funsec mailing list archives

Previous By Date Next
Previous By Thread Next

TJX, Polo Data Surfaces in Credit Card Bust

From: "Paul Ferguson" <fergdawg () netzero net>
Date: Wed, 11 Jul 2007 03:02:57 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Via eWeek.

[snip]

After more than $75 million in bogus credit card charges, several Cuban
nationals in Florida have been arrested with more than 200,000 credit card
account numbers, many of which came from the TJX and Polo Ralph Lauren data
breaches, according to U.S. Secret Service officials, commenting on the
July 9 announced arrests.

The numbers were sent to the Florida defendants, who specialize in
manufacturing bogus credit cards complete with embossing, logos, holograms
and properly encoded magnetic strips, from a group of Eastern European
residents who specialize in collecting the stolen credit card numbers, the
Secret Service said.

That Eastern European group of fiduciary Fagans obtained those numbers from
many different sources, but many of the numbers were traced back to two
specific major retail data breaches: the 2006 TJX breach and a 2005 Polo
Ralph Lauren breach, said a Secret Service case agent involved in the
investigation and who asked that his name not be used.

Credit card numbers from the TJX theft have reportedly found themselves in
multiple bogus credit card and giftcard probes, including a major gift
fraud probe— which was also in Florida— as well as investigations in
Alabama, North Carolina and Virginia.

[snip]

More:
http://www.eweek.com/article2/0,1895,2156263,00.asp

Yesterday:
http://blog.washingtonpost.com/securityfix/2007/07/florida_counterfeit_cred
it_car.html

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.2 (Build 2014)

wj8DBQFGlEhcq1pz9mNUZTMRAvAVAKCPc+wAfeWpLrjMPSyspbjox+/iNwCeI2CH
QrhyDlPJ5miUpl7Ggy/O0XQ=
=z5uK
-----END PGP SIGNATURE-----



--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: