credit card security
17 years 11 months ago #19091
by sose
sose
Network Engineer
analysethis.co/index.php/forum/index
credit card security was created by sose
I want to start a credit card transaction in my cyber cafe .
I want an advice regarding the DOs and DONTs of credit card transactions most especially on a public computer.
I remain
sose
I want an advice regarding the DOs and DONTs of credit card transactions most especially on a public computer.
I remain
sose
sose
Network Engineer
analysethis.co/index.php/forum/index
17 years 11 months ago #19092
by DaLight
Replied by DaLight on topic Re: credit card security
Are you talking about accepting credit card payments for services rendered by yourself?
17 years 10 months ago #19127
by sose
sose
Network Engineer
analysethis.co/index.php/forum/index
Replied by sose on topic Re: credit card security
No , I am talking about how to securely complete a credit card transaction on a public pc so as to secure my credit card number from hackers and other users on the system
sose
Network Engineer
analysethis.co/index.php/forum/index
17 years 10 months ago #19129
by talk2sp
BORN TO BE GREAT
c0de - 3
..........................................................
Take Responsibility! Don't let failures define you
Replied by talk2sp on topic the word.....
i always ponder on something and it is why do guyz misuse the word HACKING. Sose if u call credit card theft hacking what will u call bank theft online. Sose when using a credit card u have to make sure the system u are using has no damn folder shared and making sure u delete ur cookies and history when u are done with transaction..... i will tell u more when we see...
BORN TO BE GREAT
c0de - 3
..........................................................
Take Responsibility! Don't let failures define you
17 years 10 months ago #19136
by sose
sose
Network Engineer
analysethis.co/index.php/forum/index
Replied by sose on topic Re: credit card security
The Web definition of hacking is Unauthorized access, or attempts to circumvent or bypass the security mechanisms of an information system or network.
With this, when making a credit card transaction, hackers could bypass your local security and collect your credit card numbers, it could be through phoney websites.
I know there are white and black hackers and it is safer to trust neither of them just to be protected against the unexpectd .
I also know that you can access the property dialogue box of internet explorer under CONTENT to disable autocomplete and also clear passwords and forms to avoid remembering passwords
I also know that zone alarm and sygate provide free firewalls and these companies warn against making credit card transactions on strange or websites that pop up frequently to offer deals.
But I need more to protect my transactions . thanks
I remain
sose
With this, when making a credit card transaction, hackers could bypass your local security and collect your credit card numbers, it could be through phoney websites.
I know there are white and black hackers and it is safer to trust neither of them just to be protected against the unexpectd .
I also know that you can access the property dialogue box of internet explorer under CONTENT to disable autocomplete and also clear passwords and forms to avoid remembering passwords
I also know that zone alarm and sygate provide free firewalls and these companies warn against making credit card transactions on strange or websites that pop up frequently to offer deals.
But I need more to protect my transactions . thanks
I remain
sose
sose
Network Engineer
analysethis.co/index.php/forum/index
17 years 10 months ago #19140
by Starfire
Very wise Sose. I won't trust my wife with my credit card so why should I trust software written by Microsoft especially if I am to go sit in someone's cyber cafe! I don't care how much the propriator tells me it's safe there's not a chance I am going to do it. Now, that's just me but I am sure there are plenty of people who wil happily do it... even in a wireless lounge of a hotel or some such.. /shudder !
Now I am not skilled up in security yet (I find it a fascinating subject) but from the top of my head I can see your problem lying in two areas. What your PC is doing when you tap in your credit card info and what the server at the other end is doing to safeguard the info you are typing into it.
If the server side is something like paypal then it is down to them to provide a secure connection for their web page when you enter your details. How safe this is (apparantly not at all from what I read) is down to them and not the responsibility of the cafe owner.
On the cafe side, as the credit card details are provided by secure web page by the agency, the best the cafe can do is have upto the minute antivirus, several antispyware and regular scans. A seperate virtual disk cleaned for each user that logs in so that there should be no aspect of a previous users info that can be looked at.
If it's a wireless cafe then you really need to screw down your protocol security and make sure someone with a stronger signal server running on a laptop can't re-route your client PCs to run through their laptop (in record mode) and then through the server to the cafe's ISP.
(theroetical example - customer A logs in and goes onto amazon/ebay and ticks save my password. Customer B logs in and finds customer A's amazon/ebay cookie and puts it in his own cookie area and voila... He is now customer A - quick change of delivery address ..... bingo! I may be wrong in the ease of this but you see my point)
Lastly, with my limited knowledge of security, learn a lot more about how scams are done and make BIG posters of the do's and don'ts and put them smack in front of every PC in the cafe. Even then you can never discount the user's unerring ability to do something completely stupid but what more can you do. I am not sure how legal it would be to put a notice up stating that browsing is at the customers own risk.
Never ever put your card details straight into an unrecongised site without going through something like Paypal, etc. Big sites like Amazon, etc might be trusted BUT that is completely down to you whether to trust them or not. With credit cards you have some protection in that if the website company messes up, if they wish to keep the ability to provide say Visa transactions then when you complain to Visa and Visa phones them and orders them to get it sorted, they will or lose ALL further Visa transaction capability. Credit card companys don't take prisoners when it comes to that sort of thing. But, if it is a bogus site and they run off on a spending spree with your card details it could be very tricky to prove it wasn't you especially if it is done in the same country/continent.
One last point which may be of some help. If you do go ahead and buy things over the internet, never use your bank account card. Use a proper credit card. Banks dont invest anywhere near as much money into anti fraud departments as the credit card companies do and typically won't give any help if money is taken out of your account one the other side of the world at the same date and time you took out some money from the same hole in the wall you usually use. As far as they are concerned, it is down to you to prove that you don't have some sort of elaborate intercontinental scam going on or some sort of teleportaion device.
A friend of mine had over £2k taken out of her account in the states. Luckily it was her credit card and they jumped right on it and gave her her money back within a matter of days. There was no question in their mind that it wasn't her.
Sorry for the long post. Very interesting subject.
Replied by Starfire on topic Re: credit card security
But I need more to protect my transactions . thanks
Very wise Sose. I won't trust my wife with my credit card so why should I trust software written by Microsoft especially if I am to go sit in someone's cyber cafe! I don't care how much the propriator tells me it's safe there's not a chance I am going to do it. Now, that's just me but I am sure there are plenty of people who wil happily do it... even in a wireless lounge of a hotel or some such.. /shudder !
Now I am not skilled up in security yet (I find it a fascinating subject) but from the top of my head I can see your problem lying in two areas. What your PC is doing when you tap in your credit card info and what the server at the other end is doing to safeguard the info you are typing into it.
If the server side is something like paypal then it is down to them to provide a secure connection for their web page when you enter your details. How safe this is (apparantly not at all from what I read) is down to them and not the responsibility of the cafe owner.
On the cafe side, as the credit card details are provided by secure web page by the agency, the best the cafe can do is have upto the minute antivirus, several antispyware and regular scans. A seperate virtual disk cleaned for each user that logs in so that there should be no aspect of a previous users info that can be looked at.
If it's a wireless cafe then you really need to screw down your protocol security and make sure someone with a stronger signal server running on a laptop can't re-route your client PCs to run through their laptop (in record mode) and then through the server to the cafe's ISP.
(theroetical example - customer A logs in and goes onto amazon/ebay and ticks save my password. Customer B logs in and finds customer A's amazon/ebay cookie and puts it in his own cookie area and voila... He is now customer A - quick change of delivery address ..... bingo! I may be wrong in the ease of this but you see my point)
Lastly, with my limited knowledge of security, learn a lot more about how scams are done and make BIG posters of the do's and don'ts and put them smack in front of every PC in the cafe. Even then you can never discount the user's unerring ability to do something completely stupid but what more can you do. I am not sure how legal it would be to put a notice up stating that browsing is at the customers own risk.
Never ever put your card details straight into an unrecongised site without going through something like Paypal, etc. Big sites like Amazon, etc might be trusted BUT that is completely down to you whether to trust them or not. With credit cards you have some protection in that if the website company messes up, if they wish to keep the ability to provide say Visa transactions then when you complain to Visa and Visa phones them and orders them to get it sorted, they will or lose ALL further Visa transaction capability. Credit card companys don't take prisoners when it comes to that sort of thing. But, if it is a bogus site and they run off on a spending spree with your card details it could be very tricky to prove it wasn't you especially if it is done in the same country/continent.
One last point which may be of some help. If you do go ahead and buy things over the internet, never use your bank account card. Use a proper credit card. Banks dont invest anywhere near as much money into anti fraud departments as the credit card companies do and typically won't give any help if money is taken out of your account one the other side of the world at the same date and time you took out some money from the same hole in the wall you usually use. As far as they are concerned, it is down to you to prove that you don't have some sort of elaborate intercontinental scam going on or some sort of teleportaion device.
A friend of mine had over £2k taken out of her account in the states. Luckily it was her credit card and they jumped right on it and gave her her money back within a matter of days. There was no question in their mind that it wasn't her.
Sorry for the long post. Very interesting subject.
Time to create page: 0.136 seconds