Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Typically by making a small (fradulent) purchase at an innocent merchant and seeing if it works.

This is illegal because of the fraud. It harms the merchant in all sorts of ways, and also the cardholders and issuers.



What if they refund it immediately? Maybe that is what they did, to avoid detection. Anyone knows more about this?


If the checker is running the cards on their own merchant account and refunding immediately? Or doing auth, but not capture?

That's going to be in records of accounts that eventually report compromises, and get figured our pretty quick, I'd imagine.


Isn't that what a lot of legit companies do?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: