Testing Stolen Credit Cards
Cybercriminals that either stole a cache of credit card numbers or acquired them on a hacking forum often test them, charging a minimal amount against a retailer's payment systems, Ponemon said. The survey found that the activity is more likely to be carried out during peak shopping days in the holiday season, including Cyber Monday. Once active cards are validated, a mule is used to either withdraw funds from an ATM or make large purchases either at a retail location or via the retailer's ecommerce website. Sixty-six percent of those surveyed said it is difficult to detect.