Jump to content


Google Ads are only seen by non-members of RMweb - Create an RMweb account and you'll only receive modelling ads.

Photo
- - - - -

Fraudulant card use





  • Please log in to reply
127 replies to this topic

#76 Lady_Ava_Hay

Lady_Ava_Hay

    Member


  • Members
  • PipPip
  • 3,783 posts
  • LocationSouth Coast UK

Posted 25 March 2012 - 14:45

Internet only. Never verbally. It could just be a coincidence as I buy quite a lot of models online.
Only noticed when I looked online at my credit card statement(s) and some transactions I didn't recognise (2 in the UK, 1 in the USA). According to the credit card companies, the fraud was done with online purchases too.


You almost certainly have a Trojan or key logger in your computer which is possibly linked to the box shifter's website as this is leaky and a valuable source of card details. Too much of it and no extra security as a result and they will lose their credit card licence.

It is of course possible ( but unlikely ) that the Trojan is on the box shifter's site and is linked to your harvested E Mail address or IP address.

You have not specified your firewall arrangements but they might be worth reviewing particularly if you are operating an older browser.

Google Ads are only seen by non-members of RMweb - Create an RMweb account and you'll only receive modelling ads.

#77 Downendian

Downendian

    Member


  • Members
  • PipPip
  • 1,765 posts
  • LocationBristol and Dunstone, South Devon

Posted 25 March 2012 - 15:09

I had a Paypal incident a few weeks back, two £435 "donations" apparently made by me. I noticed within 20 minutes and reported by starting a Paypal dispute. within two days they informed me to be shock and horror that the transactions were not fraudulent but from a "recognised" source, which of course was nonsense. It was incredibly difficult to get through to Paypal, and in the end my credit card registered to the account bailed me out when I reported the fraud (Virgin). The difference in customer interface between PP and Virgin were poles apart- top response from Virgin. I won't use Paypal again due to their response, but can you believe I can't shut my account as I need to provide new credit card details as the last one was cancelled due to the fraud! PayPal is incredibly convenient, but woe betide it if you have a problem.

Shame, it has put a stop to most of my eBay activity, but on the plus front saved a lot last month!

Neil

#78 Southernman46

Southernman46

    Member


  • Members
  • PipPip
  • 2,997 posts
  • Location5 leagues north of 72B, 4 leagues south of the old enemy, occasionally E6 too

Posted 25 March 2012 - 15:30

I know of several colleagues who sign their card "See Id"


Now that's simple and very clever.........like it

#79 PaulCheffus

PaulCheffus

    Member


  • Members
  • PipPip
  • 2,061 posts

Posted 25 March 2012 - 17:40

You almost certainly have a Trojan or key logger in your computer which is possibly linked to the box shifter's website as this is leaky and a valuable source of card details. Too much of it and no extra security as a result and they will lose their credit card licence.


Hi

I have had several occurances of fraud on my card and although I can't prove anything I have a suspicion where my details are being used from. My computer does not have any viruses or key loggers.

Cheers

Paul

#80 APOLLO

APOLLO

    Member


  • Members
  • PipPip
  • 2,331 posts
  • LocationNear Uncle Joe's Mintball factory !!

Posted 25 March 2012 - 19:38

Rolling in it: Romanian gangs behind nine in ten cashpoint robberies rake in £30m a year
  • More than 90 per cent of cash machine fraud in UK attributed to Romanian criminal gangs
  • Most of those arrested have links to the same city: Bacau in eastern Romania
  • Proceeds of crime 'now makes up 70 per cent of Bacau's economy

http://www.dailymail...e-30m-year.html

#81 John M Upton

John M Upton

    Member


  • Members
  • PipPip
  • 3,434 posts
  • LocationBumbling along the Coastway West in a 313...

Posted 26 March 2012 - 01:03

Lets nuke Bacau then, problem solved!!!!

#82 leopardml2341

leopardml2341

    Member


  • Members
  • PipPip
  • 3,055 posts
  • LocationWillington S. Derbyshire (Yorkshire expat)

Posted 26 March 2012 - 06:57

Hi

I have had several occurances of fraud on my card and although I can't prove anything I have a suspicion where my details are being used from. My computer does not have any viruses or key loggers.

Cheers

Paul


I had a similar instance a couple of years or so ago - but in that case it wasn't card fraud - but a key logger.

I too thought I hadn't got any viruses or trojans, after all I'd a monthly subscription to a well known internet security provider.

So I tried Ad-Aware * a freebie download from t'net - lo and behold a trojan detected !

When the details were reported to my bank's security team - they were not aware of this particular nasty, but a few minutes later confirmed that it was valid and not something made up by the freebie scanner.

When I reported it to the Internet Security (?) software provider they weren't interested, claiming that I couldn't have installed their software properly !

So just because you have internet security software, it don't mean you're protected, needless to say my subscription was cancelled.

* no association other than a satisfied user

#83 Billystanier

Billystanier

    Member


  • Members
  • PipPip
  • 79 posts

Posted 26 March 2012 - 07:26

Can you provide a link to Ad-Aware? Thanks. Currently using McAfee which I reckon may be your 'well known internet security provider'.

#84 Andy Y

Andy Y

    RMweb Editor


  • Administrators
  • 14,110 posts
  • LocationStaffs

Posted 26 March 2012 - 07:35

I too will recommend Adaware - http://www.lavasoft.com/ - careful as there are some spoof downloads for it around; make sure you initially keep selecting the free option as you go through the process.

We also use Spybot which again catches things the others don't - http://www.safer-net...g/en/index.html

Both will catch things McAfee is weak on; I personally prefer AVG to McAfee these days anyway but still have both running. http://www.avg.com/gb-en/homepage
  • Like x 3

#85 PaulCheffus

PaulCheffus

    Member


  • Members
  • PipPip
  • 2,061 posts

Posted 26 March 2012 - 08:11

So I tried Ad-Aware * a freebie download from t'net - lo and behold a trojan detected !


Hi

Already using it.

I stand by my statement that there is no malicous software on my PC.

Cheers

Paul

#86 leopardml2341

leopardml2341

    Member


  • Members
  • PipPip
  • 3,055 posts
  • LocationWillington S. Derbyshire (Yorkshire expat)

Posted 26 March 2012 - 09:37

Can you provide a link to Ad-Aware? Thanks. Currently using McAfee which I reckon may be your 'well known internet security provider'.


No - it was the other one !

#87 Removed a/c_baldrick25

Removed a/c_baldrick25

  • Guests

Posted 26 March 2012 - 10:15

Run these 'detection' programs like Malwarebytes,Ad-Aware etc from SAFE MODE for best effect , after having downloaded the latest pattern files. Also do a full scan with the antivirus from SAFE MODE afterwards. If there is any doubt about your PC , download 'fresh copies of the software, de-install one at a time and re-install / update. I say this because some trojans are clever enough to seek out the antivirus etc and neutralise the detection and removal modes- so it looks like its doing the job and its actually doing nothing at all.

#88 Ian Hargrave

Ian Hargrave

    Member


  • Members
  • PipPip
  • 4,764 posts

Posted 26 March 2012 - 10:17

Try Avira AntiVir Premium. I've used for the last 4 years--on the recommendation of a relative who works as an IT trouble shooter at the Foreign & Commonwealth Office in Whitehall.

#89 Lady_Ava_Hay

Lady_Ava_Hay

    Member


  • Members
  • PipPip
  • 3,783 posts
  • LocationSouth Coast UK

Posted 26 March 2012 - 12:38

I had a similar instance a couple of years or so ago - but in that case it wasn't card fraud - but a key logger.

I too thought I hadn't got any viruses or trojans, after all I'd a monthly subscription to a well known internet security provider.

So I tried Ad-Aware * a freebie download from t'net - lo and behold a trojan detected !

When the details were reported to my bank's security team - they were not aware of this particular nasty, but a few minutes later confirmed that it was valid and not something made up by the freebie scanner.

When I reported it to the Internet Security (?) software provider they weren't interested, claiming that I couldn't have installed their software properly !

So just because you have internet security software, it don't mean you're protected, needless to say my subscription was cancelled.

* no association other than a satisfied user

Hi

I have had several occurances of fraud on my card and although I can't prove anything I have a suspicion where my details are being used from. My computer does not have any viruses or key loggers.

Cheers

Paul


I had exactly the same sequence of events using a familiar Scottish name software which also slowed my computer to a crawl. In my case though it was Spybot Search and Destroy. Spybot also allows you to immunise files. I must say though that Windows 7 includes a free programme called Defender which regularly scans the registry for odd programmes. I have had no problems with Windows 7 and I use Firefox as a browser.

I had endless problems with IE and Windows XP.

I still remember my first scan with Spybot. No less than twenty nasties. I also think that Yahoo and indeed Google have had to sharpen their tools quite a lot with their pop up ads using much the same style of cookie. I know that early versions of Spybot actually blocked these ads but doesn't seem to now.

Apparently, these nasties tend to come from photographs and videos from untended or scam sites, hence my comment about the box shifter's site.

#90 Butler Henderson

Butler Henderson

    Member


  • Members
  • PipPip
  • 3,281 posts

Posted 27 April 2012 - 19:44

Just had a statement with 3 currency transactions on it - 1 to US dollars, 2 to Aussie dollars. Very annoying as my card was suspended earlier in the month due to some suspicious transactions (all were genuine). More worryingly is that I only use that card for model railway & paypal transactions. 2 recent ones were by phone and one of those has supplied only some of the order despite claiming to have all in stock when I phoned and more oddly have not charged me for what they did send

Edited by Butler Henderson, 27 April 2012 - 19:44 .


#91 meil

meil

    Member


  • Members
  • PipPip
  • 562 posts

Posted 27 April 2012 - 20:06

Lets nuke Bacau then, problem solved!!!!


That's a bit unfair on the Azerbaijanis - don’t you mean Bucharest?

And any way it's Baku.

Edited by meil, 27 April 2012 - 20:06 .


#92 Kenton

Kenton

    Member


  • Members
  • PipPip
  • 8,835 posts
  • LocationWokingham

Posted 27 April 2012 - 20:33

That's a bit unfair on the Azerbaijanis - don’t you mean Bucharest?

And any way it's Baku.


No he does mean Bacău as said, it is in in Romania not Azerbaijan.

#93 Black Sheep

Black Sheep

    Member


  • Members
  • PipPip
  • 2,102 posts
  • LocationNorth West

Posted 28 April 2012 - 08:37

I now never use debit cards over the phone, the type were you read all the details and someone writes it down on a slip of paper to leave hanging around till the orders are processed,


I work in a small bookshop and we often take orders and payments over the phone, policy is that it is done straight away on the card machine while the customer is still on the phone. The only thing written down is the address. This way we can confirm that it's all gone through ok before the customer goes.

#94 Jenny Emily

Jenny Emily

    Member


  • Members
  • PipPip
  • 1,917 posts
  • LocationBolton

Posted 11 August 2012 - 06:46

Just had my account frozen yesterday because some scrote tried twice to top up an O2 pay as you go phone from my account. I had £3 in cash on me, and was in Exeter about to head for home. Luckily I had a company fuel card or else I would have been out of luck by Bristol. I stopped the day before at a well known model shop because I was passing. It saved me the postage, but other people's experiences in this thread have made me suspicious.

EDIT: looks like it wasn't this shop, but more likely a preorder I made from another shop a few days earlier.

Edited by Jenny Emily, 12 August 2012 - 09:01 .


#95 PhilJ W

PhilJ W

    Member


  • Members
  • PipPip
  • 5,325 posts

Posted 11 August 2012 - 09:01

Just had my account frozen yesterday because some scrote tried twice to top up an O2 pay as you go phone from my account. I had £3 in cash on me, and was in Exeter about to head for home. Luckily I had a company fuel card or else I would have been out of luck by Bristol. I stopped the day before at a well known model shop because I was passing. It saved me the postage, but other people's experiences in this thread have made me suspicious.

Its most likely that it was done before yesterday. Was the card out of your sight at any time in the last few weeks? Because that is where it was likely to have happened. If you have the number of the scrote's phone tell O2 what has happened and they will most likely cancel his phone.

#96 royaloak

royaloak

    Member


  • Members
  • PipPip
  • 1,837 posts
  • LocationIn the front pushing buttons.

Posted 11 August 2012 - 18:59

It normally takes a bit of time to clone a card (not so easy for them to be traced that way) so I find it very unlikely it was the model shop that was the problem, where have you used the card over the last 2 months where the card was out of your sight even for just a few seconds, a skimmer can be fixed under a counter so it literally takes a second for the card to be skimmed.

Hotels, restaurants and pubs are favourite venues for this.

Edited by royaloak, 11 August 2012 - 19:00 .


#97 Black Sheep

Black Sheep

    Member


  • Members
  • PipPip
  • 2,102 posts
  • LocationNorth West

Posted 11 August 2012 - 20:15

I agree. Of course the banks forced us down this route because chip and pin provides more security than a signature so THEY are less likely to lose out to fraud. Yes this added protection is passed on to the individual, but the bottom line is it protects bad debt write-offs on the balance sheet. Fraud was vastly reduced when chip and pin was introduced in Europe so it was natural that the UK would follow suit. The problem with signatures for transactions is that they very rarely look anything like the one on the back of the card - how carefully do most people sign the back of their new card only to scribble a rushed signature on a receipt? This means they are very easily forged and provides the card holder and retailer with very little protection.


before chip and pin (or Chippy McPin as I call it at work) I was told by various shops that I must re-sign my card as my signature had worn off (current card has 2 years left to run on it and the signature strip itself has worn off!)

however, doing so according to my bank at the time would invalidate my card so I used to always get asked for an alternative sample of my signature.

Chip and pin solves that

#98 Physicsman

Physicsman

    Member


  • Members
  • PipPip
  • 12,168 posts
  • LocationWillington, Co. Durham

Posted 11 August 2012 - 20:33

I work in a small bookshop and we often take orders and payments over the phone, policy is that it is done straight away on the card machine while the customer is still on the phone. The only thing written down is the address. This way we can confirm that it's all gone through ok before the customer goes.


This procedure sounds eminently sensible, but I wonder how many shops suffer from gross complacency - you just don't know who has got your data if you put a phone order through. I generally use one particular deep south-western model shop. They have my card details on the system and I usually order via their website. If I do decide on a quick call I just tell them to use "the usual (credit card) number". So provided no one outside the shop has access to the system there shouldn't be a problem. There hasn't been.

Just a thought. When you 'phone your bank, insurer etc, they ask you a plethora of "security questions". I sometimes wonder whether we should ask them the same. After all, how do you really know you are talking to who you think you are? Paranoia, here I come!

Jeff
  • Like x 2

#99 royaloak

royaloak

    Member


  • Members
  • PipPip
  • 1,837 posts
  • LocationIn the front pushing buttons.

Posted 11 August 2012 - 20:38

Just a thought. When you 'phone your bank, insurer etc, they ask you a plethora of "security questions". I sometimes wonder whether we should ask them the same. After all, how do you really know you are talking to who you think you are? Paranoia, here I come!

Jeff

Surely if you ring the bank then you know you are talking to a bank employee, but if the "bank" rings you then that is different.

PS I am not paranoid "they" are after me!

#100 Black Sheep

Black Sheep

    Member


  • Members
  • PipPip
  • 2,102 posts
  • LocationNorth West

Posted 11 August 2012 - 22:28

I have been known to get my post code wrong when talking to the bank if they've called me :)







Google Ads are only seen by non-members of RMweb - Create an RMweb account and you'll only receive modelling ads.