Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] Re: [apwg] Graph analysis of stolen credit cards

from [Lance James] Network Security [Permanent Link]
Subject: [Full-disclosure] Re: [apwg] Graph analysis of stolen credit cards
Date: Fri, 26 May 2006 09:27:28 -0700 
glennhall@discoverfinancial.com wrote:

It makes me feel both happy and very uneasy when Discover Card is not on
the list.  Just to clarify, when you say stolen cards, you really mean
stolen card data, correct?  In addition, in your analysis of the carder
forums, can you tell if the majority of the card data is obtained by the
carders via phishing and pharming, hackings, or both?
  


We are getting a more determination through thorough analysis of this
group, but the majority obtained is through phishing and botnets.

Thanks.
(Embedded image moved to file: pic29711.jpg)


                                                                           
             Lance James                                                   
             <phishing@secures                                             
             cience.net>                                                To 
                                       "Malicious Activity Awareness &amp; 
             05/26/2006 12:56          Response Discussions"               
             AM                        <general-discussion@mal-aware.org>, 
                                       Phish-Net <phish-net@ncfta.net>,    
                                       Apwg <apwg@antiphishing.kavi.com>,  
                                       phishing@securityfocus.com,         
                                       bugtraq@securityfocus.com,          
                                       "full-disclosure@lists.grok.org.uk" 
                                       <full-disclosure@lists.grok.org.uk> 
                                                                        cc 
                                                                           
                                                                   Subject 
                                       [apwg] Graph analysis of stolen     
                                       credit cards                        
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           




Hi all,

We took one sample of one carding/phishing forum that our Global
Surveillance Center was monitoring and sampled the set into a graph that
lists the top 10 banks and the losses over the last month. As you can
see, it's obvious who the top credit card companies are out there, but
at the same time, we can see an ever increasing on the top targets but
not necessarily an increase on the lower tiers over the entire three
months, but in the first two we see a significant increase in success
with stolen credit cards in general. In this case, the loss that we
captured (which probably isn't nearly the number captured by this forum)
was a little over 21,000 credit cards.

Thought this might interest some, and if this is interesting, we are
going to be providing a graph of the losses of top targets with malware
in the upcoming weeks.

Attached is the chart.

--
Best Regards,
Lance James
Secure Science Corporation
www.securescience.net
Author of 'Phishing Exposed'
http://securescience.net/home/news/phishingexposed.html
**********************************************
* New IntelliFound Service 2 weeks free               *
* Real-Time Identity Surveillance Service    *
* https://slam.securescience.com/signup.cgi  *
**********************************************

(Embedded image moved to file: pic09317.gif)

------------------------------------------------------------------------


------------------------------------------------------------------------




-- 
Best Regards,
Lance James
Secure Science Corporation
www.securescience.net
Author of 'Phishing Exposed'
http://securescience.net/home/news/phishingexposed.html
**********************************************
* New IntelliFound Service 2 weeks free      *
* Real-Time Identity Surveillance Service    *
* https://slam.securescience.com/signup.cgi  *
**********************************************

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [BuHa-Security] DoS Vulnerability in MS IE 6 SP2, bugtraq
Next by Date:  [BuHa-Security] MS06-013: HTML Tag Memory Corruption Vulnerability in MS IE 6 SP2, bugtraq
Previous by Thread:  [Full-disclosure] Re: [apwg] Graph analysis of stolen credit cards, glennhall
Next by Thread:  Addendum, ennead@truecrypt.org
Indexes:  [Date] [Thread] [Top] [All Lists]