lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date: Tue Oct 11 15:45:02 2005
From: bart.lansing at (Bart Lansing)
Subject: PAYPAL security,
	hundred or thausend of buyers under cc fraud

Hash: SHA1

I'd say Mary hit the nail pretty squarely on the head here.  5
minutes (ok, I lied, 2 minutes) of googling made it pretty clear
that being able to breathe and having a credit/debit car were as
valid a set of commanilities as any...and I'm not certain about the
breathing part, as I am sure that there at any given moment a large
number of credit cards still active for dead people.

On Tue, 11 Oct 2005 07:31:50 -0700 Mary Landesman
<> wrote:
>Ever consider the number of PayPal and Amazon users? Of course
>those names
>are going to crop up frequently. My guess is most of the people
>also eat beef, drink beer, and like the Rolling Stones. That's all
>The point is, it's very clear that not ALL were PayPal and Amazon
>In fact, not ALL even involved cards used or stored online.
>I'm fairly certain not ALL like the Stones, beer, or beef either.
>Conversely, CardSystems processed account data for MasterCard,
>American Express, Discover, and others. 40,000,000 (four zero
>accounts were exposed, 200,000 are known to have been skimmed for
>Pretty significant numbers impacting a huge number of people
>regardless of
>where they shop or whether they like the Stones or have a PayPal
>Try googling that.
>-- Mary
>----- Original Message -----
>From: <>
>To: "'Mary Landesman'" <>;
>Sent: Tuesday, October 11, 2005 10:02 AM
>Subject: RE: [Full-disclosure] PAYPAL security,hundred or thausend

>of buyers
>under cc fraud
>Read all also, if your mind is linked to this post..., it happens
>too much
>to amazon nor paypal buyers... my card is French and not stored
>too any
>online store without amazon or paypal. Try to google "DIGITAL AGE
>888", etc,
>this is enough yeah to shoot at both companies storing our cc...
>else let me
>know where we have all used our cc card ?
>-----Message d'origine-----
>De : Mary Landesman []
>Envoyé : mardi 11 octobre 2005 16:00
>À :;
>Objet : Re: [Full-disclosure] PAYPAL security,hundred or thausend
>of buyers
>under cc fraud
>I've spent less than 5 minutes looking through that thread and
>already have
>found a number of posts stating their card was not affiliated with

>So I have to wonder how you jumped so quickly to that conclusion.
>Remember CardSystems - 200,000 credit card accounts were
>compromised and 40
>million accounts exposed just months ago. I think I would put my
>bet on
>something more obvious, like that.
>Research is about more than collecting links that backup your
>-- Mary
>----- Original Message -----
>From: <>
>To: <>
>Sent: Tuesday, October 11, 2005 9:23 AM
>Subject: [Full-disclosure] PAYPAL security,hundred or thausend of
>under cc fraud
>I will explain my small story to show you that using paypal to buy

>on the
>web is risked.
>I have buy only 2 things this month, 1 game at
>and 1GB DDR2
>at a respectable ebay store. That was the first time I were using
>paypal to
>pay things on the net and so on it will be the last time..
>Today I notice at my bank account a fraudulent debit of 24.99$
>coming from a
>"DIGITAL AGE 888", and looking on the web, happy to see that there

>hundred maybe thausends of ppl in my case , fraudulent charge of
>24.99$ from
>a "digital age".
>look there:
>after reading all this and comparing with my case, sure it comes
>from paypal
>and the stored cc card.
>So if you are under the fraud also like me, fill a complaint to
>your bank
>and there
>This was a first and last use of paypal for me, unbelievable ...

>Full-Disclosure - We believe in it.
>Hosted and sponsored by Secunia -
Note: This signature can be verified at
Version: Hush 2.4


Concerned about your privacy? Follow this link to get
secure FREE email:

Free, ultra-private instant messaging with Hush Messenger

Promote security and make money with the Hushmail Affiliate Program:

Powered by blists - more mailing lists