phishing at it's most blatant.
They probably don't take money immediately if they've had some successful phishing event ..
and then make a few trial expenses before moving in for to try for motherload.
Unrecognised credit card charge - card is not lost.
- Thread starter 413x
- Start date
They probably don't take money immediately if they've had some successful phishing event ..
and then make a few trial expenses before moving in for to try for motherload.
Commissario
Yup in one of the instances that affected me people worked out that they'd likely had access to information for at least 6 months, in one of the bigger US ones it turned out that (from memory) the criminals had managed to infect the server for the payment processing in hundreds of one of the big stores and had potentially started doing it something like 2 years before they started to use the numbers (I can't remember if they'd managed to hack an update to the server or actually gained physical access to one or more and it spread from there).
IIRC back in something like 2014 Home Depot had I think almost all of it's payment records including card numbers hacked for 5-6 months.
Basically if you've managed to compromise someone's payment system it makes sense to hold off using the data for as long as possible, because as soon as you start to use those card numbers the card issuers and payment processing companies are going to start looking for a pattern which means you've got a limited time in which to make your money, however if you can hold off for long enough you not only get many more cards to try and use, but you make the investigation harder as the companies looking for a pattern might now be looking for one over the space of years rather than days or weeks.
It's relatively easy to spot that all the cards involved were used at Dodgy Dave's Drivethrough in the last week, it's rather harder to spot the patten when each card might have been used hundreds of times over the last 12 months and the retailer is is big enough that a significant number of the population in an area use it.
Last edited:
Checked all that. Nothing.
I very rarely use amazon so I was fairly sure it's not something I'd forgotten.
Bank says they've frozen everything. Including things that carry on with a new card. And they'll hopefully find out what it is. Ie who's account etc
If 5.99 covers it, they can come stay with me permanently!
You maybe in luck as Annie Knight may take you up on that offer
As she needs somewhere to sleep with 600 men
Last edited:
You maybe in luck as Annie Knight may take you up on that offer
As she needs somewhere to sleep with 600 men
Ewww! I thought was 600.. Ever. And that was bad enough.
600 in a year?
Jesus!
Caporegime
my revolut card got online fraud attempts for ToysRUs!!!
must have been skimmed in new york lol
must have been skimmed in new york lol
Soldato
Does necrophilia count?
Soldato
- Joined
- 16 Aug 2009
- Posts
- 8,041
You sure your amazon account hasn't been compromised or someone else is using it? Had something similar turns out I'd logged into Prime on someone's TV while visiting and forgot to log out and they'd watched a film later using the service and I got the bill £5.99 seems a very low amount for a scam your scammer is seriously lacking ambition. At the very least I'd be changing my wifi password
What is it about ToysRUs? I had exactly the same thing for a cloned card but for somewhere in Thailand (the card not me)
Last edited:
Commissario
Probably whoever is collecting the card numbers/has bought a batch knows a toysrus that doesn't look closely at the cards/or the toysrus online store isn't very good at checking card number billing address vs the delivery address.
Associate
Lyca mobile customer by any chance?
Caporegime
Exactly what I thought... If it wasn't NY it was the lycra hack.
The VISA terminal/vendor terms of service specifically stated that the cashier isn't ever supposed to physically touch the card the last time I saw them.
I don't have prime though. And barely use amazon.
Certainly not used my card on anyone elses account.