lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date: Tue Oct 11 15:45:02 2005
From: bart.lansing at hushmail.com (Bart Lansing)
Subject: PAYPAL security,
	hundred or thausend of buyers under cc fraud

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I'd say Mary hit the nail pretty squarely on the head here.  5
minutes (ok, I lied, 2 minutes) of googling made it pretty clear
that being able to breathe and having a credit/debit car were as
valid a set of commanilities as any...and I'm not certain about the
breathing part, as I am sure that there at any given moment a large
number of credit cards still active for dead people.

On Tue, 11 Oct 2005 07:31:50 -0700 Mary Landesman
<mlande@...lsouth.net> wrote:
>Ever consider the number of PayPal and Amazon users? Of course
>those names
>are going to crop up frequently. My guess is most of the people
>impacted
>also eat beef, drink beer, and like the Rolling Stones. That's all
>immaterial.
>
>The point is, it's very clear that not ALL were PayPal and Amazon
>users.
>
>In fact, not ALL even involved cards used or stored online.
>
>I'm fairly certain not ALL like the Stones, beer, or beef either.
>
>Conversely, CardSystems processed account data for MasterCard,
>Visa,
>American Express, Discover, and others. 40,000,000 (four zero
>million)
>accounts were exposed, 200,000 are known to have been skimmed for
>certain.
>Pretty significant numbers impacting a huge number of people
>regardless of
>where they shop or whether they like the Stones or have a PayPal
>account.
>
>Try googling that.
>
>-- Mary
>
>----- Original Message -----
>From: <ad@...ss101.org>
>To: "'Mary Landesman'" <mlande@...lsouth.net>;
><full-disclosure@...ts.grok.org.uk>
>Sent: Tuesday, October 11, 2005 10:02 AM
>Subject: RE: [Full-disclosure] PAYPAL security,hundred or thausend

>of buyers
>under cc fraud
>
>
>Read all also, if your mind is linked to this post..., it happens
>too much
>to amazon nor paypal buyers... my card is French and not stored
>too any
>online store without amazon or paypal. Try to google "DIGITAL AGE
>888", etc,
>this is enough yeah to shoot at both companies storing our cc...
>else let me
>know where we have all used our cc card ?
>
>-----Message d'origine-----
>De : Mary Landesman [mailto:mlande@...lsouth.net]
>Envoyé : mardi 11 octobre 2005 16:00
>À : ad@...ss101.org; full-disclosure@...ts.grok.org.uk
>Objet : Re: [Full-disclosure] PAYPAL security,hundred or thausend
>of buyers
>under cc fraud
>
>I've spent less than 5 minutes looking through that thread and
>already have
>found a number of posts stating their card was not affiliated with

>PayPal.
>So I have to wonder how you jumped so quickly to that conclusion.
>
>Remember CardSystems - 200,000 credit card accounts were
>compromised and 40
>million accounts exposed just months ago. I think I would put my
>bet on
>something more obvious, like that.
>
>Research is about more than collecting links that backup your
>viewpoint.
>
>-- Mary
>
>----- Original Message -----
>From: <ad@...ss101.org>
>To: <full-disclosure@...ts.grok.org.uk>
>Sent: Tuesday, October 11, 2005 9:23 AM
>Subject: [Full-disclosure] PAYPAL security,hundred or thausend of
>buyers
>under cc fraud
>
>
>I will explain my small story to show you that using paypal to buy

>on the
>web is risked.
>I have buy only 2 things this month, 1 game at steampowered.com
>and 1GB DDR2
>at a respectable ebay store. That was the first time I were using
>paypal to
>pay things on the net and so on it will be the last time..
>
>Today I notice at my bank account a fraudulent debit of 24.99$
>coming from a
>"DIGITAL AGE 888", and looking on the web, happy to see that there

>is
>hundred maybe thausends of ppl in my case , fraudulent charge of
>24.99$ from
>a "digital age".
>
>look there:
>
>http://www.dslreports.com/forum/remark,14525502?
>hilite=digital+age
>
>http://www.dslreports.com/forum/remark,14521837?
>hilite=digital+age
>
>http://www.robertkbrown.com/2005/10/04/digital_age_fraud.html
>
>after reading all this and comparing with my case, sure it comes
>from paypal
>and the stored cc card.
>
>So if you are under the fraud also like me, fill a complaint to
>your bank
>and there http://www.ifccfbi.gov/index.asp
>
>This was a first and last use of paypal for me, unbelievable ...
>
>
>
>-------------------------------------------------------------------

>---------
>----
>
>
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.4

wkYEARECAAYFAkNLz+0ACgkQfw4CJpLBxOMA9ACgsnq9FsZinQfQ7roBobJVDiJnZtIA
n3/rmnLoWgGPhtfcVuH5SJ3mmjJt
=uHS5
-----END PGP SIGNATURE-----




Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services-messenger?l=434

Promote security and make money with the Hushmail Affiliate Program: 
http://www.hushmail.com/about-affiliate?l=427

Powered by blists - more mailing lists