April 26, 2016

All About Fraud: How Crooks Get the CVV

This post was originally published on this siteA longtime reader recently asked: “How do online fraudsters get the 3-digit card verification value (CVV or CVV2) code printed on the back of customer cards if merchants are forbidden from storing this information? The answer: If not via phishing, probably by installing a Web-based keylogger at an online merchant so that all data that customers submit to the site is copied and sent to the attacker’s server. Kenneth Labelle, a regional director at insurer, wrote: “So, I am trying to figure out how card not present transactions are possible after a […]
October 16, 2017

Krebs Given ISSA’s ‘President’s Award’

This post was originally published on this site16Oct 17 Krebs Given ISSA’s ‘President’s Award’ KrebsOnSecurity was honored this month with the 2017 President’s Award for Public Service from the Information Systems Security Association, a nonprofit organization for cybersecurity professionals. The award recognizes an individual’s contribution to the information security profession in the area of public service. It’s hugely gratifying to have received this award, mainly because of the company I now keep. Past ISSA President’s Award winners include former White House cybersecurity advisers Richard A. Clarke (2003) and the late Howard Schmidt (2016); DEF CON and Black Hat founder Jeff […]