Interview with a Debit Card Scammer
We discuss credit card data centers getting hacked; why banks getting hacked doesn’t make mainstream media; reissuing bank cards; how much he makes cashing out bank cards; how banks cover money stolen from credit cards; why companies are not cracking down on credit card crimes; how to prevent credit card theft; ATM scams; being “legit” in the criminal world; how he gets cash out gigs; getting PINs and encoding blank credit cards; how much money he can pull in a day; e-gold; his chances of getting caught; the best day to hit the ATMs; encrypting ICQ messages.
Chris • June 5, 2006 7:13 AM
I know it’s a bit off topic, but have any of you had to test for NIST SP 800-63 compliance? I made a spreadsheet to help speed me do so:
http://www.chrisnowell.com/downloads/NIST%20SP%20800-63%20password%20checker.xls
However, I’m quite surprised at how generous password policies can be. If the formulae are correct, I wonder why organizations don’t allow such long password lifespans.
Can you spot any errors in the formulae? Do you know of any other such tools?