![]() In the last few years, carding sites have been selling the city, state and ZIP code of the store from which each card was stolen in addition to the account number and expiration date, said Ron Sadowski, the director of technology solutions at RSA, the security division of EMC. They are buying back card numbers and cross-referencing the transactions of those cards in search of one common retailer.įraud detectives, meanwhile, who do not have access to transaction data, are able to exploit a recent innovation in the underground. Investigators are searching for what they call “a common point of purchase” among the cards.īank employees are able to identify stolen cards simply by examining the first six digits of the card, which are known as the Bank Identification Number, or BIN number. And if the evidence uncovered so far proves to be valid, the hack could top the record-setting breach of Target’s network last December. So far, all roads point back to Home Depot. They are charging as much as $50 per card.īank employees, fraud detectives at computer security companies and law enforcement officials are tracing the path taken by the stolen cards, tracking the source of what appears to be the latest in a series of major data breaches that the Secret Service and the Department of Homeland Security believe has affected more than 1,000 American retailers. On those sites, Eastern European hackers are selling the stolen account information of people in cities as distant as Mission Viejo, Calif., and Hanover, N.H. Over the last few days, thousands of fresh credit and debit card numbers have surfaced on so-called carding sites, which are websites where stolen credit card data is sold. SAN FRANCISCO - There are two tracks to finding the identity of a company that has been hit by cybercriminals.
0 Comments
Leave a Reply. |