Solved

How could have my VISA user ID and password have been stolen?

Posted on 2008-10-28
1
224 Views
Last Modified: 2012-05-05
Earlier this month we had our personal VISA card number stolen somehow and used.  What bothered me was that they were able to get into the account information section of the online account and change my home phone number to another one (they left the address the same, as they were ordering services, not merchandise, with the card).
 
This card had the most complex user id and pw of all of our stuff.
 
How could that happen?  How can tihs be prevented?
0
Comment
Question by:jsgreiner
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 12

Accepted Solution

by:
jahboite earned 250 total points
ID: 22830714
One possibility (and the most likely) is that you have contracted one of the many trojan/spy malware variants which are designed specifically to log keystrokes and capture information used for online banking.  This could have been installed whilst browsing the web and visiting a site in which some client-side scripting exploited a vulnerability in your web-browser, its plugins or the operating system itself.
The information captured is usually sent to a destination somewhere on the internet where the criminal who deployed the malware collects information from thousands of compromised computers and this information is often sold to people who are willing to take the risk of using those details to obtain money or goods (which can then be sold).

To avoid such a thing happening in the future is not exactly simple, but you can take steps to dramatically reduce the likelihood:
Use Mozilla's firefox web-browser www.mozilla.com/firefox/ and get the NoScript add-on for firefox.  This helps to prevent the kinds of malicious scripting that cause such infections whilst browsing the web.
Use a good Anti-Virus solution and keep it updated.  There are many available, but none will ensure that you never become infected with malware again.
Pro-actively manage the software installed on your computer - particularly that which is available via your web-browser (such as Adobe Flash, Reader (pdf), Quicktime etc ) and make sure you are always using the latest (and most secure) versions.  A great tool to help in this respect is (Personal Software Inspector) PSI from Secunia http://secunia.com/vulnerability_scanning/personal/ which will scan your computer for software for which there are more secure versions and help you to update them.

Hope that helps a bit.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Ransomeware and anti exploit software 7 115
ACAS / Nessus 2 166
Vulnerability scanning tools! 5 144
Ways to scan an IIS if 'directory browsing' has been disabled 3 141
You cannot be 100% sure that you can protect your organization against crypto ransomware but you can lower down the risk and impact of the infection.
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question