Lord777
Professional
- Messages
- 2,576
- Reaction score
- 1,577
- Points
- 113
Bank card cloning is one of the most common fraudulent methods in this area. It allows attackers not only to make one-time unauthorized transactions or steal personal data, but also to create an exact copy of the card, suitable for multiple payments. Therefore, everyone should know how to protect themselves from such troubles. Moreover, with the development of technology, this method of fraud is becoming more and more accessible.
How does the card work?
A plastic card, depending on the type and bank that issued it, has from one to three elements where payment details are stored: a magnetic stripe, an EMV chip and an RFID module. The former are used for contact, and the latter for contactless payments. The least secure cards are cards with only a magnetic stripe, from which it is easy to read data. The most secure models have all three protective elements (including a weakly protected magnetic stripe).
ATMs and POS terminals work in different ways. Many modern models do not use a magnetic stripe if they fix an EMV chip on the card. This module is similar to a SIM card and resembles it in functionality. It serves as an element of additional protection for cashless payment instruments. Data is usually not written to this chip, but it generates the correct response to the terminal request.
If there is an RFID module on the card, the owner has the opportunity to pay "by air". For contactless payment, you just need to bring the card to the terminal a short distance (less than 10 cm). Once in the field generated by the terminal, the chip is activated, data is exchanged and a transaction is made.
How is a bank card copied?
If it is difficult to counterfeit an EMV chip, and an RFID module is almost impossible, then it is quite simple to read information from a magnetic stripe using special devices. The strip can be cloned, and the fraudster will receive a card (a full copy of yours), which can be paid in stores. However, there is a problem with the PIN code, which is not currently recorded on the magnetic track. But an attacker can use other tricks to find out. For example, a call to the owner disguised as a bank employee. As for technical means, special overlays are often used on the keyboard of ATMs or mini-cameras, which allow reading the entered PIN code. The danger is that, according to Russian law, if an attacker made a transaction with the introduction of a PIN, then it would be simply impossible to prove the fact of fraud.
Currently, there are many devices and programs that can read and copy data from a card. But this is possible if you managed to get it directly into your hands, and the owner did not notice it and did not have time to block it. For unobtrusive reading of information, a whole set of equipment is used, which is installed on ATMs and payment terminals:
The skimmer and keyboard cover look like an exact replica of the card reader and the ATM keyboard itself. They are attached to double-sided tape, so it is almost impossible to notice their presence. There are also miniature skimmers that allow copying if the victim's card is in the hands of the attacker.
How do I secure my bank cards?
Avoiding copying and not becoming a victim of fraudsters is possible if you exercise care and accuracy when using the card. It is enough to remember and strictly follow a few simple rules:
To protect cards from copying, many modern ATMs have special mechanisms. For example, a transparent card reader, in which it will be easy to see a foreign device. And to protect the card from being read through the air, special cases, wallets, cardholders are used.
How does the card work?
A plastic card, depending on the type and bank that issued it, has from one to three elements where payment details are stored: a magnetic stripe, an EMV chip and an RFID module. The former are used for contact, and the latter for contactless payments. The least secure cards are cards with only a magnetic stripe, from which it is easy to read data. The most secure models have all three protective elements (including a weakly protected magnetic stripe).
ATMs and POS terminals work in different ways. Many modern models do not use a magnetic stripe if they fix an EMV chip on the card. This module is similar to a SIM card and resembles it in functionality. It serves as an element of additional protection for cashless payment instruments. Data is usually not written to this chip, but it generates the correct response to the terminal request.
If there is an RFID module on the card, the owner has the opportunity to pay "by air". For contactless payment, you just need to bring the card to the terminal a short distance (less than 10 cm). Once in the field generated by the terminal, the chip is activated, data is exchanged and a transaction is made.
How is a bank card copied?
If it is difficult to counterfeit an EMV chip, and an RFID module is almost impossible, then it is quite simple to read information from a magnetic stripe using special devices. The strip can be cloned, and the fraudster will receive a card (a full copy of yours), which can be paid in stores. However, there is a problem with the PIN code, which is not currently recorded on the magnetic track. But an attacker can use other tricks to find out. For example, a call to the owner disguised as a bank employee. As for technical means, special overlays are often used on the keyboard of ATMs or mini-cameras, which allow reading the entered PIN code. The danger is that, according to Russian law, if an attacker made a transaction with the introduction of a PIN, then it would be simply impossible to prove the fact of fraud.
Currently, there are many devices and programs that can read and copy data from a card. But this is possible if you managed to get it directly into your hands, and the owner did not notice it and did not have time to block it. For unobtrusive reading of information, a whole set of equipment is used, which is installed on ATMs and payment terminals:
- Skimmer is an overlay that is attached to the ATM card reader and reads information from the magnetic stripe of the card.
- A miniature camera mounted on or near an ATM (to monitor the entered PIN code).
- Keyboard overlay (also used to read the PIN).
- A transmitter that sends scanned data to attackers via a mobile network or Wi-Fi.
The skimmer and keyboard cover look like an exact replica of the card reader and the ATM keyboard itself. They are attached to double-sided tape, so it is almost impossible to notice their presence. There are also miniature skimmers that allow copying if the victim's card is in the hands of the attacker.
How do I secure my bank cards?
Avoiding copying and not becoming a victim of fraudsters is possible if you exercise care and accuracy when using the card. It is enough to remember and strictly follow a few simple rules:
- Do not give your bank card to sellers, waiters, service personnel and do not leave it unattended.
- Use proven ATMs and terminals that are installed in bank branches, 24-hour supermarkets and shops.
- Inspect the ATM carefully before using it. Suspicions should be caused by differences in colors between adjacent elements, gaps and gaps, backlash at a card reader or keyboard, etc.
To protect cards from copying, many modern ATMs have special mechanisms. For example, a transparent card reader, in which it will be easy to see a foreign device. And to protect the card from being read through the air, special cases, wallets, cardholders are used.
