how-to block ads
|
|
Share Topic
 |
 |
|
|
|
MGDPremium,MVM
join:2002-07-31
kudos:9 | reply to ArmyWife
Re: Ebook websites, fraud charges, Devbill/DigitalAge/Plutosaid by ArmyWife :
MGD
Thank you for the work you've done here. ......
I have 2 other charges that I was hoping you could shed some light on, or possibly bring to your attention as possible fraud. Both posted to my account on 3/17/2008, both as "POS Debit" one is from "DRG Enterprises LLC" for $10.29 the other is from "Business Solutions Intern" for $9.98. I know I did not make purchases at either of these, so I questioned my husband and he also does not recognize the charges. I will be going to my bank this afternoon to cancel both mine & my husband's checkcards! I will also be reporting all three charges as fraudulent. And I will go to ic3 to report as fraud.
...... Having worked as a CSR for a large regional bank as well as a CC company, I thought that if an item posted as "POS Debit" that my PIN was used. Am I mistaken? ....... Thank you,
and thanks for that insiders view of the bank card processing. There are legitimate billing errors within the millions of card charges processed daily. However, as you can see, the banks are making a huge assumption error in treating them all the same way. This fraud is specifically set up to successfully take advantage of many generic assumptions that are made in the entire process.
The fraud charges to debit cards have been showing up as "POS", which as you noted, is incorrect. They have always shown up coded as such, it must be a coding issue in the merchant processing system. That POS code for debit, denotes a card swipe and signature, or a card swipe and pin. However, I know for a fact they are not pin transactions. They are in fact "CNP" transactions, card not present.
The two charges which preceded the mcatemplates.com - 623-444-2173 M.C.A fraud charge, are also fraud charges from the same crime syndicate. "DRG Enterprises LLC" and "Business Solutions Intern" are two of a new batch of several dozen fraud sites set up by the criminals in the last 90 days. This criminal enterprise is constantly setting up new fake sites. There is an assembly line process that is needed to generate the millions of dollars a year in fraudulent proceeds.
drgtemplates.com 206-569-4765 DRG Enterprises, LLC
.
Multiple reports of fraud charges: »800notes.com/Phone.aspx/1-206-569-4765
.
Registrar: ENOM, INC.
.
Registration Service Provided By: NameCheap.com
Contact: support@NameCheap.com
.
Domain name: drgtemplates.com
IP 66.152.162.116
.
Registrant Contact:
DRG
Claudia Thorstensen (drginter58@yahoo.com)
+1.3203868193
Fax: +1.3203868193
37 Bancroft Ave
Reading, MA 01867
US
.
Status: Locked
.
Name Servers:
ns1.hostdone.com
ns2.hostdone.com
.
Creation date: 03 Jan 2008 22:22:35
Expiration date: 03 Jan 2009 22:22:35
.
As usual, hidden from the internet:
.
.
"Business Solutions Intern" is actually:bsi-concepts.com
.
bsi-concepts.com 609-910-2942 Business Solutions International, LLC
.
Registrar: ENOM, INC.
.
Registration Service Provided By: NameCheap.com
Contact: support@NameCheap.com
.
Domain name: bsi-concepts.com
IP 66.152.162.116
.
Registrant Contact:
BSI LLC
Sami Omar (sami_omar48@yahoo.com)
+1.7202288698
Fax: +1.7202288698
360 Jefferson Avenue
Brooklyn, NY 11221
US
.
Status: Locked
.
Name Servers:
ns1.hostdone.com
ns2.hostdone.com
.
Creation date: 21 Jan 2008 22:24:41
Expiration date: 21 Jan 2009 22:24:41
.
Once again, hidden from the internet:
.
Following the crime syndicates trail from the reports adds another name to the mix:
mcatemplates.com ---->Business Solutions International ---->DRG Enterprises LLC---->MCG Enterprises LLC:
quote:
BigOps96 - 21 Mar 2008
I received an unknown charge for $11.89 from MCG Enterprises LLC with a phone number of 541-306-6075, which looks almost exactly like the charge I got for the same amount from DRG Enterprises LLC, 206-569-4765. I am reporting both to my bank and getting a new credit card number (unfortunately).
»800notes.com/Phone.aspx/1-541-306-6075
.
mcg-websolutions.com 541-306-6075 MCG Enterprises, LLC
.
.
Registrar: ENOM, INC.
.
Registration Service Provided By: NameCheap.com
Contact: support@NameCheap.com
.
Domain name: mcg-websolutions.com
IP 66.152.162.116
.
Registrant Contact:
fbrt llc
Jennifer Gough-Belleau (goughbelleau@yahoo.com)
+1.8017570168
Fax: +1.8017570168
39 country club drive apt g
coram, NY 11727
US
.
Status: Locked
.
Name Servers:
ns1.hostdone.com
ns2.hostdone.com
.
Creation date: 21 Feb 2008 00:27:38
Expiration date: 21 Feb 2009 00:27:38
.
mcg-websolutions.com is still in the seasoning phase, however, reports of the fraud charges are starting to come in: »800notes.com/Phone.aspx/1-541-306-6075
Also blocked from search engine archiving. Confirming the fact that they are not engaged in e-commerce, and are just a fake front operation to process hijacked credit cards and launder the funds out of the country:
This is pretty bad:
quote:
escalatorgirl04@gmail.com - 22 Mar 2008
I have just been a victim as well only my bank refuses to reimburse me (bank of america). i stopped my card and got a new one. I saw a purchase for 11.89 that i did not authorize from chula vista CA and aother one from AZ with a different company. I called as well and got the same voice mail. WHO can i contact to get this guy f*cked up?
»800notes.com/Phone.aspx/1-206-569-4765
Need to contact her, and explain the process that the bank is required by federal law to follow. She does not need to eat these charges. Also would like more specific data on those other names.
I am in the process of sniffing out, identifying, and locating the cyber-mules who set up the merchant and bank accounts on behalf of the criminals, and are funneling the proceeds out of the country.
PLEASE NOTE
The names and addresses used for these domain registrations may be bogus, I am attempting to establish if they are or not. However, THEY ARE NOT THE CYBER-MULES. If in fact they turn out to be real, they will be victims of either a fraud charge for the hosting on their cards /Paypal account, or they are random. They are not connected to the fraud. The listed phone numbers will be bogus, or relay numbers that go to the criminals.
Also, for victims of these charges, be careful when you search these names. The LLC names are only unique within the jurisdiction that they are registered in. There may, and in fact are, similarly named legitimate companies, who are in no way connected to this fraudulent operation.
Be advised that running a search on the names will produce legitimate business with the same name or close to it. Over the years that this fraud has been tracked on this forum, many legitimate unrelated companies have been inundated with calls from angry victims.
With this criminal enterprise, all listed phone numbers and email addresses will relay back to the Command & Control center. The only local person connected will be the duped cyber-mule.
For those of you with multiple charges from names that are not already listed, Please list the specific line item fraud charge as it appeared on your bill along with the date. Despite the length of this thread we have only covered a small amount of the fraudulent names that either have been used, or are in use. Posting the full deatails of any additional charges that have not been covered, is very helpful in tracking this criminal operation.
Coming up next, I will document a new C&C hub website that is running the mule recruitment and herding operation for this new group of fraud sites.
MGD | |
| I want to thank you for all the info you've researched and posted regarding DRG. My son is stationed in Mosul, Iraq and has no choice but to shop online. Apparently his card info has been compromised and DRG has a pending charge on his debit account with Security Service Fed Credit Union for 11.89 from...you guessed it...DRG Enterprises LLC. Even though he has been buying online quite a bit I was for some reason wary of the name (I've worked in infosec for 2 large financial institutions for over 10 years and watch things closely though sometimes that just isn't enough either). Wasn't familar with the name. He is frequent shopper on sites like Walmart, BestBuy and Amazon, but DRG Enterprises just sounded wierd considering his spending habits and usual shopping. Considering the foreign ATM machines and other vendors he was forced to swipe and otherwise trust his card info with on his recent trip back to Mosul (stops in Ireland and Germany and Kuwait), along with online shopping there is no telling where the leak happened i guess. These people suck. The charge was on 3/31 and is still pending so i've notified the credit union of possible fraud, told them to deny the charge, cancel the card and issue another. Stepping back...the 11.89 is not the big deal really at this point. This is an extreme hardship for him since now he has no way to access his funds from Iraq for weeks while I mail the new card to him. GRRRRRRRRRR!!!
Thanks for your hard work and keep it up. | |
 Doctor OldsI Need A Remedy For What's Ailing Me.Premium,VIP
join:2001-04-19
1970 442 W30
kudos:18 | said by Army mom :
Stepping back...the 11.89 is not the big deal really at this point. This is an extreme hardship for him since now he has no way to access his funds from Iraq for weeks while I mail the new card to him.
Actually is it a big deal because the small amount (under $25.00 usually) is what keeps them under the radar so they can screw up your son's life and yours. 
Now if you went into a bunch of Banks in the real world and took $24.95 from a single teller at 100 branches, then the LEOs would rightly arrest you. But do the same thing in the virtual world with credit/debit cards and it is nearly ignored or worse, the Banks/CC Issuers simply pass the losses on to customers as higher rates and therefore have no incentive to put a stop to it. If the Banks/CC Issuers had to eat these losses then this crap would stop, but the people that could make that happen won't apparently.
--
What’s the point of owning a supercar if you can’t scare yourself stupid from time to time? | |
| sites like this are what keep them from flying under the radar for those that actually watch their accounts for any unfamilar charge, big or small. $11.89 is small compared to the screwed up mess it makes of your finances and life while you wait on your hands for newly minted cards is all I meant. You are absolutely right... they should pay. What a pain. | | |
|
MGDPremium,MVM
join:2002-07-31
kudos:9
2 edits | reply to Army mom
You are welcome,
based on the circumstances you may want to consider an option. You may want to hold off cancelling the existing card and have the issuer process a replacement card while keeping the current one active. During the interim the criminals may hit you with another similar charge, they usually continue to do two a month maximum. You could reverse (charge back) any new charge that shows up while the new card is being processed. This way your son will at least have the ability to still use it in the interim.
Once the new card is issued then forwarded to you son he can then cancel the old one upon receipt of the replacement. Your institution should be willing to work with you on this based on your sons circumstances. At least this way he will not have to go without a card for any length of time. The vast majority of cards are only hit once or twice a month with these small fraud charges. They do continue until it is cancelled. However, in this case, I would consider that as an option to minimize the hardship on your son.
There is another item worth noting with respect to the DRG Enterprises fraud victims. This may be pure random coincidence, but I believe that you are the fourth person to report that specific charge from DRG who has a military related card.
A few posts back, "ArmyWife" who is stationed in Germany had two fraud charges, the second of which was from DRG. I am on my way to dig up the others I remember recently seeing posted on other forums. As I recall, one was from someone stationed in Saudi Arabia and another stationed in Canada. I assumed they were all Bank of America military issued cards, I do not believe they stated which they were, though you have listed Security Service Fed Credit Union for that one.
As I mentioned, having that in common for a handful of victims, even at one fraud billing run, may not be statistically significant. By my estimation this crime syndicate processes somewhere between one and two million cards a year. On any given month each of these 30 or so active sites run 5,000 cards apiece. So a half dozen with similiar unique characteristics, even from one entity, are well within a random expectation.
Off to look for the others......
MGD
EDIT=
Actually they are from the MCG / DRG combo group:
quote:
BigOps96 - 21 Mar 2008
I received an unknown charge for $11.89 from MCG Enterprises LLC with a phone number of 541-306-6075, which looks almost exactly like the charge I got for the same amount from DRG Enterprises LLC, 206-569-4765. I am reporting both to my bank and getting a new credit card number (unfortunately).
William Cobb - 28 Mar 2008
I received a simlar charge to my account, an account that I do not really monitor as I only put a few dollars hear and there just to keep it active and that's where my TDY pay and various other types of pay go to from the Army. I called my bank and put a stop payment and report of fraud on it. I then looked up the company on the internet and got a company in TX. I called and the guy told me that there were several other people calling about it as well with 2 common things: (1)All Military and (2)All Shopped at Ranger Joes. This is some fraudulent crap!!!
MAJ D - 30 Mar 2008
I just noticed a hit too! I called my bank (from Saudi Arabia), cancelled my card and filed a fraud report. If anyone else has shopped at Ranger Joes, we need to notify them and the Columbus PD as well as the FBI
»800notes.com/Phone.aspx/1-541-306-6075 | |
| yup to Ranger Joes. He has shopped there in the last 2-4 months. | |
| reply to MGD
I got a charge for 11.89 from mcg enterprise llc. I am like some of the others in the military and shopped Ranger goes online a few months ago. I am in Iraq only way to get some things but I have canceled my card and have reported charges to my account. Thank you for your work.  | |
| Interesting. So far I seem to be the only one hit by the DRG/MCA mules that has NOT shopped Ranger Joes. | |
MGDPremium,MVM
join:2002-07-31
kudos:9 | said by InMotion :
Interesting. So far I seem to be the only one hit by the DRG/MCA mules that has NOT shopped Ranger Joes.
I suspect there may be many others. Only a small portion of the victims who even catch the fraud charge, end up searching and posting on the internet. In the short time that DRG and MCG were in operation, they appeared to have successfully completed fraud chages to around 16,000 victim's cards. I am not sure how large Ranger Joe's customer card database was, but there are reports of RJ victims being hit by the syndicate's other sites. BSI-CONCEPTS listed earlier has been mentioned, in addition to the above post from "proudSoldiersmom" who was hit by ULCSOLUTIONS.
It could another 30 to 45 days for all the current charges to show up on victim's statements, especially for those that do not check their accounts online. Also, remember that at any given time this crime syndicate has 30 or more active sites. Each, according to the syndicate's own documents are processing ~ $50,000 per month. It may take some time before all the reports filter in, and we see the extent of this common link across the entire range of sites. Hopefully, that will provide some additional clues as to how pervasive the military connection is.
MGD | |
| reply to MGD
I also got a charge from MCG Enterprises LLC and was a customer of Ranger Joes. I got an email from Ranger Joes that their website was compromised.
I also got a charge from "#Jackson Group Realtor 31". Did anyone else get this charge? I assume it is fraudulent as well. I have since cancelled my card.
Thanks,
Ed | |
MGDPremium,MVM
join:2002-07-31
kudos:9 | said by chambere:.....I also got a charge from "#Jackson Group Realtor 31". Did anyone else get this charge? I assume it is fraudulent as well. I have since cancelled my card. Thanks, Ed Did the Jackson Group Realtor charge show up before the MCG, like 24 to 48 hours beforehand ? It almost sounds like another hijacked PayPal small merchant account, normally used for test pinging cards with pre authorizations.
MGD | |
| reply to armygirl
fraudulent charges will be covered by the card company, paul voorhees and ranger joes will be accountable to the card company, my mission is to protect our custermers from web attacks and earn there trust,for 45 years we have been dedicated to our customers, this will not change,, i will add more security than is required,we will be the safest,,,,,,,,god bless paul voorhees | |
MGDPremium,MVM
join:2002-07-31
kudos:9 | said by pvoorhees :
fraudulent charges will be covered by the card company, paul voorhees and ranger joes will be accountable to the card company, my mission is to protect our custermers from web attacks and earn there trust,for 45 years we have been dedicated to our customers, this will not change,, i will add more security than is required,we will be the safest,,,,,,,,god bless paul voorhees
Than you for posting Paul, you have a long and honored history of service to the community.:
 vorhees.pdf 59511 bytes
You and your company are another victim of this long running crime syndicate. What make this case so vile, and adds undue hardship, is that many of the compromised card holders are stationed abroad, and cannot easily replace their cards. I do hope that these unfortunate circumstances will help focus additional attention on hunting these criminals down.
MGD | |
|
