Contents
The short answer to the question whether it is possible to steal money from a card account knowing only the card number of bank or any other bank is NO, this cannot be done. It would be too naive to believe that the entire huge industry of card payments for authorizing a bank card transaction will be based only on its number. This cannot be done even knowing the card account number (recall that the account number and the card itself are different concepts), unless, of course, you are an insider (bank employee) who has access to the accounts of your clients.
What card details are required for payment / transfer?
Any online payment (or transfer between cards) on the Internet using a card will require you to indicate its details such as number, first and last name, card expiration date and CVV2 / CVC2 authentication code (how to pay with a card on the Internet?). Moreover, almost all banks support the 3-D Secure protocol - an additional step in card authentication, when an SMS message with a one-time code is sent to you, and only after that the payment (or transfer) will take place.
And if you found out the card number and other details?
Thus, in order to "rob" you, the fraudsters would need all the card details at once, plus your phone number. Although some sites (online stores) accept cards for payment without a confirmation SMS, and this is used by scammers who have received all of the above card details.
How do they get them? They spy on you in a regular store when paying for goods (they can install miniature video cameras and get an image of the front and back sides of the card), or fetch the data fraudulently on the Internet or by e-mail (so-called phishing), when fraudsters, posing as a bank employee, ask tell him the details. In the end, the same dishonest sellers (or waiters) can easily get all the data they need.
Fortunately, all of this can be avoided by following simple rules for safe bank card use. True, recently frauds with SIM cards have been flourishing, when criminals make a duplicate SIM card using a fake power of attorney and hack your mail, e-wallets, or transfer money from cards linked to the number. Using the link above, we gave recommendations on how to prevent such fraud.
So, if we briefly summarize our answer to the question about the possibility of stealing money, knowing the card number, it is necessary to expand the answer a little. Knowing the number is impossible, but knowing the card number, expiration date, full name, three-digit CVV2 / CVC2 code and phone number, it is very possible! If they somehow find out your PIN code, it is also not good, but at least it does not participate in online payment in any way, but it can be useful for an attacker to withdraw funds from a stolen card.
And in the reviews they say that one bank card number is being stolen
But here's the bad luck, in reviews people often write that when selling their thing, for example, on eBay, they tell exactly the number of their bank card to the person (fraudster) who offers to make an advance payment to the merchant's card account. All money disappears from the account. True, it turns out that the swindler asked to dictate the code that came in the SMS message to the seller's phone (which is the confirmation code for registration in the Bank Online Internet bank). Or, for example, along with the number you will be asked to voice the rest of the card details.
If you do not have a bank card, then the algorithm for extorting money will be the same. The offender will use the card-to-card transfer form, having first learned all its details from the unlucky seller, and then will ask him to dictate the confirmation code. At least before dictating - read what is written in this SMS message. Your hair will stand on end, and everything will immediately become clear.
These are methods of the so-called "social engineering", in other words, a method of obtaining the necessary access to information based on the characteristics of the victim's psychology. So be careful, and do not "shine" your card number with other details and your phone number on the Internet. By the way, on the forums it is advised to stick the CVV2 / CVC2 code, having memorized it in advance - it will be more reliable.
- 1. What card details are required for payment / transfer?
- 2. And if you found out the card number and other details?
- 3. And in the reviews they say that one bank card number is stolen
The short answer to the question whether it is possible to steal money from a card account knowing only the card number of bank or any other bank is NO, this cannot be done. It would be too naive to believe that the entire huge industry of card payments for authorizing a bank card transaction will be based only on its number. This cannot be done even knowing the card account number (recall that the account number and the card itself are different concepts), unless, of course, you are an insider (bank employee) who has access to the accounts of your clients.
What card details are required for payment / transfer?
Any online payment (or transfer between cards) on the Internet using a card will require you to indicate its details such as number, first and last name, card expiration date and CVV2 / CVC2 authentication code (how to pay with a card on the Internet?). Moreover, almost all banks support the 3-D Secure protocol - an additional step in card authentication, when an SMS message with a one-time code is sent to you, and only after that the payment (or transfer) will take place.
And if you found out the card number and other details?
Thus, in order to "rob" you, the fraudsters would need all the card details at once, plus your phone number. Although some sites (online stores) accept cards for payment without a confirmation SMS, and this is used by scammers who have received all of the above card details.
How do they get them? They spy on you in a regular store when paying for goods (they can install miniature video cameras and get an image of the front and back sides of the card), or fetch the data fraudulently on the Internet or by e-mail (so-called phishing), when fraudsters, posing as a bank employee, ask tell him the details. In the end, the same dishonest sellers (or waiters) can easily get all the data they need.
Fortunately, all of this can be avoided by following simple rules for safe bank card use. True, recently frauds with SIM cards have been flourishing, when criminals make a duplicate SIM card using a fake power of attorney and hack your mail, e-wallets, or transfer money from cards linked to the number. Using the link above, we gave recommendations on how to prevent such fraud.
So, if we briefly summarize our answer to the question about the possibility of stealing money, knowing the card number, it is necessary to expand the answer a little. Knowing the number is impossible, but knowing the card number, expiration date, full name, three-digit CVV2 / CVC2 code and phone number, it is very possible! If they somehow find out your PIN code, it is also not good, but at least it does not participate in online payment in any way, but it can be useful for an attacker to withdraw funds from a stolen card.
And in the reviews they say that one bank card number is being stolen
But here's the bad luck, in reviews people often write that when selling their thing, for example, on eBay, they tell exactly the number of their bank card to the person (fraudster) who offers to make an advance payment to the merchant's card account. All money disappears from the account. True, it turns out that the swindler asked to dictate the code that came in the SMS message to the seller's phone (which is the confirmation code for registration in the Bank Online Internet bank). Or, for example, along with the number you will be asked to voice the rest of the card details.
If you do not have a bank card, then the algorithm for extorting money will be the same. The offender will use the card-to-card transfer form, having first learned all its details from the unlucky seller, and then will ask him to dictate the confirmation code. At least before dictating - read what is written in this SMS message. Your hair will stand on end, and everything will immediately become clear.
These are methods of the so-called "social engineering", in other words, a method of obtaining the necessary access to information based on the characteristics of the victim's psychology. So be careful, and do not "shine" your card number with other details and your phone number on the Internet. By the way, on the forums it is advised to stick the CVV2 / CVC2 code, having memorized it in advance - it will be more reliable.
