2/16/2012 4:29 PM ET|
Stolen credit cards for $3.50 online
Cyberthieves steal information worth hundreds of millions of dollars that is bought and sold every year in a thriving underground.
In mid-September, a European hacker nicknamed Poxxie broke into the computer network of a U.S. company and, he said, grabbed 1,400 credit card numbers, the account holders' names and addresses, and the security code that comes with each card.
With little trouble, he sold the numbers for $3.50 each on his own site, called CVV2s.in, to underworld buyers who have come to trust the quality of his goods, he said.
"The main thing in any business is honesty," Poxxie said, without any apparent trace of irony.
The Traverse City, Mich.-based Ponemon Institute, which researches data security, estimates that thieves annually steal 8.4 million credit card numbers in the U.S. alone. How do cyberbandits, who have turned hacking into a volume business, unload all those numbers? A lot like Amazon.com, it turns out.
Customers on CVV2s can search for card numbers by bank, card type, credit limit and ZIP code, loading them into a virtual shopping basket as they go. The site offers the ability to search by bank identification number. That means customers can choose cards by institutions known to have weak security, Poxxie said. CVV2s even has an automated feature that lets clients validate the numbers in real time, to make sure the bank hasn't canceled the card.
Sites like Poxxie's make up the cyber-underworld's version of a pirates cove, offering their online booty at cut-rate prices. Stolen data worth hundreds of millions of dollars are bought and sold in underground chat rooms and forums every year, a fencing operation that becomes more robust annually, according to RSA, the security division of EMC. CrackHackForum.com, one of the sites, even mimics eBay, rating buyers and sellers with starred reviews.
$114 billion a year
Symantec, the cybersecurity firm, estimates that cyberthieves steal data worth $114 billion a year. By comparison, the FBI said the take from all bank robberies in the U.S. in 2010 was just $43 million. The global market in cocaine is an estimated $85 billion, according to the United Nations.
"The problem is getting worse faster than we're getting better," said Tony Sager, the chief operating officer of the Information Assurance Directorate at the National Security Agency, which includes some of the U.S. government's best cyberexperts. "We're not keeping pace."
To look inside the cyberbazaar, to find details on prices and goods for sale, Bloomberg News gathered information through publicly available websites and in restricted forums, aided in this search by cybersecurity experts. Some of the information was provided through online interviews with participants, who protected their real identities as they discussed details of their lives and criminal operations.
How to verify
The cyber-underground thrives because of anonymity: Hackers can devise any persona to conduct business and use a variety of technical tricks to hide their tracks. Their stories were verified to the extent possible by security experts who have watched the careers and methods of specific hackers for years.
As recently as 2008, the fight between those who protect computer networks and those who attack them was about evenly matched. That's no longer the case, according to the cybercops. The defenders are losing the battle because of a combination of their opponents' technical achievements and rapid advances in a global supply chain of theft.
In 2009, Symantec cataloged 2.8 million new viruses infecting computers. A year later, that number had jumped to 286 million. One reason for the hundredfold growth is that sophisticated viruses now change their digital signatures as they infect new machines. Because anti-virus software uses a catalog of known signatures to stop infections, the dominant cybersecurity technology in many cases is useless as a result.
More from Bloomberg:
VIDEO ON MSN MONEY
If someone steals my identity, I believe I should have the legal right to "eliminate" that person, much as I would have a tumor removed, limb amputated, etc.
The credit card companies should have customers enter a pin# to make a transaction just like debit cards.This alone would keep a thief from being able to use a credit card by just swiping it.Also if all the credit card companies did this it would make it next to impossible to use a card they've stolen.People need to keep a close eye on their cards as well and immediately cancel the card if it is missing or stolen.Just common sense folks!
In UK, Ferance, Germany and so on ALL use Pin# to use the card where ever they go yes even in the USA.
We in the USA are the ones behind in credit cards sad but true!
prices below. NO MINIMAL ORDER ONLY FIRST time to test cc quality, other
times not selling 1cc etc.
thanks for interest and good luck`,.!
valid rate 75-95% , depends on your luck
PRICES DEPENDS ONLY ON PURCHASED AMOUNT OF CARDS
ДЕШЕВЫЕ КАРТЫ, НЕТ МИНИМАЛЬНАЯ СУММА ПОКУПКИ В ПЕРВЫЙ РАЗ :)
USA CC sellout for LOWEST PRICES:::
USA fullzs=5 to 10$ a piece
USA SSN/DOB lookup=2 to 4$ per each
UK cc=3 to 8$ a piece
UK fullzs=10 to 20$ a piece
UK DOB lookup=2 to 4$ per each
Accepted payments - Libertyreserve.com [no minimal payment amount],
Western Union [80$ min], WMnote [200$ min]
PRICES ARE HIGHER IF YOU BUY SMALL AMOUNT OF CARDS///
CARDS SENT HERE ARE USED BUT REAL, JUST AS SAMPLES
КАРТЫ здесь ИСПОЛЬЗУЮТСЯ Но настоящие, так же как ОБРАЗЦЫ
привет, нет д+п, просто т2 т1 [дампы]. некто не продают д+п, ето булшит.
спасибо до интересов`
NO DUMPS WITH PIN. no one sells their dumps with pin. just dumps.
USA cc tracks [dumps/swipes]
if not otherwise specified service code 101 and credit bin being sent
paypal verified without balance but with CC and Bank attacheD [eligible to spend funds]=5USD a piece.
paypal with balance = approx 5 to 15% from sum in balance. tell approximate amount you are looking for in balance and i tell exact price.
Love and Knowledge`.
samples ::: real but USED OLD info, just as samples
4122990025357614 Janeen Luening 04/11 228 11385 Schuman Rd DUMAS TX 79029 US US Citibank (South Dakota), N.A. CREDIT BUSINESS
4465420161544564 Debbi Donota 02/12 782 4504 S Cliff Ave SIOUX FALLS SD 57103 US US Wells Fargo Bank, N.A. CREDIT PLATINUM
4559511500545655 Darrin Doyle 10/11 263 1089 Salem pike Cynthiana 41031 KY US 1-859-234-1291 Washington Mutual Bank CREDIT GOLD/PREM
4147110365768020 Richard Cascarano 10/13 606 205 Fox Run Libertyville 60048 IL US 1-847-987-0647 Citibank (South Dakota), N.A. CREDIT SIGNATURE
stolen credit card numbers for sell buy cc numbers magnetic EMV smart IC chip mag stripe card Reader and writer ATM skimming skimmer CVV dumps tracks swipes Wincor BOA paypal logins cuy stolen CC numbers for sell credit card platinum business signature gold classic visa amex mastercard vbv vbm debit ACTA SOPA CNET MSR605 MSR 605 MSR 90 MSR 606 Diebold 562 ATM parts NCR 5884 5885 5684 5875 anti Fraud device anti skimmer with lock sign msr 206 micheal barack obama elections 2012 end of the world december anonymous hack hacking letter USA attack Iran crazy Russia attack vodka infraud ministry of fraudulent affairs BBW SSBBW love i love you dope DOD D.O.D dark drum and b****ket limewax perevorot vladimir putin north korea
sopa [ stop online piracy act ] alive fresh cc numbers buy
pipa [ PROTECT IP Act ; Personal Information Protection Act ]
acta [ Anti-Counterfeiting Trade Agreement ]
Copyright © 2013 Microsoft. All rights reserved.
Fundamental company data and historical chart data provided by Morningstar Inc. Real-time index quotes and delayed quotes supplied by Morningstar Inc. Quotes delayed by up to 15 minutes, except where indicated otherwise. Fund summary, fund performance and dividend data provided by Morningstar Inc. Analyst recommendations provided by Zacks Investment Research. StockScouter data provided by Verus Analytics. IPO data provided by Hoover's Inc. Index membership data provided by Morningstar Inc.