.

Never ever let your card out of your hands, at a restaurant if they give you the little folder that has the bill in it ask them to bring the card machine to your table or you go to the counter to pay. There are lots of people who work in these places being paid to skim cards. Also on the card holder not present transactions (if this happens to you) everything under £500 does not force the merchant to require authentication with the backend systems you can demand the money back as chip and pin was not used and the Scheme i.e. banks Visa / MC and so on will reclaim this from the merchant.

Sean

[wilbo]

I would not think it’s an issue with someone putting something on your PC, I would suggest that you card has been skimmed, this is very easy to do you can get a card skimmer from Ebay quite cheep. Happens a lot at petrol stations and restaurant.

Never ever let your card out of your hands, at a restaurant if they give you the little folder that has the bill in it ask them to bring the card machine to your table or you go to the counter to pay. There are lots of people who work in these places being paid to skim cards. Also on the card holder not present transactions (if this happens to you) everything under £500 does not force the merchant to require authentication with the backend systems you can demand the money back as chip and pin was not used and the Scheme i.e. banks Visa / MC and so on will reclaim this from the merchant.

Sean

Sean,

did you read my post? I don't allow my card out of my hands - the reason being I don't know my pin number - therefore I couldn't pay for something myself - never mind someone else getting the chance to skim it.

Your advice is good for anyone who does pay by card by hand.

It definitely was a cloned card - as earlier today I had a courtesy call from Avis who informed me that a card was telephoned through to make the booking - therefore my details were grabbed via a PC somewhere.

[Mal Bridgeman]

Sean,

did you read my post? I don't allow my card out of my hands - the reason being I don't know my pin number - therefore I couldn't pay for something myself - never mind someone else getting the chance to skim it.

Your advice is good for anyone who does pay by card by hand.

It definitely was a cloned card - as earlier today I had a courtesy call from Avis who informed me that a card was telephoned through to make the booking - therefore my details were grabbed via a PC somewhere.

or overheard / overseen when you bought something? ... possibly at your end or possibly at the target shop end?

[Fiona]

or overheard / overseen when you bought something? ... possibly at your end or possibly at the target shop end?

Or even the people taking the details over the phone, it has been done before. Must be tempting for some people.

[wilbo]

or overheard / overseen when you bought something? ... possibly at your end or possibly at the target shop end?

I don't think I would have been over looked.. I use only 4 terminals - 1 secure at work, 1 at the work internet cafe, and 2 at home. Which made me think Trojan.

The target ship is more worrying - as that isn't a good way to run a business - 'selling' on peoples card details..