Found a credit card fraudster server with LOTS of CC numbers

Forum Moderators: buckworks

Message Too Old, No Replies

Found a credit card fraudster server with LOTS of CC numbers

He must be stupid not to remove the indexing

antirack

2:54 am on Feb 4, 2005 (gmt 0)

I've and an order today from a guy with an Asian IP address, opened the domain name of his email address, and found lots of stuff in my browser, including some private pictures, some MP3's, celebrity pictures (Asian) and a huge amount of text files with personal details, credit card numbers and proxy servers.

The domain is registered on a US (PA) address, and hosted in the USA as well. I guess it's all carded.

Any idea if there is a place to report such things?

I guess contacting Visa is trouble since you have to explain lots of customer support stuff what is going on, and the provider might as well also not understand. Is there some government organization that actually understands these things, and does all of it automatically (shutting down servers, contacting Visa/MC, etc)?

martyt

4:04 am on Feb 4, 2005 (gmt 0)

Try contacting the Federal Trade Commission [ftc.gov...]

I'd also contact the hosting company for the web site - look up the domain registration information at samspade.org or elsewhere and you can eventually figure out the hosting company.

incrediBILL

4:27 am on Feb 4, 2005 (gmt 0)

I forgot which division it was, but the FBI has/had a special dept. just for handling these types of interstate electronic fraud cases. We've used them in the past but it was a couple of years ago, give them a shout.

walkman

5:30 am on Feb 4, 2005 (gmt 0)

"The Internet Fraud Complaint Center (IFCC) is a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center (NW3C)"
[ifccfbi.gov...]

antirack

12:40 am on Feb 5, 2005 (gmt 0)

Thanks, I think this thread will be very helpful for many in the future.

It's a shame that Visa and MasterCard (the cause of such problems) do not have an investigation bureau or something, where merchants report fraud such as this one. But yet, they always pretend they are doing whatever they can to stop and prevent fraud. But this is another story I don't want to go into today ;-)

I've reported the case and also contacted the billing department of the hosting company, assuming that the server/domain is carded as well. They took the page down almost immediately.

incrediBILL

12:47 am on Feb 5, 2005 (gmt 0)

thank you walkman - I couldn't remember that FBI site to save my life and was too lazy to look it up

johnbangkok

12:32 pm on Feb 14, 2005 (gmt 0)

"Visa and MasterCard (the cause of such problems) do not have an investigation bureau or something" ... "But yet, they always pretend they are doing whatever they can to stop and prevent fraud. "

Yes, whatever happened to what seemed in my mind to be a great solution - SET (secure electronic transactions) where the buyer effectively re-confirmed their purchase with a PIN?

In my dreams: Since every merchant I've ever spoken to seems to have problems in this area and none more so than for online transactions, couldn't a group of us get together and holding up the example of systems such as PayPal, etc. put some pressure on?

OK I know Paypal is opened and often funded with CC but as it and deposits grows its power will too.