Monday, August 18, 2008

Re: [asterisk-biz] Fraud. (here we go again)

Hello Nitzan,

As to how they do it its not very hard to proxy http requests(or any
other request for that matter). There are plenty of publicly available
proxy servers as well as servers that aren't intended to be used by the
public but due to the sys-admin's misconfiguration they are open to the
outside world. Most modern browsers can be configured to use proxy
servers directly and tools exist such as proxychains that let you proxy
pretty much any type of traffic through socks proxies.

As to how to stop it...thats sort of a hard question. Maybe you could
find sites with public proxy listings and write a script to flag any
deposits made from any of the ips listed, but this won't help against
non-publicly disclosed proxies.

Regards,

Igor H.

Nitzan Kon wrote:
> Hi list! :)
>
> We've got hit with a guy in Vietnam who's creating accounts with
> stolen American credit cards. Usually they are really easy to stop,
> but this guy is matching the IP address to the credit card address.
>
> Anyone knows how they do that? I am 100% sure they are located in
> Vietnam as their SIP IP address is 222.252.42.118. So somehow they
> go through a proxy or something to fake the IP location. Any idea
> how they do that - and more importantly - how to stop that on a
> systematic level?
>
> Thanks!
>
> --
> Nitzan Kon, CEO
> Future Nine Corporation
> www.future-nine.com
>
> _______________________________________________
> --Bandwidth and Colocation Provided by http://www.api-digital.com--
>
> AstriCon 2008 - September 22 - 25 Phoenix, Arizona
> Register Now: http://www.astricon.net
>
> asterisk-biz mailing list
> To UNSUBSCRIBE or update options visit:
> http://lists.digium.com/mailman/listinfo/asterisk-biz
>


_______________________________________________
--Bandwidth and Colocation Provided by http://www.api-digital.com--

AstriCon 2008 - September 22 - 25 Phoenix, Arizona
Register Now: http://www.astricon.net

asterisk-biz mailing list
To UNSUBSCRIBE or update options visit:
http://lists.digium.com/mailman/listinfo/asterisk-biz

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)