Online buyer knows that the all credit and debit cards have 3 – digit “Card Verification Value” (CVV or CVV2) code printed on the back. Merchants are forbidden from storing this information — so how do online fraudsters manage to get hold of it?
To often the card users find purchases in their bill that are not by them! Hacker and Thieves are everywhere and they hack three digit pin CVV code
Here how they know your CVV code?
If not via phishing, probably by installing a web based key logger at an online merchant so that all data that customers submit to the site is copied and sent the attacker’s server.
According to Kenneth Labelle, a regional director at insurer Burns-Wilcox.com wrote:
So, I am trying to figure out how card not present transactions are possible after a breach due to the CVV. If the card information was stolen via the point-of-sale system then the hacker should not have access to the CVV because its not on [the card data]. So how in the world are they committing card not present fraud when they don’t have the CVV number? I don’t understand how that is possible with the CVV code being used in online transactions.”
First they get the CVV from the hacking point of sale system via skimmer or malware of cash register system – retail for about $US20 ($25.80) on average at cyber crime underground. The fabricate a new physical clone of original card and use it easily and these counterfeits to buys good from big box retailer that they can easily resell, or extract cash at ATMs.
The phony cards are used but they are aided by online fraudulent – “CVV shops”. The CVV shops sell the details of customers which include the name of customers; expiration date and postal code. The Web-loggers are usually used to grab CVV. Trojan and Zeus viruses are also used to retrieve valuable info like this.
Below is the short interview how victim suffer from hacker.
PC trojans like ZeuS, for example, siphon information using two major techniques: snarfing passwords stored in the browser, and conducting “form grabbing” — capturing any data entered into a form field in the browser before it can be encrypted in the web session and sent to whatever site the victim is visiting.
Web-based key loggers also can do form grabbing, ripping out form data submitted by visitors — including names, addresses, phone numbers, credit card numbers and card verification code — as customers are submitting the data during the online checkout process.
To protect from hacker and thieves way to be safe is to install an antivirus and update time on time your Personal Computer which will keep out of viruses and notice if any irregular activity happen the report it. Credit card and debit card is never used online if its look likes scam, do your research and read reviews about that website before buying any product from online. Hacker and thieves out in the open and everywhere you have to careful for your own privacy and keep you belongings safe.