Slashdot Mirror

← Back to Stories (view on slashdot.org)

Carderprofit.cc Was FBI Carding Sting, Nets 26 Arrests

Posted by Unknown on from the crime-pays-but-then-prison dept.

tsu doh nimh writes in with news of a major sting operation against carders. From the article: "The U.S. Justice Department today unveiled the results of a two-year international cybercrime sting that culminated in the arrest of 26 people accused of trafficking in hundreds of thousands of stolen credit and debit card accounts. Among those arrested was an alleged core member of 'UGNazi,' a malicious hacking group that has claimed responsibility for a flood of recent attacks on Internet businesses." The trick: the FBI ran a carding forum as a honeypot.

49 of 181 comments (clear)

  1. The trick? by Rakshasa-sensei · · Score: 2, Insightful

    FBI created some criminals.

    1. Re:The trick? by Cryacin · · Score: 2

      Geez, next you'll tell me that using dodgy sites through Tor to buy illegal crap with bitcoins mailed to your home address is a bad idea.

      --
      Science advances one funeral at a time- Max Planck
    2. Re:The trick? by Anonymous Coward · · Score: 5, Insightful

      FBI created some criminals.

      Sure they did. Those poor innocents, tricked into doing something they weren't already doing.

    3. Re:The trick? by mikael_j · · Score: 3, Insightful

      If you're talking about Silk Road then I'm sure the authorities are pretty annoyed by it since at least here in Sweden they can't really do much if they somehow intercept a package containing drugs, weapons or some other contraband at the border and they can't follow the money or otherwise tie it to you (and it being addressed to you doesn't count since if it did you could just mail a few illegal items to anyone you wanted and tell the cops those people were expecting packages containing said illegal items).

      --
      Greylisting is to SMTP as NAT is to IPv4
    4. Re:The trick? by sl4shd0rk · · Score: 2

      They spent 2 years trying to bait 26 idiots, instead of chasing real criminals.

      Hey, but at least they got UGNazi.

      --
      Join the Slashcott! Feb 10 thru Feb 17!
    5. Re:The trick? by MickyTheIdiot · · Score: 5, Insightful

      This is much more of a real crime than "piracy." Good on them for getting some people actually causing harm.

    6. Re:The trick? by alen · · Score: 3, Insightful

      this is how law enforcement works, you take down one criminal conspiracy at a time.

    7. Re:The trick? by DrXym · · Score: 3, Interesting

      So why were people dealing in large volumes of stolen credit cards not "real criminals" then?

    8. Re:The trick? by L4t3r4lu5 · · Score: 5, Insightful

      The Silk Road thing set off my tin foil hat alarm. If I were a TLA, there's no way I'd openly admit that there was a way to be completely out of their reach.

      $5 says Tor, or at least Silk Road is compromised, or maybe even a honeypot itself. If you were into the kind of thing they're in to, and a little short on the brain cell front, wouldn't you flock to the "Guaranteed safe by the FBI!" places?

      --
      Finally had enough. Come see us over at https://soylentnews.org/
    9. Re:The trick? by arth1 · · Score: 2

      Same here in the U.S. Imagine how many politicians would be receiving pure smack?

      Imagine how many of them would use it.
      Imagine us not noticing any difference.

    10. Re:The trick? by Anonymous Coward · · Score: 3, Informative

      PROTIP: In Germany, that behavior is illegal for a reason.
      The very same reason, the content Mafia can’t set up file sharing servers and downloads, and then sue people for downloading that.
      It means you are part of the crime. (But hey, the FBI is used to that like no other...)
      And that means you can't sue, without incriminating yourself too.

      Yes, this not also counts for the police, but counts ESPECIALLY for the police, which is held to a higher standard.

    11. Re:The trick? by TheDarkMaster · · Score: 2

      Many times you need time to get sufficient evidence (and most important, proof) that "Joe" is a criminal. And idiots or not, they are still criminals and need to be arrested.

      --
      Religion: The greatest weapon of mass destruction of all time
    12. Re:The trick? by arth1 · · Score: 4, Informative

      PROTIP: In Germany, that behavior is illegal for a reason.
      The very same reason, the content Mafia canâ(TM)t set up file sharing servers and downloads, and then sue people for downloading that.
      It means you are part of the crime. (But hey, the FBI is used to that like no other...)
      And that means you can't sue, without incriminating yourself too.

      No, while both are illegal, it's for different reasons. One is called "unclean hands", and the other is called "entrapment".

      If VISA had set up a site and participated in hacking VISA cards, they would have unclean hands. It would change their status.

      If a three letter agency does the same, and it causes people who otherwise would not have done that particular crime to do it, it's called entrapment. It would change the suspect's status.

    13. Re:The trick? by Lashat · · Score: 5, Informative

      This is not automatically entrapment. The sting is just like a drugs for sale or prostitution on a street corner. Undercover cop wearing a wire and being videotaped by concealed police sits on stragetic street corner known to be hot with drugs or prostitution. The undercover cop is dressed to bait the individual seeking the drugs/services they believe the undercover is there to provide. When the individual atempts to solicit for purchase the drugs/services they are arrested for that crime.

      It is only entrapment if the person is induced to commit a crime "he or she is not previously disposed to commit".
      http://legal-dictionary.thefreedictionary.com/entrapment

      An important and often argued point.

      --
      For every benefit you receive a tax is levied. - Ralph Waldo Emerson
    14. Re:The trick? by Burning1 · · Score: 4, Informative

      If a three letter agency does the same, and it causes people who otherwise would not have done that particular crime to do it, it's called entrapment. It would change the suspect's status.

      This is a common and incorrect understanding of entrapment. It's entrapment if the FBI tells you to steal credit cards, and then arrests you for it. It is not entrapment if the FBI makes credit cards available to be stolen, and then arrests you for it stealing them, The former is an example of the FBI pressuring you to do something you wouldn't have done. The latter is an example of the FBI facilitating you to do something you would have done, given an opportunity.

      Entrapment: You should hire that hitman to kill your wife.
      Not entrapment: I'm a hitman. Do you want to kill your wife?

    15. Re:The trick? by arth1 · · Score: 4, Informative

      This is a common and incorrect understanding of entrapment.

      One shared by the Supreme Court Of The United States.
      They incorrectly claim that the prosecution must overcome a "subjective test" by showing the defendant had a predisposition to commit the crime in any event, even if the law enforcement operatives had not been present.

      https://supreme.justia.com/cases/federal/us/287/435/case.html
      https://supreme.justia.com/cases/federal/us/503/540/case.html

      I think you need to go teach these justices the errors of their ways.

    16. Re:The trick? by Beryllium+Sphere(tm) · · Score: 5, Insightful

      They illustrated that crimes can be solved by normal police work without spying on hundreds of millions of innocent people.

    17. Re:The trick? by PRMan · · Score: 2

      They're not telling anyone in particular to steal the bait car. They're just parking it in a crime-ridden neighborhood with the doors unlocked with the key in the ignition. It still has to be stolen by somebody.

      In the same way, the FBI can make it as easy as possible to steal credit cards. You still have to steal them.

      Neither one can counsel any particular individual into doing it.

      --
      Peter predicted that you would "deliberately forget" creation 2000 years ago...
    18. Re:The trick? by Burning1 · · Score: 2

      You didn't bother to read either of the articles you linked to, did you?

      In both cases, it was established that government agents pressured the defendents to commit the crime they are being prosocuted for.

      Here's the most relevent quotes from the articles you linked:

      Jacobson v. United States

      After 2 1/2 years on the Government mailing list, Jacobson was solicited to order child pornography. He answered a letter that described concern about child pornography as hysterical nonsense and decried international censorship, and then received a catalog and ordered a magazine depicting young boys engaged in sexual activities. He was arrested after a controlled delivery of a photocopy of the magazine, but a search of his house revealed no materials other than those sent by the Government and the Bare Boys magazines. At his jury trial, he pleaded entrapment and testified that he had been curious to know the type of sexual actions to which the last letter referred and that he had been shocked by the Bare Boys magazines because he had not expected to receive photographs of minors. He was convicted, and the Court of Appeals affirmed.

      Held: The prosecution failed, as a matter of law, to adduce evidence to support the jury verdict that Jacobson was predisposed, independent of the Government's acts and beyond a reasonable doubt, to violate the law by receiving child pornography through the mails. In their zeal to enforce the law, Government agents may not originate a criminal design, implant in an innocent person's mind the disposition to commit a criminal act, and then induce commission of the crime so that the Government may prosecute. Sorrells v. United States, 287 U. S. 435, 442. Jacobson was not simply offered the opportunity to order pornography, after which he promptly availed himself of that opportunity. He was the target of 26 months of repeated Government mailings and communications,

      Sorrells v. United States:

      The substance of the testimony at the trial as to entrapment was as follows: for the government, one Martin, a prohibition agent, testified that, having resided for a time in Haywood County, North Carolina, where he posed as a tourist, he visited defendant's home near Canton on Sunday, July 13, 1930, accompanied by three residents of the county who knew the defendant well. He was introduced as a resident of Charlotte who was stopping for a time at Clyde. The witness ascertained that defendant was a veteran of the World War and a former member of the Thirtieth Division A.E.F. Witness informed defendant that he was also an ex-serviceman and a former member of the same Division, which was true. Witness asked defendant if he could get the witness some liquor, and defendant stated that he did not have any. Later, there was a second request, without result. One of those present, one Jones, was also an ex-serviceman and a former member of the Thirtieth Division, and the conversation turned to the war experiences of the three. After this, witness asked defendant for a third time to get him some liquor, whereupon defendant left his home and, after a few minutes, came back with a half gallon of liquor for which the witness paid defendant $5. Martin also testified that he was "the first and only person among those present at the time who said anything about securing some liquor," and that his purpose was to prosecute the defendant for procuring and selling it. The government rested its case on Martin's testimony.

    19. Re:The trick? by tehcyder · · Score: 2

      FBI created some criminals.

      Yeah, my heart bleeds for these poor victims of Evil Government Oppression.

      --
      To have a right to do a thing is not at all the same as to be right in doing it
  2. the fact that this worked is by nopainogain · · Score: 2, Interesting

    HILARIOUS.. I mean it reminds me of the dick-tracy parody bugs bunny cartoon yeaaaaaars ago where the villains' hideout was marked by a blinking marquee and neon signs that said "secret hideout" or something. how dumb are the criminals that fall for this?

    1. Re:the fact that this worked is by mrops · · Score: 2

      I recalled watching some program where robber handed out a "hand me all your money" note on the back of his medical prescription.

      Over time I realized that majority of these petty thief are doing what they are doing because they are too dumb or lazy to do anything else.

      I mean it takes certain kind of an idiot to do stupid crime, the smart ones become bankers.

  3. Hmm by Anonymous Coward · · Score: 2, Funny

    Why does Avast WebRep have 3 red bars for justice.gov?

  4. Waste of time by benjfowler · · Score: 5, Insightful

    The carders they busted are low-life amateurs, not serious criminals. I'm sure the FBI and friends will milk this for all it's worth, but it's the equivalent of nicking a couple of shoplifters while at the same time, Mexican drug lords are burning down the entire city.

    Come and wake me up when they bag some REAL criminals, like the big Russian gangsters robbing SMEs out of hundreds of millions per annum.

    The real criminals are untouched -- and untouchable.

    1. Re:Waste of time by Hatta · · Score: 2

      Come and wake me up when they bag some REAL criminals, like the big Russian gangsters robbing SMEs out of hundreds of millions per annum.

      Or Lloyd Blankfein or John Corzine.

      --
      Give me Classic Slashdot or give me death!
    2. Re:Waste of time by phantomfive · · Score: 5, Insightful

      People who've stolen hundreds of thousands of credit card numbers are worth arresting, even if there are other people who are worse.

      --
      "First they came for the slanderers and i said nothing."
    3. Re:Waste of time by John+Bokma · · Score: 2

      I live in Mexico (born in the Netherlands). While there was a shoot out in a neighbourhood very close to ours about a year and a half ago, I suffer right now much more from actual criminals as in Banamex, the so called National Bank of Mexico.

      Back in November my bank card got stolen, a card with a nice but meaningless MasterCard [1] logo. It got cloned before the theft was even discovered (piss poor security on those cards) and used to shop in 2 different locations, in total around 2000 USD of goods, including 2 iPads. No problem, you would think, the bank is insured for such events. Right, think. When we tried to report this to Banamex we were told there are 2 ways to report such fraudulent transactions: by phone, or by filing in forms. The later would take 90 (!!) days to be processed.

      Of course we went for the phone options.... But after 4 hours (!) we still hadn't been able to talk to someone who actually could process our report. One would think that my inability to speak Spanish had something to do with all this, but no. It's just the piss poor service of Banamex. We later found out that cloning happens a lot in Mexico, and the bank who does the least about this (paying out insurance money) is Banamex...

      Nearly 8 months later, still no money. The only option seems to be to go to CONDUSEF, and organization that mediates in cases of disputes between banks and customers (or something like that, translation is most likely: paper pushing at the same level as PROFECO). But from what I understand (and maybe I got this wrong) one has to go to a "nearby" office of CONDUSEF to talk with, in my case, a representative of Banamex. Nearby as in Veracruz, 2+ hours of travel.

      Mexican drug lords? Corruption? Nah, the real problem are not the "banditos" in Mexico, but organizations posing as legal but thieving from the poor and not so poor. Probably like how things go in many other countries as well.

      Twenty six arrests? Just panem et circenses.

      [1] I contacted MasterCard USA, since I guess they license their piss poor products to banks like Banamex. Several times over the period of a month I was told they would "escalate" things. Riiiiggght. Banamex = paying customer, while I am just a nobody; a milk cow.

      --

      Perl Programmer for hire
    4. Re:Waste of time by TheDarkMaster · · Score: 2

      Paraguay is a country where your credit card is cloned / stolen by default. Fortunately when I left this junk country I suspected and immediately canceled the card and asked for another.

      --
      Religion: The greatest weapon of mass destruction of all time
    5. Re:Waste of time by plover · · Score: 2

      Crime is crime. Since there's more than enough crime to go around for the resources available to fight it, that means the fighting has to be prioritized. But it doesn't mean all low level crimes are completely ignored while the biggest crimes get 100% of the resources.

      The fight against carders is statistical. While it's more of a "nuisance" crime to the hundreds of thousands of people who have to disrupt their lives cleaning up their credit messes, the total loss from those hundreds of thousands of individual crimes adds up to a significant financial theft from the banks who have to reimburse those victims.

      The DOJ already spends billions of dollars on the War on Drugs. They can afford to spend a few hundred thousand on a sting that pulls many millions of dollars worth of criminals off the streets.

      --
      John
  5. Re:No this isnt entrapment by sohmc · · Score: 5, Informative

    A quick primer on entrapment:

    If you are trolling Drug Dealer Drive for drugs and you happen to ask a undercover agent for drugs, you are guilty.

    If a undercover agent posing as a drug dealer comes to you out of the blue and says that you need to buy his drugs so that he can help his sweet grandmother beat cancer, that's entrapment.

    The difference is that in the first example, you were already out with the intention of doing something illegal. The second example you were approached by LEO and convinced to do something you normally wouldn't do.

    IANAL and I'm sure each jurisdiction has it's own definition of entrapment but this is the jist.

    --
    We don't live in Shouldland.
  6. honeypot detect? by j00r0m4nc3r · · Score: 2

    Ok, this is a purely curiosity-based question, and I know there's lot of web security people roaming around here. How would you actually detect that a website like this is a honeypot?

    1. Re:honeypot detect? by gv250 · · Score: 4, Funny

      How would you actually detect that a website like this is a honeypot?

      The 6:00 AM knock on your door.

    2. Re:honeypot detect? by Hatta · · Score: 2

      I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question.

      --
      Give me Classic Slashdot or give me death!
    3. Re:honeypot detect? by Bill,+Shooter+of+Bul · · Score: 4, Funny

      That is a very good question. Here are some tips..

      If the tcp packets coming back to you are mysteriously lacking in honey ... it might be a honey pot.
      If their is a slight buzzing comming from your network connection... it might be a honey pot.
      If swarms of bees, bears, or badgers appear around your computer .... it might be a honey pot.

      --
      Well.. maybe. Or Maybe not. But Definitely not sort of.
    4. Re:honeypot detect? by tobiasly · · Score: 4, Funny

      $> dig carderprofit.cc
      ;; QUESTION SECTION:
      ;carderprofit.cc.               IN      A

      ;; ANSWER SECTION:
      carderprofit.cc         78003   IN      CNAME   fbi.gov.
      fbi.gov                 78003   IN      A       72.21.81.85

    5. Re:honeypot detect? by belthize · · Score: 2

      This is close, if dig returns a result at all be wary. You can never be sure but do you really want to be discussing illegal activities at a site hosted on Amazon Web Services (dig actually returns awsdns though that's probably synonymous with fbi.gov in this case) vs some dark net address.

    6. Re:honeypot detect? by dkleinsc · · Score: 2

      If you have a sudden urge to go visit Piglet ... it might be a hunny pot.

      --
      I am officially gone from /. Long live http://www.soylentnews.com/
  7. Good for them by Madman · · Score: 2

    I for one am happy that law enforcement is finally figuring out how to apply traditional police work to the internet successfully. It's the good old-fashioned sting made digital.

  8. It's self-promotion .... by King_TJ · · Score: 3, Insightful

    Of course the parent poster is right... I'd imagine any serious credit card thief would be operating through Tor, doing anonymous payment with something like Bitcoin, and not even fooling around with signing up on new sites of unknown/unverified origins.

    But this is pretty typical for the FBI. They're as interested in the P.R. as anything else. They need to show they're making arrests and giving the news media something positive to print. It helps ensure their continued funding for the division handling these high-tech crimes and they probably also figure it's a deterrent to beginners, who could become tomorrow's elite card thieves otherwise.

    1. Re:It's self-promotion .... by moeinvt · · Score: 3, Interesting

      It's a matter of their priorities. They waste 2 years and countless amounts of time and resources to bust a mere 26 carders?

      Meanwhile, well documented white collar crimes committed by the banking cartel are largely ignored. The FBI reported back in 2003 that there was an "Epidemic of Fraud" in the mortgage market but we didn't see an epidemic of investigations and prosecutions.

      I guess the carders need to hire some lobbyists so that they too can buy a federally issued license to steal.

  9. Real criminals? by Anonymous Coward · · Score: 5, Insightful

    Real criminals? If they were actually using credit card information to make illegal purchases, they ARE real criminals! Just because you don't have to mug someone to get his wallet doesn't matter. At least when you are mugged (assuming you don't have to go to the hospital) you know your personal information has been stolen. When your personal information is stolen via the computer, you often don't learn about it until the big bills start to pile up. Also, a mugger usually steals only hundreds (maybe thousands) a credit card thief usually starts at that point and goes up from there. In terms of money lost, we went the FBI to go after them and the thieves running the big banks and Wall Street. Let the local police deal with the muggers.

  10. Re:No this isnt entrapment by Sarten-X · · Score: 5, Informative

    Here's what entrapment is, as explained by a lawyer, in an appropriately visual format to appease the attention span of most Slashdotters.

    --
    You do not have a moral or legal right to do absolutely anything you want.
  11. Re:So, I guess, if FBI does it, by plover · · Score: 5, Informative

    Then it is not illegal.

    It's called undercover police work, and undercover police work is perfectly legal, including the commission of various non-violent crimes required to maintain their cover.

    The cops weren't out there having TVs shipped to their houses and not documenting them so the victims wouldn't be reimbursed. They were hosting a forum, and made it look like other similar on-line criminal hangouts. When real criminals arrived, they maintained the forum long enough to accumulate enough evidence (IDs of suspects, records of criminal activity), then rolled them up.

    They did their jobs, successfully.

    --
    John
  12. Meanwhile fraud-ring-in-hacking-attack-on-60-banks by Anonymous Coward · · Score: 2, Interesting

    http://news.sky.com/story/952931/fraud-ring-in-hacking-attack-on-60-banks

  13. so... by circletimessquare · · Score: 2

    who qualifies as a criminal, exactly, by your interesting standards

    --
    intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
    1. Re:so... by Archangel+Michael · · Score: 2

      You don't understand the type. There is a group of people who see "Cops Bust ______ " and automatically think "Cops are Criminals", giving the entire benefit of the doubt to the people busted. It was entrapment, they got innocent people or some other excuse is "more likely" than cops actually doing something good.

      These people have a natural distaste for law enforcement.

      --
      Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
  14. Re:So, I guess, if FBI does it, by Tanktalus · · Score: 2

    It's been long known that the best way to catch a criminal is to pretend to be one. (Some might argue that the government is already doing a damned good job of that.) Getting them to show their hand (having a cop as a witness to the crime) and/or confess their misdeeds voluntarily is pretty much the best way to get a conviction.

    This is why you get undercover cops buying drugs, joining gangs, etc. Stings are perfectly legal, and, if they follow the rules as laid out by the courts, seem pretty reasonable. As long as the cops don't entice someone into committing a crime, they're clear. Pretending to be a fence and accepting stolen goods is not entrapment, but pretending to be a fence and telling someone to steal something to sell to you is. If "carderprofit.cc" merely accepted the trade of stolen card info, it's a sting. If they recruited people to target specific venues ("I hear ebay.ca's admin password is XXXX, why don't you nab us some of those cards?"), that's entrapment.

    So, no, it's not illegal.

  15. Re:No this isnt entrapment by Raenex · · Score: 3, Informative

    First, you messed up your link. Corrected.

    Second, from the start of the article:

    "When an Oregon college student, Mohamed Osman Mohamud, thought of using a car bomb to attack a festive Christmas-tree lighting ceremony in Portland, the F.B.I. provided a van loaded with six 55-gallon drums of "inert material," harmless blasting caps, a detonator cord and a gallon of diesel fuel to make the van smell flammable. An undercover F.B.I. agent even did the driving, with Mr. Mohamud in the passenger seat. To trigger the bomb the student punched a number into a cellphone and got no boom, only a bust."

    Emphasis mine. This is not entrapment at all. The attack was his idea. The feds just helped him along to show he was willing to go through with it. It's no different than if somebody asked a bartender about a hitman to kill their spouse, and then the feds supplied them with one.

    The Cromitie case is much more dubious, and if it's true he wasn't actively seeking to become a jihadist, I feel it is entrapment. But I also feel that way about cops dropping bills on the subway and arresting people who pick them up and keep them, or cops who leave unlocked vehicles with keys in the ignition in bad neighborhoods.

  16. I wonder by plover · · Score: 2

    I wonder if their bail bondsmen took Visa or MasterCard?

    --
    John