[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Re: [apwg] Graph analysis of stolen credit cards

It makes me feel both happy and very uneasy when Discover Card is not on
the list.  Just to clarify, when you say stolen cards, you really mean
stolen card data, correct?  In addition, in your analysis of the carder
forums, can you tell if the majority of the card data is obtained by the
carders via phishing and pharming, hackings, or both?

Thanks.
(Embedded image moved to file: pic29711.jpg)


                                                                           
             Lance James                                                   
             <phishing@secures                                             
             cience.net>                                                To 
                                       "Malicious Activity Awareness &amp; 
             05/26/2006 12:56          Response Discussions"               
             AM                        <general-discussion@xxxxxxxxxxxxx>, 
                                       Phish-Net <phish-net@xxxxxxxxx>,    
                                       Apwg <apwg@xxxxxxxxxxxxxxxxxxxxx>,  
                                       phishing@xxxxxxxxxxxxxxxxx,         
                                       bugtraq@xxxxxxxxxxxxxxxxx,          
                                       "full-disclosure@xxxxxxxxxxxxxxxxx" 
                                       <full-disclosure@xxxxxxxxxxxxxxxxx> 
                                                                        cc 
                                                                           
                                                                   Subject 
                                       [apwg] Graph analysis of stolen     
                                       credit cards                        
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           
                                                                           




Hi all,

We took one sample of one carding/phishing forum that our Global
Surveillance Center was monitoring and sampled the set into a graph that
lists the top 10 banks and the losses over the last month. As you can
see, it's obvious who the top credit card companies are out there, but
at the same time, we can see an ever increasing on the top targets but
not necessarily an increase on the lower tiers over the entire three
months, but in the first two we see a significant increase in success
with stolen credit cards in general. In this case, the loss that we
captured (which probably isn't nearly the number captured by this forum)
was a little over 21,000 credit cards.

Thought this might interest some, and if this is interesting, we are
going to be providing a graph of the losses of top targets with malware
in the upcoming weeks.

Attached is the chart.

--
Best Regards,
Lance James
Secure Science Corporation
www.securescience.net
Author of 'Phishing Exposed'
http://securescience.net/home/news/phishingexposed.html
**********************************************
* New IntelliFound Service 2 weeks free               *
* Real-Time Identity Surveillance Service    *
* https://slam.securescience.com/signup.cgi  *
**********************************************

(Embedded image moved to file: pic09317.gif)

Attachment: pic29711.jpg
Description: JPEG image

Attachment: pic09317.gif
Description: GIF image

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/