Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Cracker Gains Access to 2.2 Million Credit Cards

timothy posted more than 11 years ago | from the check-yer-wallet dept.

Security 540

Doctor Sbaitso writes "CNN reports that a hacker bypassed the security system of a company that processes credit card transactions and gained access to approximately 2.2 million Visa and MasterCard credit cards. Fortunately, none of them seem to have been used fraudulently."

Sorry! There are no comments related to the filter you selected.

mmmm gay sex (-1)

Gay Sex Troll (637133) | more than 11 years ago | (#5323378)

gay sex is yummy

Re:mmmm gay sex not as good as Ninnle! (-1, Offtopic)

Anonymous Coward | more than 11 years ago | (#5323416)

...but Ninnle sex is better!

Think Ninnle!

Linus does! Every day!

It's probably a matter of time... (1)

billstr78 (535271) | more than 11 years ago | (#5323380)

I doubt the fact that none have been used will be true for very long. I'd better check my statement tomorrow.

Re:It's probably a matter of time... (4, Insightful)

Spy Hunter (317220) | more than 11 years ago | (#5323497)

How on earth do they know that none of 2.2 million credit cards has been used fradulently in the last 24 hours? Seems pretty impossible to me. I'll bet some of them have for reasons completely unrelated to this hacker anyway. How can you verify something like that on such a huge scale?

Re:It's probably a matter of time... (2, Insightful)

EvanED (569694) | more than 11 years ago | (#5323522)

My guess is that they haven't had any reports of fradulent use.

Re:It's probably a matter of time... (1, Insightful)

SystematicPsycho (456042) | more than 11 years ago | (#5323504)

The article is pretty poor, it contains no facts and verifies nothing. It attempts to convey that it is true because of the trail of denial.

This is OSS at its finest. (-1, Troll)

Anonymous Coward | more than 11 years ago | (#5323382)

I don't know why Slashdot is acting all concerned. After all, all information should be free, right? No secrets.

Re:This is OSS at its finest. (1)

tkny (260036) | more than 11 years ago | (#5323424)

credit cards aren't exactly open source now are they?

They should be. (-1, Flamebait)

Anonymous Coward | more than 11 years ago | (#5323491)

Nothing should be proprietary, not even personal info. Not even YOU should have any secret from me. OSS all the way, or none at all.

Re:This is OSS at its finest. (-1, Flamebait)

Anonymous Coward | more than 11 years ago | (#5323481)

What the fuck are you talking about?

Slashdotters typically respect privacy more than anything.

CC# generators. (5, Funny)

laymil (14940) | more than 11 years ago | (#5323383)

pfft, back in my day, we could generate as many valid credit card numbers as we wanted. of course, those usually got used fraudulently....

What? (5, Funny)

batboy78 (255178) | more than 11 years ago | (#5323387)

Damn white boys need to stay away from them computers!!

Go away, Negro. (-1, Flamebait)

Anonymous Coward | more than 11 years ago | (#5323412)

Get back to the cotton picking.

Re:Go away, Negro. (0)

Anonymous Coward | more than 11 years ago | (#5323440)

you know...this really isn't anymore flame-bait that the parent.

think about it.

Re:What? (-1, Offtopic)

Anonymous Coward | more than 11 years ago | (#5323430)

In other news, Salon.com has stopped paying its rent [bizjournals.com] . They're going to have to scale back their operations severely, or else go out of business. Let's hope Slashdot is able to keep operating in these tough times.

Re:What? (1)

Anonvmous Coward (589068) | more than 11 years ago | (#5323457)

"Damn white boys need to stay away from them computers!! "

I was wondering what Chef was up to these days.

Re:What? (-1)

Anonymous Coward | more than 11 years ago | (#5323546)

hey bigot, go to hell.

Crackers (3, Funny)

harks (534599) | more than 11 years ago | (#5323388)

I dont like the use of racial slurs like that on /.

Re:Crackers (-1, Troll)

Anonymous Coward | more than 11 years ago | (#5323415)

I dont like the use of racial slurs like that on /.

I don't like the use of the word crackers, unless they're talking about warez groups. Lets call them what they are... hackers. Like it or not.

Re:Crackers (0)

Anonymous Coward | more than 11 years ago | (#5323448)

...and you probably use other non-words as well, like "normalcy", "nucular" and "fucktard".

You fucktard!

hmmm (1, Funny)

Fermicirrus (621606) | more than 11 years ago | (#5323389)

I bet this "hacker" at least bought some candy with those cards...mabye like a snickers or something?

Re:hmmm (2, Funny)

PetWolverine (638111) | more than 11 years ago | (#5323528)

Or maybe he bought some cheese to go with his crackers.

Slashdot Ads (3, Funny)

absurdhero (614828) | more than 11 years ago | (#5323391)

So THATs why $5 was paid to Slashdot without me remembering!

I think not. (3, Insightful)

Latrommi (615673) | more than 11 years ago | (#5323392)

Fortunately, none of them seem to have been used fraudulently.

And how exactly do they know that all 2.2 million credit card #'s haven't been used fraudulently? I'm sure that there are at least a small percent of any given set of 2.2 million credit card #'s that are used fraudulently.

Kewl (3, Funny)

Anonymous Coward | more than 11 years ago | (#5323394)

damn kevin mitnick!

Clearly (4, Funny)

Doctor Sbaitso (605467) | more than 11 years ago | (#5323395)

This is a great security threat for our nation! Just think of all the plastic explosives terrorists could create with 2.2 million credit cards!

Re:Clearly (3, Funny)

TopShelf (92521) | more than 11 years ago | (#5323435)

Either that, or they plan on cornering the duck tape & plastic sheeting market...

Re:Clearly (1)

blurfus (606535) | more than 11 years ago | (#5323554)

Omg, clearly the terrorists have won!!!! =o)

Excuse me, I must run off to chop off my cards....

Yet.... (4, Interesting)

Neck_of_the_Woods (305788) | more than 11 years ago | (#5323396)


2.2 million...it will be interesting to see what happends when who ever did this starts to sell them in bulk. Who is going to be responsible? The Credit Card companies or the site that got hosed?

Should prove interesting as these numbers start getting used. 2.2 is a little large of a block to just re-issue.

Read the article (0, Insightful)

DrMrLordX (559371) | more than 11 years ago | (#5323476)

If you had read the article, you'd know that the cardholders are not liable for any purchases that may be made with the stolen CC data. Visa and Mastercard have already been contacting banks to let them know which CC#s were stolen.

It's better to troll than karma-whore. It's better to troll than do ANYTHING, in fact.

Cracker? (-1, Troll)

Trollbi-Wan Kenobi (522907) | more than 11 years ago | (#5323397)

Why are we automatically assuming the the guy was white?

in the news tomorrow? (5, Funny)

Anonymous Coward | more than 11 years ago | (#5323400)

I guess tomorrow all the online pr0n stores will be sold out of everything!

STONE COLD! STONE COLD! STONE COLD!!! (-1, Flamebait)

Anonymous Coward | more than 11 years ago | (#5323401)

Use those CC#'s to buy this sunday's WWE PPV: NO WAY OUT!

Re:STONE COLD! STONE COLD! STONE COLD!!! (-1)

Anonymous Coward | more than 11 years ago | (#5323520)

Bischoff is just going to kill him

he'll karate up a cinder block on his head

Thus Far (4, Funny)

rela (531062) | more than 11 years ago | (#5323402)

You mean 'none of them seem to have been used fradulently YET'

Re:Thus Far (1)

$$$$$exyGal (638164) | more than 11 years ago | (#5323444)

Both card companies have zero-liability policies, which protect cardholders from being held responsible for unauthorized or fraudulent charges.

With that in mind, both Mastercard and Visa are going to do everything in their power to make sure there are no fraudulent charges made. At this point, I doubt if there'll be any fraudulent charges made. It would have been more likely that a ton of charges would have been made immediately after the numbers were stolen.

--naked [slashdot.org]

Re:Thus Far (2, Insightful)

rela (531062) | more than 11 years ago | (#5323475)

With that in mind, both Mastercard and Visa are going to do everything in their power to make sure there are no fraudulent charges made. At this point, I doubt if there'll be any fraudulent charges made. It would have been more likely that a ton of charges would have been made immediately after the numbers were stolen.

Oh, yes. It doesn't look good for them, and it looks REALLY bad for the issuing banks, if nothing is done about it. But I still think that at least some people are going to be filing disputes on bad charges because of this.

ATTENTION WOMEN OF EARTH (-1, Offtopic)

Anonymous Coward | more than 11 years ago | (#5323403)

Why the hell do you make it so hard for a guy to get a little pussy?

I don't want to resort to homosexuality.

Why am I addressing the women of Earth on slashdot, the last place a woman would be?

Ain't nothing like some Negress poontang. (-1, Offtopic)

Anonymous Coward | more than 11 years ago | (#5323437)

Tight, wet, and pulsating. That's what a Negro pussy feels like when it's enveloped around your dick.

oops, missed the credibility express (4, Insightful)

nomadic (141991) | more than 11 years ago | (#5323404)

Fortunately, none of them seem to have been used fraudulently

Uh, yeah, because it's so easy to verify that two MILLION credit card numbers haven't been used fraudulently.

I mean, come on, just through coincidence I'm sure some of the physical cards themselves have been stolen recently and used fraudulently.

Re:oops, missed the credibility express (4, Informative)

T-Ranger (10520) | more than 11 years ago | (#5323510)

CC companies are constantly scanning there databases for "weird" purchases. Like buying gas in NYC at the same time as buying a DVD player in SF. Companies will respond from terminating the card, or trying to phone the (rightfull) owner..
Im sure they have prety good mertrics on what normal background fraud is. I doubt the statement means that each and every account has been hand checked, but just that that block of accounts dosent have a abnormal rate of fraud.

As others have pointed out it dosent realy matter for card holders, but its like any theft from a big company. (shoplifting, insurance fraud, etc) Eventualy it trickles down to the consumer...

Re:oops, missed the credibility express (2, Interesting)

C0LDFusion (541865) | more than 11 years ago | (#5323545)

CC companies are constantly scanning there databases for "weird" purchases. Like buying gas in NYC at the same time as buying a DVD player in SF.

My dad and stepmom have a shared CC#. Last month, my dad went to San Diego on business, and she stayed home. If she went to Giant at the same time he was getting his rental car gassed up, that'd suck if they termed the card.

Whew! (4, Funny)

conner_bw (120497) | more than 11 years ago | (#5323406)

Luckily, i still use cash! Paper that's been handled by drug dealers, prostitutes and bill clinton. Try to hack THAT! What are you doing with that lighter?

Is that you Kevin? (-1, Troll)

Anonymous Coward | more than 11 years ago | (#5323407)

Oh man not again!

Is there a name? (2, Insightful)

Thaidog (235587) | more than 11 years ago | (#5323409)

That article was not written with many details... What credit group... who's the hacker?

Re:Is there a name? (4, Funny)

billstr78 (535271) | more than 11 years ago | (#5323418)

I heard on TV that they have contacted the issuing banks. I am going to call tomorrow and find out if mine was hijacked, then if I can get these charges to CompUSA removed

Re:Is there a name? (1)

The Notorious ASP (628859) | more than 11 years ago | (#5323445)

You've been buying from CompUSA? Sir, you've probably lost much more money from the ridiculous markups than fraudulent credit card use...

I heard - (-1, Troll)

TopShelf (92521) | more than 11 years ago | (#5323411)

That Saddam Hussein is responsible for this. The bombing begins in 5 minutes...

Re:I heard - (0, Offtopic)

letxa2000 (215841) | more than 11 years ago | (#5323464)

Do you blame him? He needs to get the money somewhere to pay back the French since they're obviously opposing war in the hopes of seeing some debt repaid.

If your credit card was stolen, the terrorist have already won! :)

Re:I heard - (0)

Anonymous Coward | more than 11 years ago | (#5323488)

LOL!!!

Not yet (0, Troll)

Vidmaster_Steve (455301) | more than 11 years ago | (#5323413)

No, I haven't done anything yet. I'm going to wait until this whole thing blows over, then... and only then... do we get a Free Ass 17" Powerbook, a Free Ass 12" Powerbook and a Free Ass dual G4 1ghz machine with two or three Free Ass 23" Cinema Displays.

Only in America, friends... Only in America

Ronald Reagan Is My Cousin (-1, Offtopic)

Acidic_Diarrhea (641390) | more than 11 years ago | (#5323506)

Your signature is foul and really shows your stupidity. Rape is not primarily about physical attraction and is more about a rapist feeling power over his victim. You are immature and childish. With all the trolling that goes on on Slashdot, your signature is the single worst piece of trash I have ever read. You should be ashamed of yourself. God forbid your mother or sister or wife is ever raped - I don't think you'd be so smug then scumbag.

hey now (-1)

Anonymous Coward | more than 11 years ago | (#5323537)

i raped your mom and your sister.

they didn't seem to mind.

in fact, tell your mom to stop calling me.

My Cousin Is a Dickwad (-1)

Anonymous Coward | more than 11 years ago | (#5323551)

Not a very good hacker, then... (1)

doomdog (541990) | more than 11 years ago | (#5323414)

If the company has discovered the "hack" before the accessed credit cards have been used fraudently, then I'd say the hacker wasn't that good, was he?

After all, the point isn't breaking in, it's breaking in without being detected...

How do they know? (5, Insightful)

WIAKywbfatw (307557) | more than 11 years ago | (#5323419)

With 2.2 million credit card numbers to check, how do they know that the cards haven't been compromised?

Sure, their owners might not have reported any fraudulent use yet (and the card issuers themselves may not have spotted any) but all it takes is for this hacker/cracker to have made one copy of the records which he then disseminated to one or more friends for a problem to occur.

At the very least, the owners of the system that was broken into should be contacting their customers to let them know that there is a small but real risk that their cards numbers might be out there and that they should double check their statements for any unusual items.

But, given that most companies would see something as proactive as this as marketing suicide (rather than use it to enforce the fact that they do everything to protect the security of their customers), I doubt that they will be so bold.

Re:How do they know? (1)

Flamesplash (469287) | more than 11 years ago | (#5323460)

Well even if the cards are used the Credit Card company will not hold the card owner accountable, so the consumer is safe in that respect if the actually notice....

Re:How do they know? (4, Interesting)

thatguywhoiam (524290) | more than 11 years ago | (#5323490)

With 2.2 million credit card numbers to check, how do they know that the cards haven't been compromised?

Of course, they don't know. They won't know for a while. But the answer is Nothing Stolen, and the answer will always be Nothing Stolen.

Credit card companies are like insurance companies, it's all about playing the odds, and statistics, and consumer behavioural models. Personally I've stopped trusting them a long time ago. While the public meme is that credit card theft is on the rise due to Internet transactions, I really wonder sometimes. As seen with other examples, the Internet is actually becoming an invaluable tool for revealing nefarious activity (patterns of activity that is) that would have been otherwise obfuscated by natural physical barriers. The media are hardly reliably objective in this sense.

So.... (3, Interesting)

Anonymous Coward | more than 11 years ago | (#5323423)

Let's say this cracker e-mails off these credit card numbers to everyone in the world (those lists of e-mail addresses are only $20, ya' know), can you imagine the offices of Visa and Mastercard?

Actually, things probably wouldn't be that bad.

Who in there right mind would use credit card numbers fraudulently on such a high-profile case? Surely jail time or fines would ensue, and that alone would keep most Americans from jumping to use the numbers.

Then again, there is the chance that many Americans would use those numbers. How about a program that automatically used those numbers to make fraudulent purchases? It would take weeks or months just to sort out bills. Would Visa and Mastercard even be able to handle that amount of traffic? No, something like this could destroy these two companies; it would be almost impossible for them to handle.

We should be moderately safe (4, Interesting)

kruetz (642175) | more than 11 years ago | (#5323426)

Remember, Credit Cards companies use neural networks to analyse transactions and decide whether or not they may be faulty, and the success-rate of these babies is higher than you may suspect (okay, I don't have a web-link, I read it in a pop-sci book on maths, biology and AI). So you may be short a few dollars, which isn't good (don't get me wrong), but unless you normally spend $hitload$ of money, they won't be able to buy a Ferrari or anything (mind you, if they only took a few cents from each credit card account, they COULD buy a Ferrari ...)

Re:We should be moderately safe (1, Informative)

Anonymous Coward | more than 11 years ago | (#5323466)

2,200,200 x .03 = $66,000

Re:We should be moderately safe (0)

Anonymous Coward | more than 11 years ago | (#5323529)

2,200,200 x .03 = $66,000

ahhh, but 2,200,000 * .05 = $110,010

In other news.. (0, Troll)

_marshall (71584) | more than 11 years ago | (#5323427)

Fortunately, none of them seem to have been used fraudulently.

In other news, it seems that slashdot's favorite non tech related website [goatse.cx] had a surge of 2.2 million account signups in the span of a week.

Mitnick... (5, Funny)

jbwiv (266761) | more than 11 years ago | (#5323432)

New leaf my ass. Welcome back, Kevin ;-)

Re:Mitnick... (-1, Redundant)

Anonymous Coward | more than 11 years ago | (#5323462)

LOL!!!!

Re:Mitnick... (5, Funny)

cyb97 (520582) | more than 11 years ago | (#5323536)

I guess this explains why 'the art of deception' sold 2.2M copies so fast...

Other news coverage. (1)

WeThree (2688) | more than 11 years ago | (#5323438)

http://www.cnn.com/2000/TECH/computing/03/13/credi tcard.steal.idg/

I wish mine were stolen... (4, Insightful)

grahamsz (150076) | more than 11 years ago | (#5323450)

I like those odds - not a single fradulent use in 2.2 million cards.

Hell i've had 3 fradulent transactions and only own 3 credit cards and two debit cards.

One thing i've noticed is that my card company seem good at stopping me from spending when they think i'm fradulent. Just put 7 currencies on your card in as many days and alarm bells seem to ring somewhere.... but catching real theives is a little too tricky

Obligatory correction on "[ch]racker" (0, Funny)

Anonymous Coward | more than 11 years ago | (#5323452)

The correct term is GNU/hacker and GNU/cracker. btw, let's use the term chracker from now on for clarity, please.

Not used fraudulently? (0)

Anonymous Coward | more than 11 years ago | (#5323453)

How do you verify something like that? And are they going to reissue 2.2 million credit cards to prevent the cracker from using this information two weeks from now?

And what about the problem? How did the cracker get in? Wasn't Mitnick just allowed back on the Internet - how is his VC funding situation anyway? :-)

Mod parent DOWN! (-1)

Anonymous Coward | more than 11 years ago | (#5323485)

You retarded redundant retard

It's all about the trust (2, Flamebait)

Vidmaster_Steve (455301) | more than 11 years ago | (#5323458)

I used to work at an incredibly busy CompUSA back when I was putting myself through college, I worked behind the register and had to put up with any number of fucking (A)Assholes, (B)Jerks, (C)Fucklickers (D)Cunts and/or (E)Wastes of Meat every day of my miserable existance there. Every day, these pricks would come in, verbally abuse me and then give me their credit card number.

I cannot believe the amount of trust these dickheads put into me, a lowly redshirted laser-slinger. These were people who would verbally abuse me, harass me, scream, yell, pester and generally treat me as something beneath the lump of Fluffy's late night cat puke that they caked off of the designer argyle socks that cost more than they make in a day.

Every time one of those shits oh-so-respectfully tossed me their credit card (They'd never hand it to me, oh no... never just hand it to me) then get all indignant that I ask to check their ID, even though it says in big, block letters 'CHECK ID' on the little 'sign here' strip on the back... I'd just smile... You know the smile, the one that a pudgy Vincent D'Nofrio shot at the sergeant before putting one in his chest while I simply took their reciept and folded it in half and stuck it in a little slot on my register.

Had I been just a little dumber or a bit ballsier, I'd be rolling in all the pre-Pentium 3 generation hardware and pre-Kazaa generation illicit software that I could have purchased on their dimes.

Point being: Why why why do these people who are so abusive to those of us who (A)Handle Their Credit Cards and (B)Handle Their Food treat us in such a manner?

Re:It's all about the trust (1, Flamebait)

billstr78 (535271) | more than 11 years ago | (#5323500)

Dude, you have some issues to work out. If you hate people that much, why not quit your job and get one that does not require you to interact with A),B),C) or D)?

If you were a little dumber, you'd not only be dangerous, but in jail. Credit companies keep a close watch on fradulent purchaces. You would be amazed at the ability to mine data and make fast correlations between fraud claims. A couple of interviews with the clerks who sold you the pre-Pentium 3 generation hardware and pre-Kazaa generation illicit software that you would have purchased, would have ended in an arrest within a week.

The guy who pulled this off will not see the light of day for years to come once he is caught. Credit companies are like the mob, they are one of the only organizations you really don't want to f#ck with.

Re:It's all about the trust (1)

Mike A. (19999) | more than 11 years ago | (#5323527)

There's a reason retail has one of the highest employee turnover rates of any profession. I can't imagine that anyone works as a retail clerk for long if there's any readily available alternative. Besides, if you'd read his post closely, you'd have seen that he "used to work" at CompUSA.


Nevertheless, you are right about the fact that credit card fraud is harder to get away with than most people appreciate.

Which processor? (4, Interesting)

murphj (321112) | more than 11 years ago | (#5323461)

Nice informative article. No mention of which credit card processor this was. It'd be nice to know if it's one that one of my clients uses. Anyone know the identity of the victim?

PIN numbers? (5, Interesting)

one9nine (526521) | more than 11 years ago | (#5323463)

Can anybody explain to me why credit cards don't have PIN numbers like my ATM card does? Wouldn't this stop a tremendous amount of fraud? All someone needs is someone's card number and expiration date and they can do whatever they want.

I do notice that sometimes, very rarely though, that sites will ask for that extra three digit code on the back of the card, to verify that you do in fact have the card in your hand. This the same concept as a PIN and I don't see why more web sites aren't doing it. It's not like they have to completely revamp their way of accepting credit cards, it should be a very simple fix.

Makes me want to go back to barder. Do you think ThinkGeek would accept two dead chickens and a half wheel of gouda for one of those mini tanks with the camera?

Re:PIN numbers? (0)

Anonymous Coward | more than 11 years ago | (#5323473)

So, then crackers would steal the CC# and the pin, and we'd be back where we are now.

"Cracker Gains Access to 2.2 PIN NUMBERS" (4, Funny)

tha_mink (518151) | more than 11 years ago | (#5323478)

You get the idea.

Re:PIN numbers? (3, Interesting)

Zaffle (13798) | more than 11 years ago | (#5323495)

In New Zealand, you can get a PIN number for your card, but this number is only used at EFTPOS (Electronic Funds Transfer at Point Of Sale) systems (where you swipe your card at the store). If you use the ol' fashion card imprint thingy, or if you use it online, the PIN don't mean diddly.
As for the CSV (the num at the back of the card), a number of clearing houses use it. Its not *suppose* to be stored by the clearing house/site, but who's to say.

PIN #'s do stop fraud occuring over the counter, but not mail-ordering, web-site. Actually, it doesn't even stop over the counter, since all you need to do is wipe you card with a magnet and demand they do your card the old way, stating it works in every other store. (Most stores will relent if you pressure them).

Re:PIN numbers? (5, Insightful)

Kamel Jockey (409856) | more than 11 years ago | (#5323516)

Can anybody explain to me why credit cards don't have PIN numbers like my ATM card does? Wouldn't this stop a tremendous amount of fraud?

No, because the PINs would probably be stored in the same unsecure manner that the other credit card information was. This is why PINs in general and/or 3 digit auth codes will be ineffective. What's needed here is better site security, not better credit card security.

All someone needs is someone's card number and expiration date and they can do whatever they want.

Kinda... You can actually specify any date in the future and the transaction will validate (if you use a system like Cybercash or Authorize.Net). If however, you have a human on the other side who checks the entered credit card information against what they get from the credit card company, then that human can manually disallow the transaciton.

Unfortunately, the only real way to secure information is to store it in an encrypted form such that the key needed to decrypt the information is physically separated from the machine which contains the data. However, many websites currently use the "key under the doormat" approach to security, which in theory is no better than storing the data unencrypted and hoping that no one hacks into the system and sees it.

Re:PIN numbers? (0)

Anonymous Coward | more than 11 years ago | (#5323548)

I'll take a wild guess, is it because the cost of implementing pin numbers is greater than the money lost from fraud?

But with the cost to law enforcement because of sloppy credit card security... it's the public paying a lot of that.

Gee, thanks CNN (0)

bigneight (635140) | more than 11 years ago | (#5323467)

I, for one, would like to know WHICH credit card processor it was that got hacked so that I know not to use them in the future. Leave it to CNN to leave out the important stuff.

To bad... (2, Funny)

95_gst_al (601102) | more than 11 years ago | (#5323470)

Yeah he gained access to 2.2 million cards, but to bad they are all probably overdrawn! Just about everybody I know complains that their cards are maxed out. :D I also agree, that out of 2.2 million cards, it's impossible for them to know that all of them are ok and haven't been used.

this report says 5 million cards (4, Interesting)

Anonymous Coward | more than 11 years ago | (#5323471)

this report says 5 million cards

http://www.forbes.com/markets/newswire/2003/02/1 7/ rtr881826.html

I can't believe nobody has said... (0, Offtopic)

Tsar (536185) | more than 11 years ago | (#5323472)

"Imagine a Beowulf cluster of those!"

Still, this might leave some folks short on cache.

Re:I can't believe nobody has said... (0)

Anonymous Coward | more than 11 years ago | (#5323543)

Ouch. Punishing. Hope someone else enjoys it. :D

OUch (4, Insightful)

IanBevan (213109) | more than 11 years ago | (#5323474)

Citizens Bank, a financial institution serving the Northeast, shut down the accounts of 8,800 customers whose card numbers had been accessed after being notified by MasterCard on Friday, bank spokeswoman Pamela Crawley said. All of those accounts were safe, she said.

I'll bet those people are just *thrilled* to have their accounts locked out. How many people are going to find their card mysteriously declined when doing their weekly grocery shop then ? I'm betting the bank hasn't made 8,800 phone calls to explain their position.

Hell of a way for VISA/MC to limit their liability - just cancel their cards ??

Testing fraudulent use is easy I'm sure (0)

mesach (191869) | more than 11 years ago | (#5323477)

My Friend recently bought something online for his motorcycle from a place in Spain, the bill came to something like $70, not to much I personally think.

within 10 minutes of him hitting the submit button he got a call from someone at his CC company asking him to verify the sale. We both thought that it was very cool for them to be monitoring apparently all the sales, even the small ones.

CNN Reports: (1)

nfotxn (519715) | more than 11 years ago | (#5323482)

CNN reported today that everyone should panic. PANIC NOW. PANIC! You're not panicing, PANIC DAMMIT! Panic Code Red. PANIC PANIC PANIC AND TUNE INTO CNN AND PANIC!

When will they learn? (2, Insightful)

ic3p1ck (597610) | more than 11 years ago | (#5323483)

I think its time the whole CC system is overhauled!

The lack of authentication is the biggest problem with it. And no, the PVV is not good enough for authentication either, its also printed on the card and some online stores require that number but store it with the CC# anyway.

I'm sure the banks have a huge amount of fraud on cards and eventually these costs get passed on to the customers.

Debit cards with PINs / Smartcards are the way to go.

Taking a stand on the terminology... (2, Insightful)

danielrm26 (567852) | more than 11 years ago | (#5323484)

I think we should seize this opportunity to write every journalist using the word 'hacker' to refer to the person who did this.

We need to make it clear to the journalists what the differences are between a 'hacker' and a 'cracker'. I think we have the potential to make a difference; there just isn't any reason for the mangling of the word 'hacker' to go on any longer.

It should be a good word - not to be confused with those who pilfer databases for the hell of it.

Re:Taking a stand on the terminology... (3, Insightful)

tha_mink (518151) | more than 11 years ago | (#5323498)

Face it dude. It's in the lexicon. There's no turning the tide. The layperson could give a fuck if it's cracker or hacker. They KNOW hacker...and so that's what it is.

Give it the fuck up (-1, Troll)

Anonymous Coward | more than 11 years ago | (#5323517)

No one cares, all you sons-a-bitches are evil hax0rs and should be put in a federal pound me in the ass prison.

Take it ALL, you're going to be the next goatse!

This story sucks... (-1)

Anonymous Coward | more than 11 years ago | (#5323501)

I mean, it's an important story, and all. But there is no oportunity for trolling... that's no fun...maybe I'll just resort to crap flooding!

*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_ [goatse.cx]
g_______________________________________________g_
o_/_____\_____________\____________/____\_______o_
a|_______|_____________\__________|______|______a_
t|_______`._____________|_________|_______:_____t_
s`________|_____________|________\|_______|_____s_
e_\_______|_/_______/__\\\___--___\\_______:____e_
x__\______\/____--~~__________~--__|_\_____|____x_
*___\______\_-~____________________~-_\____|____*_
g____\______\_________.--------.______\|___|____g_
o______\_____\______//_________(_(__>__\___|____o_
a_______\___.__C____)_________(_(____>__|__/____a_
t_______/\_|___C_____)/______\_(_____>__|_/_____t_
s______/_/\|___C_____)SLASHBOTS_(___>___/__\____s_
e_____|___(____C_____)\______/__//__/_/_____\___e_
x_____|____\__|_____\\_________//_(__/_______|__x_
*____|_\____\____)___`----___--'_____________|__*_
g____|__\______________\_______/____________/_|_g_
o___|______________/____|_____|__\____________|_o_
a___|_____________|____/_______\__\___________|_a_
t___|__________/_/____|_________|__\___________|t_
s___|_________/_/______\__/\___/____|__________|s_
e__|_________/_/________|____|_______|_________|e_
x__|__________|_________|____|_______|_________|x_
*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_e_x_*_


Goatse in your EYE!

Brought to you by the Deepside Nigs

KILL WHITEY!


Garbagetogetarroundthehomolamenessfilterthatcmdrsh itheadinstalledtokeeptheblackmandown!Garbagetogeta rroundthehomolamenessfilterthatcmdrshitheadinstall edtokeeptheblackmandown!Garbagetogetarroundthehomo lamenessfilterthatcmdrshitheadinstalledtokeepthebl ackmandown!Garbagetogetarroundthehomolamenessfilte rthatcmdrshitheadinstalledtokeeptheblackmandown!Ga rbagetogetarroundthehomolamenessfilterthatcmdrshit headinstalledtokeeptheblackmandown!Garbagetogetarr oundthehomolamenessfilterthatcmdrshitheadinstalled tokeeptheblackmandown!Garbagetogetarroundthehomola menessfilterthatcmdrshitheadinstalledtokeeptheblac kmandown!Garbagetogetarroundthehomolamenessfiltert hatcmdrshitheadinstalledtokeeptheblackmandown!Garb agetogetarroundthehomolamenessfilterthatcmdrshithe adinstalledtokeeptheblackmandown!Garbagetogetarrou ndthehomolamenessfilterthatcmdrshitheadinstalledto keeptheblackmandown!Garbagetogetarroundthehomolame nessfilterthatcmdrshitheadinstalledtokeeptheblackm andown!Garbagetogetarroundthehomolamenessfiltertha tcmdrshitheadinstalledtokeeptheblackmandown!Garbag etogetarroundthehomolamenessfilterthatcmdrshithead installedtokeeptheblackmandown!Garbagetogetarround thehomolamenessfilterthatcmdrshitheadinstalledtoke eptheblackmandown!Garbagetogetarroundthehomolamene ssfilterthatcmdrshitheadinstalledtokeeptheblackman down!Garbagetogetarroundthehomolamenessfilterthatc mdrshitheadinstalledtokeeptheblackmandown!

Cracker at Work... (1)

Herkum01 (592704) | more than 11 years ago | (#5323513)

Server: Daddy_War_Bucks
#company-name# credit-card transaction database,

Please Enter Username,
Username: Admin

Please Enter Password,
Password: Admin

Thank you. You are no logged in as root.

show_me_the_money> _

The best answer I've seen .... (4, Informative)

bizitch (546406) | more than 11 years ago | (#5323519)

Citbank has a kewl way to beat most of the fraud.

From their website, you can generate a random valid card number (tied to your real card of course) which is good for one and only one transaction.

Works pretty well for me so far...

But of course if your system has been hax0r3d with a trojan keylogger or something of the sort, the fraudmeister could login in as you and generate all the "one time" cards they wanted.

But still - a pretty good solution so far - IMHO

OMFG (-1)

Anonymous Coward | more than 11 years ago | (#5323534)

That is sooo fukcing KEEEWL!!!!!1

Grow-up shithead

How would you (3, Insightful)

left_coast (651254) | more than 11 years ago | (#5323531)

I'm curious, besides selling the card numbers to some "underground", how would you REALLY use a credit card # for personal use without getting caught?

Kindness (-1)

s2r (461076) | more than 11 years ago | (#5323532)

Would be he so kind to donate some of them to hre pr0n armada?

Of'course they haven't been used fraudulently... (2, Insightful)

AnonymousCowheard (239159) | more than 11 years ago | (#5323550)


All he needed to do to legally use a credit-card is swipe it into a machine or type in the number and presto!

Doesn't it make anyone wonder why nobody needs to present any form of identification when using a credit-card?
Load More Comments
Slashdot Login

Need an Account?

Forgot your password?