digg

Facebook Connect Join Digg About

Criminals Using Hotel Keycards as Credit Cards

blog.washingtonpost.com That's right, the keys function exactly like credit cards, allowing the carrier to pay for merchandise at any store or market where customers do their own swiping.

Who dugg this? Made popular Mar 7, 2006

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

57 Comments

show profanity settings
expand all
  • etruscan, on 10/12/2007, -1/+24Well, I suppose it's a nice change from criminals using their credit cards as hotel keys.
  • inactive, on 10/12/2007, -3/+13In the article- "... the stolen card data comes from a variety of sources, but he said it is not unusual for service-industry workers who owe money to a drug dealer or a bookie to be handed a handheld magnetic stripe "skimmer" and ordered to periodically collect up to 100 accounts as a means of erasing their debt."

    Nice to know next time you hand your credit card to a waiter...
  • inactive, on 10/12/2007, -3/+13wait you are calling me a criminal for making legitiment credit card backups... that's fair use!
  • frontbrain, on 10/12/2007, -0/+6Magnetic stripe cards are just like any other data storage medium, you can store any data (within it's capacity) that you want on it.
  • felchdonkey, on 10/12/2007, -8/+14Why does it have to be a Chinese restaurant? Who's this "Ling" you're talking about?

    I don't know what you're really trying to say, but it makes you come off sounding like a racist.
  • sadsac, on 10/12/2007, -1/+6I'm not an identity thief, but I did stay at a Holiday Inn Express last night.
  • LeeUmm, on 10/12/2007, -0/+4Seeing as in a few days time this link won't be useful, here is the direct link to the story - http://blog.washingtonpost.com/securityfix/2006/03/street_level_credit_card_fraud.html
  • atrain, on 10/12/2007, -0/+4Lots of this happening now. Between the kinko/fedex and this... Readers are getting too cheap...


    aznboi04k: The magnetic strip on the card can be written to, so they steal credit card info and stick it on stolen hotel cards... simple but effective...
    frontbrain: Technicly not all "data storage medium" are rewritabe... eg: CDR, ROM, etc... But most magnetic credit cards are.
  • WiFiSPY, on 10/12/2007, -0/+3Except for the fact your debit card is hooked to your CHECKING ACCOUNT. Where is if someone steals your credit card, there not taking money directly from your account.
  • babbling, on 10/12/2007, -0/+3No biometrics, please. I don't want people stealing my eyes or fingers just to get some of my money.
  • jimmyM, on 10/12/2007, -4/+7i also had a few grand billed on my card for strippers. seems to happen to my card all the time. it is weird.
  • nihilator, on 10/12/2007, -0/+3Most debit cards can now be used like credit cards, without the PIN. If your debit card has the Mastercard/Visa logo on it, then you can use it like a credit card.
  • Ultim8Fury, on 10/12/2007, -0/+3This, I believe, is the main reason the UK have mandatory chip and pin technology now. A swipe of the card is no longer all that's needed over here. There were also problems with shop staff harvesting numbers from card receipts and having an on-line shopping spree.
  • Midnightbrewer, on 10/12/2007, -0/+3I had someone steal my credit card number while on holiday in the US, and then it actually got used in Tokyo. The company actually said it was probably stolen while in America (I know I didn't use it on the way to the airport.) It's pretty impressive that they were smart enough to realize it was a Japanese credit card, and even more impressive that they found a way to use it.
  • TheRob, on 10/12/2007, -3/+5Why would you want to go debit? You are more protected with credit cards than you are with debit cards.
  • docxxvi, on 10/12/2007, -0/+2EXACTLY - this aint new..... easier than that there are companies that will sell you the whole read/write assemblies online... why else has visa/mastercard/amex/jcb/diners etc.. all got together to create the PCI standard and push chip... not saying chip is a silver bullet but at least the data has some form of encryption not just a pin offset or PVV whiich can be directly copied from card to pretty much any magstripe card. The point is everyone should be careful with their cards no matter what type they are.. and if the ATM has a weird thing on the outside that looks outta place - DONT USE IT!
  • Bitgod, on 10/12/2007, -0/+2Do what I do, use up most of the credit on your card, then they can't steal much. ;)
  • Awesomedude, on 10/12/2007, -0/+2I always wanted to put all my credit cards onto hotel keys as a security measure in case anyone stole my wallet, i wouldn't have to worry about most people trying to charge something on my hotel card.
  • inactive, on 10/12/2007, -0/+2Wal-Mart self service kiosks would be the perfect place to use these cards. No customer interaction with the employees and as long as the card isn't denied you always get approved after signing. Just wear a sombrero.
  • osbjmg, on 10/12/2007, -0/+1So your "friend" just doesn't pay the strippers? What a jerk!
  • kipperfton, on 10/12/2007, -0/+1i read something about people using their drivers license on gas pumps that have credit card payment outside... most here in canada have the little strips on the back, anyways they were putting them in the slots and clearing what was due, but the machines actually stored the info from the cards, and the people were later charged with theft, hah!
    just a little info.
  • zbeast, on 10/12/2007, -0/+1I dont feel sorry for credit card users.
    You use a card you take your chances thats why banks charge you so much in fees and intrest.
    People have been making mag stripe reader and writers for years.
    I saw gas stations where some one had stuck a fake reader on top of a real reader so
    every time someone used there card some one got a copy of it.
    Too frigging bad.
  • RyeBrye, on 10/12/2007, -0/+1I lived in Vegas for two years. It is unlikely many places would take those cards. Even Wal-Mart asks for your drivers license to use a credit card (and when I was buying things on a corporate card, more than once did a confused hourly employee wonder why my name wasn't "Fleet Coordinator" or some other corporate title...)

    Fast food restaurants in Vegas don't even take credit cards - the one exception being Jack in the Box.

    Where the hookers were finding that they could run up big bills, I'd like to know.

    Also, this is not a big deal. Why didn't they just use frequent shopper cards? Those have mag strips on them as well...
  • Luuvitonen, on 10/12/2007, -1/+2Indeed!

    Anyone who can solder, use Google and read can read/copy/manufacture magnetic swipe cards. Finding a tape recorder to get the reader head could just be the hardest part nowadays.
  • motorhappy, on 10/12/2007, -0/+1Just an additional note on credit card privacy at hotels. I worked night audit at a business hotel, the standard procedure was to print out a reciept copy for every guest. The reciept contained the CC number (all numbers visible) and exp. date as well as guest's name, address and phone number. These receipts were stacked together by date and placed in a paper box. Once the paper box was full it was placed into a storage closet that was shared by cleaning staff. While I was there the room contained about four years worth of receipts, and the door could probably have been opened with a weak kick.
  • Awesomedude, on 10/12/2007, -0/+1I always wanted to re-encode my own credit cards onto hotel keys as a security measure if i ever lost my wallet, as most people won't think to make a charge on the hotel keys in my wallet
  • RyeBrye, on 10/12/2007, -0/+1It's not that impressive that they figured out it was a Japanese card. The first 4 digits identify the bank that issues the card. It's easy to look them up. It is impressive how they somehow managed to sniff your credit card that you never used...
  • baltakatei, on 10/12/2007, -2/+3Heh, letting "bottom feeders" keep stolen credit cards? Sounds like a careless way to steal money.
  • psylence, on 10/12/2007, -8/+9News flash! Mag stripes can be overwritten! Stop the presses!
  • cyssero, on 04/18/2009, -0/+1lol :D
  • vegasbright, on 10/12/2007, -0/+1I am astounded (read skeptical) that drug dealers use a system of credit.
  • TwizzleNicole, on 08/05/2009, -0/+1Customers swipe their own cards? Where I come from there are people who sit at the tills and do it for us. For customers to swipe their own cards is very trusting.
  • inactive, on 10/12/2007, -0/+1jimboek >> Seems America's behind the rest of the world on this one (again) - using PINs for credit cards makes more sense surely?

    The PIN is actually encoded onto the card stripe. It's encrypted, but really easy to decode.
  • RBOnline, on 10/12/2007, -0/+1Ever heard of Chip & Pin? Signatures are a waste of time anyway. Always have been.
  • cable22, on 10/12/2007, -0/+1Interesting... but a little too technical for me.
  • Zippo, on 10/12/2007, -0/+1Debit's great, so long as you only use a savings account and never buy online.
    There ought to be biometrics on credit cards... or at least a PIN.
  • cable22, on 10/12/2007, -0/+1I'm an idiot. My previous comment was supposed to go on the Capacitive Touching article's comment section.
  • ipfilt3r, on 10/12/2007, -1/+1thank god they didn't call them hackers
  • FunkyGuy, on 10/12/2007, -1/+1anyone know of a high quality reader/writer? im actually really wanting to buy one...and I want one that can write just not read but untill then ill be researching with my friend google.
  • Crossmenjeff, on 10/12/2007, -2/+2Well, it said by the time the bottom feeders get the cards (prostitutes and whoever else), they have already been used by the big guys. So the real issue is stopping the guys higher up in that chain from getting the information int he first place.

    reminds me of that kinko's hack, imaginary money combined with stolen money equals a good time in vegas... until you get caught
  • aznboi04k, on 10/12/2007, -5/+5i don't get, wouldn't the machine just reject the card? this article is poorly written.
  • jimbouk, on 10/12/2007, -0/+0Seems America's behind the rest of the world on this one (again) - using PINs for credit cards makes more sense surely? Or are your fat fingers unable to press the number pads?
  • idsuperstore, on 10/05/2008, -0/+0For my daytime job I work for http://www.idsuperstore.com and we deal with this technology all the time. In the wrong hands, the equipment can be used for some very fraudulent activity. After work I also work in the credit card industry with my own websites http://www.airlinemilescreditcards.net and http://www.smallbusinesscreditcards.net
  • scbysnx, on 10/12/2007, -3/+3this is to therob debit cards have a pin number ;-)
  • gekkokid, on 10/12/2007, -1/+1store cards are the best, or were
  • madrigalia, on 10/12/2007, -0/+0"Most people" would return your wallet, or leave the cards alone. Anyone with skimming/counterfeit knowledge would have a goldmine on their hands if you did that.

    @ gekkokid - store cards rarely, if ever, have the anti-counterfeit devices (visual and technological) that MasterCard/Visa use.
  • orangetiki, on 10/12/2007, -2/+1I heard this was also kinda feasable with VHS tape. but was only a rumor. Any random number 16 digits long would prob work.
  • 3Den, on 10/12/2007, -2/+1What's the big news?

    The headline makes it sound as if you can just take a hotel key card and go shopping.

    You can take any magnetic card, including cheap blanks, and re-write them wiht real cardholder data, if you have it. Hotel keys would seemingly be useful for this, but blanks are cheap anyway.

  • butchcassidy503, on 10/12/2007, -1/+0Many crooks also replace their own credit card mag data with stolen credit card mag data. Then they have YOUR card info on THEIR official looking Picture ID credit card. Their only risk is if the merchant does an imprint AND swipes the card, but who does imprints anymore??
  • mindcircus, on 10/12/2007, -2/+0For any Hotel managers out there - there's an extremely affordable Smart-Card based system which is much more secure than magnetic strips. A brief overview is here: http://www.crownhill.co.uk/product.php?prod=736

    We use them on our premises and they're very effective - including things like time-of-day entry. Useful for example for maids / other staff to only enter at certain times of the day.
  • Fetching more discussions...
    Show 51 - 58 of 58 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.