Hackers targeting store-issued accounts to rack up credit card debt

By Marvin Milner on Dec 11th, 2010

Zeus botnet 2.1.0.8, the most sophisticated version of the tool yet, is now being used to facilitate purchases that result in fraudulent credit card debt by mail, phone or internet order, according to a report from security firm Trusteer. Specifically, these are being conducted with store-issued credit cards, the information for which consumers have been duped into giving away.

The program works by creating a popup window whenever a consumer visits sites for credit cards issued by major stores such as Macy's and Nordstrom, the report said. The box looks legitimate, and asks consumers to verify their credit card number, expiration date, CVV code and personal identifying information, including Social Security number.

Consumers who turn over their Social Security number greatly increase their chance of becoming a fraud victim. Hackers can use this information to open accounts in the person's name, then charge thousands of dollars in bogus credit card debt.

More General Debt News

12-13-2010

Credit card charge offs fell in October

12-13-2010

Credit card lenders resume practice of preapproved offers

12-12-2010

Fed will soon decide whether to limit debit transaction fees

12-11-2010

Wikileaks battle sees hackers go after processors of credit card debt

12-11-2010

Hackers targeting store-issued accounts to rack up credit card debt

12-10-2010

New Android OS doesn't support mobile credit card payments

12-09-2010

TransUnion expects less delinquent credit card debt in 2011

12-08-2010

October sees consumer credit jump despite less credit card debt

12-08-2010

American Express reports more borrowing, less defaulted credit card debt

10-08-2010

Bankruptcy filings back on the upswing

Related Resources