Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Subscribe to our newsletter

Advertise on LowEndTalk.com

Latest LowEndBox Offers

    Scan copies of credit card
    New on LowEndTalk? Please read our 'Community Rules' by clicking on it in the right menu!

    Scan copies of credit card

    Ok, a web host was asking me for proof of credit card and I just sent a scan of the front part of the credit card without blocking any of the numbers. As long as I don't send the back part (containing CVV code) is it safe?

    I am a little worried since the CVV is only 3 digits, so if the front copy got into some bad hands, would a CVV bruteforce work?

    Comments

    • Pretty sure it's against VISA and Mastercard rules to request this. Passport, utility bill and so on is fine though. But only if you choose.

      It's better to keep your mouth shut and appear stupid than open it and remove all doubt

    • I don't think sending it was a good idea. You should have blocked all the digits except the first 4 and the last 4 maybe.

      -

    • If you send them that, you might as well share it with us too!

    • Even if you have the uncensored front site you can buy things from this credit card. The CVV isn't needed everywhere, so it was a bad idea.

    • @typh0n I never came across a site that does not ask for the CVV. By the way, is it any better that my card comes with Verified by Visa?

    • CC processors will ask for the CVV but I am still positive they are not allowed to ask for a copy of the card.

      It's better to keep your mouth shut and appear stupid than open it and remove all doubt

    • @Drukpa said:
      typh0n I never came across a site that does not ask for the CVV. By the way, is it any better that my card comes with Verified by Visa?

      Who cares what your card comes with, if you send them a scan with the card number/expiry clear, you really are a fool. Some merchants don't need the CCV to process a payment.

    • I know that there are several website which don't ask for a CVV but I must confess that I can't give you a name now. Maybe I'll remember one in the next hours.

    • PCI compliance require merchants not to store CVV at any time. But I do get request of copies of credit cards from multiple companies. Next time, probably file a complain.

      Designers: www.linkun.info

    • @typh0n said:
      I know that there are several website which don't ask for a CVV but I must confess that I can't give you a name now. Maybe I'll remember one in the next hours.

      godaddy.

    • ZenZen Member
      edited September 2013

      CVV is not required for authentication all of the time.

      However, even if it is, there are only 720-1000 combinations.

      More importantly, brute forcing those combinations would not be worth your balance given the cost of authenticating (to a fraudster not a legit merchant), after even 10-100 your bank would be freaking out.

      @HostBalls

    • You should contact your bank to replace the card now.

    • Yes, just don't tell your bank you sent someone a scanned copy of the card - they might decide to fine you for this. Better tell them that it was stolen or you lost it or something.

      -

    • Did you try to know why they needed a scanned copy of your CC?

    • @sundaymouse said:
      You should contact your bank to replace the card now.

      @rds100 said:
      Yes, just don't tell your bank you sent someone a scanned copy of the card - they might decide to fine you for this. Better tell them that it was stolen or you lost it or something.

      I second this.

    • Never heard someone being fined by their Bank for this. But it is oberviously a PCI violation.

      Designers: www.linkun.info

    • AbdullahAbdullah Member, Provider

      There are many companies who require credit card verification but I don't see the point of the whole card - only the last 4 digits are enough and the rest should be hidden.

      Premium SSD VPS in Sweden, Norway, Austria, US, Hong Kong and Netherlands w/ DDoS protection available!

    • edited September 2013

      @typh0n said:
      I know that there are several website which don't ask for a CVV but I must confess that I can't give you a name now. Maybe I'll remember one in the next hours.

      Amazon

      Fusioned | KVM SSD VPS | LSI RAID10 | Netherlands 1Gbps | R1Soft | IPv4 & IPv6 | SolusVM
    • I know of many online retailers that don't require the CCV.. at least in Canada.
      I hope the front of your card (Name, Card Number, and Expiry Date) was sent very securely to the web host.

      Scary stuff.

    • Did you try to know why they needed a scanned copy of your CC?

    • Ok post the full details here and we will make sure its ok

    • @eric1212 said:
      I know of many online retailers that don't require the CCV.. at least in Canada.
      I hope the front of your card (Name, Card Number, and Expiry Date) was sent very securely to the web host.

      Scary stuff.

      One Canadian company did ask me that a scan copy of my credit card. That's about five years ago.

      Designers: www.linkun.info

    • There was probably a fraud flag with them. Although never send them your full credit card number ever. They should just need proof of name and residence if its a fraud flag. Because most likely they dont even have the full card number to begin with!

      TeraFire, LLC - Affordable KVM and OpenVZ plans || LEB Los Angeles and Singapore Plans (see post history)

    • MaouniqueMaounique Member
      edited September 2013

      Yes, the payment processors only share the last 4 digits. Do not send any copy of the cards, ever. Not even with a part of your number masked. It will not help prove anything, they cannot verify it and it can be photoshoped easily. I was about to give in and give some utility bill copy to OVH in the KS2G deal if they were asking just to make sure they deliver, but they said I was a reseller because I paid with paypal so no dice.

      Extremist conservative user, I wish to preserve human and civil rights, free speech, freedom of the press and worship, rule of law, democracy, peace and prosperity, social mobility, etc. Now you can draw your guns.

    • JanevskiJanevski Member
      edited September 2013

      @Drukpa said:
      Ok, a web host was asking me for proof of credit card and I just sent a scan of the front part of the credit card without blocking any of the numbers. As long as I don't send the back part (containing CVV code) is it safe?

      I am a little worried since the CVV is only 3 digits, so if the front copy got into some bad hands, would a CVV bruteforce work?

      I never came across a site that does not ask for the CVV. By the way, is it any better that my card comes with Verified by Visa?

      Why would a web host need a *"proof of a credit card"?
      They need the money for the service, and most hosts use payment processors, so the card number never reaches them usually.

      *Bull manure.

      It's probably a scam, don't give the card info out.

      What about Amazon? They don't ask for CVV as far as I have noticed.

      You are dreaming. | And it's a nightmare. | THE SECRET THREAD | THE TRUTH | HAVES YOU SEEN THIS YURA?

    • As i said before, requesting credit card scans is more or less normal practice in many cases, the idea is to try to reduce credit card fraud. However you should never send them uncensored scan of your credit card with the complete card number visible. They only need the last 4 digits, and sometimes maybe 2 or 4 from the start.

      -

    • I tried to buy a domain from godaddy.com. Yes, they didn't even ask for the CVV code and the transaction went through.

      Anyway, should be a lesson learned for me. Called up my bank and blocked the card. Now, need to check if the cards been used at all or not.

    • MaouniqueMaounique Member
      edited September 2013

      @rds100 said:
      As i said before, requesting credit card scans is more or less normal practice in many cases,

      And that is a very bad idea. I can create any credit card and scan it, wont even need to photoshop it. Will look perfectly genuine, as such, not only that is dangerous, but can be used by criminals to pass through.
      I had cases of people offering this even tho we do not request it when we rejected some order for email being in fraud database or for blatantly fake data.
      It is like the war on drugs or war on terror, will never be won, only innocents will suffer. Terrorists won at 9/11, they imposed their ways on us, control, torture, lost democracy, more paranoia and more kills, more hate against the west, the regular muslim guy is not radicalized by al-quaeda but by the criminalization of his religion by certain media groups and states while the general depression increases drug abuse and more people die in the war against drugs too.
      As for the child porn, that was only used against certain cults by others to make more people "switch" to the real church of christ or similar. And, yeah, it does help in pushing more anti-democratic laws with public support.

      Extremist conservative user, I wish to preserve human and civil rights, free speech, freedom of the press and worship, rule of law, democracy, peace and prosperity, social mobility, etc. Now you can draw your guns.

    • @Drukpa If any webhost ask you for CC verification, you may send the frontside of the CreditCard. Make sure to hide middle six (6) digit of the credit card. If first 6 digit and last 4 digit visible on the scan document, thats far enough for CreditCard verification by the billing department. I really dont think you need to worry about this if middle six digit is hiding.

      CentrioHost LLC - Reliable Shared and Multilevel Reseller Hosting Provider since 2007

      15$/yr. SSD Hosting | Free Domain Reseller | SSL Certificates | More ...

    Sign In or Register to comment.