IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [fraud]

Fraud is wrongful or criminal deception intended to result in financial or personal gain. It is one of the challenges to organisations that Information Security tries to prevent.

Fraud is wrongful or criminal deception intended to result in financial or personal gain. It is one of the challenges to organisations that Information Security tries to prevent.

For example, showing a screen on a website or mobile app that looks like a genuine login screen, could be used by an attacker to capture user credentials for use in fraudulent transactions.

139 questions
71
votes
10 answers

Can I scratch off the magnetic strip off a debit card to only allow chip and PIN?

I have been robbed in the past by thieves using my HSBC Debit Card (issued by UAE branch) to purchase mobile phones and accessories by signing for the purchases. While the card has chip & PIN protection, HSBC mention (in the fine print) that,…
Brian
  • 711
  • 1
  • 5
  • 3
60
votes
5 answers

What's the impact of disclosing the front-face of a credit or debit card?

There are quite a few cases where people are called out for disclosing the front-face of a credit or debit card (e.g. this tweet from Brian Krebs or this twitter account). So I was wondering what the impact of this disclosure for the card holder is…
Rory McCune
  • 60,923
  • 14
  • 136
  • 217
51
votes
4 answers

Detecting skimmers and other ATM traps

This question has been bothering me ever since I first heard of ATM skimmers: Instances of skimming have been reported where the perpetrator has put a device over the card slot* of an ATM (automated teller machine), which reads the magnetic…
TildalWave
  • 10,801
  • 11
  • 45
  • 84
39
votes
6 answers

Which parts of a credit card can I obfuscate and still have it be valid

I was recently the victim of credit card fraud and I suspect it is from a merchant somewhere keeping track of my credit card details. I cancelled the card and received a new one, but I would like to make it as difficult as possible for criminals in…
8bitme
  • 493
  • 1
  • 4
  • 6
36
votes
8 answers

Dealing with excessive "Carding" attempts

We are currently setup using Magento on a LAMP stack for our e-commerce platform. As of a month or two ago we began noticing a lot of carding attempts against our website. All attempted transactions would be for a small amount, just to check if…
jkphl
  • 361
  • 3
  • 4
35
votes
5 answers

Getting spam calls from numbers similar to my own

My phone number is 456-123-XXXX (American phone number + area code). Over the past few months I get fairly regular spam calls from other numbers also beginning with 456-123-XXXX, where the last four digits are always different. The calls are…
thumbtackthief
  • 687
  • 2
  • 7
  • 11
30
votes
5 answers

How do location-based apps avoid getting cheated by emulated GPS?

Some apps like Foursquare require the user to "check in" at physical places, in order to gain money benefits. Given that emulated GPS are available for customized versions of Android, it sounds easy to trick such apps. Given the monetary…
Nicolas Raoul
  • 1,276
  • 2
  • 12
  • 17
25
votes
7 answers

How to prevent cheating (extra votes) in online contests?

Mitigating Cheating & Voter Fraud in Online Contests… We run online contests of various sorts that involve users voting on entries (usually one vote per user per day). The prizes range from hundreds to thousands of dollars. Over the last four years…
Taj Moore
  • 391
  • 1
  • 4
  • 7
24
votes
4 answers

What is the use of stolen credit card details?

What can a person with stolen credit card details do? Buy porn? Buy tons of server resources to perform an attack? What else? I'm sure that if he buys books, shoes and bicycles or transfer funds to his account they'll eventually find and arrest…
cherouvim
  • 360
  • 1
  • 2
  • 6
22
votes
3 answers

Is accepting an invalid credit card number a security issue?

I am testing a website which accepts invalid credit card numbers for reservations. The interesting thing is they do CC validation if the currency is USD, but not for any other currencies. Should I report this as a security issue or will it come…
Jaya
  • 411
  • 3
  • 6
17
votes
1 answer

Intricate fraud attempt on eBay

I would like the community's input on an event that took place recently, that I honestly don't know what do make of: When trying to watch an item on eBay, a warning notice said my account had been compromised and that the account was locked to…
forthrin
  • 1,741
  • 1
  • 13
  • 21
16
votes
2 answers

Is adding a supplementary credit transaction something that could improve online payment security?

An online company from which I regularly buy goods apparently recently upgraded their security policy. Let's say I bought something for 73,31€. As usual this company uses 3D-Secure for the checkout process and will actually process the payment only…
WhiteWinterWolf
  • 19,082
  • 4
  • 58
  • 104
14
votes
2 answers

Should I change phone number and e-mail address after PayPal fraud?

I have been the victim of PayPal fraud. I hadn't used PayPal in a year and then within 9 days there were three unauthorized transactions on my account for a total of 150 Canadian dollars and 290 American dollars. I have since been refunded by…
Pertinax
  • 243
  • 2
  • 8
14
votes
1 answer

How safe is my contactless bank card?

In the past few years Contactless Payment cards have been introduced and I have been reading some articles surrounding security of these cards. The following article "Stealing data from contactless cards is easy, experts warn" states A Which?…
User1
  • 3,041
  • 5
  • 23
  • 30
14
votes
5 answers

I need ideas for blocking a single malevolent user

Let me throw out this problem I'm having to some of my technical peeps and see if you guys have any new suggestions: We have a website that sends text messages and voice mails for our clients. Clients can buy credits and use those credits when…
Chris Chubb
  • 241
  • 1
  • 3
1
2 3
9 10