Hacker
Professional
- Messages
- 1,044
- Reaction score
- 812
- Points
- 113
In the mid-1990s, no one had yet heard of credit card fraud, and the rare cases of money lost were the mistakes of shops and banks. Therefore, unafraid online stores willingly accepted non-existent generated credit cards, the algorithm of which was the same as that of real cards. After checking the algorithm, online stores sent the ordered goods. The fraud was revealed only at the end of the month, when stores asked banks to transfer money from cards to pay for goods. Naturally, the store did not receive money, since the requested credit cards simply did not exist in nature.
At this time, it became possible to get access to the Internet in the CIS countries. The first users were mainly teachers and university students. These students formed the basis of the nascent caring in the CIS. Hungry students were carding everything they could with an emphasis on electronics and jewelry. Ukrainian carders were especially zealous, organizing a whole network in Kiev for the transportation, storage and sale of carded goods. Dozens of apartments were bought as warehouses for storing electronics, which they did not have time to sell at bargain prices. Several trucks were on duty at the customs terminal at Kiev Boryspil International Airport around the clock, taking out the cargo after each international flight. Customs officers, who quickly processed the arrived goods, did not lose either
. Goods from European stores were mainly delivered by land. The volume of goods was so great that often stores sent their trucks directly to Ukraine, without resorting to postal services. Many stores are seriously thinking about opening their branches in the CIS.
The product was sold under false documents through wholesale and retail stores that were interested in buying branded electronics at low prices. A huge flow of skipped electronics has led to an overstocking of the Ukrainian market. There was a paradoxical situation when it was possible to buy RAM at half the price of the manufacturer's selling price. The legal supply of electronics, especially computers, has practically ceased.
The tale could not last forever. The FSB, together with Interpol, have been monitoring the defiant activities of the carders for some time. In 1996, a wave of arrests swept across Ukraine, Russia and Belarus. The leaders of the karder gangs and their entourage were arrested. There could be no question of the further existence of such communities, now everyone was for himself. They tried to sell the goods immediately after receiving them, they worked mostly singly or in small groups, without attracting unnecessary people.
Sticks in wheels
Such chaos could not last long. Due to the actions of carders, many online stores went bankrupt. The remaining stores outlawed the CIS countries and stopped sending goods to the CIS. Moreover, it was very, very difficult for residents of the CIS to order something in foreign stores even with a legal credit card. At that time, an acquaintance of mine ordered a rare book from a European online store using his credit card. After ordering, he received a call from the store and asked to give all the details of his credit card. Then they asked me to send a credit card scanned from both sides. And when all the requirements of the store were met, after a week of reflection, an answer came from there that, for technical reasons, the goods could not be sent. Such pies.
Many thought that this was the end of the short life of duffel carding, but a solution was found. If they do not send to us, they will send to their country! Now the carders were looking for a foreigner who would accept the goods and send them to the CIS for a fee or sell them in their homeland, sending part of the money (and part of it to his pocket). Since then, carders have specialized by region: USA, UK or Europe. At the same time, for example, European stores send goods without problems within Europe, including to such close countries to us as Latvia, Bulgaria and even Ukraine.
The next blow to the carder craft was the gradual refusal to accept the generated credits. Due to the large losses of stores, banks have new services that allow the store to check the validity of credit card information on the fly or within a reasonable time frame (previously, the store found out that it was cheated after the purchase was sent to the customer). And now the store could weed out a non-existent credit card even before the goods were dispatched. But they also managed to overcome this obstacle. Due to the imperfect security of online stores, it was possible to steal from them a database with information about the credit cards of customers who made purchases from them.
From that moment on, many respectable Americans were afraid to shop online. And they did the right thing. Each store assures customers that it has the most reliable protection. But it would be much better if the stores simply did not store customer information on their server. Sometimes you can enter something like "credit card name adress" in a search engine and go to the list of credit cards that is stored on the server of the online store. That is, information about credit cards in this case is so insecure that it is even indexed by search engines! Now, when an order was made in the store using an existing card, he would withdraw money from it (or simply check its existence, and withdraw money at the end of the month). After a while, the real cardholder contacted the bank and protested the transaction. The bank, in turn, dealt with the store. But the train left, the goods were dispatched, and the store was once again in a fool.
A new step in protecting against fraud was the request by stores for the cvv2 code upon purchase. At this point, they thought that the end of carding had come. The trick here is that this code is the last 3 digits of the number on the back of the card, only the cardholder who holds it in his hands can know it. Now, any fraud with credit cards has become in principle impossible, since the cvv2 code cannot be recognized in any way. It was originally planned that cvv2 would not be saved at any stage of credit card processing. That is, it was communicated only to the bank card processing system, and already from the bank there was a confirmation or refusal. But we wanted the best, but it turned out as always. Online stores, in violation of all banks' requirements, began to save the cvv2 code with all other credit card information in their databases. Well, and the bases, in turn, were stealing as calmly as before, and the carders got access to cvv2. Everything returned to normal. And the blame for online stores was only on themselves.
At this time, it became possible to get access to the Internet in the CIS countries. The first users were mainly teachers and university students. These students formed the basis of the nascent caring in the CIS. Hungry students were carding everything they could with an emphasis on electronics and jewelry. Ukrainian carders were especially zealous, organizing a whole network in Kiev for the transportation, storage and sale of carded goods. Dozens of apartments were bought as warehouses for storing electronics, which they did not have time to sell at bargain prices. Several trucks were on duty at the customs terminal at Kiev Boryspil International Airport around the clock, taking out the cargo after each international flight. Customs officers, who quickly processed the arrived goods, did not lose either
. Goods from European stores were mainly delivered by land. The volume of goods was so great that often stores sent their trucks directly to Ukraine, without resorting to postal services. Many stores are seriously thinking about opening their branches in the CIS.The product was sold under false documents through wholesale and retail stores that were interested in buying branded electronics at low prices. A huge flow of skipped electronics has led to an overstocking of the Ukrainian market. There was a paradoxical situation when it was possible to buy RAM at half the price of the manufacturer's selling price. The legal supply of electronics, especially computers, has practically ceased.
The tale could not last forever. The FSB, together with Interpol, have been monitoring the defiant activities of the carders for some time. In 1996, a wave of arrests swept across Ukraine, Russia and Belarus. The leaders of the karder gangs and their entourage were arrested. There could be no question of the further existence of such communities, now everyone was for himself. They tried to sell the goods immediately after receiving them, they worked mostly singly or in small groups, without attracting unnecessary people.
Sticks in wheels
Such chaos could not last long. Due to the actions of carders, many online stores went bankrupt. The remaining stores outlawed the CIS countries and stopped sending goods to the CIS. Moreover, it was very, very difficult for residents of the CIS to order something in foreign stores even with a legal credit card. At that time, an acquaintance of mine ordered a rare book from a European online store using his credit card. After ordering, he received a call from the store and asked to give all the details of his credit card. Then they asked me to send a credit card scanned from both sides. And when all the requirements of the store were met, after a week of reflection, an answer came from there that, for technical reasons, the goods could not be sent. Such pies.
Many thought that this was the end of the short life of duffel carding, but a solution was found. If they do not send to us, they will send to their country! Now the carders were looking for a foreigner who would accept the goods and send them to the CIS for a fee or sell them in their homeland, sending part of the money (and part of it to his pocket). Since then, carders have specialized by region: USA, UK or Europe. At the same time, for example, European stores send goods without problems within Europe, including to such close countries to us as Latvia, Bulgaria and even Ukraine.
The next blow to the carder craft was the gradual refusal to accept the generated credits. Due to the large losses of stores, banks have new services that allow the store to check the validity of credit card information on the fly or within a reasonable time frame (previously, the store found out that it was cheated after the purchase was sent to the customer). And now the store could weed out a non-existent credit card even before the goods were dispatched. But they also managed to overcome this obstacle. Due to the imperfect security of online stores, it was possible to steal from them a database with information about the credit cards of customers who made purchases from them.
From that moment on, many respectable Americans were afraid to shop online. And they did the right thing. Each store assures customers that it has the most reliable protection. But it would be much better if the stores simply did not store customer information on their server. Sometimes you can enter something like "credit card name adress" in a search engine and go to the list of credit cards that is stored on the server of the online store. That is, information about credit cards in this case is so insecure that it is even indexed by search engines! Now, when an order was made in the store using an existing card, he would withdraw money from it (or simply check its existence, and withdraw money at the end of the month). After a while, the real cardholder contacted the bank and protested the transaction. The bank, in turn, dealt with the store. But the train left, the goods were dispatched, and the store was once again in a fool.
A new step in protecting against fraud was the request by stores for the cvv2 code upon purchase. At this point, they thought that the end of carding had come. The trick here is that this code is the last 3 digits of the number on the back of the card, only the cardholder who holds it in his hands can know it. Now, any fraud with credit cards has become in principle impossible, since the cvv2 code cannot be recognized in any way. It was originally planned that cvv2 would not be saved at any stage of credit card processing. That is, it was communicated only to the bank card processing system, and already from the bank there was a confirmation or refusal. But we wanted the best, but it turned out as always. Online stores, in violation of all banks' requirements, began to save the cvv2 code with all other credit card information in their databases. Well, and the bases, in turn, were stealing as calmly as before, and the carders got access to cvv2. Everything returned to normal. And the blame for online stores was only on themselves.
