You, Hacked – Part IV: Lets Monetize This!

You give up Kent’s login information to me because you trust me, are stressed and wish to fulfill your job function: keeping customers happy.

I now have access to your CRM/lead management system. As we say in my country we now ‘own’ you.

Within this web application I now have unfettered access to every:

- first name
- last name
- address
- credit card type (not important)
- credit card number
- credit card expiration date
- CVV code (important)

… that has been stored in your third-parties lead management system since you procured their services.

I check with my friend, also in Europe, to check on the latest “data supermarkets” that sell stolen credit card numbers for a fixed price.

The BBC reported that the black market prices for such info can go for up to $300 USD yet I know that this is an inflated price. From one professional to another the press would like to agrandize, dramatisize and romantisize such transactions but the fact is that such data is notoriously hard to come by.

Researchers who track the IRC servers where this sort of shady affairs take place typically report on the lowest advertised prices of credit card numbers.

Yes, they have been falling in recent years but I am confident that I can get at least $40 for each stolen card.

Given that Gorman and his company have stored no less than 5,000 such cards with relevant expiration dates leads me to believe that I can quickly turn this weeks effort into my typical $200,000 paycheck.

Of course this may take months to evolve into hard currency. A 30-50% discount will occur through nominal channels of less than legal currency pipelines.

In the meantime I will pick at those 5,000 cards and identify those that are at the very least, Platinum in nature, White colored, Black colored, Chairmans, Ultra Elite, Royal, Celebrity.

So what happened?

I knew a few things. Engaged a vendor as representing a legitimate business and a legitimate user account there within.

I pulled strategically on the human stress anxiety lever. I backed up my claims with information gathered through easy channels.

I leveraged this information to steal relevant credit card data from a single car dealership.

I then levered connections (albeit somewhat hard to establish) to take this stolen data and sell it quickly on the black market.

Short URL: http://www.jocktoday.com/?p=257

Posted by on Feb 7 2011. Filed under You, Hacked (series). You can follow any responses to this entry through the RSS 2.0. You can leave a response or trackback to this entry

Leave a Reply

Recent Entries

Featured Links

Search Archive

Search by Date
Search by Category
Search with Google
Log in | Designed by Gabfire themes