Jump to content

Yoshijira

Gold Donator
  • Posts

    448
  • Joined

  • Last visited

  • Days Won

    1

Yoshijira last won the day on April 2 2021

Yoshijira had the most liked content!

Reputation

340 100 Reputation

5 Followers

About Yoshijira

Personal Information

  • Gender

Character Information

  • Character Name
    R. Flores

Recent Profile Visitors

1,855 profile views
  1. Yeah, I probably should have specified that it doesn't need to exactly be the victim's. It just has to match the location of the victim, since emulation of the victim's fingerprint is all that really matters, especially considering the fact that many websites, especially 3D ones, have an excellent way to see what discrepancies are present when comparing your machine and its browser to the target's usual proclivities. That said, while uncommon, some fullz have an impressive amount of info recorded, MAC addresses included. Eh, IDK man, while you're right that it isn't really necessary if your VPN can somewhat match the city of a victim ( of course you can just set it to any major tourist city in the U.S. if you're dead broke and can't manage to get a basic plan for something like 911.re or Luxsocks ), while you might be obfuscated enough yourself to not get arrested, you end up running a far higher risk of the card or account itself getting flagged and burned.
  2. This guide will cover as to how financially motivated individuals convert and exploit stolen data into monetary gains. More specifically, this guide will be more-so focused on credit card fraud and bank account take overs ( or any kind of money-holding account, such as coinbase or paypal ), while highlighting the very basics of how these kind of fraudulent activities theoretically work in 2022 along with the outcome in reality. In principle, the whole idea of credit card fraud and bank account take-overs are incredibly easy. It can, more or less, be broken down into four steps. 1. Obtain credit card or bank account information. There's three primary ways this can be done. Purchasing dumps of CC info off the dark net is often the most common method utilized, especially those that are more-so inclined towards CVV carding, which is carding/credit card fraud for online only. Granted, it's not like you can hop onto any darknet market and buy some CC dumps on World Market and expect to suddenly be a fraudster. That's how you get scammed. People that do this method have to spend a significant amount of time scouring for a vendor that's legitimate, and setting up a deal with that vendor so that they don't get selectively scammed in the future. That said, the usual investment you can expect for these is $20-$30 in Monero for CC dumps, and at least $100+ in Monero for bank account logins. There are some offered for less, and while some are certainly legitimate, the amount of them that are scans isn't even worth trying to gamble and find a legit one. The second method is how many of the dumps are obtained in the aforementioned method, phishing. Either through the emulation of a website's login, such as Paypal's, the login data is then saved on whatever designated server it has. There are of course a lot more other methods, some of which may utilize form grabber bots, a combination of emulating a website that re-directs to the scammer so they can obtain further information and the list can go on and on. Does this method require you to be a master coder? No, not really. You can buy bots like these off of both dark net and private clear net markets for anywhere from $6.00 to $80.00 per bot. Said bots usually store separate user fingerprints per browser, logins and any associated cookies and most importantly, will continue to funnel whatever logins and info it can manage to parse after your purchase. That said, most major markets that focus on these kinds of bots have anywhere upwards of 250,000 of them, all of varying quality. So just like above, a given individual still needs to do their research. And of course, the method that most people think of when it comes to collecting info for credit card fraud, skimming. Skimming involves solely two things needing to be accomplished. The carder must physically be present, and the carder must have some kind of system in order to regularly obtain credit card info. A waiter at a restaurant for example can easily accomplish this. By holding an MSR206 lightweight portable card reader on their belt, and either tossing on a keypad logger onto one of the keypads for a table or being able to position themselves well off to see the PIN inputted, that waiter has all the credit card info they need. You could even extend this to somebody simply sitting in their car, connected to the local Starbuck's WiFi, watching over an ATM that they put a bluetooth skimmer and a bluetooth keypad logger that transmits the data to the P.C. Does it always have to be this high-tech? Of course not, you could use playdoh to record the card, all that matters is getting the info. Get creative. In general, the thing to highlight is even the first step requires a significant amount of investment, both financially and time. It's often recommended by many experienced fraudsters, which there's a plethora of communities on various .onion forums by the way, to set aside a week or two, figure out what the fuck you need to do, get all the necessary items you need for the method of carding you want to do and set a goal for yourself. Any character needs a damn good reason to jump into carding as opposed to other forms of income, whether it be a part-time job or exposure to easier to get into, equally as profitable illegal activities such as theft or drug dealing. 2. Actually setting up the digital aspects of it. Unfortunately, it is no longer 2013, when an individual could simply punch in somebody's credit card info into Amazon or eBay and get something shipped to their drop point in seconds. Financial services employ 2FA, geo-location, MAC address verification, browser identification and generally anything that falls under the umbrella of someone's digital fingerprint. Now you may ask, how do I even bypass that whole slough of bullshit and make money? One way of course, is to not. This doesn't mean to just engage in virtual fraud without any protection, this simply means taking the virtual aspect out of it. Cloning cards isn't really that hard, to anybody that does physical cash-outs with cards, the only real worry they have is their composure. Getting a card writer, a blank set of cards and some software that isn't dated as hell, you can quite easily have your own free credit card. The answer in regards to virtual aspects of setting up security is a bit trickier. The "fundamentals" needed are as goes: -A VPN. Not any big name ones like Nord VPN or ExpressVPN and shit like that, something like Mullvad VPN is the kind of security you'd need. -A SOCKS5 client. What is SOCKS5? It's basically a proxy, all a client is good for is finding an IP that has a low fraud score and is from the same zip code and city that your would-be victim is from. This isn't just for security, this is outright necessary to even access the card or account. -CCleaner if using a modified version of Firefox that helps with keeping your identity hidden, or a specialized browser like the ones provided by Genesis markets. -A Virtual machine. Set it to the same timezone as your target, change its MAC address to the target of your victim and don't be a dumbass. Sounds fun right? And this is only for non-big name sites. For big name sites like Amazon or Steam, you'll probably need an RDP, which is a pain in the ass to set up. And since this is a beginner's guide after all, we can skip over that. Along with this, while not necessarily "digital" per se, it's often recommended to have the following items. -A burner laptop. Or two. Always useful, and it's a lot better of an idea than using your own personal PC. -Two prepaid smart phones. Androids are usually the phone of choice for this, especially since if you root the phone, you open yourself up to the world of mobile carding. The main reason most people get burner phones for carding however, is to help with 2FA/ 2 Factor Authentication. 3. Logging in. It's not that hard, just log into the account with the info you required after doing the necessary set-up above. Anybody can do it. Just either connect to your neighbor's WiFi if you can, or head out to the mall or starbucks or any commercial venue that offers free WiFi. 4. Actually setting up the digital aspects of it. This is, unfortunately, the hardest part. You might have the card, and you might have total control over the account, but if you can't transfer those funds to your account, then it's worthless. Most cards and accounts place limits on your transfers and transactions as well, with some being upwards of $2,500 and some being a measly $30. You're basically taking a stab in the dark here each time. Generally, most individuals either set themselves up with a two man system. One person gets the CC info, the carder, and orders expensive items to an agreed dead drop, and the other person, the mule, picks up the items and flips them. The profit is then shared 50/50 the majority of the time. You can find dozens of legitimate offers like these via telegram within fifteen minutes. It's not that hard. Or, that same two man system has the carder clone the card, and has the mule go out and test the card. Sometimes, some individuals are competent and daring enough to do both tasks as a single person. It varies. There is of course the alternative method of transferring it through multiple different accounts, converting it to Monero, or some equally as hard to trace cryptocurrency, and then funneling it through a few other wallets until putting it in your own Monero( or whatever cryptocurrency someone decided on ) wallet and sitting on it for some time. This is significantly harder than above. You need multiple synthetic ID's and a few virtual cards to even attempt to pull this off. The only reason why people do such in the first place is because they straight up do not need to leave their home or whatever area they're leeching off of somebody's WiFi with. And that's basically the gist of modern day credit card fraud, if not a bit unorganized. Hopefully this helps serve other's RP along with updating the general idea of such fraud, as most information you can find around is from 2001-2007 and 2014-2017.
  3. I don't even know why this is a thread. The most obvious answer is to just use common sense. If some random teenage gang char is driving around in a beat up mini van, scriptly has a house where ever they'd realistically live and they say that their NPC'd family owns them, then it's fine. If they're using that vehicle to commit a crime, unless it's not some dastardly shit like straight up robbing a store or shooting up a bunch of people, then that's also whatever. Most gang members have terribly dysfunctional households, I won't really bat an eye if a teenage criminal is RP'ing having negligent parents that he stole the car keys from. Beyond that though, then yes, anybody can obviously see that it's dumb as fuck. You're describing somebody that could be considered "hood rich". The thing is, unless they're some kind of God when it comes to finances, they don't have any means to turn their physical cash into credit. In most cases, you need credit to legally buy a car or a house. Most hood rich dudes that made their money through illegal means spend their money poorly because that's practically all they can really do when they just have physical cash. They can't invest their cash and make long term plans with it, at best they can invest more into whatever criminal schemes they've been relying on. It's why in some cases, characters can get away with having pricey shoes or clothes that someone of their background usually couldn't afford but if anybody whips out a sports car, they're promptly shit on.
  4. You kind of need to look at the character being presented before just deciding that all illegal RP'ers are supposedly ruining it. The sixteen year old gangbanger that constantly has potential clients they've never seen before spin through their hood, is far more likely to end up robbing their customer due to an abundance of clients and the fact that most gang related characters are after short term financial gratification. However, your twenty something year old either working a dead end part time job or is studying in college that deals drugs on the side, which is a fairly common archetype for most street level goons, is far less likely to rob a client due to the fact that they needed to work and establish a working relationship with all of their customers.
  5. I feel like a lot of people forget we're specifically on a fictional roleplay server, meaning that certain character archetypes and scenarios are going to be in far higher abundance. If we're going to claim that everything that's the case in game from player population is IC, then basically all teenagers are either gangbanging or getting involved with woods/skinheads, nearly half of the Caucasian population in Los Santos is not American, the majority of Asians within the city are either Koreans involved in organized crime, Hmongs gangbanging in South Central or full on Japanese immigrants that came to Los Santos purely to race. The same goes for any millionaire, successful business owner, super up-standing cop and so forth. It makes zero sense that all of the above is ignored because it wouldn't make any sense logically, but the moment the subject of crime is brought up the ability to separate between what makes sense narratively and what's actually happening in game just goes out of the window. People need to accept there is going to be some dissonance between what is the case mechanically, and what is narratively sensical. I'm not saying don't roleplay your character witnessing some horrific shit, but I am saying that taking every single death, crime and hostile action that you were not involved with or saw for a split second, IC'ly is kind of stupid.
  6. The majority of car thefts that specifically target more modern cars literally just hack open their electronic locks via some pretty basic shit. If you want realism and practicality, then it should go even further and undo the lock as a whole, not just jamming the anti-theft from not sending out an alert/signal.
  7. +1 Good game balance. For everybody claiming it's too overpowered, the same exact thing goes for the anti-theft system as a whole. And if you're going to argue for total realism when it comes to these car models, then let me have a character that can whip out his phone that can exploit a car's CAN Bus system and undo its electronic lock with the press of a few buttons.
×
  • Create New...