AOA Forums AOA Forums AOA Forums Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA Forums > Software > Data Security

Data Security Viruses, Firewalls and Safe computing


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 23rd February, 2010, 07:50 PM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,606

Criminals Hide Payment-Card Skimmers Inside Gas Station Pumps

Wave of recent bank-card skimming incidents demonstrate how sophisticated the scam has become

Criminals hid bank card-skimming devices inside gas pumps -- in at least one case, even completely replacing the front panel of a pump -- in a recent wave of attacks that demonstrate a more sophisticated, insidious method of stealing money from unsuspecting victims filling up their gas tanks. [Front page...]
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 24th February, 2010, 01:12 PM
Chief Systems Administrator
 
Join Date: September 2001
Location: Europe
Posts: 13,075

I guess they've been learning from their European cousins then... See Gangs develop new chip-and-pin fraud - Times Online for some ideas about what's been happening.

In the UK, "Chip and PIN" has pretty much replaced card and signature. The idea is that the card is a smartcard, which interfaces with the payment system in use. The user is asked for a PIN, and the card validates that the PIN is correct to generate cryptographical information that is sent to the bank.

What has ended up happening is that someone has identified that some PIN entry devices (PED) are not as tamper-resistant as they should be. Criminals have been producing hardware boards that can then be fitted to an existing PED in order to capture the data sent between the card and the reader. I'm guessing that they pose as someone official (an engineer performing a site visit?), and swap a PED over for a modified one. As the PED appears to operate just as a standard one, few people would notice.

Some versions of the hardware basically have a small microcontroller on them to sniff the transaction data, and then some flash (SD card for instance) to write the data to. With this type, the criminals need to come back and collect the device in order to grab the data.

Nastier versions work the same way, but they also include a Bluetooth or GPRS module. If it's Bluetooth based, then the criminal would need to be nearby (as in, within 100m or so) to grab the data. If it's GPRS, then the device itself will connect to the Internet, and transmit it's data to a server somewhere in the world.
__________________
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 24th February, 2010, 08:11 PM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,606

With cash, all they could do was counterfeit the bills.... maybe in the future we will reinvent a cash economy...":O}
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 24th February, 2010, 10:59 PM
PorPorMe's Avatar
Member
 
Join Date: January 2008
Location: Othello, Wa
Posts: 3,207

Quote:
Originally Posted by Daniel ~ View Post
With cash, all they could do was counterfeit the bills.... maybe in the future we will reinvent a cash economy...":O}
...and then back to shells and beads?.....and then back to hides and chunks of meat? Oh, I forgot women.
__________________
AOA Team fah


1ST * Asus M5A99FX Pro r 2.0 *AMD FX 8350 Black Edition *Cooler Master MasterLiquid 240 CPU Cooler * Crucial 16g DDR3 * MSI Geforce GTX 1050 * Antec 650w* Thermaltake V9 Case
2nd Asus M5A99fx Pro R2.0 Mainboard *AMD FX 4300 Black edition * l6g Crutial DDR3 * Evga Geforce Gt 730 * Coolermaster Dual fan HSF * 500w Thermaltake PSU * 320g western digital HDD


Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #5 (permalink)  
Old 25th February, 2010, 08:23 PM
Daniel ~'s Avatar
Chief BBS Administrator
 
Join Date: September 2001
Location: Seattle Wa.
Posts: 45,606

Yes, I rather think we are going in this direction...
__________________
"Though all men live in ignorance before mystery,
they need not live in darkness...
Justice is foundation and Mercy ETERNAL
."
DKE

"All that we do is touched by Ocean
Yet we remain on the shore of what we know."
Richard Wilbur

[img]/forum/attachments/random-nonsense/16515-sigs-dan_drag.jpg[/img]
Subscribers! Ask Pitch about a Custom Sig Graphic

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply

Tags
card skimming , chip and pin



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Jebao water pumps drewnashty Cooling & Temperature Monitoring 5 29th September, 2006 03:00 PM
I bought two pumps whatever Cooling & Temperature Monitoring 1 20th May, 2004 04:17 PM
Don't put that down payment on a clone of yourself just yet... mookydooky Random Nonsense! 1 12th April, 2003 12:04 AM
Pumps The Spyder Cooling & Temperature Monitoring 5 4th July, 2002 03:24 AM


All times are GMT +1. The time now is 04:52 PM.


Copyright ©2001 - 2010, AOA Forums
Don't Click Here Don't Click Here Either

Search Engine Friendly URLs by vBSEO 3.3.0