Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- (5:46:23 AM) blueberryclassic@exploit.im: Yes using mobile numbers
- (5:46:35 AM) blueberryclassic@exploit.im: That what most be doing
- (5:47:36 AM) redspider@exploit.im/466662451480280006146845: voice spamming involves calling customers with aoutomated message?
- (5:47:36 AM) blueberryclassic@exploit.im: We got it up twice but i think the online squad too fast to block everything
- (5:47:42 AM) blueberryclassic@exploit.im: Yes
- (5:48:08 AM) blueberryclassic@exploit.im: They sending letters out and making fake calls
- (5:48:09 AM) redspider@exploit.im/466662451480280006146845: asking for... the same stuff? full info, cc number? or directing to a page in real-time?
- (5:48:27 AM) redspider@exploit.im/466662451480280006146845: we could do that. just not calls with our own live voice :)
- (5:48:38 AM) blueberryclassic@exploit.im: No once they been spammed
- (5:48:39 AM) blueberryclassic@exploit.im: Eg
- (5:48:49 AM) blueberryclassic@exploit.im: We spammed there details
- (5:49:17 AM) blueberryclassic@exploit.im: But now we stuck because they actually has voice recognition
- (5:49:44 AM) blueberryclassic@exploit.im: So what people are doing sending letters out to call to verify again
- (5:50:11 AM) redspider@exploit.im/466662451480280006146845: got it. so this would be for bank logs.
- (5:50:14 AM) blueberryclassic@exploit.im: Then take the voice and manipulating or recreating same voice
- (5:50:32 AM) redspider@exploit.im/466662451480280006146845: yes, adobe has just demoed a very cool tool for this.
- (5:50:58 AM) redspider@exploit.im/466662451480280006146845: with 10 min of speech from someone, you can make them say anything. not just what was recorded...
- (5:50:59 AM) blueberryclassic@exploit.im: We managed to smished
- (5:51:39 AM) blueberryclassic@exploit.im: One of my guys learnt everything in 2 weeks crazy
- (5:51:51 AM) blueberryclassic@exploit.im: Sms gateway etc
- (5:51:54 AM) redspider@exploit.im/466662451480280006146845: :)
- (5:52:08 AM) blueberryclassic@exploit.im: Now if you can conquer
- (5:52:11 AM) blueberryclassic@exploit.im: The voice
- (5:52:30 AM) blueberryclassic@exploit.im: Then that's the way forward
- (5:53:04 AM) blueberryclassic@exploit.im: OK let me show u what we sent out
- (5:53:40 AM) blueberryclassic@exploit.im: Dear James Adam,
- Our Monitoring System has detected unusual activities, in order to safeguard our customers you are required to verify your account within 48hrs.
- However, failure to do so may result your account being temporarily suspended until verified.
- verify here: http://www.onlineverification.co.uk/hsbc
- We apologise for any inconvenience caused.
- HSBC Bank
- Online Team
- (5:54:59 AM) blueberryclassic@exploit.im: So then what we can do is send letter saying thank you for verifying account blah blah can you call us on 123469585 to make sure everything is OK and record the voice
- (5:55:56 AM) redspider@exploit.im/466662451480280006146845: yes, but not many people take surveys.. especially if they have to call.
- (5:56:17 AM) redspider@exploit.im/466662451480280006146845: You can just say please get in touch with one o f our operators to finalize/confirm/etc...
- (5:56:54 AM) blueberryclassic@exploit.im: Yes you know what I mean was example
- (5:57:00 AM) redspider@exploit.im/466662451480280006146845: oh, ok.
- (5:57:24 AM) blueberryclassic@exploit.im: They took domains and infected laptop quick HSBC team
- (5:57:32 AM) redspider@exploit.im/466662451480280006146845: so this way.. logs should be good to go
- (5:57:49 AM) blueberryclassic@exploit.im: Now this week we ready rdp server bullet proof hosting etc
- (5:57:58 AM) blueberryclassic@exploit.im: Need dead fullz
- (5:58:05 AM) blueberryclassic@exploit.im: To start campaign
- (5:59:04 AM) redspider@exploit.im/466662451480280006146845: I see. So if we start spamming HSBC logs, I must also get a voice recording for things to work..
- (6:00:07 AM) blueberryclassic@exploit.im: Yes HSBC at the moment
- (6:00:35 AM) blueberryclassic@exploit.im: It's optional for customers to use voice
- (6:02:10 AM) blueberryclassic@exploit.im: If you spamming do lloyds
- (6:02:23 AM) blueberryclassic@exploit.im: We have 300 dead lloyds
- (6:02:38 AM) redspider@exploit.im/466662451480280006146845: ok. better. already have some pages for lloyds. maybe still good
- (6:02:59 AM) blueberryclassic@exploit.im: We have scam page but it's not 100%
- (6:03:10 AM) redspider@exploit.im/466662451480280006146845: what does it need? qs?
- (6:03:30 AM) blueberryclassic@exploit.im: The HSBC page we have is 100%
- (6:04:14 AM) blueberryclassic@exploit.im: qs?
- (6:04:23 AM) redspider@exploit.im/466662451480280006146845: security questions
- (6:05:13 AM) blueberryclassic@exploit.im: Only way for ppl to extract lloyds
- (6:05:22 AM) blueberryclassic@exploit.im: Is sim swap
- (6:05:35 AM) blueberryclassic@exploit.im: Even with telepin
- (6:05:42 AM) blueberryclassic@exploit.im: Let me get u format
- (6:07:30 AM) blueberryclassic@exploit.im: LOG FORMAT
- ---------------------------------------------------------
- NAME_ON_CARD
- CARD_TYPE
- CARD_ISSUER
- CARD_NUMBER
- EXP_MM/YYYY
- CVV2/CSC
- FIRST_NAME
- LAST_NAME
- ADDRESS_1
- ADDRESS_2
- CITY
- POSTCODE
- COUNTRY
- MOBILE_NUMBER
- DOB_DD/MM/YYYY
- MMN
- ACCOUNT_NUMBER
- SORT_CODE
- EMAIL
- USER_IP
- USER_AGENT
- :::::::::::::::::::::::::::::::::::::::::::::::::::::::::
- LLOYDS_USER_ID
- LLOYDS_PASSWORD
- LLOYDS_MEMORABLE_INFORMATION
- LLOYDS_SECURITY_NUMBER (TELEPIN logs)
- BALANCE
- (6:15:47 AM) redspider@exploit.im/466662451480280006146845: quite a lot of info :)
- (6:15:54 AM) redspider@exploit.im/466662451480280006146845: email pass not needed/
- (6:16:14 AM) blueberryclassic@exploit.im: No not email pass
- (6:16:31 AM) blueberryclassic@exploit.im: But this guy's format above has email pass
- (6:17:07 AM) blueberryclassic@exploit.im: He sells for 300usd 10k-50k balance
- (6:17:53 AM) redspider@exploit.im/466662451480280006146845: the only unclear thing right now is telepin...
- (6:19:02 AM) blueberryclassic@exploit.im: How do u mean
- (6:19:19 AM) blueberryclassic@exploit.im: Security number
- (6:19:25 AM) redspider@exploit.im/466662451480280006146845: is it a 1-time sms number?
- (6:19:36 AM) blueberryclassic@exploit.im: Otp
- (6:19:46 AM) redspider@exploit.im/466662451480280006146845: I don't think it's a fixed password..
- (6:19:49 AM) blueberryclassic@exploit.im: So when u have all the above
- (6:20:00 AM) blueberryclassic@exploit.im: No telepin
- (6:20:03 AM) blueberryclassic@exploit.im: Never changes
- (6:20:06 AM) blueberryclassic@exploit.im: So eg
- (6:20:12 AM) redspider@exploit.im/466662451480280006146845: oooooooh
- (6:20:17 AM) blueberryclassic@exploit.im: 123456 it will always be the same
- (6:20:22 AM) redspider@exploit.im/466662451480280006146845: it's pin for when on the phone.
- (6:20:24 AM) redspider@exploit.im/466662451480280006146845: ok, got it.
- (6:20:28 AM) redspider@exploit.im/466662451480280006146845: so it's also simple
- (6:20:31 AM) blueberryclassic@exploit.im: To add payee account or make payment
- (6:20:43 AM) redspider@exploit.im/466662451480280006146845: right. well, I'll start building the page
- (6:20:46 AM) blueberryclassic@exploit.im: You need to card in reader which we can never have
- (6:21:21 AM) blueberryclassic@exploit.im: So what you do use telepin to access telephone banking
- (6:21:36 AM) blueberryclassic@exploit.im: Attach a payee
- (6:21:41 AM) redspider@exploit.im/466662451480280006146845: yets, everything clear now
- (6:21:57 AM) blueberryclassic@exploit.im: Or online they will send a code to mobile to make transfer
- (6:22:18 AM) blueberryclassic@exploit.im: OTP code via sms
- (6:22:31 AM) blueberryclassic@exploit.im: So then simswap is required
- (6:22:53 AM) blueberryclassic@exploit.im: To hijack victims mobile number and do everything fast
- (6:22:57 AM) blueberryclassic@exploit.im: Messy process
- (6:23:04 AM) blueberryclassic@exploit.im: But worth the money
- (6:23:06 AM) blueberryclassic@exploit.im: :-)
- (6:23:19 AM) blueberryclassic@exploit.im: When we put Lloyd page
- (6:23:24 AM) blueberryclassic@exploit.im: Layer today
- (6:23:44 AM) blueberryclassic@exploit.im: I send you link to have a look
- (6:24:31 AM) redspider@exploit.im/466662451480280006146845: ok, perfect.
- (6:24:47 AM) redspider@exploit.im/466662451480280006146845: yes, quite messy, but when you hit, it;s big amounts.
- (6:25:15 AM) blueberryclassic@exploit.im: Not really when customer knows there number has been jacked
- (6:25:23 AM) blueberryclassic@exploit.im: You got about 4hrs max
- (6:25:28 AM) blueberryclassic@exploit.im: For the whole process
- (6:25:39 AM) blueberryclassic@exploit.im: So 2-5k first transfer
- (6:25:49 AM) blueberryclassic@exploit.im: And if you lucky 7-9k
- (6:26:24 AM) blueberryclassic@exploit.im: By then account blocked and any pending transactions frozen
- (6:26:47 AM) blueberryclassic@exploit.im: When there is like 4-5 ppl
- (6:26:51 AM) blueberryclassic@exploit.im: The share is reduced
- (6:26:55 AM) blueberryclassic@exploit.im: Still worth it thou
- (6:31:50 AM) blueberryclassic@exploit.im: That is why we decided to spam ourself to many people been taking big cuts just recently logs have been available like on alpha etc
- (6:32:33 AM) blueberryclassic@exploit.im: Last 2 years we been paying 25% back to log supplier now
- (6:33:06 AM) blueberryclassic@exploit.im: Now his getting 40% from others not worth us working so much for so less
- (6:33:41 AM) blueberryclassic@exploit.im: Now on alpha new guy selling for 300usd any balance
- (6:35:16 AM) blueberryclassic@exploit.im: Flooded the market cheaper to just buy he just messaged me saying he got Lloyds login coming this week and he can do me a deal for 5 logins $1200
- (6:36:45 AM) blueberryclassic@exploit.im: So where do you go? Lol but it's too late my guy learnt to spam via sms now so we going get out own
- (6:39:07 AM) redspider@exploit.im/466662451480280006146845: neat :)
- (6:39:28 AM) redspider@exploit.im/466662451480280006146845: well, in the end it's about as profitable as about anything you put an effort in..
- blueberryclassic@exploit.im is typing...
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement