What is Digg?43 Comments
- incognegro, on 10/12/2007, -4/+42In Soviet Russia, the debit card scams you.
- Dag_Yo, on 10/12/2007, -2/+10For some light reading (directly from our *ahem* "friends" at Diebold), take a look at the following PDF:
http://www6.diebold.com/rd/whitepapers/atmfraud&security.pdf
The document takes a quick look at the use of card skimming and PIN recording. For a more in-depth look at how crooks accomplish the task of "skimming" your magnetic stripe data and PIN, check out the following article on Snopes:
http://www.snopes.com/crime/warnings/atmcamera.asp
Yes, the magnetic card writer (and skimming equipment) might be expensive and yes, the startup costs to fund such a nefarious enterprise are prohibitively high for your average thief; however, where there's a will (and large amounts of cash), there's a way.
As an example from the Snopes article, take Iljimija Frljuckic... he bought and installed 55 ATMs across 3 states that secretly collected customer data from over 21,000 accounts (he managed to steal over $3.5 million before he was apprehended). Now that's dedication... - dhakbar, on 10/12/2007, -0/+5Bingo!
It is up to the banks to ensure that they can keep our money safely. That's the mother ***** point of putting your rmoney in a bank - safety. - inactive, on 10/12/2007, -1/+6sploitcast podcast 4 has a nice interview about magnetic card emulation too.. http://www.sploitcast.com/
- mkoko, on 10/12/2007, -3/+7I just had to cancel my check card because of something like this. It sucked.
- yoblin, on 10/12/2007, -0/+4you had a reader, not a writer.... big difference in price there.
- inactive, on 10/12/2007, -0/+4http://www.engadget.com/2005/12/11/play-doh-fingers-can-fool-90-of-scanners-sez-clarkson-u/
- cyclo, on 10/12/2007, -2/+6Below is another article (tutorial lol) on the globeandmail.com that talks about yet another technology which can be used for nefarious purposes and how one can obtain such a device/software combo (Rencode) which can extract info from debit/credit cards:
http://www.theglobeandmail.com/servlet/story/RTGAM.20060318.wccard0318/BNStory/International/home - n3tfury, on 10/12/2007, -4/+7@eighto2: although it provides some information, it's hardly a tutorial.
- masterdebater, on 10/12/2007, -0/+3Safety? You kidding me? Banks are the worst crooks of all, and its frikkin LEGAL!
Has anyone ever read the fine print when you open an account? Other than FDIC insurance, which covers mostly the banks interests - they pretty much nickle and dime you to death with service charges (ever bounced a payment? The retailer hits you up for a service charge *AND* the bank hits you up twice, once for doing it and again for going into overdraft...), and if something unfortunate actually does happen to your account, it's NOT the banks fault, its yours.
With interest at 0.25% what the hell is the point of keeping money in a bank anymore? I can FIND the interest on the street in pennies faster than I'll be earning it sitting in there... - InvisionUK, on 10/12/2007, -0/+3DJB31st (sorry, it wouldn't let me reply): Most ATMs no longer work off the magnetic strip in the UK, at least the ones that aren't programmed in COBOL (those ones are usually indicated by the evil ancient green screen). How do I know? I work for the company that builds, maintains, and installs a majority of these. (You might notice the small three lettered logo on them).
But yes, in the UK, we have chip & pin these days that doesn't even touch the magnetic strip anymore. It's an ancient unsecure technology which I'm sure will be phased out within the next couple of years. At least here. - delinka, on 10/12/2007, -3/+6this is happening more and more: "i seen..."
what gives? it's actually fewer characters (less typing) to use corect english... - Zephyrspecial, on 10/12/2007, -0/+3Dude, that would COST MORE. That's the primary reason for any lack of security features. In Britain, they've moved to smartcards due to the amount of ATM fraud over there. Until the cost of the fraud going on exceeds or at least comes near the cost of added countermeasures, the added countermeasures will not be implemented. There are millions of card-readers and ATM machines out there, and nobody wants to pay to replace or upgrade them all.
- philovivero, on 10/12/2007, -0/+3I don't understand how your comment got dugg up to 5. Anyone with even a moderate interest in the security industry (do you even subscribe to the Cryptogram newsletter?!) can tell you that biometrics can actually decrease security and, at their very best, can only slightly improve it.
Even those who say it can slightly improve security tend to gloss over the fact that if fingerprints are so important, what's stopping a mugger from stealing your wallet *AND* cutting off one of your fingers? Require fingerprints, and you've given muggers a need to mutilate your body to get free money from you. I do *NOT* want muggers to feel like cutting off my body parts is something they need to do.
Finally, what happens if someone steals a copy of your fingerprint on a gummybear? Do you just run into your local bank and tell them to change your PIN and your fingerprint? - briangig, on 10/12/2007, -3/+6you know what I don't understand? With all the technology, why don't credit/debit cards have fingerprint readers? Place thumb on a certain spot on the card, and swipe. Or have a reader on the machine itself...might freak some people out, but it would ensure 100% safety. Unless the banks enjoy providing protection and paying out fraudulent charges.
- inactive, on 10/12/2007, -1/+4I'm surprised we haven't moved past magstripes.
Here's an article on how to build a magstripe reader and how easy it is on MAKE!
http://www.makezine.com/01/magstripe/
___
http://www.shoutcentral.com - DJB31st, on 10/12/2007, -1/+3although ATM's still use the magnetic strip.
Chip and pin in the UK stops card fraud in shops, but all the ATMS still run off the electronic strip.
I had my card cloned and used the day after they brought the chip and pin into force :-/ - zbeast, on 10/12/2007, -1/+3This is nothing new. people have been copying mag strip cards for years.
I made a mag card reader and writer when I was in jr high.
They cost about $20 dollers in parts. not $1400.00 dollars.
You can buy a good one pre-made with software for about $150.00 - zdearing, on 10/12/2007, -2/+4interesting
- johnjreiser, on 10/12/2007, -2/+4>> it's actually fewer characters (less typing) to use corect english...
I see you're taking this "fewer characters" thing seriously. ;)
>>What I find more annoying are anal-retentive people picking apart a persons grammar or spelling on a 2-3 sentence comment. These are just quick comments, not great literary novels... give it a break!
Would you rather we all grunt and point? No one in their right mind would take you seriously if acted as such in the real world. Why dumb down your online conversations? Not only should you write in proper English (or whatever language you use) for the sake of the current discussion, but also for the sake of the thousands that will read your words months/years later. As Google will readily show, anything you've written on the internet will be recorded and preserved. To the fat-fingered miscreants on the internet: comb your hair, wash your face and type responsibly as that is how we will judge you now and in the future. - Freegoo, on 10/12/2007, -2/+4What I find more annoying are anal-retentive people picking apart a persons grammar or spelling on a 2-3 sentence comment. These are just quick comments, not great literary novels... give it a break!
- inactive, on 10/12/2007, -0/+2Why don't people realize that their card isn't some secured magical device???
Your credit card..
Track1: card number and expiration..
Track2: Your name, and phone number
Track3: is either blank, or contains your address
You fill out an order online at a questionable site, OR a legit one that gets hacked...
Boom, you now entered enough info to copy your card. A card writter costs under 200 bux, and you can buy blanks for pennies per card... Anyone with a little knowledge of Tranz-TCL could start duping cards litterally in minutes.
TREAT YOUR CARDS LIKE YOUR WALLET!!!! actually.. treat it better than your wallet.... cause your card is the gateway to your bank account.
----------------------------------------------
http://www.findacritter.com - RaisedFist, on 10/12/2007, -1/+3@delinka: maybe not everybody is american, canadian or English-speaking around here... don't you think?
- FelixdaaHack, on 10/12/2007, -0/+2I saw a Secret Service presentation on this not too long ago. People are attaching devices over the ATM card slot so a person's card is scanned by the attached device then fed into the ATM using tiny motors. Even more clever these attached devices have wireless pinhole cameras inside them to record the pin number as it's being entered! Stripe data & pin number...good 2 go. So if something doesn't look quite right on the ATM you've been warned.
- angelwspr, on 10/12/2007, -0/+2they should stop using pins and use biometrics instead.
- masterdebater, on 10/12/2007, -0/+2Nah, I don't agree with that. My moneys on the fact than banks want you to have access to your money without having that hasty overhead called STAFF sitting around waiting for you to come in and play around with it. PINs, were just a side effect of giving the power to the consumer without fraud running completely rampant.
- alteredcarbon, on 10/12/2007, -0/+2briangig said:
"With all the technology, why don't credit/debit cards have fingerprint readers? Place thumb on a certain spot on the card, and swipe. Or have a reader on the machine itself...might freak some people out, but it would ensure 100% safety. Unless the banks enjoy providing protection and paying out fraudulent charges."
Biometrics are, at best, iffy. Cost prohibitive in most instances as well. It's not a panacea. We won't see this problem addressed unless and until banking institutions' are held accountable. Currently, when someone's identity and/or ATM card is compromised, the bank gets a slap on the wrist if that. The burden is entirely on the consumer because the banks hire lobbyists to line the pockets of pet politicians to pass legislation favorable to every one else's interests ::::EXCEPT:::: consumers. - Freegoo, on 10/12/2007, -0/+1"Would you rather we all grunt and point?..."
Well dah we're talking about a small grammar mistake here. Did anyone have trouble understanding the point the original poster made? I doubt it. But if it makes you feel intellectually superior to go around pointing out people's grammar and spelling have fun. I really hope you don't walk around doing that with people you converse with daily - if you do, do you actually have any friends (are you sure?)? - SniperX, on 10/12/2007, -3/+4"Stolen "mag stripe" data is the holy grail for card thieves. "
Uhh no, this is incomplete. The "holy grail" is the mag stripe data WITH the pin. The mag stripe data itself is incredibly easy to get, and that's all the "MagTek Execs" displayed here. - rauz, on 10/12/2007, -3/+3I would like to read the whole tutorial he's mentioning but googling for phrases and the name JedimasterC doesn't give me many hits. Anyone?
And before you ask - I don't have the funds nor the interest to try this out irl. I just find it interesting. - pumpkinpositive, on 10/12/2007, -1/+1Of course, if everyone in world was completely honest, there would be no need for these cards, ATMs or PINs in the first place...
- pickleguy, on 02/19/2008, -0/+0This is some great info, and credit fraud is something we should always keep an eye on, but if you want to have accounts that you don't have to worry about getting hacked into, here is a great reference for you, http://www.greendotreviews.com It has a nice listing of prepaid cards and reviews on them as well.
- Laughingman234, on 10/12/2007, -3/+3cool article didnt think they actually wrote about stuff like this...I want one of those encoders just to play around with...dam them being so expensive :)
- tablatronix, on 10/12/2007, -1/+1I do this stuff for a living. Its not hard nor is it cost prohibitive.
In fact you can built most of the stuff needed.
Mag encoding really is a old deprecated system, it was never designed for security. But its popularity comes from the fact that its an extremly cheap process.
Coupled with a pin number or "some" biometrics its is rather secure. - jus1haz2, on 10/12/2007, -2/+1What an ***** someone has to be to steal money from someone else. It was a good read though but still its takes a real dick head to do it.
- RenAx, on 10/12/2007, -4/+3i seen a program on somthing like that about a week ago
http://www.bbc.co.uk/bbcthree/tv/real_hustle_scams.shtml
Look at the last point number 5. - yoshu, on 10/12/2007, -2/+1"Red Tape Chronicles is MSNBC.com's effort to unmask government bureaucracy, corporate sneakiness and outright scam artists."
This is soooooo, sneaky. "The recipe for creating counterfeit cards is right there on the Internet". Ooooooooooooo, the internet. sneaky scamer + internet + msnbc = red tape lameness.. NO DIGG. - eighto2, on 10/12/2007, -8/+7Thanks for the tutorial, lol
- matthewecornish, on 10/12/2007, -3/+2I remember the BBC doing a small feature showing how easy this was for people with the right equiptment. Worrying indeed but all the same, not something to worry too much about :)
- danz, on 10/12/2007, -6/+2baaah the article they are referring to is from 2004 no wonder why its out of date!
Digg is coming to a city (and computer) near you! Check out all the details on our 
© Digg Inc. 2009
— Content created and posted by Digg users is