Credit card fraud continues to grow in France. In addition to the now traditional phishing, another phenomenon is worrying the authorities: the purchase of stolen numbers on the dark web. In some cases, user guides to operate them without getting caught are even provided.
The number of bank card fraud attempts in France continues to rise. It went “from 2 million in 2016 to 3.4 million in 2017”, said Colonel Cyril Piat (Gendarmerie Nationale) at the 2019 International Cybersecurity Forum (FIC) held in Lille at the end of January. And the dark web is no stranger to this increase, he explains in remarks reported by 01Net.
Because in the twists and turns of the Internet, accessible via Tor for example, some sites sell the perfect credit card fraud kit. It is possible to buy stolen card numbers with CVV numbers included, but also explanatory guides that allow you to use them effectively, and especially without being identified by the authorities. “There is an entire criminal community that provides online advice and encourages transgression. On one of these sites, we counted no less than 1,400 threads on the subject “,” laments Cyril Piat.
Read also:Credit card fraud: you can now report online
In addition to this technique, there are a few others, the first of which is phishing, which generally consists of pretending to be a legitimate entity (bank, operator, SVOD service, etc.) in order to retrieve identifiers and bank details. Free Mobile subscribers have been targeted by phishing attempts recently. Rarer, direct hacking from a not sufficiently secure e-commerce site is also possible. That’s what happened when the tracker of a Post Office advertising agency was compromised by hackers.
Cases that remind us that the Internet user must remain extremely vigilant on the web. Especially since, as Cyril Piat points out in a video interview published by Les Numériques, users are no longer systematically compensated in case of prejudice. In October 2018, following a decision of the Court of Cassation, we told you that banks do not reimburse victims of phishing in case of negligence.