June 14, 2021

New Twitter account shows that people post credit card details online

(LiveHacking.Com) – There is a saying in some parts that “there is one born every minute” and it usually refers to those who, how can it be put politely, have been known to act unwisely! A new twitter account @NeedADebitCard has been setup to search Twitter for pictures of people’s credit and debit cards. You might think that it should return zero results but unfortunately quite the opposite is true.

It seems that the elation of either receiving a new credit/debit card in the post or the joy of finding a lost card is causing people to take photos of their cards and post them online. From the photos the card number, the card holder and the expiry date are all clearly visible.

For example one twitter user wrote “Just found my credit card” and then published a link to an Instagram photo of the card. Another simply wrote “My credit card !!yey” and then again included a link to a photo of the card. Still another wrote “MY CREDIT CARD !” and again included a full photo of the card. One enthusiastic user wrote “Had to twitpic my debit card so shamar knw i aint playing no games about this bet!” I could go on….

Interestingly, some of the pictures posted using Instagram seem to have been deleted. Is this because Instagram are deleting them to help protect users? However this hasn’t stopped the popularity of the account which now has over 4,500 followers and is growing daily.

Enough information is being posted for criminals to attempt to use the card information in ‘card not present’ purchases, which don’t require the CVV or CVC security numbers found on the back of the cards.

Untrusted SSL Certificate on MasterCard Australia Website

[UPDATE:  MasterCard has fixed the issue]

(LiveHacking.Com) – It appears as if one part of the MasterCard Australia Website has not been audited recently as it is using an untrusted digital certificate. The error was noticed on the https://migs.mastercard.com.au/ site when a Mastecard customer was trying to pay for some insurance.

Since this is a financial site which processes financial transactions, the certificate on the site should be one globally recognized. Without a valid certificate any user of the service can not be sure that the site hasn’t been spoofed or hijacked in some way.

A copy of the exported certificate can be downloaded from here.

Global Payments Says 1.5M Card Details Exposed in Unauthorized System Access

(LiveHacking.Com) – Over the weekend VISA and MasterCard started alerting banks across the USA about a major security breach at a  credit card processor. Initial reports said that as many as 10 million credit card numbers were exported, including Track 1 and Track 2 information, raising fears of massive credit card cloning.  Shortly after the news broke, Atlanta-based processor Global Payments confirmed, via a press release, that it was the payment processor which had suffered the  unauthorized access into its processing system.

The company says that the affected portion of its processing system is confined to North America and less than 1,500,000 card numbers (not 10,000,000 as initially reported). Its investigation has revealed that Track 2 card data may have been stolen, but that cardholder names, addresses and social security numbers were not obtained by the criminals.

“We are making rapid progress toward bringing this issue to a close.  Our nearly 4,000 employees around the world are focused on providing exceptional service. We are open for business and continue to process transactions for all of the card brands,” said Chairman and CEO Paul R. Garcia.

Security expert Brian Krebs was one of the first to reveal details of the breach on his blog but initially he was unable to name Global Payments as the victim. VISA has now dropped support for Global Payments and added that “Visa Inc. is aware of a potential data compromise incident at a third party entity affecting card account information from all major card brands. There has been no breach of Visa systems, including its core processing network VisaNet.”

PSCU, which provides online financial services to credit unions, issued a security alert to its members after it was contacted by Visa. The alert reported that 46,194 of the compromised Visa card numbers belonged to PSCU customers, and that the breach lasted from Jan. 21 to Feb. 25.

Since Track 1 and Track 2 data was exposed, the thieves could use the stolen information to counterfeit new cards. For an explanation of the meaning of Track 1 and Track 2 data see here.

The origin of the attack is, as yet, unknown.