The theft of financial information from credit or debit cards, or also personal data that has been provided online, is one of the more conventional cybercrimes. Criminals, after stealing credit information, access the money using the cards in an unauthorized manner. This virtual fraud has the name “carding”.
The way they do it is random, and is related to the practices of “hacking” and “cracking” that, with the help of software, create algorithms that generate various combinations and allow them to obtain card numbers, including the security number. This criminal procedure can be done online, or also by telephone, but what characterizes it is that the amounts of unauthorized purchases are always sequential and small amounts. In this way, they avoid raising suspicions and it is more difficult to detect what is happening.
According to experts, the communities that are dedicated to carding are called BIN, and this is because the BIN (Bank Identification Number) They are the first six numbers of your bank card, which allows banks to identify whether the type of card is debit or credit. The “bineros” They are mostly young people who organize themselves on social networks. In these virtual spaces, advice is given on criminal maneuvers and it is also used as a market to sell data packages.
They are the most common and simplest type of carding because they do not steal physical cards, but simply take advantage of the payment method. The detail to keep in mind is that they depend a lot on chance, since banks have card numbers generated, but not assigned. Therefore, they must generate a card number that exists and is assigned.
The main tools used for carding are based on the malware and the phishing. Some cyber criminals use rootkits, trojans and backdoors, which can be installed in the system without permission and with this they can easily gain access to steal data and steal money from bank accounts, taking screenshots when accessing home banking and recording keyboard keystrokes.
Another modality is phishing. It is about deceiving through false web pages that pose as bank pages, universities, online stores or any other legitimate institution. This way they can easily obtain users’ financial information, giving them the “trust” to reveal their personal and financial data. They can also send an email impersonating the email of a trusted institution to obtain the data.
There is also physical carding, one of the best known is “skimmer”. The procedure consists of easy-to-get cards, they are stuck in the ATMs just above the card reader, it goes unnoticed and when a user puts the card in the ATM slot the data is recorded and in the case of the PIN a false one is installed keyboard to record the number keys.
To avoid falling into this fraud, it is suggested to never respond to emails or phone calls that request card information. Banking companies never request information through these means. When you receive a card at home, it is advisable to check that the envelope is completely closed and shows no signs of having been opened. The plastic should be destroyed as soon as it expires, cutting it into several pieces to completely destroy the magnetic stripe and throwing the pieces into different garbage bags. Also do not lose sight of the credit card at any time when you are purchasing.
Finally, it is recommended to keep track of all operations. To do this, it is recommended to activate movement alerts with cards to better monitor and detect any unusual movements. Keep card numbers, expiration dates and telephone numbers for complaints at home in case of loss, theft or theft and avoid using public computers to make purchases.
Image gallery
