Carding
Professional
- Messages
- 2,871
- Reaction score
- 2,372
- Points
- 113
Content
Introduction
Russian buyers often and willingly place orders in US stores. It is convenient, profitable and simple. At the same time, half (if not more) of the goods go through mail forwarders. These companies help you save on shipping or get an item that is not sent outside the United States. But in the idyllic picture of overseas shopping, an ugly spot almost immediately appeared. This refers to the scammers who always revolve around the service industry. They quickly recognized the benefits of American shopping and began looking for ways to make money easier. This is how carder was born. Carders (scammers, fraudsters, frauders) are people who pay for their purchases with someone else's bank card, the payment details of which they were able to take possession of. Carders can be roughly divided into two categories. The first is those who buy for themselves, the second is those who make money by reselling goods. Phones, tablets, cameras, other electronics, expensive Lego sets are on sale. GoPro cameras are very popular now. For themselves, carders try to order elite clothes, shoes, accessories. For example, here's a $ 1,100 jacket that we recently returned to the store. And somewhere on the other side of the monitor, reading these lines, its failed owner is crying.
It should be understood that carders are actually thieves, financial fraudsters. Fishisfast collides mainly with those who live in Russia and the CIS countries. These people try to work with bank cards of foreigners. Otherwise, the likelihood of a personal meeting with people in uniform increases several times. And carders are very shy by nature, and they are extremely shy of these meetings. The cards of the residents of the USA are especially loved by Russian-speaking carders. They even position themselves almost like Robin Hoods. They say they steal from the rich for the benefit of the poor. But recently, the European direction of carding has been developing more and more actively. Do not think that there is no fraud problem in other countries. Just a week ago, we spotted a carder from the UAE who ordered several Xbox games. This is not a typical case, but it also happens. There are large forums for carders where they exchange useful information, looking for dummies to receive and send goods (drops), offer their services and illegally purchased goods. A significant proportion of such forums are located in the * .onion zone, some are closed from search, but some can also be found through a regular search engine.
How do carders work?
There are many schemes for the fraudulent community to obtain payment information. And it is not surprising, because a lot of people are working on this issue. There is a whole underground data mining industry. The most commonly used skimming (theft of card data using a special reader) and banal theft. There are even fake ATMs. The network industry of this business is also well developed. On the Internet, the necessary information is obtained in the following way:
Phishing. Using fake sites (for example, copies of PayPal), fraudsters get a lot of valuable data. From here it is worth concluding: do not believe your eyes, check the address bar.
Breaking into. Online stores and other sites with a large base of paying users are hacked and data leaked into the hands of cybercriminals. You can do without hacking if you bribe one of the site's employees. Alternative option: buying a dying store with a base of all customers, after which the store goes to the dustbin of history, and the base goes from hand to hand.
Use of official position. Employees of the processing center can transfer information to an accomplice in a large volume. And if this employee works in a bank, then he becomes a real gold mine. Therefore, carders are diligently looking for them. And, oddly enough, they find it. As a recommendation for protection, we can advise not to use the services of microfinance organizations. Their employees may well sell regularly updated databases to third parties.
Social Engineering. Fake emails that mimic official bank notifications, messages from payment systems and reminders to pay for services - all this stuff comes in the mail of the majority of active Internet users. And some are still underway. However, social engineering is famous for the fact that you can always come up with a new way to get the information you need from any person. So it's just worth being careful. I would especially like to note the danger of hacking sites. Illustrative example: recent fl.ru hack. If a hacker managed to leak the database, the carders almost certainly got a lot of new material. Due to the weak protection of small sites, we do not recommend newbies to make purchases in unverified online stores. Then their data may appear on the Internet. By the way, they are not that expensive.
Having typed enough payment information for itself, the carder starts shopping (the so-called "drive in"). He drives in information from a card when paying for an order in different stores, through different proxies. The success of the operation depends on the quality of the card, the intensity of its use, the correctness of the system settings, and a number of other factors. The goal is simple - to order the product / goods for the required amount. If the payment goes through on one of the sites, the order is sent to the address of a figurehead (intermediary drop) or to a mail forwarder. This stage is the most nervous one for any person involved in fraud. Forwarders often keep things for themselves, and forwarders regularly wrap parcels. There won't be enough nerves. But if the stars have formed, and things arrive at the warehouse, the carder immediately arranges for their delivery to himself. Immediately, because any delay increases the risk of being caught by the hand. Often, carders try to pay with other people's cards and forwarder services, but this is considered bad form. Experienced fraudsters often scold newbies for such activities.
Large stores, due to the large volume of sales, do not track transactions very closely, so they often send goods bought by a carder. Small online stores are more meticulous. They often contact us / the police / cardholder if they have doubts about the legality of a purchase. In this case, the package is delayed at the store's warehouse or with us. Another interesting way to make money is associated with fishisfast very indirectly. Carder publishes on the forum his announcements about the redemption of things from popular American sites with a 30-50% discount (they say, such a discount for volumes). Ordinary people, trustingly clapping their eyes, begin to use his services. They set up an account with an intermediary, pay the carder, and he sends the order in their name. That is, in fact, the carder himself does not use our services, he finds careless people who want to save too much, and therefore believe in free cheese. Then, when this scheme is revealed, people completely sincerely do not understand what they have done wrong and why their things are returned to the store (they paid for them, albeit with a 30-50% discount). When they start writing to that person, he safely disappears, deletes his topic on the forum and appears on the next one in search of the same naive people. Note, there are even whole fake forums where one of the users is offered Apple technology for 40% of the cost (look, there are many such sites). In fact, the forum is dead, and its only user is the same seller, he is also the administrator, he is also the guarantor, acting as an independent intermediary. Of course, the naive buyer will not receive the goods, because they simply will not be sent. And it is almost impossible to return the money.
The last defender
Fishisfast like any other responsible mail-forwarder, it acts as the last line of defense. No, in some cases it is possible to return even the sent parcel. But this is difficult and time-consuming. It is easier and more effective to prevent her from leaving the warehouse. And this is the main task of the anti-fraud system. By the way, it is multilevel in our country. We cannot tell all the secrets, but we will describe the most important stages.
• First stage: programmatic. According to a special algorithm, the system calculates the probability that the parcel belongs to the carder.
• Second stage: warehouse employees. Their trained eye and extensive experience allows them to detect suspicious messages.
• Third stage: antifraud specialist. A special person with extraordinary flair! Working no worse than the Great Firewall of China, it cuts off 95% of carder packages. All carders are really afraid of him. And this is good. If you think Since it's easy to keep track of those who engage in fraud, here's a photo of the parcel hall. They have just arrived and have been registered by the warehouse stuff. It is quite possible that somewhere here the carder package is bashfully hiding.
When we have suspicions about one of the users, we conduct a preliminary account check. It is harmless and invisible. The need for such checks often arises. The fact is that the names of famous people are actively used by carders. For example, a certain Sergei Zverev from Moscow does not even suspect that his account was being checked when combs came to Loker's address. The name is too big. It turned out to be a real coincidence. A similar situation was when we received a package from Mr. Bruce Lee.
We decided to contact the sender. He turned out to be a completely ordinary person, not even a relative of the famous martial artist. But now we can claim that Bruce Lee spoke with us.
However, all this is lyrics. When a carder comes across, the confrontation turns out to be epic. But more on that later.
Crash of hopes: where do carders get punctured?
Spelling. It would seem what a trifle! However, the inability to write in Russian / English very often spoils the karma of even experienced fraudsters. Although there are also phenomenal bloopers, like Julie Julie Marie Bartlett. No, no, this is not a typo. If you believe the scan sent, the person is really that name. And on all sorts of little things like the inscription Expired on instead of Expires on ("expired" instead of "expires") she asked not to pay attention in broken English. Hello Julie! We hope you are done stealing.
The quick reaction of sellers who received a chargeback notification also allows you to catch the carder by the hand. We are often contacted by private traders who want to report on another swindler.
The incompleteness of the "legend". When one name is indicated in the account, the parcel arrives at another, and the payment for the delivery goes through a third party - this naturally arouses suspicion.
Less frequently, letters come from online stores. But if such come, then they are carefully studied. All information is checked, and often after such checks, a woeful howl arises on the carder forums. Tears are already welling up.
Nervousness is another hallmark of everyone involved in fraud. The likelihood of being discovered scares the carder. And he almost certainly paid money for information about other people's bank cards. And in the event of any delays or situations that he does not understand, online terrorism begins. Support is constantly asked the same question: "where is the package?"
More than half of the carders are punctured by stupidity. For example, a letter comes to our office from a bank / PayPal, which says: "Sorry, Jon Snow, we can not open an account for you." The letter contains the address of this John's Locker, and we are surprised to see that Locker is registered to Vasisualia Lokhankin. “The ice is broken, gentlemen of the jury!”, We exclaim, and we block the account.
It is not uncommon for carders to try to use the social engineering mentioned above. They write to our technical support staff on social networks, ask different questions. One of them "fires the office" with 100% probability. This question in different variations sounds like this: "Is it possible to send parcels to the warehouse not in your own name, but in the name of an American friend?" Three times ha. Sometimes I just want to answer: guys, are you there at all? Another funny situation happened when one unlucky guy got himself a new "clean" account, but for some reason decided to talk to tech support. And all would be fine, only he wrote a letter from the email to which the previously blocked account was registered.
Cry: how the caught carders react
When there are serious questions about a parcel, we ask the person to confirm his identity and the fact of purchase. Ordinary people are immediately visible. First, they have a completely different communication style. Secondly, the photos and descriptions of the situation they send are natural. They are not shy about making calls trying to resolve the issue. Carders, on the other hand, start hysteria, sometimes swearing with all employees of the company at the same time.
They threaten us with heavenly punishments. Moreover, the list of these cars is very short: the Russian prosecutor's office, the American police, and the FBI. Especially cunning go to the forums, where they begin to broadcast about the world conspiracy in general and the infringement of their rights in particular. Vladimir Ulyanov-Lenin, with his famous speech on an armored car, nervously smokes on the sidelines, looking at these sermons. The main task of the carder in this situation is to persuade the public opinion in his direction. For this purpose, even special sites like the "Internet police", where information about fraudsters is published. But in a surprising way, ordinary companies turn out to be scammers. We are there too. Who would doubt it?
Sometimes the guys are not limited to the forum. They are looking for fishisfast employee accounts in social networks, and they write all sorts of nasty things there. Also, I must say, the same type. One very much offended comrade even began to complain about his bitter lot on our Facebook page. But it was quickly brought to clean water by our ordinary clients. We didn't even interfere, it was so funny. Sometimes carders choose a different way of communicating. They start tearfully asking to send them a package. Like, it happened by chance, next time they will pay for the order from their card, but this time a friend helped. They don't make up some tearful stories, wow. Do you remember the plaintive cat from "Shrek 2"? Here, one to one. There are also funny personalities. They admit that they really are carders, after which they offer to "negotiate". For example, share a parcel. Needless to say, they have no impudence. There was a case that can be called an exception to the rule. One carder was so offended at us that at first he bombarded each support employee with Skype threats, and then organized DDoS. This was unexpected, since such an attack is expensive. But we quickly turned on protection, and DDoS stalled. By the way, the same carder was most likely caught by some of our colleagues. Because their sites were also trying to "drop".
Fool me if you can
At the stage of requesting documents, many carders are eliminated. Basically - beginners and those whose package with things is not too expensive. The rest begin to cheat with documents. Someone draws them himself, someone orders from colleagues.
Someone sends documents to an intermediary drop. And someone buys real scans of documents. There are plenty of options.
As a rule, ordinary passport scans are forged. This is the easiest, and the Photoshop masters got their hands on it. Many fakes look very natural. The most seasoned specialists even promise to draw the necessary document for those who are asked for a photograph of a face along with a passport. There are also especially gifted individuals who are trying to send documents of the left (fines, for example). And they are outraged when they are not accepted. But often, a package of documents is prepared in a hurry, tyap-blooper. And this is clearly visible. There are also serious scammers. There were guys who made a copy of our site, changed the name and launched an advertisement in the US that they are hiring people to work as "forwarders" of mail. People got a job, and subsequently got into a serious alteration. After all, shops, together with the police, began to look for where the goods paid for with the stolen cards had gone. However, these same guys turned out to be too arrogant. They didn't remove our phone number from the FAQ. And one of the potential employees decided to call him. So we quickly learned about this whole scheme. And sternly shook their finger at them. The guys disappeared.
About shops
Since we stop parcels bought with stolen money, it is quite obvious that we are also responsible for the return. It would seem that the stores should be grateful to us, because we return them the goods that will not be paid for (chargeback will return the money to the card holder). However, in reality, the situation is completely different. Fishisfast employee, working with returns, spends a lot of time and effort on it. The fact is that store employees do not always understand what they are talking about. Words like "fraudulent" or "carded goods" sound unpleasant and scary to them. And we have to convince (!) The store to get the goods back. Although it is in their interests for the goods to be returned back, otherwise they will be left without goods and without money, which will return to the victim's card. And we, in turn, will have to allocate space in the warehouse for the goods awaiting return. As a rule, the easiest way to communicate with small shops. They understand the situation faster and may even send a letter of thanks when they receive the goods back. It is more difficult with large markets. Their system is poorly adapted to returns, so this process is slow. It is dragging on even more for the reason that in order to return the order, the store must send us a prepaid mailing label. The situation with one elite Canadian jewelry store is indicative. One of the carders ordered a fine gold bracelet with a stone for $ 237 there. Like this:
The order was delivered to us, but it turned out in the warehouse that the purchase was made using someone else's card. We blocked the account and immediately contacted the store. And instead of a postal label for return delivery, they sent a request to confirm the safety of the jewelry. They even asked if all the stones were in place, in what condition they were. No question - our employees prepared all the necessary documents and sent them to the store. And in response - silence. This bracelet is now in stock awaiting return.
We have already returned this wonderful Phantom 2 Vision + quadcopter.
Do you know how much it costs? Almost $ 1400! In the store, our employee was sincerely thanked.
By the way, for experienced carders the average “check” is just 1200-1400 dollars. But don't think that online stores are not fighting fraud in any way. Oh, how they are fighting! Especially for these purposes, they are implementing the CCFDs (Credit Card Fraud Detection service) system. Using special algorithms, the system determines the Fraud Score. And if the order gets Fraud Score above a certain value, the store gets a recommendation to pay attention to a specific order. It is frozen, and the buyer is offered Telephone Verification (communication by phone) or another option to verify the identity. By the way, banks have a similar anti-fraud system, this is Fair Issac or FICO. Fraud Score is calculated based on several factors. Here are the main ones: 1. IP range. The geographic location of the buyer is checked, IP correspondence of the cardholder / online store to the buyer's IP. 2. Email. Suspicions are caused by free postal addresses, as well as those that are on the black list or do not correspond to the country of the cardholder. 3. Proxy. Free proxies often provide blacklisted IPs. This must be taken into account. 4. The danger of the country. There are countries with a high level of fraud. For example, Russia, Ukraine, Moldova, Belarus, Philippines, Hong Kong, Egypt, Indonesia, Lebanon, Macedonia. But each bank and store has its own list of such countries. 5. Range. The distance between the buyer's IP and the delivery address is calculated. 6. BIN of the bank. The card number is being checked for compliance with the buyer's IP and the country of the bank that issued the card. 7. Http headers. Some browsers provide open information about the buyer's localization, the operating system used, etc. This data is also analyzed. Here is a good example of the Fraud Score formula. The buyer found a previously used e-mail box (2.5% of the risk), a large IP remoteness (4.3%), not closed headers (5.5%). Accordingly, FS = 2.5 x 4.3 x 5.5 = 59.12%. The critical purchase threshold is usually less than 40%, so this payment is likely to be rejected.
Antifraud in MySQL of one of the stores looks like this:
Guarding the law
And what about the brave American police officers who can single-handedly save the world from the zombie apocalypse? Aren't they fighting fraud? They are fighting. Of course, they do not sit idly by. Three different organizations deal with these issues. Actually the police, the FBI and the United States Secret Service (USSS). After receiving a request from the affected cardholder, they contact the store where the purchase was made. The store reports the address where the order was sent. If this is the address of the forwarding company, then the authorities are sent there to "talk". One simple policeman can come, as well as a whole group of serious people in strict suits. They get acquainted with the principle of the company and ask for information about a client suspected of fraud. And then there is already work on the search for a person and the determination of the expediency of his international search. We often receive calls from the local police station, as victims try to file complaints there. Carder data, purchase amount and other nuances are reported. Sometimes we already call, since each detected case of fraud is recorded and legally formalized, after which it is sent to the table of our curator.
Instead of an afterword
Being a mail forwarder is not easy. Carders do not like us, trying in every possible way to deceive or defraud. We are offended by the stores to which we return the goods. Our support girls sometimes try to offend and insult. Although most often it goes to the only guy from the support. However, they do it. Therefore, we still remain a serious obstacle for lovers of easy profit, while at the same time providing a profitable service for normal buyers. There are many more of them. And we always have good relations with them.
taker.im
- Introduction
- How do carders work?
- The last defender
- Crash of hopes: where do carders get punctured?
- Cry: how the caught carders react
- Fool me if you can
- About shops
- Guarding the law
- Instead of an afterword
Introduction
Russian buyers often and willingly place orders in US stores. It is convenient, profitable and simple. At the same time, half (if not more) of the goods go through mail forwarders. These companies help you save on shipping or get an item that is not sent outside the United States. But in the idyllic picture of overseas shopping, an ugly spot almost immediately appeared. This refers to the scammers who always revolve around the service industry. They quickly recognized the benefits of American shopping and began looking for ways to make money easier. This is how carder was born. Carders (scammers, fraudsters, frauders) are people who pay for their purchases with someone else's bank card, the payment details of which they were able to take possession of. Carders can be roughly divided into two categories. The first is those who buy for themselves, the second is those who make money by reselling goods. Phones, tablets, cameras, other electronics, expensive Lego sets are on sale. GoPro cameras are very popular now. For themselves, carders try to order elite clothes, shoes, accessories. For example, here's a $ 1,100 jacket that we recently returned to the store. And somewhere on the other side of the monitor, reading these lines, its failed owner is crying.
It should be understood that carders are actually thieves, financial fraudsters. Fishisfast collides mainly with those who live in Russia and the CIS countries. These people try to work with bank cards of foreigners. Otherwise, the likelihood of a personal meeting with people in uniform increases several times. And carders are very shy by nature, and they are extremely shy of these meetings. The cards of the residents of the USA are especially loved by Russian-speaking carders. They even position themselves almost like Robin Hoods. They say they steal from the rich for the benefit of the poor. But recently, the European direction of carding has been developing more and more actively. Do not think that there is no fraud problem in other countries. Just a week ago, we spotted a carder from the UAE who ordered several Xbox games. This is not a typical case, but it also happens. There are large forums for carders where they exchange useful information, looking for dummies to receive and send goods (drops), offer their services and illegally purchased goods. A significant proportion of such forums are located in the * .onion zone, some are closed from search, but some can also be found through a regular search engine.
How do carders work?
There are many schemes for the fraudulent community to obtain payment information. And it is not surprising, because a lot of people are working on this issue. There is a whole underground data mining industry. The most commonly used skimming (theft of card data using a special reader) and banal theft. There are even fake ATMs. The network industry of this business is also well developed. On the Internet, the necessary information is obtained in the following way:
Phishing. Using fake sites (for example, copies of PayPal), fraudsters get a lot of valuable data. From here it is worth concluding: do not believe your eyes, check the address bar.
Breaking into. Online stores and other sites with a large base of paying users are hacked and data leaked into the hands of cybercriminals. You can do without hacking if you bribe one of the site's employees. Alternative option: buying a dying store with a base of all customers, after which the store goes to the dustbin of history, and the base goes from hand to hand.
Use of official position. Employees of the processing center can transfer information to an accomplice in a large volume. And if this employee works in a bank, then he becomes a real gold mine. Therefore, carders are diligently looking for them. And, oddly enough, they find it. As a recommendation for protection, we can advise not to use the services of microfinance organizations. Their employees may well sell regularly updated databases to third parties.
Social Engineering. Fake emails that mimic official bank notifications, messages from payment systems and reminders to pay for services - all this stuff comes in the mail of the majority of active Internet users. And some are still underway. However, social engineering is famous for the fact that you can always come up with a new way to get the information you need from any person. So it's just worth being careful. I would especially like to note the danger of hacking sites. Illustrative example: recent fl.ru hack. If a hacker managed to leak the database, the carders almost certainly got a lot of new material. Due to the weak protection of small sites, we do not recommend newbies to make purchases in unverified online stores. Then their data may appear on the Internet. By the way, they are not that expensive.
Having typed enough payment information for itself, the carder starts shopping (the so-called "drive in"). He drives in information from a card when paying for an order in different stores, through different proxies. The success of the operation depends on the quality of the card, the intensity of its use, the correctness of the system settings, and a number of other factors. The goal is simple - to order the product / goods for the required amount. If the payment goes through on one of the sites, the order is sent to the address of a figurehead (intermediary drop) or to a mail forwarder. This stage is the most nervous one for any person involved in fraud. Forwarders often keep things for themselves, and forwarders regularly wrap parcels. There won't be enough nerves. But if the stars have formed, and things arrive at the warehouse, the carder immediately arranges for their delivery to himself. Immediately, because any delay increases the risk of being caught by the hand. Often, carders try to pay with other people's cards and forwarder services, but this is considered bad form. Experienced fraudsters often scold newbies for such activities.
Large stores, due to the large volume of sales, do not track transactions very closely, so they often send goods bought by a carder. Small online stores are more meticulous. They often contact us / the police / cardholder if they have doubts about the legality of a purchase. In this case, the package is delayed at the store's warehouse or with us. Another interesting way to make money is associated with fishisfast very indirectly. Carder publishes on the forum his announcements about the redemption of things from popular American sites with a 30-50% discount (they say, such a discount for volumes). Ordinary people, trustingly clapping their eyes, begin to use his services. They set up an account with an intermediary, pay the carder, and he sends the order in their name. That is, in fact, the carder himself does not use our services, he finds careless people who want to save too much, and therefore believe in free cheese. Then, when this scheme is revealed, people completely sincerely do not understand what they have done wrong and why their things are returned to the store (they paid for them, albeit with a 30-50% discount). When they start writing to that person, he safely disappears, deletes his topic on the forum and appears on the next one in search of the same naive people. Note, there are even whole fake forums where one of the users is offered Apple technology for 40% of the cost (look, there are many such sites). In fact, the forum is dead, and its only user is the same seller, he is also the administrator, he is also the guarantor, acting as an independent intermediary. Of course, the naive buyer will not receive the goods, because they simply will not be sent. And it is almost impossible to return the money.
The last defender
Fishisfast like any other responsible mail-forwarder, it acts as the last line of defense. No, in some cases it is possible to return even the sent parcel. But this is difficult and time-consuming. It is easier and more effective to prevent her from leaving the warehouse. And this is the main task of the anti-fraud system. By the way, it is multilevel in our country. We cannot tell all the secrets, but we will describe the most important stages.
• First stage: programmatic. According to a special algorithm, the system calculates the probability that the parcel belongs to the carder.
• Second stage: warehouse employees. Their trained eye and extensive experience allows them to detect suspicious messages.
• Third stage: antifraud specialist. A special person with extraordinary flair! Working no worse than the Great Firewall of China, it cuts off 95% of carder packages. All carders are really afraid of him. And this is good. If you think Since it's easy to keep track of those who engage in fraud, here's a photo of the parcel hall. They have just arrived and have been registered by the warehouse stuff. It is quite possible that somewhere here the carder package is bashfully hiding.
When we have suspicions about one of the users, we conduct a preliminary account check. It is harmless and invisible. The need for such checks often arises. The fact is that the names of famous people are actively used by carders. For example, a certain Sergei Zverev from Moscow does not even suspect that his account was being checked when combs came to Loker's address. The name is too big. It turned out to be a real coincidence. A similar situation was when we received a package from Mr. Bruce Lee.
We decided to contact the sender. He turned out to be a completely ordinary person, not even a relative of the famous martial artist. But now we can claim that Bruce Lee spoke with us.
However, all this is lyrics. When a carder comes across, the confrontation turns out to be epic. But more on that later.
Crash of hopes: where do carders get punctured?
Spelling. It would seem what a trifle! However, the inability to write in Russian / English very often spoils the karma of even experienced fraudsters. Although there are also phenomenal bloopers, like Julie Julie Marie Bartlett. No, no, this is not a typo. If you believe the scan sent, the person is really that name. And on all sorts of little things like the inscription Expired on instead of Expires on ("expired" instead of "expires") she asked not to pay attention in broken English. Hello Julie! We hope you are done stealing.
The quick reaction of sellers who received a chargeback notification also allows you to catch the carder by the hand. We are often contacted by private traders who want to report on another swindler.
The incompleteness of the "legend". When one name is indicated in the account, the parcel arrives at another, and the payment for the delivery goes through a third party - this naturally arouses suspicion.
Less frequently, letters come from online stores. But if such come, then they are carefully studied. All information is checked, and often after such checks, a woeful howl arises on the carder forums. Tears are already welling up.
Nervousness is another hallmark of everyone involved in fraud. The likelihood of being discovered scares the carder. And he almost certainly paid money for information about other people's bank cards. And in the event of any delays or situations that he does not understand, online terrorism begins. Support is constantly asked the same question: "where is the package?"
More than half of the carders are punctured by stupidity. For example, a letter comes to our office from a bank / PayPal, which says: "Sorry, Jon Snow, we can not open an account for you." The letter contains the address of this John's Locker, and we are surprised to see that Locker is registered to Vasisualia Lokhankin. “The ice is broken, gentlemen of the jury!”, We exclaim, and we block the account.
It is not uncommon for carders to try to use the social engineering mentioned above. They write to our technical support staff on social networks, ask different questions. One of them "fires the office" with 100% probability. This question in different variations sounds like this: "Is it possible to send parcels to the warehouse not in your own name, but in the name of an American friend?" Three times ha. Sometimes I just want to answer: guys, are you there at all? Another funny situation happened when one unlucky guy got himself a new "clean" account, but for some reason decided to talk to tech support. And all would be fine, only he wrote a letter from the email to which the previously blocked account was registered.
Cry: how the caught carders react
When there are serious questions about a parcel, we ask the person to confirm his identity and the fact of purchase. Ordinary people are immediately visible. First, they have a completely different communication style. Secondly, the photos and descriptions of the situation they send are natural. They are not shy about making calls trying to resolve the issue. Carders, on the other hand, start hysteria, sometimes swearing with all employees of the company at the same time.
They threaten us with heavenly punishments. Moreover, the list of these cars is very short: the Russian prosecutor's office, the American police, and the FBI. Especially cunning go to the forums, where they begin to broadcast about the world conspiracy in general and the infringement of their rights in particular. Vladimir Ulyanov-Lenin, with his famous speech on an armored car, nervously smokes on the sidelines, looking at these sermons. The main task of the carder in this situation is to persuade the public opinion in his direction. For this purpose, even special sites like the "Internet police", where information about fraudsters is published. But in a surprising way, ordinary companies turn out to be scammers. We are there too. Who would doubt it?
Sometimes the guys are not limited to the forum. They are looking for fishisfast employee accounts in social networks, and they write all sorts of nasty things there. Also, I must say, the same type. One very much offended comrade even began to complain about his bitter lot on our Facebook page. But it was quickly brought to clean water by our ordinary clients. We didn't even interfere, it was so funny. Sometimes carders choose a different way of communicating. They start tearfully asking to send them a package. Like, it happened by chance, next time they will pay for the order from their card, but this time a friend helped. They don't make up some tearful stories, wow. Do you remember the plaintive cat from "Shrek 2"? Here, one to one. There are also funny personalities. They admit that they really are carders, after which they offer to "negotiate". For example, share a parcel. Needless to say, they have no impudence. There was a case that can be called an exception to the rule. One carder was so offended at us that at first he bombarded each support employee with Skype threats, and then organized DDoS. This was unexpected, since such an attack is expensive. But we quickly turned on protection, and DDoS stalled. By the way, the same carder was most likely caught by some of our colleagues. Because their sites were also trying to "drop".
Fool me if you can
At the stage of requesting documents, many carders are eliminated. Basically - beginners and those whose package with things is not too expensive. The rest begin to cheat with documents. Someone draws them himself, someone orders from colleagues.
Someone sends documents to an intermediary drop. And someone buys real scans of documents. There are plenty of options.
As a rule, ordinary passport scans are forged. This is the easiest, and the Photoshop masters got their hands on it. Many fakes look very natural. The most seasoned specialists even promise to draw the necessary document for those who are asked for a photograph of a face along with a passport. There are also especially gifted individuals who are trying to send documents of the left (fines, for example). And they are outraged when they are not accepted. But often, a package of documents is prepared in a hurry, tyap-blooper. And this is clearly visible. There are also serious scammers. There were guys who made a copy of our site, changed the name and launched an advertisement in the US that they are hiring people to work as "forwarders" of mail. People got a job, and subsequently got into a serious alteration. After all, shops, together with the police, began to look for where the goods paid for with the stolen cards had gone. However, these same guys turned out to be too arrogant. They didn't remove our phone number from the FAQ. And one of the potential employees decided to call him. So we quickly learned about this whole scheme. And sternly shook their finger at them. The guys disappeared.
About shops
Since we stop parcels bought with stolen money, it is quite obvious that we are also responsible for the return. It would seem that the stores should be grateful to us, because we return them the goods that will not be paid for (chargeback will return the money to the card holder). However, in reality, the situation is completely different. Fishisfast employee, working with returns, spends a lot of time and effort on it. The fact is that store employees do not always understand what they are talking about. Words like "fraudulent" or "carded goods" sound unpleasant and scary to them. And we have to convince (!) The store to get the goods back. Although it is in their interests for the goods to be returned back, otherwise they will be left without goods and without money, which will return to the victim's card. And we, in turn, will have to allocate space in the warehouse for the goods awaiting return. As a rule, the easiest way to communicate with small shops. They understand the situation faster and may even send a letter of thanks when they receive the goods back. It is more difficult with large markets. Their system is poorly adapted to returns, so this process is slow. It is dragging on even more for the reason that in order to return the order, the store must send us a prepaid mailing label. The situation with one elite Canadian jewelry store is indicative. One of the carders ordered a fine gold bracelet with a stone for $ 237 there. Like this:
The order was delivered to us, but it turned out in the warehouse that the purchase was made using someone else's card. We blocked the account and immediately contacted the store. And instead of a postal label for return delivery, they sent a request to confirm the safety of the jewelry. They even asked if all the stones were in place, in what condition they were. No question - our employees prepared all the necessary documents and sent them to the store. And in response - silence. This bracelet is now in stock awaiting return.
We have already returned this wonderful Phantom 2 Vision + quadcopter.
Do you know how much it costs? Almost $ 1400! In the store, our employee was sincerely thanked.
By the way, for experienced carders the average “check” is just 1200-1400 dollars. But don't think that online stores are not fighting fraud in any way. Oh, how they are fighting! Especially for these purposes, they are implementing the CCFDs (Credit Card Fraud Detection service) system. Using special algorithms, the system determines the Fraud Score. And if the order gets Fraud Score above a certain value, the store gets a recommendation to pay attention to a specific order. It is frozen, and the buyer is offered Telephone Verification (communication by phone) or another option to verify the identity. By the way, banks have a similar anti-fraud system, this is Fair Issac or FICO. Fraud Score is calculated based on several factors. Here are the main ones: 1. IP range. The geographic location of the buyer is checked, IP correspondence of the cardholder / online store to the buyer's IP. 2. Email. Suspicions are caused by free postal addresses, as well as those that are on the black list or do not correspond to the country of the cardholder. 3. Proxy. Free proxies often provide blacklisted IPs. This must be taken into account. 4. The danger of the country. There are countries with a high level of fraud. For example, Russia, Ukraine, Moldova, Belarus, Philippines, Hong Kong, Egypt, Indonesia, Lebanon, Macedonia. But each bank and store has its own list of such countries. 5. Range. The distance between the buyer's IP and the delivery address is calculated. 6. BIN of the bank. The card number is being checked for compliance with the buyer's IP and the country of the bank that issued the card. 7. Http headers. Some browsers provide open information about the buyer's localization, the operating system used, etc. This data is also analyzed. Here is a good example of the Fraud Score formula. The buyer found a previously used e-mail box (2.5% of the risk), a large IP remoteness (4.3%), not closed headers (5.5%). Accordingly, FS = 2.5 x 4.3 x 5.5 = 59.12%. The critical purchase threshold is usually less than 40%, so this payment is likely to be rejected.
Antifraud in MySQL of one of the stores looks like this:
Code:
algzone_fraud_queries
order_id
ip_address
last_date_queried
fraud_level
err_message
distance_m
distance_k
country_code
country_match
free_email
customer_phone_inloc
proxy_level
spam_level
high_risk_country
anonymous_proxy
ip_city ip_region
ip_isp ip_org ip_latitude
ip_longitude
bin_country_code
bin_match
bank_name_match
bank_name
bank_phone_match
bank_phoneGuarding the law
And what about the brave American police officers who can single-handedly save the world from the zombie apocalypse? Aren't they fighting fraud? They are fighting. Of course, they do not sit idly by. Three different organizations deal with these issues. Actually the police, the FBI and the United States Secret Service (USSS). After receiving a request from the affected cardholder, they contact the store where the purchase was made. The store reports the address where the order was sent. If this is the address of the forwarding company, then the authorities are sent there to "talk". One simple policeman can come, as well as a whole group of serious people in strict suits. They get acquainted with the principle of the company and ask for information about a client suspected of fraud. And then there is already work on the search for a person and the determination of the expediency of his international search. We often receive calls from the local police station, as victims try to file complaints there. Carder data, purchase amount and other nuances are reported. Sometimes we already call, since each detected case of fraud is recorded and legally formalized, after which it is sent to the table of our curator.
Instead of an afterword
Being a mail forwarder is not easy. Carders do not like us, trying in every possible way to deceive or defraud. We are offended by the stores to which we return the goods. Our support girls sometimes try to offend and insult. Although most often it goes to the only guy from the support. However, they do it. Therefore, we still remain a serious obstacle for lovers of easy profit, while at the same time providing a profitable service for normal buyers. There are many more of them. And we always have good relations with them.
taker.im
