chushpan
Professional
- Messages
- 696
- Reaction score
- 463
- Points
- 63
A call service (or dialer) is a tool or method used by carders to check the functionality of stolen bank card data. The essence of a call is to make a test call through specialized services (for example, VoIP platforms) or use automated systems to confirm that the card is active and has a sufficient balance to perform transactions.
A call service also does phone carding (ordering goods in an online store), redirecting parcels to a drop address (performs rerouting), confirming the cardholder's personal data or transactions in banks, payment systems and any other services that are performed over the phone, such as dating scams and others.
The average cost of a call is $10-20 depending on where to call, duration, recording of the conversation and the complexity of social engineering.
I will write below how a call service can check the validity of a card.
If you have additional questions about call services or related topics, ask them!
A call service also does phone carding (ordering goods in an online store), redirecting parcels to a drop address (performs rerouting), confirming the cardholder's personal data or transactions in banks, payment systems and any other services that are performed over the phone, such as dating scams and others.
The average cost of a call is $10-20 depending on where to call, duration, recording of the conversation and the complexity of social engineering.
I will write below how a call service can check the validity of a card.
1. How does the call service work?
The call service is used to "test" stolen cards before using them in larger fraudulent schemes. The process is as follows:a. Entering card details
- The attacker enters the stolen card data (card number, expiration date, CVV) into the calling service system.
b. Test transaction
- The calling service performs a small transaction (for example, 1-5) through partner platforms such as:
- Online stores.
- Payment gateways.
- VoIP services (eg Skype, Zoom).
c. Checking the answer
- The service checks whether the transaction was successful:
- If the transaction is approved, the card is considered "live".
- If the transaction is declined, the card is marked as "dead".
d. Report
- The results of the check are sent to the attacker, who decides how to use the card further.
2. What is the call service used for?
a. Checking the functionality of the cards
- Make sure the card is active and has a positive balance.
b. Checking Limits
- Determine what amounts can be withdrawn or spent without blocking the card.
c. Security testing
- Find out if the bank requires additional authentication (for example, 3D Secure).
d. Preparing for fraud
- Before using the card in larger schemes (for example, purchasing goods or withdrawing cash).
3. Where are call services used?
a. VoIP platforms
- Attackers use VoIP services to make test calls. For example:
- Top up your account on Skype or other platforms.
- Checking if the payment went through.
b. Online stores
- Small online stores or Cardable 2D sites are used to test cards.
c. ATMs
- In some cases, a call is made to confirm an ATM transaction when withdrawing cash from cloned cards.
d. Specialized services
- There are underground services that offer automated card testing for a fee.
4. What are the risks associated with call services?
For banks and cardholders
- Detecting a data leak: Ringing may be the first sign that a card has been compromised.
- Financial Losses: Even small test transactions can result in losses for cardholders.
For attackers
- Law enforcement surveillance: Banks and payment systems may monitor suspicious transactions.
- Card Blocking: Once a test transaction is detected, the bank may block the card.
5. Measures to protect against calling services
For banks
- Monitoring suspicious transactions:
- Tracking small transactions, especially in unfamiliar categories (e.g. VoIP services).
- Implementation of 3D Secure:
- Additional authentication makes it more difficult to use stolen cards.
- Responding to anomalies:
- Blocking a card after suspicious activity is detected.
For users
- Check your statements regularly:
- Pay attention to small transactions that you did not make.
- Use two-factor authentication (2FA):
- Protect your accounts from unauthorized access.
- Be careful with card data:
- Do not enter card details on suspicious websites.
6. Example of using the call service
Scenario: Checking a Stolen Card
- The attacker obtains card data (number, expiration date, CVV).
- The data is loaded into the dialing service.
- The service makes a test transaction of $1 via the VoIP platform.
- If the transaction is successful, the card is marked as "live".
- The fraudster uses the card to purchase goods or withdraw cash.
7. Conclusion
A call service is an important tool in the carders' arsenal, allowing them to check the functionality of stolen cards before using them and other carding and scam methods. However, modern security systems such as transaction monitoring, 3D Secure and two-factor authentication make the use of such methods much more difficult. To protect yourself from call services, it is important to follow security rules and carefully monitor your banking transactions.If you have additional questions about call services or related topics, ask them!
