FRAUD DICTIONARY – THINGS YOU SHOULD KNOW
You will have a fundamental understanding of the terminology used in carding and carding forums after reading this dictionary. If you come across a newcomer who has some fundamental questions, direct them to this thread. If it was helpful, please click the like button.
FULLZ:
This is someone’s entire data cluster, and it is what is used to set up payment processors on fake online stores as well as create bank drop accounts. This could also be put to use for a great many other purposes, such as carrying out an ATO (Account-Take-Over) on another person’s bank account, opening new credit lines in their name, and a great deal of other things. We place a very high value on fullz as a source of information and consider them an absolute requirement for accessing bank drops. Background Checks, Credit Reports, Credit Scores, Full Names, Addresses, Social Security Numbers (SSN), Dates of Birth (DOB), Driver’s License Numbers, and other personal information are typically included in a Fullz report.
CVV:
This could be the complete details of someone’s credit card, or it could be the complete details of someone’s debit card. The term “CVV” refers to the details of a credit or debit card, and there is not much more to it than that. We are able to use these details to “card” information on someone else online, such as background or credit reports that can be used for a variety of purposes including opening bank drops and conducting an ATO (Account-Take-Over) on the victim’s bank account. Alternatively, we are able to use these CVV details to order physical or digital products that will be sent to a drop address.
CVV DUMPS:
A credit card dump is an unauthorized digital copy of all of the information contained in the magnetic strip of an active credit card. It is created with the intention of illegally making a fake credit card that can be used by cybercriminals to make purchases. A credit card dump can be used to make fraudulent purchases. Fraudsters make use of credit card dumps in order to obtain valuable card data such as the card number and expiration date. There are a few different routes one can take to acquire these. “Skimming,” which is a process in which an unauthorized card reader is used to copy the information from a credit card, has become the most common method in recent years. Other methods include breaking into a retailer’s network or having a point-of-sale device that is infected with malware and then being used by a retailer without their knowledge, which then sends the information to the criminals.
DUMPS SERVICE CODE:
It is a common misconception among con artists that there are only two levels of dumps, 101 and 201. The reality is that there are a wide variety of other kinds of dumps. Carders can typically work with either 101 or 201, though the vast majority will prefer to work with 101. This information is referred to as the dump’s SERVICE CODE. The service code consists of three characters, and it is possible to discover a dump’s service code simply by looking at a dump, regardless of whether the dump has TRACK1+TRACK2 or just TRACK2. As an illustration, suppose that we are looking at the dump number 4256 746500930321, which equals 1402101700102054. The number 101, which can be found immediately following the card’s expiration date (which is 1402 in this instance), is the service code for this particular dump. (FEB 2014). The significance of the service code reveals the circumstances under which the card can be utilized and the specifics of those circumstances. An explanation of each service code that is available today is provided in greater detail below.
First digit (usage variables):
- 1xx: Worldwide use, usually doesn’t have a smart chip.
- 2xx: Worldwide use, does have a smart chip and required to use smart chip if the
card reader reads the chip - 5xx: National use, a list of regions can be allowed by the bank (often called region
locks). - 6xx: National use, a list of regions can be allowed by the bank but required to use
smart chip if the card reader reads the chip - 7xx: Only useable according to what has been agreed with the bank
Second digit (authorization) - x0x: Normal authorization, normal usage.
- x2x: Contact issuing bank.
- x4x: Contact issuing bank, exceptions rules by bank.
Third digit (services that the card can be used for): - xx0: Can be used for anything, require PIN.
- xx1: Can be used for anything without PIN.
- xx2: Can be used to buy goods or pay a service, cannot retrieve cash, PIN not
required. - xx3: ATM only ,PIN required.
- xx4: Cash only, PIN not required.
- xx5: Can be used to buy goods or pay a service, cannot retrieve cash. PIN
required - xx6: No restrictions to use, will ask for PIN when possible.
- xx7: Can be used to buy goods or pay a service, cannot retrieve cash. PIN
required when possible.
AVS & NON-AVS
Address Verification System is what the acronym AVS stands for. The address of a person who asserts ownership of a credit card can be validated with the help of this verification system. The billing address of the user’s credit card, as provided by the user, will be compared by the system with the address that is currently stored at the credit card company. The vast majority of retailers across the United States, Canada, and the United Kingdom use AVS. Due to the fact that AVS only verifies the numerical component of the address, certain irregularities, such as apartment numbers, can result in false declines; however, it is reported that this happens very infrequently. The numeric components of a cardholder’s billing address are checked for accuracy by AVS. For instance, if the address is 101 Main Street, Highland, California 92346, United States, AVS will check both 101 and 92346 in order to locate the property. Cardholders may receive false negatives or partial declines for AVS from e-commerce verification systems. This may necessitate manual overrides, voice authorization, or reprogramming of the AVS entries by the card issuing bank. Alternatively, cardholders may be able to appeal the decision. Cardholders whose banks do not support AVS may receive an error message from online retailers due to a lack of data if their banks do not support AVS. All countries besides UK, US & Canada, are NON-AVS.
VBV & NON-VBV:
This is a protocol built on XML that was developed to add an extra layer of protection to online financial transactions involving credit and debit cards. VBV stands for Verified by Visa. This is done to ensure that the person using the card is who they claim to be and to prevent fraudulent transactions. The system works by either directly asking the cardholder for additional information or by analyzing data behind the scenes to determine whether or not the purchase conforms to the typical payment behavior of the cardholder. After you have entered the information regarding the Visa card, a message box will appear on the screen if the website and the card both have the Verified by Visa feature. After that, you will be prompted to identify yourself using either the password for your Verified by Visa account or a code that has been texted to your phone. The steps that you need to take at this stage vary, but your bank should be able to explain the method that they use and what they anticipate from you at this point. Even if you don’t see the VBV message box appear and instead see a spinning wheel, the security measures associated with VBV are still being carried out, but they are doing so in the background. And there is no action required on your part. In order to ensure that everything is as it should be, the bank is performing background checks as part of the verification process for the purchase. You should ultimately look for NON-VBV cards rather than VBV cards because, as you can see, the verification process is a significant hassle. Any Visa card that does not have the aforementioned feature in place is known as NON-VBV, and it is recommended that you look for these cards.
BIN:
The identification number of the bank. This range of numbers appears at the very top of a credit card and can range from four to six digits. The financial institution that is responsible for issuing the card can be uniquely identified using the bank identification number. In order to successfully match transactions with their respective charge card issuers, the BIN is an essential component. In addition to charge cards, gift cards, debit cards, prepaid cards, and electronic benefit cards, this numbering system is applicable to all of these card types. By comparing data, such as the address of the institution that issued the card and the address of the cardholder, this numbering system helps identify identity theft as well as potential breaches in security that may have occurred. The first digit of the BIN denotes the Major Industry Identifier, which may be an airline, a bank, or the travel industry, and the subsequent five digits denote the issuing institution or bank. For instance, the MII for a credit card issued by Visa begins with the number 4. The BIN is a tool that retailers can use to evaluate and assess the payment card transactions they process. After the customer has provided the first four to six digits of their card, the online retailer is able to determine which financial institution issued the customer’s card, the card brand (such as Visa or MasterCard), the card level (such as corporate or platinum), the card type (such as a debit card or a credit card), as well as the country in which the issuing bank is located. Checking BINs can be done using the websites listed below.
MASTERCARD SECURECODE (MCSC):
MasterCard SecureCode is very comparable to Visa’s Verified by Visa (VBV). It is a secret code that is associated with a MasterCard account, and it provides the cardholder with an additional layer of protection when they shop online. The code can only be seen by the person who holds the credit card and the financial institution that issued it; retailers are unable to access it. To our good fortune, the vast majority of MasterCard cards do not have this security feature installed.
AMERICAN EXPRESS SAFEKEY:
This is one of the least common forms of safety precaution, and it is not even offered in the United States. On the other hand, it is exactly the same as MasterCard SecureCode and the VBV that Visa uses.
SSN:
Number associated with Social Security. This is a nine-digit number that is given to people who are citizens of the United States, people who are permanent residents of the United States, and people who are temporary (working) residents in the United States. The Social Security number is now the national identification number for taxation and other purposes, despite the fact that its primary function is to monitor individuals for Social Security purposes. People who commit identity theft frequently make use of the Social Security Number (SSN) due to the fact that it is interconnected with a wide variety of other forms of identification and because those who ask for it treat it as an authenticator. In most cases, a Social Security Number (SSN) is needed in order to open a bank account, apply for credit cards, or obtain a loan. This is because financial institutions operate under the assumption that no one other than the person to whom the SSN was issued is aware of the number.
MMN:
Name taken at birth by one’s mother. This is the name of someone’s mother BEFORE they got married; that is, her name with her original family name (or “surname”), the name she used when she was a girl and a young woman. This is the name of the woman who gave birth to the person. The term “maiden” refers to a woman who has not yet married. Therefore, a woman’s “maiden name” is the name she went by when she was still a young woman and had not yet married. When a woman marries in many different cultures, she is expected to adopt the surname of her husband’s family, which results in a change to her own name. For illustration’s sake, let’s pretend that the name of your mother was Mary and that she came from the Smith family. Mary Smith would have been her name when she was a maiden. Then, let’s say she wed your dad, whose name was Tom Jones; the two of them had two children. After she wed him, she started using the name Mary Jones. This is her married name, but she will always be known by her maiden name, which is Mary Smith. Because this is a security question that most banks require customers to answer before allowing any changes to be made to an account, answering this question correctly is one of the most vital components of successfully completing online transactions for high-value goods.
DOB:
When you were born. This is one of the most vital pieces of knowledge that you can obtain about your victim. The reason for this is that if you know the person’s full name, date of birth, and hometown, you can easily find their Social Security number. Additionally, because you will need this information in the event that the bank ever requests it from you.
MAIL DROP:
A location known as a mail drop is one in which it is possible to openly receive illegal goods, such as drugs or tobacco that have been carded. You should under no circumstances use your own home for such activities because doing so will cause you a great deal of hassle in the years to come. You can use a mail drop for, say, a month, and then never set foot in that location again without fear of being seen. Because of this, it will be very difficult for any law enforcement official to locate you, arrest you, or conduct an investigation into your life.
BANK DROPS:
Bank drops are special bank accounts that are opened for the sole purpose of storing illegally obtained money. These accounts are also known as “drop” accounts. After you have them opened, you will have the option to decide whether you would like to take the money directly from the account as cash by going to the bank ATM or whether you would like to clean them with specific methods first, and then cash them out only after you have cleaned them. (my preferred method and much safer). Because ALL bank drop accounts are opened EXCLUSIVELY with the information of someone else (aka FULLZ), there is absolutely no possibility that these dirty funds will ever be linked to your actual identity. This fact is extremely important, and it should be mentioned as well. For the best chance of success when opening one of these bank drop accounts, you will typically need the individual’s date of birth, social security number, driver’s license number, background check, full credit report, and motor vehicle record (MVR).
WEB/ONLINE WALLETS:
Web wallets are programs or web services that enable users to store and control their online shopping information, such as logins, passwords, shipping address, and credit card or bank details, in one central place. In addition, it provides a convenient and technologically quick method for consumers to purchase products from any person or store across the globe. Some examples of web wallets include PayPal, Google Wallet, and Venmo. We can use such wallets for many purposes that will be discussed in the following section.
PROXY SCORE:
Finding proxies is a significant part of the process of detecting fraudulent activity. Identifying fraudulent activity starts with doing some critical thinking about the IP address that is connected to a transaction. Where is that IP address, and how does the location of that IP address relate to the data from other transactions? Unlike the vast majority of IP addresses, which instill a sense of trust, those associated with proxies raise eyebrows. A proxy is a computer program that performs the function of an intermediary by forwarding requests made on one computer to other servers located on other computers. But despite the fact that proxies can be utilized in lawful contexts, it is common knowledge that dishonest individuals also make use of them. There are two obstacles to overcome when trying to detect proxies. The first challenge is figuring out how to identify an IP address as a proxy. The second challenge is figuring out how to differentiate between a “good” proxy and a “bad” proxy. Given that a proxy is, by definition, merely an intermediary, the act of using a proxy is not in and of itself fraught with high risk. It is helpful to look at the primary goal of ecommerce fraud detection in order to consider the best way to address these challenges. That primary goal is to think intelligently about the IP address that is associated with a transaction in order to assess risk. Transaction data is the foundation upon which fraud detection is based in terms of both thinking and risk assessment. They are able to gain insight into the type of traffic that is taking place on a particular IP address by making use of this data and analysis. The Proxy Score provides an overview of the potential dangers connected to an IP address. You want this number to be as small as it can be. (0.80 MAX). If your transaction risk score is above 0.80, you should look for another proxy as it is likely that your transaction will be declined between 70 and 80 percent of the time. The following websites provide the ability to check your proxy score. In a perfect world, you would want the RDP to have the lowest possible proxy score; however, I have successfully used RDPs with scores as low as 0.01.
FRAUD SCORE:
A “Fraud Score” is assigned to each and every online transaction that takes place. This is a number in the range from 0 to 999 inclusive. It provides the merchant with a number that he can use to determine whether or not a particular transaction involves fraudulent activity. Transactions that are given high fraud scores (over 300) are placed under manual verification by an agent, who will decide whether or not to contact the cardholder about the transaction or allow it to go through. If you have a score that’s higher than 500, the card will be blocked, and an agent will get in touch with the cardholder as soon as possible. Some banks use different criteria, but the following are some of the things that can have an impact on the fraud score:
- Comparison with the usual spending pattern of the cardholder
- Location of the charge
- Amount
- Risk factor associated with the merchant
For example, a $15.56 charge in the cardholder’s local Walmart will not trigger anything, while a purchase of $2000 on Newegg will have an extremely high fraud score and probably auto-decline if the cardholder rarely makes purchases online.
RISK SCORE:
This is a percentage that is assigned to each transaction, and its value can range anywhere from 0% to 100%. This score is determined by a number of factors, including the level of risk posed by an IP address, email address, device, and proxy that is being used. This is determined by fraud systems that websites have in place such as MaxMind, which establishes the reputations of IP addresses, emails, geolocation, and other parameters. These systems can be found on websites. Before making any RDP purchases, this should always be double checked. Any amount that is greater than 1.00% will most likely result in the transaction being declined.
MAC ADDRESS:
There is one aspect that is consistent across both environments, regardless of whether you work in a wired or wireless network environment. It is not possible to transfer data from one computer to another, or from one computer located thousands of miles away to yours, without the use of network software and hardware (cables, routers, etc.). This is the case whether the data is being transferred locally or across the Internet. It all comes down to addresses in the end if you want to get the data you want delivered directly to you. It should therefore not come as a surprise that in addition to an IP address, there is also a hardware address. In most cases, it is linked to the network interface card, also known as the NIC, which is a crucial connection device found in your computer. Your computer’s ability to connect to a network is made possible by a piece of hardware called a network interface controller, or NIC for short. A network interface controller (NIC) converts data into an electrical signal that can then be sent over the network. A MAC, which is an abbreviation for “Media Access Control,” is a hardware address that is assigned to every NIC. Unlike IP addresses, which are linked to TCP/IP (the software that manages networks), MAC addresses are associated with the physical components of network adapters. During the manufacturing process, a network adapter is assigned a Media Access Control, or MAC, address. It is a one-of-a-kind identifier that is permanently attached to the network interface card (NIC) of your computer through a process known as hardwiring or hardcoding. Unfortunately, law enforcement can use a MAC address in conjunction with information from Internet Service Providers to determine the actual location of a person and, as a result, that person’s identity. I will explain how to reduce the severity of this risk in the following sections of this guide.
RDP:
Remote Desktop Protocol. This is a protocol that was developed by Microsoft that gives a user a graphical interface for connecting to another computer over a network connection. The user can connect to the other computer using this protocol. You can connect to a Windows 7 RDP, for instance, even if you’re using a computer that runs Linux. RDPs, particularly HACKED RESIDENTIAL RDPs, are an absolutely necessary component in the execution of a fraudulent transaction successfully. This is due to the fact that these Remote Desktop Protocol (RDP) connections originate from a REAL PERSON, with a REAL LOCATION/IP, and a REAL COMPUTER and BROWSER FINGERPRINT. They will increase the likelihood of your success by a factor of ten. In addition, these topics will be covered in greater depth later on in this guide.
SOCKS5:
We are able to conceal our true location by using a proxy server like this one. This is very helpful if, for example, we have a credit card with a billing address in Miami. We can use a SOCKS5 near the billing address in Miami so that the website we are conducting the fraudulent transaction in does not raise our fraud score because the transaction is being conducted in another state or far away from the credit card’s billing address. This will typically result in the transaction being declined.