[ned]’s HandySwipe is a portable magnetic card reader. It runs on 4 AA batteries and collects data from track 2 cards. It uses a PIC 16F688 and displays the card’s data on a small LCD. It can store up to 50 cards and dump them in CSV format. It will also output the raw bitstream for use with Acidus’s StripeSnoop. Ned’s project write up is pretty interesting since he covers using a logic analyzer while swiping a card and driving the LCD with only three pins using a shift register.
dumb first post
I love projects like these. Not a whole lot of practical use to me personally but they’re just plain interesting.
That LogicPort logic analyser he uses looks pretty damn good too. Well worth the price I bet.
Keep in mind, if you possess one of these and the government can prove you have it for the purposes of defrauding or stealing the data on the cards, mere possession could be illegal under federal law. 18 USC 1029 (a) (8)
I was just working on a project like this from the Make Magazine a while back so I could check on the data on some of the cards I have. I like this portable one, neat idea, and a great how to. I might be slapping one of these together instead.
isnt this simular to what the kid in terminator 2 had?
Not really. If I recall correctly, his was used to crack PIN numbers. This reads the data from the magnetic stripe (ie. even if you wrote it to a blank card, you’d still need the PIN).
The kid in terminator 2 had a card that was wired into a PDA that could supposedly interrogate an ATM machine and reaveal the the pin number to the persons account they were trying to steal from. It also managed to pull the pass key from one of those electronic locks on a door in the research labs.
All total BS in practice, but it seems to be the standard thing to do in films. Theres barely a single film that is actually believable when it comes to electronic wizardry like this…
My favorite is when people type plaintext commands into a computer and they work! Like “Copy all files with images of secret device to disk”. And its all done in the name of making the film more interesting and watchable to the average joe…Aarrgh!
[Visualize-this-bold]
I love projects like these. Not a whole lot of practical use to me personally but they’re just plain interesting.
[/Visualize-this-bold]
Hmm. I know of at least one everyday practical use.
http://www.google.com/search?q=skimmer+atm
Things like this are the reason I don’t let my credit cards out of my sight. I follow my server back to the kiosk and watch the server swipe my card.
Imagine one of these under a server’s apron plus perhaps a pen and pad to write down the 3 digit security code that’s located on the back of the card in the signature panel.
If it’s a she, and she’s cute, you can always say you are shopping for a second house/property for investment purposes and are trying to be extra careful with your credit history.
Maybe Im missing something, but is there any other realistic practical use for this thing other than to steal?
Is this site so desperate for material that it now resorts to criminal hardware manufacture tutorial?
Dont get me wrong, i know its fascinating to learn how credit card readers/data recorders work, but can you honestly believe that featuring this how-to is not contributing to crime and innocent low income people from being ripped off? I know your going to say ‘but this tech is already available on the internet, open source etc.’ but does that mean we need to perpetuate and spread it just because its available elsewhere? this site says ‘we are not a cracking site’, but yet this is a crack if i ever saw one.
@ Standard Mischief
If she’s cute, you don’t need any other excuses to follow her around. =-D
thanks for clearing that up for me. so theres no way to get the pin off the card?if i cant then what info is the card going to give me?
cool! this would be perfect for a home automation project!
this gives me an idea: homemade rfid reader and tags
Aside from the ethical issues brought up by tyvec, I’d say the only thing this project needs is an enclosure of some kind.
The “open circuit board held together by a sweaty hacker mitt” look is tre chic, but hardly robust for everyday use.
wrap that rascal!
@11 – No. The pin isn’t even stored on the card. Its on the banks computers. You type the pin into the ATM and it asks the banks central servers if the pin entered compares correctly with what they’ve got. If its the same, you get ure money, if its not then the machine takes ure photo and tells you to piss off.
All thats stored on the card are the numbers on the front of the card (card number, expiry date etc…) and maybe a very limited amount of other stuff.
Thats the whole reason chip and pin is so successful at reducing fraud. If your card does happen to get skimmed, the fraudsters still can’t buy anything from shops in the high street because they wont know your pin. With the old system all that was needed was a fake signature which, lets face it, aint difficult to copy! However this system doesn’t prevent against online fraud where u dont enter ure pin, but thats another big story…
@13 – LOL!
I have a very similar project posted here: http://goldscott.blogspot.com/
haven’t done the LCD display yet, been too busy with other things.
One example of a perfectly legal use for such a project: I’m rather absent minded. Being absent minded, I often misplace of forget my ID card. So, I made and used a device similar to this to read and decode the data on my card. Now, whenever I go to clock in at work, open a security door, or print a document off on campus, if I forgot my car, all I need to do is simple type in the data on the numeric keypad next to the card swipe instead. Granted it’s a 30-40 digit number. But, once I realized what each set of digits stood for, it was relatively easy to remember.
Re: 14, jibbajabba
What about that little CVS number, isn’t that required to buy anything if you’re not present, so if the theif doesn’t have that they can’t do anything with your details?
I’m not that knowlegable about this subject so I am just curious.
magenta on mid-grey, goldscott? am i the only person finding that hard to read?
@17: I know the color scheme is terrible.
I’m in the last week of my semester, finals next week, so I haven’t had time to change anything, but that will be the first thing to get fixed.
@17. Yes, usually the CVS number is needed for purchases when you’re not there, though from my experience it depends on who youre buying from. I have some places request it, and others don’t.
I dont know if the CVS number is stored on the mag stripe. I’ve not really researched it that far. From the theifs point of view, if they’ve been able to get their hands on your card to read the mag stripe then its not difficult to remember a 3 digit number.
One interesting thing to note, although it probably does not work now the compulsory chip and pin system is in operation, is that if the chip on your card doesn’t work, then the machine will still accept the transaction by using the mag stripe.
Does anybody know where you can buy the card reader he is using? I can’t find the reader online anywhere for sale. It is not listed on all electronics.
[Visualize Blockquote]
Maybe Im missing something, but is there any other realistic practical use for this thing other than to steal? Is this site so desperate for material that it now resorts to criminal hardware manufacture tutorial?
[/Visualize Blockquote]
This is a perfectly legitimate hack and like all thingys, can be used for either good or evil. Just because the underworld has been using skimmers for years doesn’t mean this is can’t be used for perfectly legitimate purposes.
How about interfacing this with a PDA, and then having a secure link between the PDA and your home PC. You could then maybe accept credit cards while you were working at a flea market or other location?
How about adapting the firmware and using this to start your car with the magnetic stripe on the drivers license that by law you need to carry anyway?
[Visualize Blockquote]
Yes, usually the CVS number is needed for purchases when you’re not there, though from my experience it depends on who you’re buying from. I have some places request it, and others don’t.
I don’t know if the CVS number is stored on the mag stripe. I’ve not really researched it that far. From the thief’s point of view, if they’ve been able to get their hands on your card to read the mag stripe then its not difficult to remember a 3 digit number.
[/Visualize Blockquote]
That’s an extra 3 digit number that’s only on the signature panel. I’ve only seen it used when buying things online. You don’t need it to buy gas at the pay-at-the-pump kiosk. You don’t need it when paying at the grocery store, and you don’t need to give it out at Mac-n-Trash, (nor do you need to sign when you purchases food that’s less than $25). Of course in all three of those cases, you would need to have the equipment to write a stripe on a magnetic card
Anyone dumb enough to give their credit card to a flea market vendor or ‘other’ locations totally deserves the anal penetration theyre about to recieve.
Mischief,
You’re absolutely right in stating that the hacking nature isn’t about stealing but simply “knowing”. There’s nothing wrong with learning how anything works — indeed, I believe it’s reckless to be ignorant of something so common that can have such a large affect on your financial security. Someone who believes suppressing this information one web page at a time will somehow “keep us safe” from fraudsters isn’t considering the whole problem.
However, you are incorrect in assuming you can just build your own credit card accepting terminal and use it. In order to connect it to Visa’s network, for example, you have to get your device certified by Visa, and you have to comply with their PCI restrictions. It’s a bunch of rules saying stuff like “you can’t store the card data in your systems, you have to encrypt the account data, you must have security in place to prevent the following types of activities that a dishonest employee might use, etc.” It’s a tedious and expensive process, one best left to a card accepting company that sells whole units (like Verifone.)
But of course you can build one on your own, as long as you aren’t accepting other peoples’ credit cards through it. You can even buy a card encoder and start producing your own cards. Many smaller stores do such a thing with “rewards cards,” “loyal shopper cards,” or even gift cards.
Regarding the printed three digit number, it’s called the Card Verification Value (C.V.V.2.) It’s a number created by your Visa bank when they issue your card, and it is NOT stored anywhere on the mag stripe. Your stripe actually contains a different C.V.V. not printed on the face — that’s why the printed one is actually called C.V.V. “2”.
The idea behind the C.V.V. is that someone who knows your name, account number and expiration date cannot use that information to produce a clone of your credit card. It’s a weak measure of security, but it was cheap to implement and it thwarted a certain type of fraud many years ago.
[P.S. A pox on this pretentious lower case e.e. cummings nonsense! ]
@14 the pin is stored on the card it stores the “natural” pin (pin that came through tyhe post) and an offset difference between orig pin and pin u changed to at the atm both are encrypted though, also your name etc is on the strip
and please someone tell me how do i find the programs wich i hawe to program the PIC.
because i don
Where can I get a card reader and encoder that could write the newly read information to a new or existing card? Such as a Drivers License, Credit Card, Reward Card, etc. Do they actually sell that stuff?
very nice just tel my how to contact yu
not for the reader i want ask yu somthing else
Is there any way you can use a floppy disk drive to read/write to magnetic cards?
@14 u cant do that much damage online with someones ccN.from my experience u cannot send money or transfer money without an acctual Bank accout(moneygram)..even if u have the persons ssn and the 3 digi secure number at the back of the cardd
heya ppl.i think i have the same prblm as many around here(but still i spell better english :-).i wana build (i’v done it before-but not this way) one of the smallest read.this means something like 3-4 mm … with touchpad of verry small wire cam… dunno exaclly.so , if is someone with bigger brain than i am , i pay for info or i exchange :)
Can someone tell me how to get credit card with the info?
Like to meet you
Can someone tell me how to get credit card with the info?
Like to meet you….. kellymartin1971@yahoo.ca
Plz give any quick way to get more and more money.
get more and more money by more and more work at job
Couldn’t you… for fits of hilarity of course.. use software and the reader to modify and/or duplicate the information on the back of your drivers license and transfer it to a hotel key or magstripe blank? say… make yourself 23 when your 57? Its possible is it not?
where can I get a card reader and encoder that could write the newly read information to a new or existing card? Such as a Credit Card, Reward Card, etc.weres the cheapist place to buy can u make ya own?i am from england
Does anyone know of a program that could reload cash on a gift card.
can any one hack passwords on msn office or get to there e mail anyway good profit let me no
hello, who want credit cards, just sent me a message here: pr0lifyck@yahoo.com .
hello everyone:)
just read all through, v good project.,
if anyone woul like to share info pls
do not hesitate 2 write me to pls @
tomas_ezerins@yahoo.com
the kindest regards
Price:
1 Sock 5 live = 5$/5sock live
1 US visa= 3$
1 US master 4$
1 discover cc $6
1 amex cc $5
1UK visa/master = 8$
1 uk cc amex =$15
uk cc bin+post code=$12
1UK CC WITH BIN =10$
1UK CVV with DOB = 20$
plantium 60$
gold 50$
classic 40$
3000USD
tracks1 and tracks2 (jp,it,usa,au,uk) with good balances.
Avaliable uk bank logins
Alliance & Leicester
Lloyds TSB Bank
Northern Bank
Jodrell Bank
Avaiable usa bank logins
BOA,
CHASE BANK,
WAMU
WELSFARGO
WACHOVIA
HSBC
1 Ca CVV = 10$/CVV
1 CA CVV(Amex,dis) = 15$/cvv
1 EU CVV = 20$/CVV
1 EU CVV(Amex,dis) = 30$/cvv
1 US CVV full info = 60$/CVV
1 US CVV full info+paypal info =$100
fullz info only without cc details= $30
1 UK CVV full info = 70$/CVV
Paypal with pass email = 100$/paypal
Paypal don’t have pass email = 50$/Paypal
belgum cvv $20
asia cvv $20
ger cvv $20
spain cvv $20
inbox webmail $30
nation wide bank login $500 (£68,000.00GBP)
halifax bank login $500 (£30,000.00GBP)
lyods bank login $500 (£122,070.000GBP)
I have Paypal verifi balance > 20.000$
sell 2000$
E-GOLD / WU
N/B
Please contact me for the listed drops avialable at hand fresh and
sound,always send free cvv’s to order above $20,No minimum order,no
test no demo.Ripper’s are not adviced to Pm me pls be informed .
Sell good,fresh and sound to all my customer’s.i make sure payment is
received and confirmed before i sell my item via email.PM me via this
id below
tinhonlinevn001@yahoo.com
Y!M tinhonlinevn001
Reply With Quote
pls note: my good customers you can now contact me on the above YM!!
formally
tinhonlinevn01 but now tinhonlinevn001@yahoo.com:D
i will learn how to hack creditcard brother.
i really need good and honest hacker toprovide me track 2 and cvv
will pay for info on how to retrieve pin and zipcode from track 1 and track 2 data
email itsgucci1980@yahoo.com
Hello everybody. I’m Vnblocked-admin of Bankspam. My website was blacklisted by FBI and now move to temporary domain I will try to bring our forum back. Hope old member can come back to our forum. US UK UK DOB UK SERI AU CANADA ASIAN EU FULLZ US FOR SALE 1 Visa card……….2$ 1 master card……….2$ 1 amex card……….4$ 1 Dicover card……….4$ 1 Company card……….8$ 1 Uk Card Nornal CC……….5$ 1 Uk Card With DOB ……….20$ 1 Track 1& 2 CC……….30$ 1 Fresh Fullz ……….20$ 1 Dead Fullz ……….15$ 1 Eu ………. 15$ 1 Paypal vefified without balance==30$ 1 Paypal verified with 1000$ balance ==50$ BALANCE IN CHASE ……….70K TO 155K ========160$ BALANCE IN WASHOVIA………. 24K TO 80K==========80$ BALANCE IN BOA……….75K TO 450K==========300$ BALANCE IN CREDIT UNION……….ANY AMOUNT=========300 $ BALANCE IN HALIFAX……….A NY AMOUNT=========300 $ BALANCE IN COMPASS……….A NY AMOUNT=========300 $ BALANCE IN WELSFARGO……… .ANY AMOUNT=========300 $ YOU CAN CONTACT FOR MANY MORE OTHER BANK LOG YOU NEED… 1 COMERSUS SOFTWARE WITH BANK LOG IN AND BANK CREDIT CARD CODE ==========1500$ 2 COMERSUS SOFTWARE WITHOUT BANK LOG IN AND BANK CREDIT CARD CODE ==========1000$ 3 NEW WESTERN UNION HACKING BUG FOR WORLD WIDE TRANSFER ==========300$ 4 NEW PAYPAL LOG IN HACKWARE FOR HACKING FRESH PAYPAL ==========250$ 5 NEW SHOP ADMIN HACKWARE FOR HACKING ONLINE SHOP FOR CREDIT CARD==========620$ 6 NEW CREDIT CARD AMOUNT CHECKER FOR PEOPLE WANTING TO KNOW AMOUNT ON CC===120$ 7 NEW CREDIT CARD VALIDATOR FOR VALIDATING ANY FULL CC INFO ==========120$ OTHER SERVICE INCLUDE………. BANK TO BANK TRANSFER TO ANY USA BANK BANK TO BANK TRANSFER TO ANY UK BANK BANK TO BANK TRANSFER TO ANY EURO COUNTRY BANK AMOUNT TO PAY FOR THAT DEPEND ON AMOUNT YOU WANT TO TRANSFER READ AND UNDERSTAND MY RULES AND REGULATION BEFORE YOU CONTACT ME 1 NO FREE FRESH OR DEAD CARD 2 NO TEST CARD 3 NO PLEASE AM POOR 4 NO I WILL PAY LATER YOU 5 NO TOO MANY CHAT 6 DO NOT MESSAGE ME IF YOU ARE NOT READY TO BUY ANY THING OR DEAL CUZ I DONT WASTE TIME CHATING WITH NONE DEALING PEOPLE……… 7 I ACCEPT LIBERTY AND WESTERN UNION ONLY NO OTHER PAYMENT METHOD BE VERY CAREFULL WHEN DEALING WITH SOMEONE DONT LOOSE YOUR MONEY TO ****ING RIPPERS AND WE HOPE TO GIVE YOU THE BEST STUFFS YOU WILL LOVE AND DONT FORGET WE NEED MORE CUSTOMER TO GIVE US MORE MONEY HERE…. YOU CAN VISIT MY FORUM FOR MORE INFORMATION ABOUT ME AND CHAT WITH ME ON YAHOO MESSANGER ONLY . PM me YM :kevin_clean2002 email :kevin_clean2002@yahoo.comz
i need cc vs platinum,gold and MC
WE SELL FRESH CVV2(BINS IN SERIES(,FULLZ,TRACK 1 & 2 AND LOGINS…AND BANK TO BANK TRANSFER
DONT REQUEST FOR FREE TEXT, DEMO OR BEGG FOR STUFFZ
WE DONT WANT SCAMMER OR PEOPLE WHO TRY GAMES.
DISCOUNT FOR CUSTOMERS WHO BUY IN BULK
**************************WARNING*****************************
WE ACCEPT PAYMENT VIA LIBERTYRESERVE(LR) AND WESTERN UNION (WU) ONLY
CONTACTS:
YAHOO IM!! fullzdump
YAHOOMAIL :: fullzdump@yahoo.com
ICQ ::487669835
HURRY FOR FRESH STUFFS AND FRESH DEALS !!!
WE SELL FRESH CVV2 , FULLZ( US ,CANADA AND UK), US AND UK BANK LOGIN , VERIFIED AND UNVERIFIED PAYPAL ACCOUNT,BANK TO BANK TRANSFER ( US , EUROPEAN , ASIA BANK TRANSFER ) FOR OUR CUSTOMERS…
WE ACCEPT PAYMENT VIA LIBERTYRESERVE(LR) AND WESTERN UNION (WU) ONLY
CONTACT FPR PRICE LIST WHEN YOU READY TO BUY…
CONTACTS:
YAHOO IM!! fullzdump
YAHOOMAIL :: fullzdump@yahoo.com
ICQ ::487669835
WE SERVE YOU BETTER