Credit Card fraud beware :(
- 12169
- 219
-
- Last Comment
Hi dimers
I wanted to bring to you some unfortunate news.. and hope that this will help alert others here. 
Yesterday(23rd nov) in the afternoon I received SMS alerts that 4 transactions have been made on my credit card (syndicate bank gold) totalling around 30,000 Rs. The purchases were made on Jasper Infotech (Snapdeal) and Myntra.com at midnight of 22nd November. However, I had never used the credit card 
in the past 8-9 months (since I got my HDFC card.
I immediately called Snapdeal first and told them to hold the orders made with my card but they asked for more details such as bank statement and FIR. I told them bank statement will take a couple of days to be generated but I went to the PS to register FIR. That was another pain as the card belonged to me (address Bhubaneswar), I was on a work trip in SILIGURI and the online transactions could have been done anywhere (internet) and the companies involved were in Delhi and Bangalore. Completely out of their jurisdiction. I pleaded with them for several hours and finally they registered the FIR however they said, they would not be able to do much after that. (Complaint number with Snapdeal: 1342362)
Then I called up snapdeal again and told them I have mailed them the pics of the FIR filed with my card number in order to kindly hold/cancel the orders placed with my credit card. They said they will see what they can do, meanwhile I am trying to get the bank to get me the transaction REFERENCE NUMBERS which is required by snapdeal to cancel and refund the amount. Meanwhile, on saturday and sunday their accounts team doesn’t work, and I dont know if they ship of these days or not. If they ship by Monday, then i dont know what will happen…
Hoping that Snapdeal holds the orders and does not dispatch them to the criminal who has hacked my credit card account. I hope he gets caught soon and at this point of time I feel so helpless that this country has no cyber crime infrastructure to curb such offences. Its like someone takes all your money from your hands and you just stand and watch!! At this point of time, I think I don’t think I will get the money back but I want to try my best…..
by monday they will courier the order to that hacker
That is what I am afraid of….I expressed this angle to the CC of snapdeal and myntra again and again. They said they are helpless (stupid) without finance team.
However, there is a chance they can reroute shipments even if dispatched…dunno how much that will help if the hacker is in metro, delivery will hardly take a day or two.
Latest in…
SnapDeal, Nov 24 01:56 pm (IST):
Dear S,
Thank you for contacting Snapdeal.com.
Please accept our sincere apologies for the inconvenience you may have experienced.
This is in regards with the complaint which you have registered in Snapdeal against the debit which has been made from your bank account.
We would like to inform you that we have updated and escalated the snapshot of the bank statement received from your end to the finance department so that they can take this matter up with the payment gateway. We request you to kindly give us some time so that we can investigate the matter and provide you with the resolution without any further disappointment.
We will surely get back to you within next 48-72 hours.
Complaint Number: -1343781
Please feel free to contact us for further assistance at our customer care number +91 92126 92126 / 011 45371100 or email at help@snapde…om.
Regards,
Snapdeal Helpdesk
1. India’s leading ecommerce platform with more than 17 million subscribers
2. More than 1Lakh products from 2500+brands
3. Free shipping across India to over 4000 towns and cities
4. Secure payment options – Cash on Delivery, EMI, Debit/Credit cards
Visit Now: www.snapde…om
Follow us on; http://www.facebook.com/Sn…al, http://twitter.com/#!/search/sn…al
Nov 24 01:46 pm (IST):
Dear Support
I have asked the bank for the transaction number/reference number as those
do not reflect in the previously attached bank statement. They said that,
they claimant bank has not yet raised claim on the payments made via my
credit card. Once the claim comes in they can provide me with the
transaction numbers.
For now, I would once again request you to track the orders by matching the
EXACT AMOUNTS which were made at the given EXACT TIME of transaction as
highlighted in the statement and hold the same and not dispatch them. I am
sure you will will be able to at least do the same until the bank responds
with more information.
Acting as early as possible is critical in this case, as goods once
dispatched and delivered will lead to complication of the case.
Regards,
Cant they give you the details of delivery address… ??
No, not without police warrant and stuff. Privacy policy. But I will try to pester them.
Really want to thrash the person black and blue 
for shaking my confidence in online transactions. _ I was always the one to promote e-commerce among friends and family and now no one is ever going to listen to me.
One thing I am confused at.You mentioned that password have been changed. How come you never got any acknowledgement SMS or Email for the same .I always get such alerts faster than transaction alerts.
Sad to hear this. there are following possibilities how your card got hacked.
1: social engineering
2: data sniffing.
are you using unsecured wifi connection by any chance ?
secondly there is a way one can bypass 3d secure code. but since you mentioned it has been changed probably it is done through social engineering .
don’t think it can be online only.
one of my friend found payment made upto 70k after he swiped the card in one merchant outlet.
tusharsethi90935 wrote:
One thing I am confused at.You mentioned that password have been changed. How come you never got any acknowledgement SMS or Email for the same
I think that is the area the Hacker showed his cleaverness
makyubex wrote:
No, not without police warrant and stuff. Privacy policy. But I will try to pester them.
Really want to thrash the person black and blue
I hope u get ur Money back
i am also the 1 who promote e-commerce amongs my frnd and family,so can understand ur feelings atleast on this point.
Try to get his shipping address and share here.
Dimers are present in each and every part of India.If he lives near my area then he surely will see stars in day that i promise
tusharsethi90935 wrote:
One thing I am confused at.You mentioned that password have been changed. How come you never got any acknowledgement SMS or Email for the same
I never got any acknowledgement that my password has been modified. After getting SMS about the transactions I tried to login into verfied by visa account to see if the password is the same or not. I could not log in!!!! So I guessed the password is no longer mine.
makyubex wrote:tusharsethi90935 wrote:
One thing I am confused at.You mentioned that password have been changed. How come you never got any acknowledgement SMS or Email for the same
I never got any acknowledgement that my password has been modified. After getting SMS about the transactions I tried to login into verfied by visa account to see if the password is the same or not. I could not log in!!!! So I guessed the password is no longer mine.
Nothing to worry. find the email of cyber crime cell near you here —>> http://cybercrimecomplaints.com/cyber-crime-cel...
and file the complaint. make the ecom site email as cc
in the mail make the ecom site as party as well it will make them act faster.
amitinmumbai wrote:
Sad to hear this. there are following possibilities how your card got hacked.
1: social engineering
2: data sniffing.
are you using unsecured wifi connection by any chance ?
secondly there is a way one can bypass 3d secure code. but since you mentioned it has been changed probably it is done through social engineering .
don’t think it can be online only.
one of my friend found payment made upto 70k after he swiped the card in one merchant outlet.
No I am not using unsecured wifi. I mostly used AIRTEL/AIRCEL 3G after college and while in college, I used their LAN internet (in which was intranet IPs were masked from outside word by college IT administrators, I was one of the IT team)
Social engineering may be possible option, as the questions they ask are quite simple, mothers maiden name, DOB, card limit :|
amitinmumbai wrote:secondly there is a way one can bypass 3d secure code.
Is this really possible?
In no case let the matter go off so easily.
ethicalshopper wrote:amitinmumbai wrote:secondly there is a way one can bypass 3d secure code.
Is this really possible?
yep pretty easy.
Won’t share it though as it can be easily misused.
for online shoppers relying blindly on 3d secure will not help. there are many people who know how to bypass it so avoid giving card details to anyone. even if cc asks for card details such as expiry thrash them as
it is confidential and they are not allowed to ask such details.
amitinmumbai wrote:ethicalshopper wrote:amitinmumbai wrote:secondly there is a way one can bypass 3d secure code.
Is this really possible?
yep pretty easy.
Won’t share it though as it can be easily misused.
If 3D secure can be bypassed then …god knows what security measures can we ever take against such illegal activities.
avoid unsafe transactions(non https websites) , public terminals , use virtual cards , avoid sites which store card details and keep your comp safe from virus and malware that should be enough .
ethicalshopper wrote:amitinmumbai wrote:secondly there is a way one can bypass 3d secure code.
Is this really possible?
seriously this is possible?i m shocked
amitinmumbai wrote:ethicalshopper wrote:amitinmumbai wrote:secondly there is a way one can bypass 3d secure code.
Is this really possible?
yep pretty easy.
Won’t share it though as it can be easily misused.
Didnt know this
This is the one thing that I was confident about all the while and have been feeling safe. but shocking for me.. will try to explore this more this evening. I would never hack or commit fraud but I need to know to make sure I am safe and my friends/relatives are safe as well.
I know that merchants outside India wont require this but within India its mandatory. So was feeling safe from atleast indian shopping frauds.
OP – did you ask your bank for chargeback option and eligibility for the above said transactions? Also I am not sure what PG SD uses, but you can write out to PG as well so that they can do something. I am sure PG’s team would work round the clock due to the sensitivity of their dealings.
so now you know so avoid blind trust on such measures.
3d secure reduces the chance but does not eliminate the risk completely.
My father works in the bank from where I got the card issued. It was an add on card on his account. So currently he is trying his best from his end to gather any and all resources and help possible, from the bank, from VISA. Let me try and see what jasper infotech uses as Payment gateway.
As per my observation, snapdeal uses ebs PG for card txns (I have been observing this and checked again just now).
You may try contacting them.. Here are the contact details: http://www.ebs.in/contact...hp
Update:
Thanks yash8888
Anant wrote:makyubex wrote:
done. as soon as i received SMSs.
But dump SMSs were delivered at around 2pm (23rd Nov) and the transactions (4 totalling around 30k) were done in a matter of 15 minutes between 11:47 pm and 00:00 am on 22nd Nov
One thing I am sure that this chor is from INDIA only and very expert. He knows very well that it is very easy to crack syetem when the date changes . This is the fact/research that most cyber crimes are done between 11:30 PM and 12:30 AM.
I agree with you. to add that, i think hacker is very new in this filed. He left his address with those orders 
Have emailed EBS keeping SD CC in loop.
Hey , sorry to hear abt that
Have they cancelled your orders?
What about your bank? have you spoken with there Customer care? I request you to record all these calls and file a FIR against each , the portal , the payment gateway and the Bank..
Hope you will get your money back.. do keep us posted.
I do use a credit card.. but my credit card which i use for shopping has limit of 20000 only… If it gets lost or something like this happens i can take a risk of max 20000 only.. just a tip to dimers…
sagarr wrote:
Hey , sorry to hear abt that
Have they cancelled your orders?
What about your bank? have you spoken with there Customer care? I request you to record all these calls and file a FIR against each , the portal , the payment gateway and the Bank..
Hope you will get your money back.. do keep us posted.
I do use a credit card.. but my credit card which i use for shopping has limit of 20000 only… If it gets lost or something like this happens i can take a risk of max 20000 only.. just a tip to dimers…
Filing one FIR was tough enough, coz of the ignorance of cyber crimes in our local police stations. I have informed all the concerned authorities, bank and payment gateway.
My credit card limit for online shopping was 30,000 and the fruadster has utilized the entire amount. The person had tried 5 transactions in all, of which 4 were successful and the last one was declined coz of day limit. Thankfully because of the limit the remaining credit remained safe (1lac+).
the hacker who is careful and smart about all these must have also calculated about shipping address… considering our courier offices, anyone who verify few details can easily get away with the parcel, even for a non-existing name & address…
Make sure it’s not someone close to you (in the past), that kinda thing happened to my friend. Cyber crime found out and all of us got shocked & embarrassed.
Anant wrote:makyubex wrote:
done. as soon as i received SMSs.
But dump SMSs were delivered at around 2pm (23rd Nov) and the transactions (4 totalling around 30k) were done in a matter of 15 minutes between 11:47 pm and 00:00 am on 22nd Nov
One thing I am sure that this chor is from INDIA only and very expert. He knows very well that it is very easy to crack syetem when the date changes . This is the fact/research that most cyber crimes are done between 11:30 PM and 12:30 AM.
You are right from 11 pm to 3 am is the best time to do any illegal cyber activities. Mostly because of uninterrupted internet and high speed.
very good analysis