Best4Hack

Best4Hack is the site where you can learn Ethical Hacking and Cracking get latest Tips and Tricks free Hacked and Cracked Software get SEO.

Best4Hack

Best4Hack is the site where you can learn Ethical Hacking and Cracking get latest Tips and Tricks free Hacked and Cracked Software get SEO.

Best4Hack

Best4Hack is the site where you can learn Ethical Hacking and Cracking get latest Tips and Tricks free Hacked and Cracked Software get SEO.

Best4Hack

Best4Hack is the site where you can learn Ethical Hacking and Cracking get latest Tips and Tricks free Hacked and Cracked Software get SEO.

Best4Hack

Best4Hack is the site where you can learn Ethical Hacking and Cracking get latest Tips and Tricks free Hacked and Cracked Software get SEO.

Showing posts with label ATM Hack. Show all posts
Showing posts with label ATM Hack. Show all posts

Saturday, 24 November 2012

HOW TO HACK A CREDIT CARD !!!!!!!




HELLO WORLD IM DAVIDREX IS HERE FOR A NICE AND USEFUL TRICKS:
LETS START.......


THIS TUTORIAL IS DIVIDED IN TWO PARTS.
INTRODUCTION INTO CREDIT CARDS
CREDIT CARD HACKING

NOTE: HACKING CREDIT CARDS IS AN ILLEGAL ACT, THIS IS ONLY INFORMATIONAL POST AND WE NOT RESPONSIBLE FOR ANY ACTIONS DONE BY YOU AFTER READING THIS TUTORIAL. THIS POST IS FOR EDUCATIONAL PURPOSES ONLY.

LETS START WITH SOME EASY TERMS.

WHAT IS CREDIT CARD ?

CREDIT CARDS ARE OF TWO TYPES:
DEBIT CARD
CREDIT CARD
1. DEBIT MEANS U HAVE A SUM OF AMOUNT IN IT AND U CAN USE THEM.
2. CREDIT MEANS U HAVE A CREDIT LINE LIMIT LIKE OF $10000 AND U CAN USE THEM AND BY THE END OF MONTH PAY IT TO BANK.

TO USE A CREDIT CARD ON INTERNET U JUST NOT NEED CC NUMBER AND EXPIRY BUT U NEED MANY INFO LIKE :
FIRST NAME
LAST NAME
ADDRESS
CITY
STATE
ZIP
COUNTRY
PHONE
CC NUMBER
EXPIRY
CVV2 ( THIS IS 3DIGIT SECURITY CODE ON BACKSIDE AFTER SIGNATURE PANEL )
IF YOU GET THAT INFO YOU CAN USE THAT TO BUY ANY THING ON INTERNET, LIKE SOFTWARE LICENSE, PORN SITE MEMBERSHIP, PROXY MEMBERSHIP, OR ANY THING (ONLINE SERVICES USUALLY, LIKE WEBHOSTING, DOMAINS).

IF U WANT TO MAKE MONEY $ THROUGH HACKING THEN YOU NEED TO BE VERY LUCKY... YOU NEED TO HAVE A EXACT BANK AND BIN TO CASH THAT CREDIT CARD THROUGH ATM MACHINES.

LET ME EXPLAIN HOW ?

FIRST STUDY SOME SIMPLE TERMS.

BINS = FIRST 6 DIGIT OF EVERY CREDIT CARD IS CALLED " BIN " (FOR EXAMPLE CC NUMBER IS : 4121638430101157 THEN ITS BIN IS " 412163 "), I HOPE THIS IS EASY TO UNDERSTAND.

NOW THE QUESTION IS HOW TO MAKE MONEY THROUGH CREDIT CARDS. ITS STRANGE..., WELL YOU CANT DO THAT, BUT THERE IS SPECIFIC PERSONS IN WORLD WHO CAN DO THAT. THEY CALL THEM SELVES " CASHIERS ". YOU CAN TAKE SOME TIME TO FIND A RELIABLE CASHIERS.

NOW THE QUESTION IS EVERY BANK CREDIT CARDS ARE CASHABLE AND EVERY BIN IS CASHABLE? LIKE CITIBANK, BANK OF AMERICA , MBNA .. ARE ALL BANKS ARE CASHABLES ? WELL ANSWER IS " NO ". IF U KNOW SOME THING, A LITTLE THING ABOUT BANKING SYSTEM, HAVE U EVER HEARD WHAT IS ATM MACHINES? WHERE U WITHDRAW UR CASH BY PUTTING UR CARD IN.
EVERY BANK DON'T HAVE ATM, EVERY BANK DON'T SUPPORT ATM MACHINES CASHOUT. ONLY FEW BANKS SUPPORT WITH THEIR FEW BINS (AS U KNOW BIN IS FIRST 6 DIGIT OF ANY CREDIT / DEBIT CARD NUMBER), FOR SUPPOSE BANK OF AMERICA. THAT BANK NOT HAVE ONLY 1 BIN, THAT BANK IS ASSIGNED LIKE, 412345 412370 ARE UR BINS U CAN MAKE CREDIT CARDS ON THEM. SO BANK DIVIDE THE COUNTRY CITI LOCATION WISE, LIKE FROM 412345 - 412360 IS FOR AMERICANS, AFTER THAT FOR OUTSIDERS AND LIKE THIS. I HOPE U UNDERSTAND. SO ALL BINS OF THE SAME BANK ARE EVEN NOT CASHABLE, LIKE FOR SUPPOSE THEY SUPPORT ATM IN NEW YORK AND NOT IN CALIFORNIA, SO LIKE THE BINS OF CALIFORNIA OF SAME BANK WILL BE UNCASHABLE. SO ALWAYS MAKE SURE THAT THE BINS AND BANKS ARE 100% CASHABLE IN MARKET BY MANY CASHIERS.

BE SURE CASHIERS ARE LEGIT, BECAUSE MANY CASHIERS R THERE WHICH TAKE YOUR CREDIT CARD AND RIP U OFF AND DON'T SEND YOUR 50% SHARE BACK.
YOU CAN ALSO FIND SOME CASHIERS ON MIRC *( /SERVER IRC.UNIXIRC.NET:6667 ) CHANNEL : #CASHOUT, #CCPOWER

WELL, CHECK THE WEBSITE WHERE U HAVE LIST OF BINS AND BANKS MOSTLY 101% CASHABLE. IF U GET THE CREDIT CARD OF THE SAME BANK WITH SAME BIN, THEN U CAN CASHOUT OTHERWISE NOT . REMEMBER FOR USING CREDIT CARD ON INTERNET U DON'T NEED PIN ( 4 WORDS PASSWORD WHICH U ENTER IN ATM MACHINE ), BUT FOR CASHOUT U NEED. YOU CAN GET PINS ONLY BY 2ND METHOD OF HACKING WHICH I STILL NOT POST BUT I WILL. FIRST METHOD OF SQL INJECTION AND SHOPADMIN HACKING DON'T PROVIDE WITH PINS, IT ONLY GIVE CC NUMB CVV2 AND OTHER INFO WHICH USUALLY NEED FOR SHOPPING NOT FOR CASHING.

CREDIT CARD HACKING

CC (CREDIT CARDS) CAN BE HACKED BY TWO WAYS:
CREDIT CARD SCAMS ( USUALLY USED FOR EARNING MONEY , SOME TIMES FOR SHOPPING )
CREDIT CARD SHOPADMIN HACKING ( JUST FOR FUN, KNOWLEDGE, SHOPPING ON INTERNET )
1. SHOPADMIN HACKING

THIS METHOD IS USED FOR TESTING THE KNOWLEDGE OR FOR GETTING THE CREDIT CARD FOR SHOPPING ON INTERNET, OR FOR FUN, OR ANY WAY BUT NOT FOR CASHING ( BECAUSE THIS METHOD DON'T GIVE PIN - 4 DIGIT PASSCODE ) ONLY GIVES CC NUMB , CVV2 AND OTHER BASIC INFO.

SHOPADMINS ARE OF DIFFERENT COMPANIES, LIKE: VP-ASP , X CART, ETC. THIS TUTORIAL IS FOR HACKING VP-ASP SHOP.

I HOPE U SEEN WHENEVER U TRY TO BUY SOME THING ON INTERNET WITH CC, THEY SHOW U A WELL PROGRAMMED FORM, VERY SECURE. THEY ARE CARTS, LIKE VP-ASP XCARTS. SPECIFIC SITES ARE NOT HACKED, BUT CARTS ARE HACKED.

BELOW I'M POSTING TUTORIAL TO HACK VP ASP CART. NOW EVERY SITE WHICH USE THAT CART CAN BE HACKED, AND THROUGH THEIR *MDB FILE U CAN GET THEIR CLIENTS 'CREDIT CARD DETAILS', AND ALSO LOGIN NAME AND PASSWORD OF THEIR ADMIN AREA, AND ALL OTHER INFO OF CLIENTS AND COMAPNY SECRETS.

LETS START:

TYPE: VP-ASP SHOPPING CART
VERSION: 5.00

HOW TO FIND VP-ASP 5.00 SITES?

FINDING VP-ASP 5.00 SITES IS SO SIMPLE...

1. GO TO GOOGLE.COM AND TYPE: VP-ASP SHOPPING CART 5.00
2. YOU WILL FIND MANY WEBSITES WITH VP-ASP 5.00 CART SOFTWARE INSTALLED

NOW LET'S GO TO THE EXPLOIT..

THE PAGE WILL BE LIKE THIS: ****://***.VICTIM.COM/SHOP/SHOPDISPLAYCATEGORIES.ASP
THE EXPLOIT IS: DIAG_DBTEST.ASP
NOW YOU NEED TO DO THIS: ****://***.VICTIM.COM/SHOP/DIAG_DBTEST.ASP

A PAGE WILL APPEAR CONTAIN THOSE:
XDATABASE
SHOPPING140
XDBLOCATION
RESX
XDATABASETYPEXEMAILXEMAIL NAMEXEMAILSUBJECTXEMAILSY STEMXEMAILTYPEXORDERNUMBE R
EXAMPLE:

THE MOST IMPORTANT THING HERE IS XDATABASE
XDATABASE: SHOPPING140

OK, NOW THE URL WILL BE LIKE THIS: ****://***.VICTIM.COM/SHOP/SHOPPING140.MDB

IF YOU DIDN'T DOWNLOAD THE DATABASE, TRY THIS WHILE THERE IS DBLOCATION:
XDBLOCATION
RESX
THE URL WILL BE: ****://***.VICTIM.COM/SHOP/RESX/SHOPPING140.MDB

IF U SEE THE ERROR MESSAGE YOU HAVE TO TRY THIS :
****://***.VICTIM.COM/SHOP/SHOPPING500.MDB

DOWNLOAD THE MDB FILE AND YOU SHOULD BE ABLE TO OPEN IT WITH ANY MDB FILE VIEWER, YOU SHOULD BE ABLE TO FIND ONE AT DOWNLOAD.COM, OR USE MS OFFICE ACCESS.
INSIDE YOU SHOULD BE ABLE TO FIND CREDIT CARD INFORMATION, AND YOU SHOULD EVEN BE ABLE TO FIND THE ADMIN USERNAME AND PASSWORD FOR THE WEBSITE.

THE ADMIN LOGIN PAGE IS USUALLY LOCATED HERE: ****://***.VICTIM.COM/SHOP/SHOPADMIN.ASP

IF YOU CANNOT FIND THE ADMIN USERNAME AND PASSWORD IN THE MDB FILE OR YOU CAN BUT IT IS INCORRECT, OR YOU CANNOT FIND THE MDB FILE AT ALL, THEN TRY TO FIND THE ADMIN LOGIN PAGE AND ENTER THE DEFAULT PASSWORDS WHICH ARE:
USERNAME: ADMIN
PASSWORD: ADMIN
OR
USERNAME: VPASP
PASSWORD: VPASP


2. HACKING THROUGH SCAMS

THIS METHOD IS USUALLY USED TO HACK FOR EARNING MONEY. WHAT HAPPENS IN THIS METHOD IS YOU CREATE A CLONE PAGE.

TARGET: ITS BASICALLY EBAY.COM OR PAYPAL.COM FOR GENERAL CREDIT CARDS, OR IF U WANT TO TARGET ANY SPECIFIC CASHABLE BANK LIKE REGIONBANK.COM THEN U HAVE TO CREATE A CLONE PAGE FOR THAT BANK.

WHAT IS EBAY.COM?

ITS A SHOPPING SITE WORLD WIDE WHICH IS USED BY MANY OF BILLION PEOPLE WHICH USE THEIR CREDIT CARDS ON EBAY. WHAT YOU DO MAKE A SIMILAR PAGE SAME AS EBAY AND UPLOAD IT ON SOME HOSTING WHICH DON'T HAVE ANY LAW RESTRICTIONS, TRY TO FIND HOSTING IN EUROPE THEY WILL MAKE YOUR SCAM UP FOR LONG TIME, AND EMAIL THE USERS OF EBAY.

HOW TO GET THE EMAILS OF THEIR USERS?

GO TO GOOGLE.COM AND TYPE "EMAIL HARVESTOR" OR ANY EMAIL SPIDER AND SEARCH FOR EBAY BUYERS AND EBAY SELLERS AND U WILL GET LONG LIST. THAT LIST IS NOT ACCURATE BUT OUT OF 1000 ATLEAST 1 EMAIL WOULD BE VALID. ATLEAST YOU WILL GET SOME TIME.

WELL U CREATE A CLONE PAGE OF EBAY, AND MAIL THE LIST U CREATE FROM SPIDER WITH MESSAGE, LIKE "YOUR ACCOUNT HAS BEEN HACKED" OR ANY REASON THAT LOOKS PROFESSIONAL, AND ASK THEM TO VISIT THE LINK BELOW AND ENTER YOUR INFO BILLING, AND THE SCAM PAGE HAVE PROGRAMMING WHEN THEY ENTER THEIR INFO IT COMES DIRECTLY TO YOUR EMAIL.
IN THE FORM PAGE U HAVE PIN REQUIRED SO U ALSO GET THE PIN NUMBER THROUGH WHICH U CAN CASH THROUGH ATM ..

NOW IF U RUN EBAY SCAM OR PAYPAL SCAM, ITS UP TO YOUR LUCK WHO'S YOUR VICTIM. A CLIENT OF BANK OF AMERICA OR OF CITIBANK OR OF REGION, ITS ABOUT LUCK, MAYBE U GET CASHABLE, MAY BE U DON'T ITS JUST LUCK, NOTHING ELSE.

SEARCH ON GOOGLE TO DOWNLOAD A SCAM SITE AND STUDY IT !

AFTER YOU CREATE YOUR SCAM SITE, JUST FIND SOME EMAIL HARVESTOR OR SPIDER FROM INTERNET (DOWNLOAD GOOD ONE AT BULK EMAIL SOFTWARE SUPERSTORE - EMAIL MARKETING INTERNET ADVERTISING) AND CREATE A GOOD EMAIL LIST.

AND YOU NEED TO FIND A MAILER (MASS SENDING MAILER) WHICH SEND MASS - EMAILS TO ALL EMAILS WITH THE MESSAGE OF UPDATING THEIR ACCOUNT ON UR SCAM PAGE ). IN FROM TO, USE EMAIL EBAY@REPLY3.EBAY.COM AND IN SUBJECT USE : EBAY - UPDATE YOUR EBAY ACCOUNT AND IN NAME USE EBAY

SOME INSTRUCTIONS:

1. MAKE SURE YOUR HOSTING REMAINS UP OR THE LINK IN THE EMAIL U WILL SEND, AND WHEN YOUR VICTIM EMAILS VISIT IT, IT WILL SHOW PAGE CANNOT BE DISPLAYED, AND YOUR PLAN WILL BE FAILED.
2. HARDEST POINT IS TO FIND HOSTING WHICH REMAINS UP IN SCAM. EVEN I DON'T FIND IT EASILY, ITS VERY VERY HARD PART.
3. MAYBE U HAVE CONTACTS WITH SOMEONE WHO OWN HOSTING COMPANY AND CO LOCATIONS OR DEDICATED HE CAN HIDE YOUR SCAM IN SOME OF DEDICATED WITHOUT RESTRICTIONS.
4. FINDING A GOOD EMAIL LIST (GOOD MEANS = ACTUALLY USERS)
5. YOUR MASS MAILING SOFTWARE LAND THE EMAILS IN INBOX OF USERS.

Saturday, 20 October 2012

How to hack? a bank


INTRODUCTION HOW TO HACK A BANK




[1] Of eight respected computer security experts consulted for this article, all agreed that hacking into a bank was doable, and most insisted it wouldn't be all that hard. "If I were going into e-crime, I'd hit a bank," says Jon David, a security guru who has worked in the field for 30 years. Why haven't banks been hacked, then? Oh, but they have--big time. In 1994, a 24-year-old programmer in St. Petersburg, Russia, named Vladimir Levin hacked Citibank for $10 million. He was later caught, extradited to the United States and is serving a three-year sentence. (All but $400,000 of the money was recovered.) This sort of thing happens often but is hushed up, according to Michael Higgins, a former analyst with the Defense Intelligence Agency and now a financial computer security consultant who heads Para-Protect in Alexandria, Virginia. The federal government requires banks to report losses, but Higgins says banks avoid potentially bad publicity by reporting losses as accounting efficiency errors. "The losses are in the reports, but the FBI doesn't get them. They only get reports of alleged crimes," he says. "The reports aren't specific enough to identify losses that could have come from hacking." In the case of larger losses, bank managers simply disregard the law for fear that customers would flee if the truth were known, according to Bob Friel, a former Secret Service agent who now heads a computer forensics group at the Veterans Affairs Inspector General's office. During a stint as a security consultant to banks and other organizations, Friel was shocked to discover the magnitude of the hacker losses that banks were swallowing. He claims his sources in the financial industry report individual hits as large as $100 million. A half dozen banks contacted for this article declined to comment.


[2] Computer security insiders are usually careful to use the term cracker for someone who tries to gain unauthorized entry into a computer system, reserving hacker as a complimentary term for someone adept at programming. But we'll stick with the popular usage of hacker as an intruder.


[3] As with many high tech ventures in today's robust economy, finding good people will be our biggest challenge. Programmers with malicious or criminal bents tend not to be the exceptionally talented; most of those make pretty good money in legitimate jobs. If the bloom fades on the tech stock market, however, there could be a lot of high-living programmers who suddenly don't have jobs. In the meantime, we could use "false flag recruitment" techniques, convincing candidates that they would be serving a bank.


[4] Though our heist will be electronic, it would probably be close to impossible to pull it off without someone providing information from the inside. Levin had an inside partner on the Citibank job.


[5] Preferably we target a midsize bank that has moved aggressively into information technology and Internet banking, because competitive pressure from technology-savvy big banks has probably caused them to get in over their heads, opening up security gaps. Says Higgins: "Those banks are rushing into technology, and they don't comprehend it completely."


[6] According to Jim Settle, founder of the FBI's original computer crime squad and now CEO of security consultancy SST, a successful electronic bank heist should take about six months.


[7] To get our seed money, we can form a private syndicate of the sort that has cropped up to support computer credit card fraud operations in Russia. You'd think we'd be able to work with organized crime, but for now these people "are way behind the curve, for reasons nobody understands," says Settle. In any case, a syndicate or crime boss is going to want a near-guaranteed ROI. If we can't be convincing in that regard, and we lack even the tiniest shred of ethics or patriotism, we can always approach a hostile foreign government--Iraq, North Korea, Russia, and so forth--or even a terrorist organization. Saudi terrorist Usama bin Laden would probably be an eager backer, according to Kawika Daguio, a security expert who heads the bank-supported Financial Information Protection Association, because bin Laden has publicly declared his interest in disrupting U.S. financial institutions. Besides providing ready cash, these sorts of backers won't be on our case about ROI, says Daguio, because "the theft of money could trigger a crisis of confidence, and it doesn't have to be a huge amount."


[8] We should be able at least to match Levin's initial haul from Citibank, but we could expect to steal as much as $1 billion because of lax standards over the past few years, Friel says.


[9] Most midsize banks don't bother to do more than the most cursory of background checks of blue-collar employees and contractors.


[10] This is the opposite of what David Remnitz, CEO of New York information security consultancy IFsec, calls the "Catherine Zeta-Jones" approach--a big-bang, instant hack of the sort popularized by Hollywood and the New York Times that bears little resemblance to the sort of hacking that organizations really need to fear.


[11] Virtually all banks, and most midsize and large companies, have by now installed a combination of hardware and software firewalls that sit between the outside world and the main gateway to the internal network. Some firewalls are harder to defeat than others, but we won't really care because we won't want to go through the network's main gateway anyway. Hackers usually look for the digital equivalent of rickety back doors and unlocked or easily breakable windows. By the way, larger banks and other businesses sometimes spend as much as millions of dollars apiece on automated "intrusion detection" software. But Settle points out that his company is often hired by companies to try to break into their networks, and in 40 break-ins his team's incursion has been detected only once.

Sunday, 3 June 2012

Protection Against ATM Hacking


ATM hacking is from past is the first interest of every computer hacker.And in this article i will talk about ATM Hacking, things like how ATM Works , What are the vulnerabilities available to exploit and last but not least YES, how to patch them. So starting from the first how ATM works.
Warning:- Hacking ATM is highly illegal. Can Put you into cell for minimum 3 years along with fine 7 lac.

How ATM Works

An ATM is simply a data terminal with two input and four output devices. Like any other data terminal, the ATM has to connect to, and communicate through, a host processor. The host processor is analogous to an nternet Service Provider  (ISP) in that it is the gateway through which all the various ATM networks become available to the cardholder (the person wanting the cash).
Most host processors can support either leased-line or dial-up machines. Leased-line machines connect directly to the host processor through a four-wire, point-to-point, dedicated telephone line. Dial-up ATMs connect to the host processor through a normal phone line using a modem and a toll-free number, or through an Internet service provider using a local access number dialed by modem.
Leased-line ATMs are preferred for very high-volume locations because of their thru-put capability, and dial-up ATMs are preferred for retail merchant locations where cost is a greater factor than thru-put. The initial cost for a dial-up machine is less than half that for a leased-line machine. The monthly operating costs for dial-up are only a fraction of the costs for leased-line. 
The host processor may be owned by a bank or financial institution, or it may be owned by an independent service provider. Bank-owned processors normally support only bank-owned machines, whereas the independent processors support merchant-owned machines.

Warning:- Hacking ATM is highly illegal. Can Put you into cell for minimum 3 years along with fine 7 lac.


sry guys i m removind this post bcoz i got call from cyber crime branch because of wich i have to to remove it

Protection Against ATM Hacking

1. Do Hide the keypad when you enter your PIN CODE.
2. See All around if found any camera which you think not supposed to be there do inform the ATM guard and the near by Bank.
3. DO confirm completeness of the transaction after getting the money most people get trapped int
o this as the said above in second method.
4. If any criminal caught to and say to extract money from ATM, to save your money just reverse your PIN Account number. Like if my PIN CODE is 1234, if some one having PIN Code like 7777 then just put a 0 (Zero) in the last digit, money will stuck half in the ATM and half outside. 

Hope you like the article :)


Related Posts Plugin for WordPress, Blogger...