Deliveroo Credit Card Cloning Query?

eskbanker

dr_adidas01 said:

rubicon15 said:

It also seems to me from reading all posts on here, that whilst I consider myself tech savvy when it comes to banking there may be something I need to alter. Till receipts. For a good while now I've been refusing them, save the planet and all that stuff. Seems it would be safer to make sure I get one from now on, and I will be doing so.

A receipt isn't going to make any difference what so ever I always take the till receipt and it still happened to me last year.

Apart from anything else, the till receipts given to customers don't have the full card details on them!  The merchant copies may, but they'd be retained either way round anyway....

born_again

rubicon15 said:

It also seems to me from reading all posts on here, that whilst I consider myself tech savvy when it comes to banking there may be something I need to alter. Till receipts. For a good while now I've been refusing them, save the planet and all that stuff. Seems it would be safer to make sure I get one from now on, and I will be doing so.

Why do you think taking the receipt is going to make any difference.
Customer copy does not have full card details on.
Retailer copy does...
And NO you can't ask for retailer copy as that is for their use in case of system issues.

If you really want to avoid card fraud, then there is only one option. DO NOT USE A CARD... 

Albie77

Another case here, I acquired an “Emergency use only” credit card from Barclaycard back in October. Thus far I’ve not used it at all and it’s been in the safe at home since the day I received it. 

All of a sudden, I get a text from barclaycard out of the blue asking me to check if some transactions are mine. Two transactions for deliveroo had been made within 2 minutes of each other.

Surely there’s something going on at barclaycard for this to be happening so frequently? 

To the best of my knowledge only myself and the person who put my barclaycard in the envelope to send it out to me have ever even seen it! 

[Deleted User]

Albie77 said:

Surely there’s something going on at barclaycard for this to be happening so frequently? 

No, there's surely not.

brianposter

born_again said:

Brute force.
They get one valid card and then try other combinations of numbers, till they find another than works. There is a formula to how the numbers are worked out.

So where do they get to try out all the numbers ? Or are you suggesting that Deliveroo is used to try them ? 

born_again

brianposter said:

born_again said:

Brute force.
They get one valid card and then try other combinations of numbers, till they find another than works. There is a formula to how the numbers are worked out.

So where do they get to try out all the numbers ? Or are you suggesting that Deliveroo is used to try them ? 

No fraudsters do.
They get one working card no. They then try combination of numbers to try and find other valid card no.
There used to be groups in other countries that paid people to do this. They got pennies for each valid card.

brianposter

born_again said:

No fraudsters do.
They get one working card no. They then try combination of numbers to try and find other valid card no.
There used to be groups in other countries that paid people to do this. They got pennies for each valid card.

But any reasonable security system will simply prevent you doing this. So you are, in effect, saying that there is a security problem somewhere.

eskbanker

brianposter said:

born_again said:

No fraudsters do.
They get one working card no. They then try combination of numbers to try and find other valid card no.
There used to be groups in other countries that paid people to do this. They got pennies for each valid card.

But to any reasonable security system will simply prevent you doing this. So you are, in effect, saying that there is a security problem somewhere.

Making payments with credit cards involves a substantial number of interconnected parties, each of whom will operate a variety of systems - card issuers, card acquirers, card schemes, merchants, any number of technology intermediaries, etc, etc.  What specific 'reasonable security system' did you have in mind?

brianposter

Every one of those parties has security systems in place which would be expected to detect the passing of an anomalously high number of incorrect card numbers, and any competent system would point towards the source of the incorrect numbers.

Of course,if you then adopt the attitude that no-one has lost money through an incorrect card number  the security system will not work.

eskbanker

brianposter said:

Every one of those parties has security systems in place which would be expected to detect the passing of an anomalously high number of incorrect card numbers, and any competent system would point towards the source of the incorrect numbers.

Of course,if you then adopt the attitude that no-one has lost money through an incorrect card number  the security system will not work.

But the point is that they're separate parties with separate systems and different responsibilities - if a fraudster tries ten card numbers at ten different merchants, each with a different merchant acquirer, who's going to spot the pattern?  Even trying many card numbers at one merchant - the fact that the merchant could potentially spot a pattern (and this would only apply for small merchants) doesn't mean that they'd have the motivation or wherewithal (or maybe even the right) to investigate, and the same could be said of their acquirer (who probably won't have access to as much data).  And even if one of these parties had the time and inclination to relay details of suspicious failed authorisation attempts to the police, do you really think that they'd be resourced to chase after this sort of stuff?