3D secure bypass. How to Bypass the 3D Secure Protection System: Simple Methods
3D Secure Bypass - Banking Security Analysis
How to perform an operation like 3D Secure bypass and what is it? Sooner or later, all people who want to buy something in online stores come across such a system. But how secure is 3D Secure?
What is 3D Secure
3D Secure is a specialized security protocol used by bank card users to pay for services over the Internet. Thanks to technology, banks and merchants can be protected from fraud. At the same time, the system does not guarantee that the cardholder's funds will remain safe.
Knowing what 3D Secure is, you can at least roughly understand how it works. For example, you ordered a product. It has been added to the "basket". After that, pop-ups usually appear. On them, the user will be asked to indicate:
bank card number; expiration date; Full name of the owner; numbers with a security code.
Next, the buyer is sent to the page of the credit company that issued the card. This is where the user enters an additional security code.
The main advantage of the security system is that all information entered by a person remains only on the bank's server. This data does not go to the store where the user bought something. The second advantage is the use of a one-time code sent by the bank to confirm authentication. However, this very plus can turn into a significant minus. With the help of specialized programs or trivial viruses, scammers are able to intercept such data. To do this, it is enough to accidentally install any infected application on your phone and personal computer once. There is also a second drawback - not every online store wants to connect 3D Secure for itself. This is not prohibited or punishable by law, as the system is optional.
Bypass 3D Secure
As you can see, the above disadvantages are quite serious. They are known to most scammers, so experienced cybercriminals use them periodically. Moreover, they bypass the protection system with amazing ease. The easiest way to do this is with online stores that are not connected to 3D Secure (in fact, there are many of them, and in some stores this technology is disabled up to a certain amount). Even novice hackers sometimes steal money from users' bank cards without any problems because of this serious drawback.
But sellers are also on the alert, as they do not want to lose their reputation with their customers. For this, a banal, but at the same time cunning way was invented. The owner of the online store calls the credit company with a request to block a certain amount on the user's account. After that, the owner of the bank card calls back to the organization and answers a series of questions in order to be authenticated. Then he names the amount of blocked money and informs the seller about it. The scheme is rather inconvenient, but it still allows you to secure the funds on the account.
There is also another rather curious, but quite standard option for bypassing 3D Secure. It is called "the man in the browser". A special virus is sent to the computer owner unnoticed by him, which for a long time does not manifest itself in any way. That is why many antivirus programs do not notice it. The malicious application neatly intercepts the data and changes it. The calculation is based on the fact that a person will not see anything. Therefore, you should always read what comes in the SMS from the bank during the purchase or transfer of funds.
To avoid such problems, try to completely scan your computers and other gadgets for viruses more often. Also, do not go to questionable sites and do not download anything from them.
Well, one of the most interesting tips for bypassing this technology is the use of payment intermediaries, for example, the PayPal payment system. In the "stick" it is enough to connect your card according to the known data, and with further payments there will be no more special codes.
As you can see, the above disadvantages are quite serious. They are known to most scammers, so experienced cybercriminals use them periodically. Moreover, they bypass the protection system with amazing ease. The easiest way to do this is with online stores that are not connected to 3D Secure (in fact, there are many of them, and in some stores this technology is disabled up to a certain amount). Even novice hackers sometimes steal money from users' bank cards without any problems because of this serious drawback.
But sellers are also on the alert, as they do not want to lose their reputation with their customers. For this, a banal, but at the same time cunning way was invented. The owner of the online store calls the credit company with a request to block a certain amount on the user's account. After that, the owner of the bank card calls back to the organization and answers a series of questions in order to be authenticated. Then he names the amount of blocked money and informs the seller about it. The scheme is rather inconvenient, but it still allows you to secure the funds on the account.
There is also another rather curious, but quite standard option for bypassing 3D Secure. It is called "the man in the browser". A special virus is sent to the computer owner unnoticed by him, which for a long time does not manifest itself in any way. That is why many antivirus programs do not notice it. The malicious application neatly intercepts the data and changes it. The calculation is based on the fact that a person will not see anything. Therefore, you should always read what comes in the SMS from the bank during the purchase or transfer of funds.
To avoid such problems, try to completely scan your computers and other gadgets for viruses more often. Also, do not go to questionable sites and do not download anything from them.
Well, one of the most interesting tips for bypassing this technology is the use of payment intermediaries, for example, the PayPal payment system. In the "stick" it is enough to connect your card according to the known data, and with further payments there will be no more special codes.
How carders were able to bypass protection
According to Group-IB experts, scammers created fake online stores with popular goods, including those in short supply during the coronavirus pandemic, to attract more buyers. Immediately after the user entered his personal data to purchase the goods he was interested in, from the payment pages of such stores, a request was sent to the services of acquiring banks (MerchantPlug-In (MPI)), to which these stores are connected.
In response to these requests, the bank sends the payment page information about the payment and its recipient in encrypted form (PaReq), which is then displayed on the 3DS authorization page, as well as the address of the 3DS page of the issuing bank that issued the user's card. The response also contains a link to the page to which, after confirming the payment with a one-time code from SMS, the user will be redirected.
The best way to bypass 3-D secure
1. Create a picture file with a scripted stealer
2. We send a malicious image to the cardholder via WhatsApp or Viber
3. Cardholder opens the picture on his mobile device
4. Stealer-keylogger is loaded into the victim's system
5. We get access to all SMS messages (OTP) that come to the victim's phone
6. When paying by card on any site, we indicate the code in SMS to confirm the payment.