Carding dead? - Page 2

Zaeer · #11 05-10-2025, 12:47 AM

is true but be in advance permiss to card more site

po66u · #12 05-10-2025, 12:48 AM

So beginners are fucked or they aren t lazy af, so fingerprint is the main key to succsess, how about vbv is it bypassable or you need sim swap

Real Old Vendor · #13 05-10-2025, 12:50 AM

Quote:

Originally Posted by lebowski

is true but be in advance permiss to card more site

Most of what you said is true but really you can spoof everything in firefox (even WebRTC), or use a anti-fingerprinting software to deal with all that. (You can spoof canvas on firefox too but most people are lazy).
Yes a simple process can uncover yourself but that is mostly unlikely with anti-fingerprinting software.
A great tip for everyone is to use a HDD or SDD for pure carding and just have your configs for your chromium based bowser or for your firefox ready and done!
all you need is good cc (and hope it has good balance), configs ready for your browser or anti-fingerprinting software and great socks.
Bingo!
After every card activity, I recommend formatting hdd or sdd and reinstall windows 7
That is a great headstart for newbies.
Easy stuff.

po66u · #14 05-10-2025, 12:51 AM

Quote:

Originally Posted by Roco0105

Most of what you said is true but really you can spoof everything in firefox (even WebRTC), or use a anti-fingerprinting software to deal with all that. (You can spoof canvas on firefox too but most people are lazy).
Yes a simple process can uncover yourself but that is mostly unlikely with anti-fingerprinting software.
A great tip for everyone is to use a HDD or SDD for pure carding and just have your configs for your chromium based bowser or for your firefox ready and done!
all you need is good cc (and hope it has good balance), configs ready for your browser or anti-fingerprinting software and great socks.
Bingo!
After every card activity, I recommend formatting hdd or sdd and reinstall windows 7
That is a great headstart for newbies.
Easy stuff.

Thanks for info m8, appreciate it

conman420 · #15 05-10-2025, 12:53 AM

Quote:

Originally Posted by lebowski

a screen resolution can make fail an order
a lot of point have to be config
1 error make fail all because system recognise something is wrong
all that data collecting from people permiss it
a lot of site give information by country, town and city about a lot of info
sending 1 mail or make someone clic a link can give you a lot of info on target
about looking stupid info for someone
but for the system is a proof of the target card owner
its a lot of test to do to know if your config is ready to card
or ready to be detected.................
let's say you want to defeat google antifraud if google have by month 400 000 millions fingerprint of you, from your surfing
can you understand why is becoming more and more difficult for you
now is similare fingerprint working
so soon you would need exact computer fingerprint of target card owner to success
and that's where is going, because if you make a blockchain with that data you can become the biggest antifraud system in the world with instant data fingerprint of a user

This is big fact about carding. OPSEC is always the key to a successful carding.Thanks for the highlight

Zaeer · #16 05-10-2025, 12:55 AM

for sure that credit card is important and if is a sms verif you will not bypass only with fake fingerprint
i was talking about people claiming they get rejected or cancelled
if you make 10 order by day
did you think you can format every time
problem is antidect for browser is one thing i talk about controled place
mean all have to be controlled
installing a software the wrong way make it snitching
your windows leave a signature and other thing is not just web browser
maybe to card chinese phone
i talk about bypass any site and play any fingerprint you want
controlling what happened from a to b give you success for that part
card are important
take the order is important
all is important but if you go carding already detected what you can do
nothing
and a lot of antidetect get detected because people dont do the good way
is steps of installation and an order to install
etc etc etc is a work is not a game

LamerOnLine · #17 05-10-2025, 12:56 AM

Biggest mistake i made when i got into carding was believing the bullshit that i needed to over complicate things. What normal buyer uses anti detect, proxys, vms, canvas spoofers, etc etc? None
You buy cards you get card info, ip and useragent. If you have a good supplier you get get cookies too. You cannot match perfectly info that you don't get when you buy a card. fingerprints exact ip etc isn't possible. Don't add more links in the chain as each one adds a vulnerability.
buy a mobile phone and place orders. Its not rocket science. Learn what bins and sites work

nihaonihao · #18 05-10-2025, 12:58 AM

Only reason Why all this carding is allmost done now... Its coz no More new money created in system if they do then high inflation will hit hard.
When 500$ is frauded then the credit card providers reinburse 100%.
So that will be 1000$ Total money is now on circlelation... Thats allready double ammount of money what is frauded.. Generally the fraud victim is collateral for new created money.
All this frauded Funds what is payed back as stolen does Not exist its created so if the government let fraud going on Still then there will be More new money and less collateral wich are fraud victims
In Canada the cad currency value is down just coz of this.
The high inflation is allready here but if the government dont stop the carding then there will be Even More higher inflation rate.
The frauded money is a debt
UK HAVE high debt from carding UK falled down first there is no any carding in UK coz UK Can Not create new money anymore.
Next country will Australia Where all carding will be stopped and no More money will be created in Australia.
Even You are mobster Criminal thief You Still Got be educated... Lol ?

Zaeer · #19 05-10-2025, 12:59 AM

Quote:

Originally Posted by epicmarket

Biggest mistake i made when i got into carding was believing the bullshit that i needed to over complicate things. What normal buyer uses anti detect, proxys, vms, canvas spoofers, etc etc? None
You buy cards you get card info, ip and useragent. If you have a good supplier you get get cookies too. You cannot match perfectly info that you don't get when you buy a card. fingerprints exact ip etc isn't possible. Don't add more links in the chain as each one adds a vulnerability.
buy a mobile phone and place orders. Its not rocket science. Learn what bins and sites work

over email you can fingerprint user
with card you get email
all depend on your skills
using this method bypass a lot of security...
all is not perfect you right but a lot of info is added in your mask, just beginning from 1 card with an email attached
""As more and more transactions are app based and we see rapid development of new ways to make payments there was a need for an updated version of 3-D Secure that could deal with this, which is 3-D Secure version 2.
What will change
One of the core differences is that the issuer can use a lot of data-points from the transaction to determine the risk of the transaction (risk-based analysis). For low-risk transactions, issuers will not challenge the transaction (e.g. not sending an SMS to the cardholder) although authenticating the transaction (frictionless). Inversely, for high risk transaction, issuers will require the cardholder to authenticate with an SMS or biometric means (challenge). This can then result in a frictionless authentication, which doesn't involve the consumer to be redirected. In case the consumer is using an app this also applies. In case a challenge is required by the issuer this can be handled inside the app. This greatly improves the user experience and will increase conversion.
Separately the Strong Customer Authentication (SCA) required in Europe by September 14th, 2019 as specified in PSD2 will result in a substantial increase in the number of transactions requiring the use of 3-D Secure authentication. The use of 3-D Secure version 2 should limit the potential negative impact on conversion as much as possible.
In short 3-D Secure version 2 means:
You will need to implement 3-D Secure before September 14th, 2019 if your transactions fall within the EU PSD2 SCA guidelines (in case you don't already support 3-D Secure).
You are advised (and for some are required) to submit additional data points to support the risk assessment performed by the issuer in case of 3-D Secure version 2
You might need to update your privacy policy with regards to GDPR as you might be sharing additional data-points with 3rd parties
A much better user experience for your consumers
The flow with the redirection for 3-D Secure version 2 could potentially only involve a page that allows the issuer to collect data from the consumers device without any user interaction. This is called a MethodURL flow in the 3-D Secure version 2 documentation. We have chosen to handle this flow on our hosted payment pages to reduce the implementation impact on you. This means that redirection will not always result in a so called Challenge towards the consumer and could still be considered friction-less in the 3-D Secure version 2 terminology. The statuses for each of the flows are identical with REDIRECTED for the flow that involves redirection and all the other possible statuses, like REJECTED, PENDING_APPROVAL, CAPTURE_REQUESTED, etc.""
skills for making people fingerprint to sucess will become normal soon, i mean is already the case but is looking like some don't see
just 1 of the way they can detect you and is not new
https://arstechnica.com/information-...iple-browsers/
to understand and begin to hack something from zero knowledge
take a real card do some card order from different real card and intercept transaction from that type (over a page) of transaction
with simple open source tool you can know what fingerprint they ask for exactly
then you can make your URLmethod with a simple page hosted to collect data needed from your victim
without be a programmer you make a URLfingerprintCatcher just using same methods

samwin · #20 05-10-2025, 12:59 AM

Quote:

Originally Posted by lebowski

over email you can fingerprint user
with card you get email
all depend on your skills
using this method bypass a lot of security...
all is not perfect you right but a lot of info is added in your mask, just beginning from 1 card with an email attached
""As more and more transactions are app based and we see rapid development of new ways to make payments there was a need for an updated version of 3-D Secure that could deal with this, which is 3-D Secure version 2.
What will change
One of the core differences is that the issuer can use a lot of data-points from the transaction to determine the risk of the transaction (risk-based analysis). For low-risk transactions, issuers will not challenge the transaction (e.g. not sending an SMS to the cardholder) although authenticating the transaction (frictionless). Inversely, for high risk transaction, issuers will require the cardholder to authenticate with an SMS or biometric means (challenge). This can then result in a frictionless authentication, which doesn't involve the consumer to be redirected. In case the consumer is using an app this also applies. In case a challenge is required by the issuer this can be handled inside the app. This greatly improves the user experience and will increase conversion.
Separately the Strong Customer Authentication (SCA) required in Europe by September 14th, 2019 as specified in PSD2 will result in a substantial increase in the number of transactions requiring the use of 3-D Secure authentication. The use of 3-D Secure version 2 should limit the potential negative impact on conversion as much as possible.
In short 3-D Secure version 2 means:
You will need to implement 3-D Secure before September 14th, 2019 if your transactions fall within the EU PSD2 SCA guidelines (in case you don't already support 3-D Secure).
You are advised (and for some are required) to submit additional data points to support the risk assessment performed by the issuer in case of 3-D Secure version 2
You might need to update your privacy policy with regards to GDPR as you might be sharing additional data-points with 3rd parties
A much better user experience for your consumers
The flow with the redirection for 3-D Secure version 2 could potentially only involve a page that allows the issuer to collect data from the consumers device without any user interaction. This is called a MethodURL flow in the 3-D Secure version 2 documentation. We have chosen to handle this flow on our hosted payment pages to reduce the implementation impact on you. This means that redirection will not always result in a so called Challenge towards the consumer and could still be considered friction-less in the 3-D Secure version 2 terminology. The statuses for each of the flows are identical with REDIRECTED for the flow that involves redirection and all the other possible statuses, like REJECTED, PENDING_APPROVAL, CAPTURE_REQUESTED, etc.""
skills for making people fingerprint to sucess will become normal soon, i mean is already the case but is looking like some don't see
just 1 of the way they can detect you and is not new
https://arstechnica.com/information-...iple-browsers/
to understand and begin to hack something from zero knowledge
take a real card do some card order from different real card and intercept transaction from that type (over a page) of transaction
with simple open source tool you can know what fingerprint they ask for exactly
then you can make your URLmethod with a simple page hosted to collect data needed from your victim
without be a programmer you make a URLfingerprintCatcher just using same methods

I like this guy... ;-)