01/2/13

Bitcoins are Under Attack

gAtO tHiNk - the monetary system is f%^k and so are we. My good friend Pierluigi and I have been busy putting together a new book – Digital Virtual Currency and Bitcoins – coming out in a week or so and the picture of the state of all currency is really in bad shape. Virtual currency is not new it is more a transactional system than currency but unlike PayPa, Visa, Mastercard with Bitcoins you can become a miner and create your own coins. check it out- https://blockchain.info/nodes-globe

I have include the table of content so you can see our approach to understanding what is happening and the war that global bankers ar wagging on this new system of currency. Why are they fighting it so hard because more people are beginning to see that a currency that is not control by global bankers and by the people and for the people is a better solution. Of course they are vilifying Bitcoins but as other systems have tried to get their teeth into this new worldwide currency Bitcoin come out on Top.

We hope that you will gain some knowledge from our newest venture into this mad, mad world of money- as they say “Follow the money” and we did but I can tell you the more I learned the madder I got that we have been tricked into thinking that the global bankers are the good guy. Facts is the world is in debt over 10 times over just on interest alone. The world owns more than we create – THE WORLD not a nation. and if look real hard 1% of the people control 40% of the wealth in this world. It is not a national issue it’s a world issue.

We are just cyber security professional but this has been an eye opener as we see the Monterey Market System as a sham to keep the people of the world in an ever ending debt -gAtO OuT

You can pre- order just send us a message-

Table of Contents

Foreword

Digital Virtual Currency and Bitcoins

Digital virtual Currency Steps In:

1. What is Digital currency:

Digital Currency:

Shadow Economy

System D and technology

The Cyber Underground

Black market payment

Perfect Money

Liberty Reserve

Webmoney

Pecunix

Voucher-Safe

Digital Currency -Trust Thru A Consensus 35

Where does Digital Currency get it’s value? 35

Trust Thru A Consensus 37

Cyber-War Digital -Vs- Global Currency 39

Cyber Death Of The Banking Industry 42

Those that control the quantity of currency have all the power. 42

Cyber Fixed Rate Exchange 2012 43

System D- Bitcoin’s Underground Economy 47

Digital Currency and Policy Makers 50

American Express Gamer Digital Virtual Currency 50

Facebook Credits 50

Google Bucks 51

Moba-coin 51

Mastercard 51

How a bit coin Transaction Works: 53

Iran and Bitcoins: 53

2. Who uses Digital Currency 55

Bitcoin -Vs- Evil Global Bankers 55

Credit Cards 2 BTC-Bitcoin – BTC-Bitcoin 2 Credit Cards 55

Case Study Black Market Silk Road 57

Money Laundering in -The Digital Virtual World- 63

Games: 63

DC -Digital Currency – Launder CASH to Bitcoins 64

USD (Major banks, 7-11, Walmart, CVS) 64

Bitcoins cannot be traced back to the Owner 65

Happy Satoshi Nakamoto -Bitcoin- Day Nov 1 67

money $$ with – NO GOVERNMENT – NO BANKS 67

Underground Financial Networks 69

Reloadable Debit Cards - Basics 69

Western Union /MoneyGrams Basics 71

E-currency Basics 73

Trust Networks Basic 76

Borrowed Bank Accounts / Underground ATM cards 77

Mule Networks 78

Global Bankers Fear Bitcoins 79

European Central Bank report October 2012 report: 81

Secure Bitcoin Trading Online 84

Introduction: 84

Credit Cards 2 BTC-Bitcoin – BTC-Bitcoin 2 Credit Cards 84

Creating a secure identity: 85

Setting up OpenPGP email 86

Use Bitcoin-OTC 87

Using the Web-Of-Trust 87

Use an escrow 88

3. Digital Currency Financial Stuff 89

Bitcoin and Forex Trading 89

But really let’s take a look at FNIB – and Bit4X – 90

Bit4X – the new kid on the block – 90

Digital Currency 92

Top Ten Bitcoin Financial Charts 92

Virtual Currency Schemas

Virtual Currencies and banking, disaster or opportunity? 98

Price stability 99

Risks to financial stability 99

Risks to payment system stability 100

Bitcoin Still Up 137% YTD 2012 102

Geek Stuff – API to Bitcoin Block 103

Buying bitcoins 104

Major Exchanges 104

Exchanges are listed in alphabetical order. 104

Fixed Rate Exchanges & Others 118

Direct / Bulk Buying 123

Other Financial Services 123

Physical Bitcoins 124

4. Legality of Digital Currency 125

Bitcoins entities and possible legal responsibilities 125

Law enforcement and financial institutions against bitcoins 127

Legality of Bitcoins-Digital Currency? 130

Virtual Currency Real or Not 130

2012 timeline of the legality of Bitcoins around the world: 133

5. Governments and Digital Currency 142

Government -Vs- Bitcoin Anonymity 142

Canadian Mintchip And Bitcoins -Whats Up 147

The MintChip System 148

Hosted MintChip (Cloud Account) 148

Transactions-Sender and Receiver 149

MintChip Value 149

Sustainability 150

Architecture 150

The MintChip – Value Creation 150

The MintChip – Security Overview 151

6. Business and Digital Currency 152

Merchant Tools for Digital Virtual Currency 152

A basic overview of the Payment Gateway follows 153

List of Features and Advantages 153

Mt.Gox “Pay Now” Button 154

Now supporting Magento! 154

Mt.Gox instant Merchant API 155

7. Cyber Crime Digital Currency 156

Cyber Crime Digital Currency 156

Cybercrime and Anonymous Cyber Economy 158

Impact of digital currency schema on financial ecosystem 158

Digital currency schemas 160

Money laundering 165

Theft of digital currency 170

Malware, the new generation of digital robbers 174

Bitcoin Botnet Mining 176

Deep Web, Botnet and Bitcoin mining … a dangerous mix 183

Counterfeit digital currency and double spending attacks 190

A race attack 192

The Finney attack 192

Bitcon and money laundering 194

Simple scenarios for money laundering 196

How To- Digital Money Laundering 199

Digital Currency ExchangeExchangers 2010 202

8. Bitcoin and Digital Virtual Currency 204

Get a Bitcoin Wallet and Make FREE-BitCoins Yourself 123 204

My Mining Machine 205

Bitcoin Miners Pools and how it works – 206

Bitcoin Wallet 210

Who, What and Where is a Bitcoin Wallet? 210

Bitcoin Qt 211

The beginning of the Bitcoin question 214

What is the Bitcoin Distribution Network? 214

Analysis of the model 216

The model 216

How does Bitcoin work? 218

Bitcoin exchange operates as a bank 222

Welcome to the Dot-BIT project 226

Miner: 226

Current Miners 228

OZCoin – http://ozco.in 228

P2Pool 229

How Anonymous is Bitcoin? 231

What Users Can Do To Increase Anonymity 231

Bitcoin Mining Scam 233

The Bitcoin Miner Scam 234

Bitcoin Scam -How does it work? 235

Satoshi Nakamoto, the manhunt 238

Who developed Bitcoin Virtual Currency Schema? 240

9. Future of Digital Currency 246

Bitcoin and Digital Currency in the New World 246

Dominate The Future With Bitcoin 248

10. Geek Stuff Digital Currency tools and tricks 256

Address Tags 256

What Are Address Tags? 256

gATO Mining Rig – Information 258

ATI Radeon HD 4670: 259

Bitcoin Miner for Websites 260

Quick Start Guide to add the Miner to your website 260

Explaining the Miner to your visitors 261

Fees 261

Requirements 262

Advanced Usage 263

http://uscyberlabs.com/blog/wp-content/uploads/2012/12/2002_currency_.png

12/18/12

Legality of Bitcoins-Digital Currency?

gAtO gOt -Questions -Virtual Currency Real or Not- Reward Point, or bonus dollars and other forms of digital virtual currencies are normal for credit cards, online game sites, social networks and other specialty merchants and websites it all about true and branding. This new revenue stream is something that merchants are becoming aware of without knowing or understanding the legal aspects of this new digital currency world.

How does digital currency work in governments or does it – is it tax free, can I take campaign contributions with Bitcoins?

There are federal laws about digital currencies (gift cards) that impose inactivity fees, refunds and unused currency to states or regulatory statue in different states, now apply this to the global online stage. Then throw in the 2009 Credit Card Accountability Responsibility and Disclosure Act and the state and federal gift certificate taxes and were do Bitcoins and others fit in. This could be a big financial mistake for budget starve cities, states and countries it’s a worldwide problems.

So how does a merchant handle Digital currency if they decide to accept it for legal goods and service. For example My Book is for sale on my website using Mt.Gox BTC-Bitcoins – So how do I report my Bitcoins Sales 1.8 BTC so how does the Tax man handle the BTC-Bitcoin transaction?? If they accept Bitcoins then they are legal tender as long as I show sales and pay my Tax they now become legal tender by the State, and federal governments??? Right or is Bitcoin just like a Cash sales??? – These are the questions that need answers today, not tomorrow. I would think that governments may be losing revenue if they don’t think about how to handle virtual currencies transactions and incorporate them into the grand scheme of things (also known as red tape).

As smartphones and mobile pad devices increases worldwide more and more global customers are jumping on board. In the Asian gaming world it’s unstoppable people cannot not stop the online addiction and at a such a cheap price people in far away places are getting connected and this new market is a gem for corporations worldwide and e-currencies of any kind will be the new norm. This Jump in mobil devices and games alone will give digital currencies a gigantic boost. These new inexpensive mobile devices are taking farmers in remote villages and bringing them to our modern society very quickly.

Mobile devices are going worldwide today reaching the remotes corners of civilization and connecting everyone. And they want to spend $$$$$- money- $$$$$

This new mobile computer platform is changing the social and financial aspect of the worldwide landscape. All digital currencies that users accept in and believe in will be accepted. Merchants cry —I don’t care how you pay me as long as you pay me. The privacy aspect of this new currency is another thing that makes this very attractive. When anyone (governments/hackers) can pull your bank records and see every transaction you made.

They know everything every transaction? do they ? -did you know that with Bitcoins all transactions are visible – so we all know someone paid 1.2 BTC and transferred it to wallet_X. You can create a new -alias-wallet for every transaction and this way nobody will ever see your real wallet number. We can hide the wallets, encrypt it, back it up in paper, we can have many wallets and change them so keeping your transactions private is free it comes with the Bitcoin protocol. This is why governments say that terrorist use Bitcoins and other digital currencies to do their evil business,-NAW- well a suitcase full of CASH does the same thing and without and exchange rate to transfer it to my fiat currency… so that fear tactic does not work.. next

Consumers and merchants demand and acceptance of new digital currency has begun and the “jeane is out of the bottle”. These new digital virtual currencies can have very positive aspects in terms of financial innovation and the provision of additional payment alternatives for consumers and that is real competition.

Japans Moba-coins are a fine example: “While popular gambling-style kompu gatcha titles — in which users pay for coins to win prizes — are being eradicated from Japan, DeNA notes that its Moba-coin virtual currency was nonetheless used in a record $689 million worth of transactions in the country”. this revenue stream is only from 40-50 million users imagine when we all hop on this bandwagon.

There are many examples of others developing virtual currencies for gaming: NHN Japan offers a global gaming virtual currency called Line Coins; KakaoTalk in Korea offer virtual currencies called Chocos; and Tencent’s Q-Bi in China is firmly entrenched as a virtual currency. All of these are driven by mobile internet gaming services and the real killer will be when the major payments processors get into the virtual payments space.

The legality of Bitcoins have been debated all year long around the world -France, UK, Brazil, United Sates, California, New Hamshire, New York City, Germany, Finland, Italy and even Franklin, TN, USA.

As the price of Bitcoins hovers around $13-14-USD from a low of $4.5-USD this summer. It has attracted the interest of Forex and other players. With the European Central Bank (they control the EURO) report on Bitcoins to be a real thing are getting serious. Then a month later Bitcoin-Central ( French company, Paymium ) becomes the first Bitcoin Bank to carry out functions of payment service provider like PayPal and Dwolla unit of currency. Remember Bitcoin was built to operate completely outside the influence of governments and financial institutions but now Bitcoin is a financial institution.

Whether Bitcoin takes off or not is not the question, some virtual currencies is going to explode thanks to merchants, consumers, in-app gaming via social media and things that have not been created so far. You may disagree, but the aggregation of large amounts of small payments is effectively building a virtual currency system. go to https://blockchain.info and watch the transactions live, check out the “Bitcoin Top100 Recent Transaction”, I seen 124k, 150k 100 times in 1 hour-/ of course trying to track the wallets down to and IP is kinda impossible but mistakes can happen. https://blockchain.info/largest-recent-transactions

As we are seeing in New Hampshire allowance to take Bitcoin for campaign contributions put’s Bitcoins directly in the U.S bulls-eye. After this latest presidential election cycle here in American we saw that money is the language of politics and Bitcoins will play a role in our next presidential race 4 years away. Oh did I mention that Bitcoin is only 4 years old on Jan 9. 2013 imagine what the virtual digital currency and Bitcoins will look like in 2016. So are Bitcoins sales like a cash type transactions for governments and are they legal. I think that it’s still in debate but governments running deficits should allow any currency that brings in taxes to the coffers. Are Bitcoins Legal – stay tuned -gAtO OuT

Bitcoinica Rise and Fall from grace:

http://www.bbc.co.uk/news/technology-19244210

Superior Court of California, County of San Francisco

Case Number: CGC-12-522983

Title: BRIAN CARTMELL et al VS. BITCOINICA LP, ALSO KNOWN AS BITCOINICA et al

Cause of Action: CONTRACT/WARRANTY

Generated: Dec-18-2012 6:32 pm PST

http://webaccess.sftc.org/Scripts/Magic94/mgrqispi94.dll?APPNAME=IJS&PRGNAME=ROA22&ARGUMENTS=-ACGC12522983

http://uscyberlabs.com/blog/wp-content/uploads/2012/12/mobile_transaction_01.png

12/5/12

Digital Currency -Why is half the world unbanked?

Why is half the world unbanked? The defining characteristic of the unbanked is less that they have a lower income level than the rest of us but the fact that, lacking stable or formal jobs, they tend to be paid with less predictable regularity and in cash. Whether they are farmers, day laborers, traders or micro-entrepreneurs, nobody is guaranteeing them where their next dollar will come from. And yet they are probably earning some money on a more frequent, perhaps daily, basis when they sell their wares or their labor for cash. Small wages paid with high frequency make for very small payments. Unstable income makes it hard for them to commit to time-based financial products. Banks’ offerings are indeed stacked against them.

Three representations of money
Let’s formalize the banking challenge. Making financial services relevant to poor people entails connecting three different clouds, as represented in Figure 1:

figure 1 chart

A physical cloud of hard cash (or, worse, specie currency,) which is the legacy payment system on which most poor people operate today to exchange and store value.
A digital cloud where money is just an accounting record. This constitutes an alternative payment system, and is where financial services ought to reside. Making money digital makes it easier to supervise the integrity of transactions and accounts, to create new financial products and to move money around as a mere debiting and crediting of accounts.
A neural cloud in people’s brain, through which people form their ideas and habits around money in the context of their circumstances, their needs and their aspirations. It is through this cloud –the mind— that people interpret the range of informal and formal financial services proposed to them.

The opportunity with mobile phones
Connecting these clouds is the job of financial institutions. Mobile phones’ digital communications capabilities, combined with their increasingly pervasive presence in people’s pockets, hold significant promise to connect these clouds in novel, cost-effective ways.
Mobile phones allow for a ubiquitous, low-cost deployment strategy. If transactions can be initiated remotely through a secure electronic channel (ensuring the proper authentication of transacting parties and integrity of the data transmitted) and authorized in real time (ensuring that all transactions are pre-funded,) then banking transactions can be safely taken outside of bank branches and into neighborhood stores (which act as cash in/out outlets) or right into customer hands (with mobile banking as a self-service channel.) This particularly helps with the exchange and transfer functions in Figure 1.
Beyond reducing costs, mobile phones also permit customers to interact more directly with their banks, checking balances and initiating transactions from wherever they are. Using mobile phones as the access device offers the customer a level of immediacy, convenience and control that no other channel can provide. The real power of mobile will come when it is seen not only as a mechanism for reducing access costs but also for building new types of banking experiences that begin to approximate how people think about their money – the plan function in Figure 1.

Local shops as bridges to cash
In the first instance, in order for poor people to opt to formal financial services, we need to dramatically increase the number of bridges between the cash and the electronic clouds.

Figure 2 chart
The bridge at the top of Figure 2 is big and imposing: let’s call it a branch. But it´s way too costly to build in every village and neighborhood. It’s efficient to build in high-traffic locations, but smaller communities on the river will need to travel significant distances to access it. To service these smaller communities more effectively, what we need is a whole hierarchy of smaller bridges that are appropriate in different environments.
The bridge at the bottom is no less safe than the top one given the stream it is trying to cross; it is entirely appropriate given the risks involved. Just don’t build this type of bridge to cross the river at the top. The bridge analogy underscores the principle that improving the economics of serving poor people shouldn’t be done by relaxing safety standards; it should be done by deploying the appropriate infrastructure given the risks involved in each case.
Unlike the bridge at the top, the bottom one is cheap because building it requires materials and skills that are available locally. So we can now afford to build many more of them. How to build the small bridges to cash? Start by using the bricks and mortar of retail shops that exist in every village and neighborhood. They are more convenient, less crowded, and, chances are, more friendly to customers than the bank branches. But is it safe to deposit at these retail outlets? It can be, as long as these shops trade entirely with their own stock of both electronic money and cash, and transactions are properly authorized in real time.
Think of how they might sell rice: they hold a stock of rice, and after a sale, they end up with a little less rice but more cash than before. They make a small margin in between. Making a deposit at the store would be the same thing, except that the commodity the shop stocks and exchanges for cash is electronic money sitting in its bank account. After the transaction, their bank account will have less value but they´ll have more cash in the till. The customer´s situation will be the mirror opposite. The store earns a small commission for the service and it will attract customers into the store.
Risk can be eliminated as long as electronic value can be transferred securely and in real time between the shop and the customer. We can ensure this with a traditional card and point-of-sale infrastructure, but even that is too expensive. Instead, we can use mobile phones which already exist in people´s pockets, as a virtual card and point-of-sale system.
Using stores and phones that already exist, we could increase the number of places where people can deposit and withdraw by 10 or 20 times, relative to the number of bank branches that exist today. Only then will banking begin to be convenient for the majority of people in developing countries.

Bringing personal back into banking
If you don’t have a stable, predictable source of income; if you are not literate or not comfortable with basic mathematics; if there are no computing devices available to you: how then do you budget? A time-tested way for people to budget and discipline themselves is by separating money into distinct categories and savings vehicles (represented in Figure 3, below.) You might have relatives who still do.
Whenever such people have some extra money, they are likely to set some aside for their children’s school fees, and that might be hidden under the mattress. They might also set some aside for the bicycle they want to buy to be able to get to town faster, and that money may fund the monthly contribution to the rotating savings club they run with their neighbors. They might also want to build a cushion to pay for any family medical emergencies, and that goes into keeping more chicken in the backyard.
This kind of separation of funds helps in two distinct ways. First, people are more easily reminded of how much money they have for each purpose.
They can easily check how much more they need for each savings objective. Second, all their savings is accounted for, in the sense that it has a defined purpose. Money under the mattress is not general liquidity, it is money ear-marked for their children’s education. This mental assignation of a purpose to each savings vehicle helps them avoid the temptation to use those funds for other less important purposes.
If this is how they manage their financial lives, it should be no surprise that they find bank accounts unhelpful, even if they are conveniently available. Expecting them to regroup all that value and dump it into a single account goes against the grain of the financial education they have received from their parents and grandparents. If banks want to capture people’s money, first they need to capture electronically how people think about their money. Cracking the savings problem requires incorporating into a formal banking service the kinds of tools and tricks that people use daily to plan their financial lives and build discipline, and that includes the explicit separation of money for different purposes.
In a recent paper, I have shown how this might be done easily by allowing people to send money to themselves at future dates. In many African countries, people are used to sending money to each other (across space) in real time using their mobile phones. If we expand this capability to allow them to transfer money to their future selves (over time,) they will then have a tool for managing not just today’s payments but tomorrow’s as well – a planning tool.

Figure 3 chart
The key to linking the mental and digital representations of people’s money is therefore to put financial planning at the center of the provider-client relationship. This helps them understand how they can use new banking products to reinforce the financial mechanisms they have always used. In addition, clients’ financial educations will grow with usage, which in turn opens up new possibilities for client development.
This would require a fundamental shift in the nature of the conversation between banks and their clients. Now it’s fundamentally about the bank’s products: get this account, buy this product, get this loan. But imagine a bank that never uttered the words ‘savings’ or ‘loan,’ only ‘bicycles’ and ‘school fees’ and ‘retirement.’ The account would be pretty much the same for all –simplicity!—but each customer would experience it differently. Each customer would associate a different set of goals and dates with various pots of money, and the bank would have a different understanding of what they need and what their credit risk profile is.
The objective is to endow mobile financial services with as much richness of interpersonal interactions as possible. But it will certainly be impossible to electronically capture the subtlety of informal financial relationships. To bring effective financial services to millions more poor households, providers need to continue developing a high level of intimacy with their customers. Those relationships help providers learn from customers and permit them to propose the right thing at the right time. It might be hard to visualize such a service, but I am pretty certain it can’t be done without mobile phones.

Original -by Ignacio Mas -http://www.transactionworld.net/articles/2012/december/cover-story.html

http://www.transactionworld.net/images/articles/2012/december/ignacio_Figure%201.jpg

11/29/12

Bitcoin and Forex Trading

gAtO lEaRn-that FOREX means the foreign exchange market or currency exchange where one type of currency is traded for another type. —/ USD to CAN – United States to Canada currency. So Bitcoin is just another currency why can’t we get this running right. //and/or do we want real Forex in this phase of the development and adoption of digital virtual currencies??? So who is playing the game with BTC=(Bitcoin) and getting it right. Well let’s just say it is developing and the players are starting to get it right, “I think so Cisco”

Forex Trader

Bitcoinica is one of the first attempt to jump on a new technology and do everything wrong. clue: Any business in cyberspace and especially one that deals with money, make sure you have good security. How about make sure your password for your e-wallet is a good one (@#$%^&g(*rre#$%^1076#$%^) my favorite password free here use this you stand a better chance. If you want to read more about it see Ref: below but they are still around but the reputation was really damaged. They are a legend on the Bitcoin Forum on how NOT to do it.

But really let’s take a look at FNIB – and Bit4X -

FNIB has gone through fire and rain and have proven themselves to be real as anything in the virtual world is real. They have made great YouTube Video in a bunch of languages to attract the global and lucrative Forex market with Bitcoin and Swiftcoin. What is Swiftcoin well they FNIB have taken the Bitcoin open source and tweaked it a bit and now they have their own digital currency, with their own miners they control everything. FNIB have down some excellent work and built great video on Youtube. They have stood against peers – Bitcoin Forum and survived but this morning -Nov, 29 0748 EST – I could not get to the website – It was working last night —/ problems /- we will have to see – if I was using their system and I could not get to the website or my trading platform and I have money in this account – I would be worried.

Bit4X – the new kid on the block -https://bitcointalk.org/index.php?topic=114818.0 – Once again I have to go to the forum to see what the players are saying because they are always on top of everything Bitcoins and gAtO is only a beginner. Nov, 29 0748 EST their site loads up quick – 3-4 page only – Yeah and they use an standard MetaTrader4 Forex platform so are they legit – this is only a few months old so time will tell if they flush out.

Mapping out the BitCOin

Mt.Gox is a Japanese company that is building trust and reliability in the Bitcoin community :Mt.Gox K.K. offers a unique service, facilitating the exchange of Bitcoins between users globally in the currency of their choice. Multiple currency markets allow users to purchase and resell their Bitcoins in up to 16 different currencies, along with the ability to securely store Bitcoins in a virtual “vault” for safe keeping. :

Once again I am not the best gAtO to talk about trading I only day traded in 2007-2008 and we all know how good that venture went but Bitcoin and Forex is a one to one relationship if you want to check out the Bitcoin charts – check it out -http://bitcoincharts.com/markets/ - gAtO OuT

—Digital Virtual Currency That are used in the- Currency Exchange’s

Liberty Reserves – WebMoney-WMZ – LiqPay – QIWI – PayPal – OKPay – Payza/AlertPay – Yandex – UKash vouchers – SEPA bank transfer – USD,EUR,GBP (Credit & Debit cards via Skrill/Moneybookers) – CAD (cash deposit at Royal Bank, Bank of Montreal or ScotiaBank) – USD (Redeemable code from Mt. Gox) – USD (Dwolla) – USD (OKPay) – EUR/DKK (SEPA and wire transfer) – USD, EUR, GBP, DKK, SEK, NOK (Cash or check in the mail) -

AED, DZD, EGP, IQD, ILS, JOD, KWD, LGP, LYD, MRO, MYR, NGN, OMR, PKR, QAR, SAR, TRL, TZS, TND, YER (CashU card) -

MXN, EYU, BOB, BRL, COP, SYP, MAD, GHC, ZAR, CNY, CAD, and more (UKash voucher) - SLL (Second Life)Linden-Dollar – GoldMoney – Pecunix

USD: United States Dollar – EUR: Euro – GBP: Great Britain Pound – AUD: Australian Dollar – CAD: Canadian Dollar – RUB: Russian Ruble – PLN: Polish Z?oty

- SLL: Second Life Linden Dollar – GAU: Gold gram (Pecunix) – JPY: Japanese Yen – CHF: Swiss Franc – SEK: Swedish Krona – DKK: Danish Krone – NOK: Norwegian Krone – NZD: New Zealand Dollar

-Trust but Verify- is gAtO mOtTo.

Ref:

Bitcoinica – http://arstechnica.com/tech-policy/2012/08/bitcoinica-users-sue-for-460k-in-lost-bitcoins/

FNBI – http://www.firstnationalib.com

FNIB – Video – http://www.youtube.com/user/wwwFNIBco

Bit4X – http://www.bit4x.com/

Fixed Rate Exchange & Other Information
- The following exchanges are either exchanges using a fixed rate based on other markets or are exchanges that enable you to redeem smaller amounts of bitcoins at reasonable rates:
  - AutoMtGox Convert your bitcoins to US Dollars automatically.
  - Bahtcoin Trade BTC for Thai Baht, cash, LR, Webmoney, or Thai mobile and gaming prepaid cards.
  - BTC China – Market for exchanging bitcoins to and from CNY, withdraw CNY (Tencent, Alipay) and USD (Liberty Reserve).
  - Bitcoil Exchange BTC for ILS with bank transfers in Israel
  - Bitcoin Argentina Trades BTC for ARS. Cash and bank transfer. No exchange fees.
  - Bitcoin Brasil Cash exchange that redeems bitcoins for BRL, USD.
  - Bitcoin Nordic Sell bitcoins with withdrawal to PayPal or bank transfer.
  - Bitcoinica Leveraged BTC/USD contract-for-difference (CFD) trading.
  - Bitcoiny.cz Trade your BTCs for CZK. No-escrow, direct person-to-person trading.
  - bitcoin-otc IRC trading marketplace will usually have people willing to deal for small and larger amounts using various payment methods, including PayPal, Dwolla, Linden Dollars, etc.
  - Bitcoin.com.es Trade your BTCs for EUR (Bank transfer).
  - bitcoin.de Trade your BTCs for EUR (bank wire, SEPA bank transfer, Liberty Reserve, Money Bookers), person to person, eWallet
  - bitcoin.local arranges for exchanging currencies in person with someone nearby
  - Bitcoins In Berlin Trade your BTC for cash-in-the-mail (EUR), in-person trande, Western Union, Moneygram, bank transfer or SEPA.
  - Bitcopia.com Sell bitcoins for (USD) cash in mail, check, money order, cash deposit, bank transfer, or dwolla. Buy bitcoins with cash deposit. Instant, live quotes based on Mt. Gox prices.
  - BitMarket.eu Trade your BTCs for EUR (SEPA bank transfer), GBP, USD, PLN, AUD, CAD, ZAR, ILS, CHF, and RUB as OTC with BTC Escrow.
  - BitMarket.co Trade your BTCs for Colombian Peso (COP) as OTC with BTC Escrow.
  - BitPiggy Trade your BTCs for AUD (Bank transfer).
  - BTCinstant.com Trade bitcoins for Virtual Credit Card (VCC, and specifically Virtual Mastercard brand) sent through e-mail.
  - BlockChain.info Convert bitcoins to MoneyPak straight from your Blockchain wallet (serviced from BTCPak).
  - BTC Buy Simple interface to trade your BTCs for Amazon, Barnes & Noble, NewEgg, ThinkGeek and Sears gift cards
  - BTCJoe.com Trade bitcoins for Amazon gift codes and iTunes (USD).
  - BTCPak EXCHANGE YOUR BITCOINS FOR MONEYPAK: SECURE, ANONYMOUS AND EASY!
  - btcx.se / Btcx Sweden || 0% above 80 btc || SEK || Bank transfers to most Swedish banks within 4-12 hours.
  - Canadian Bitcoins Buy/Sell Bitcoins in CAD and receive Cash, Cheque, Bank Transfer (TD Person Pay) or Interac.
  - Cartão BitCoin Convert your bitcoins to reload your debit card (offered to Brazilians, accepted at 10,000 locations in Brazil)
  - Coin2Pal Sell your Bitcoins and receive PayPal funds immediately.
  - Coinabul Trade your BTCs for Gold/Silver
  - Coinbase Sell bitcoins with proceeds delivered as a bank transfer (U.S.). Instant verification available for new accounts.
  - ECurrencyZone Cash out bitcoins to INR, BDT, MYR, SGD via bank transfer or cash deposited to your bank account. Also to Western Union, Moneygram, Citibank global funds transfer, Paypal, Skrill/Moneybookers, Payza/AlertPay, OKPay. Convert to digital currencies Liberty Reserve, C-Gold, Perfect Money, WebMoney and EGOPay.
  - FastCash4Bitcoins Sell your BTC and receive cash today. Over 100,000 BTC bought. Payments issued using your choice of PayPal, Dwolla, ACH (Direct Deposit), Bank Wire, Company Check, Cashier’s Check, or MoneyPak.
  - Mang Sweeney Use bitcoins to send remittance payments to the Philippines, in-person cash out in metro Manilla or from various remittance centers. Languages: English, Filipino.
  - Lilion Transfer Exchanges bitcoins for Liberty Reserve, Pecunix, AlertPay, Skrill/Moneybookers, PayPal, and more.
  - Nanaimo Gold Redeem bitcoins for Liberty Reserve (automated) or for money transfer, money order or direct deposit within Canada.
  - Spend Bitcoins Sell bitcoins for AUD (Australia). Redeem for bank transfer, AustPost reloadable VISA, bill payment and other various methods.
  - WM-Center Buy/Sell BTCs with withdrawal to International bank wire (USD, GBP, EUR/IBAN, RUB, AUD), Western Union, Moneygram, Liberty Reserve USD/EUR, Perfect Money USD/EUR, Pecunix, Paxum, c-gold, Hoopay, Anelik, Xoom, Skrill/Moneybookers, Neteller, cash, etc. 24/7/365 support in english, spanish and russian.
  - LocalBitcoins.com Location-based bitcoin to cash exchange.

http://uscyberlabs.com/blog/wp-content/uploads/2012/09/hax_01.jpg

11/19/12

Money Laundering scenes in -The Digital World

gAtO look - at 2 different Money Laundering scenes in -The Digital Virtual World-

Games:

Farmville, Second Life and World of Warcraft these 3 games have been used by organize crime for money laundering. here are 2 examples —

How2-1- An item in a virtual game world have value in the real world – In China (game sweatshop-and other places) they set up sweat shops for games and get people to play the game. Then they take any magical Item that they find and they pay them off but then take the Item and sell it to other players for big bucks. It’s a a game sweatshop – When they setup shop in small Chinese towns this is an attraction and people flock to free games and computers. game sweatshopsound’s like not a big deal but they make them play for 20-22 hours a day slave labor for game items…

Mapping out the BitCOin

How2?2 Stolen Credit Cards Launder Money in the Game World: Now we take the same game and show you how criminals use games to pass profits from stolen credit cards. This is another way that the criminals scam CC. We know Credit Cards (CC) number are stolen every other second in cyberspace so now they take these credit cards and buy virtual Items in these game sites and then sell them to others for clean money. This simple method works they setup an account milk it for a few weeks and then destroy it and move on to the next ID.

DC -Digital Currency – Launder CASH to Bitcoins

So if a CrimeBoss has a lot of cash he can send his men down to-// Walmart, 7/11 or CVS Pharmacy -// and purchase MoneyPak then they can setup accounts online and exchange these MonyPaks to Bitcoins (how about MrBitCoin)- Now once in this world they can be exchanged for goods and service and even converted to Pre-loaded $$ CC (Credit cards) and just spend the new clean money anywhere they want to. Also even if they get busted they get to keep their BitCoins ?WHY? because they forgot the password to their wallets and without the password well the government does not get the money. As MrBitCoin shows below – it’s international so we can now take money from USD and convert it to AUD- RUB- BRL- INR and it goes thru non of the traditional channels. Why doesn’t Law enforcement tackle this in your face transfer of wealth – evil global backers- are keeping and eye on all these affairs..

— If you rob a bank you go to jail – a bank robs you they get a raise — this all may be changing the order of things..

MrBitCoin – https://www.mrbitcoins.com

Fixed Rate

AUD (Cash deposit – Westpack and Commonwealth Bank)

USD (Major banks, 7-11, Walmart, CVS)

RUB (Qiwi and Cyberplat through BitInstant)

BRL (Boleto through BitInstant)

INR (Cash deposit – HDFC Bank)

Problems: Bitcoins cannot be traced back to the Owner

Since 9/11, counter-terrorist agencies have tracked the flow of money to identify transactions that match the profile for money laundering or involve the account of a person suspected of terrorism or with links to a terrorist network. Agencies are empowered to instantly freeze such accounts. With BitCOins this cannot be done – the Wallet is encrypted with a password so unless they are legally forced (or tortured ) to give the passwords – these laws will have to change to adapt to the new Digital Currency (DC) and how things work. The global bankers will have to adapt or their industry will die.

The theory is that, by denying terrorist and criminals groups access to their money, authorities can stop them buying munitions and small arms and paying for suicide bombers. This approach has been highly successful in identifying and dismantling terrorist networks. Now they need to adapt and learn how this new DC works because it cannot be stopped.

A few days ago WordPress (bloggin platform) the 3rd largest Web-App in the world accepted Bitcoins the Bitcoin market responded because now as more and more merchants use Bitcoins they cannot stop the flow. People are free to spend their money and the capitalist love it when people spend money – Come on GOLD is nothing but a ROCK – when your hungry Gold do do a thing folks…

Merchant will use Visa, PayPal BitCoins and they will see the lowest transaction fee’s they seen in years PayPal and Visa charge up to 3% but Bitcoins can be as low as .005% that’s a very small chunk of the profits so business will like that more. You can’t print any more Bitcoins that is controlled by Math and crypto – So “eveil global banker” your move next – you can’t say only criminals use Digital currencies legit business use it now – So get ready cause here it comes - gAtO OuT

http://uscyberlabs.com/blog/wp-content/uploads/2012/11/currency_DC__06060606-169x300.png

10/31/12

Happy Satoshi Nakamoto -Bitcoin- Day Nov 1

gAtO wAs- thinking about one of my heroes SATOSHI NAKAMOTO only 4 years ago November 1, 2008 he posted the research paper describing a new digital currency called BITCOIN. He cracked the problem that had stumped cryptographers for decades a DIGITAL CURRENCY convenient and untraceable with no over site from any government or bank.

STOP RIGHT HERE -money $$ with – NO GOVERNMENT – NO BANKS

gAtO’s –> gAtOmAlO sAy – I am Satoshi Nakamoto

Ecash was the first as early as 1990’s but they failed because they relied on governments, banks and credit card companies. Banks and governments own us, the bank owns your house that your paying off, You pay tax’s on your property while the bank owns it. We all pay interest and the bankers live only for interest.

As anyone can see it’s in the ~~best interest of all banks and governments~~ that all world wide digital currency fail, unless they control it. It’s NOT only numbers, math and cryptology that makes these bankers shake in fear. But losing control of peoples moneys. Who Wins? It’s the people immune to printing press happy -Federal Reserve bankers having all the control. The bankers cannot control this new digital currency control by people that have Nose rings -/ so they vilify these people -/cyberpunks that spread the word of their guilt. They make Bitcoins evil- Wikileaks is evil -the scum in the black market like Silk Road- and Black MArket Reload use it so it’s evil –with your logic all Bitcoin is evil,

So congressman, senator when you paid that hooker on our tax dollar, when you pay the young man to have sex with you from Ohio – the swing state –/ the US money you use is as EVIL as Bitcoin because it was used in a evil crime…. Evil is evil, money is money. simple to gATO sorry I rage—-

Political pressure has been payed by the banker to People like Senator Schumer which I used to like SCREAMED at the DEA to SHUT DOWN Silk Road which he called “the most brazen attempt to peddle drugs online that we have ever seen” – Yeah Silk Road is still ONLINE last I check. I guess the DEA can’t mess with cryptology and math. It’s science guy’s it basic and simple and elegant and it works. Tor onion network uses math and cryptology and it works so why can’t a digital currency like Bitcoin work.

BITCOIN CANNOT WORK – it’s beta software boy and girl – SATOSHI told us before he disappeared (2010) as he appeared ” in mystery” . SATOSHI is a cult hero “invisivle and anonymous”- he warned us when he saw Wikileaks use Bitcoins as a donation tool -(this was the introduction of BITCOINS to the whole wide world -/- that it was still to early -/Bitcoin was only 2 years old at the time/ – SATOSHI final words were “Bitcoin is pocket change (21 Million max Bitcoins) the heat you bring (from the exposure to the gov’s and banks and the world) would likely destroy us at this stage”.

SATOSHI was trying to warn us that the Software Bitcoin is only the beginning of digital currency. As gAtO see’s it in his loco-world mind view —/ If the people control their own money, next people will want to govern themselves and THEY have seen the effects of the Arab Spring and other cases were “the people” took back their country back from currupt politicians. Follow the -DIGITAL currency – gAtO oUt

http://uscyberlabs.com/blog/wp-content/uploads/2012/03/gato_01-148x150.jpg

10/31/12

How to- Digital Money Laundering

=-=-=-=-=-=-=-=-=-=-=-=-=-= EDUCATIONAL ONLY =-=-=-=-=-=-=-=-=-=-=-=

People that rob banks go to JAIL - Banks that Rob People get a Bonus

gAtO rEaD - On October 30, 2012 yesterday the Times reported Iraq-reports on Money-Laundering on how 800 million American dollars is being sent out of the country each week. It’s not only drug lords, terrorist and government-agencies with 3 letters that play this game. Hiding money is as normal to a private equity firm as it is to a commercial cyber criminal. So let’s define this…/

I will only use BitCoin in this example because it’s the one digital currency that I understand the best today, but there are other digital currencies that work just the same way..

— “Money laundering is called what it is because that perfectly describes what takes place – illegal, or dirty, money is put through a cycle of transactions, or washed, so that it comes out the other end as legal, or clean, money.” —

There are 3 stages of money laundering – Placement, Layering and Integration.

Placement: So the first step of hiding the cash is to get it out of your hot little hands. Most popular way of doing this? Putting it into digital currency (like BitCoins) or any non-fiat currency.

Layering: In a traditional money laundering, the next thing to do is farm out all of that cash into so many complicated transactions that the poor tracker assigned to your case loses his mind and decides to give up.

With Bitcoins it becomes a different puppy because they allow all transactions to be viewed – all transactions are public but all the wallets are private – There are services that claim to strip away at the least 3 wallets but I have not verified this, but if you want to give your Bitcoins to someone else and they will give you washed coins back in the digital black market -there’s a sucker born every second -were nobody knows your name – well it’s not a good thing and a possible point of LE (law Enforcement to get you)…

Integration: Coversion of Bitcoins to fiat greenBacks – cash is going to be the tricky part but in todays world you can get a different ID in a few days and once you have a legit Money drop not traceable to you – your Bitcoins can come from one of many Digital exchanges. See chart below it’s old 2010 but you can see how conversion of digital currency is really easy.

Excahnge Money Place – http://www.exchangemoneyplace.com and here is a http://goldexpay.com were you can also but Skype, uKash, World of Warcraft, Betamax, Amazon, Paysafe and others, LibertyReserve to Payza, Instant Exchange Liberty, Perfect Money, Pecunix, V-Money, WebMoney, Payza, PaYPaL,Lr,UkAsH,Mb,NeTeLLeR,Pm,LiqPay,CaShU,ALeRTP aY,PaYPaL VcC ExChAnGe SeRViCe

I wish it was harder but it’s not – Moneygrams, S.w.i.f.t Money transfer or xBox Dollars- all can be had once you have your digital cash. Money laundering is easy in todays digital world but it’s has to go slow and easy. As our current Presidential candidate Mitt Romney has shown us all if you plan right you can bury your cash in all kinds of deals - gATO OuT

Digital Currency ExchangeExchangers

Comparison of Digital Currency Exchangers (DCEs) as of 18 April 2010:

Digital Currency Exchanger	Yearfounded	GDCAmember	Telephone	Telefax	email	Digitalcurrencies (DC) accepted	Fiat currencies accepted	Fee buying DC	Fee selling DC	Fee exchanging DC to DC
WMXchange.net	2009					10	any	5-8%	5–8%	0-5%
LinkflyExchange.com	2010					6	any	1–3%	1–3%	1–5%
wmBroker.eu	2008					11	any	0–3%	0–3%	3–5%
e-forexgold.com	2000					7	any	2–5%	2–7.5%	3–7.5%
PlanetWM.com	2009					7	3	1–5%	1–5%	1–8%
Money Central Market	2007					2	3	2.99%-4.99%	4.99%-6.99%	0–5%
CurrEx	2007					3	0	N/A	N/A	0–5%
SaveChange.ru	2007					5	0	3%–5%	5%	0–5%
Euro Gold Sales	2004					2	3	2.5%–4%%	1.9%	N/A
ExchEngine	2004					5	?	?	?	?
GoldExchange.eu	2005					3	2	1.9–2.9%	1.9%	N/A
ecardone.com	2009					3	2	1.9–2.9%	4.0%	-5%+5%
GoldNow	1999					4	9	5%	5%	5%
goldtotem	2005					4	3	3–5%	0.75–1.5%	1.5–3%
IntlExchange.com	2005					9	10	2%	1%	1.5%
citichanger.com	2010					5	5	US$2.00	US$2.00	US$2.00
NetPay	2001					?	?	?	?	?
ROBOXchange	2002					14	0	N/A	N/A	1–5%
SpeedyExchange	2003		(answerphone)			7	3	8–13%	1.5–9%	0.3–4.4%
Webmoney.co.nz	2004					3	1	5–7%	3%	0–5%
Wm-center.com	2005					11	3	1.5–6%	1–8%	0–10%

=-=-=-=-=-=-=-=-=-=-=-=-=-= EDUCATIONAL ONLY =-=-=-=-=-=-=-=-=-=-=-=

—Reference:

http://www.cs.utah.edu/~kmay/look/digital/Laundry.htm

http://www.forbes.com/sites/lawrencehunter/2012/10/29/are-federal-reserve-regulated-banks-laundering-dirty-money/

http://uscyberlabs.com/blog/wp-content/uploads/2012/10/mony_exchange-240x300.jpg

06/27/12

E-Commerce in the Black Market

gAtO hAs - found that e-commerce in the Black Market in the Tor-onion network is a little different than e-commerce in the clear web. Places like the Silk Road that deal with illegal drugs and other black market marketplaces have a lot to think about when they do business and the customers of these services have similar problems that can open them up to being caught and prosecuted. There a few thing that we must examine to understand e-commerce in the deep dark web. Once again gAtO does not recommend doing business with the black market but from a technical and SE view of how these transactions happened we may learn something. I have learned that China,Iran and Syria look for Tor traffic because of the fingerprint of the traffic stream – Tor traffic is padded to 512 byte size packets, normal VPN is not. But we know that the Tor-Project team is working on new and better ways to hide Tor fingerprint so everything is evoling.

Here are a few notes I found that makes you think – mAyBe sI-nO:

Conceal your membership (VERY IMPORTANT FOR VENDORS)

Using Tor by itself is not enough to protect you, particularly if you are a vendor. Membership revealment attacks combined with rough geolocation intelligence can lead to a compromise! The gist of a membership revealment attack is easy to understand. The attacker merely determines everyone who is connecting to a particular network, even if they are incapable of determining where the traffic being sent through the network is destined for. Tor does a good job of preventing an attacker who can see exit traffic from following the stream back to your location. Unfortunately, if you ship product the attacker can determine your rough geolocation merely by determining where you ship product from. If the attacker already knows your rough geolocation and they are capable of doing a membership revealment attack to determine who all in your area is connected to Tor, they can likely narrow down your possible identity to a very small set size, possibly even a set size of one.

This is not likely to be useful for evidence but it will provide strong intelligence. Intelligence is the first step to gathering evidence. The attacker may put everyone in your area who they detect are connecting to the Tor network under meatspace surveillance looking for evidence of drug trafficking activity. For this reason it is highly important that you protect yourself from membership revealment attacks!

Membership revealment attacks are less a worry for customers (provided financiall intelligence is properly countered to avoid an attacker finding rough customer geolocations!) than they are for vendors. There are a few reasons why this is true. First of all a customer is likely to reveal more about their identity when they place an order than the attacker will be able to determine with a geolocation + membership revealment attack. Secondly, the vendors allowed to operate on Open Source have been highly screened to significantly reduce the probability that any of them are federal agents, but the customers on Open Source are not only anonymous but they are also not screened at all. Third of all, the organizational structure reduces the risk for customers; a customer may work with a few vendors but each vendor is likely to be working with hundreds or thousands of customers. Customers sourcing from Open Source are at minimal risk even if they have products delivered directly to there own residence, vendors working on Open Source at particularly vulnerable to membership revealment attacks due to the open nature of the site.

The primary concern for customers is that they load finances anonymously and the vendor decentralizes their financial network. If a vendor is using a star network (centralized) financial topology there is a risk that an attacker could map out the geographic locations where customers loaded funds. After determining where funding was loaded the attackers could do anonymizer membership revealment attacks in an area around the load point and filter out everyone who is not using an anonymizer. This will likely leave the customer and few others. The attacker may even be able to compare CCTV footage of the load to the users of anonymizers in the area and look for a facial recognition match. To counter this it is important for customers to make use of good financial counter intelligence techniques (E-currency layering being one). Customers may also choose to utilize transients by paying them a fee to load currency, this way the customer avoids being on CCTV at any point. If vendors decentralize funding points (ditch the star network topology) customers will be strongly protected from such attacks, however it is impossible for a customer to ensure that a vendor is using a 1:1 customer to account/pseudonym identification ratio.

There are several ways you can protect yourself from a membership revealment attack, if you are a vendor it would be foolish to not take one of these countermeasures. The primary way to protect from a membership revealment attack is to make sure you do not enter traffic through the same network you exit traffic through. As all traffic to Open Source ‘exits’ through the Tor network, entering your traffic through a VPN first will reduce your vulnerability to membership revealment attacks. The attacker will have to determine who all in your area uses any anonymizing technology and put all of them under meatspace surveillance, there are likely to be far more people in your area using some sort of proxy system than there are people using Tor in particular. This will substantially increase the cost of putting all ‘potential targets’ under surveillance.

Using a VPN is helpful but it is not the most ideal solution. Your crowd space against a membership revealment attack will increase but perhaps not by much depending on the particular area you work out of. Also, a particularly skilled attacker may be able to determine you are using a VPN to connect to Tor by fingerprinting traffic streams. Tor traffic is padded to 512 byte size packets, normal VPN traffic is not. By filtering for 512 byte streams, an attacker can determine who all is using Tor in a given area. VPN’s protect from IP routing based membership revealment attacks but not from traffic fingerprinting membership revealment attacks. However, it is less likely that an attacker will be able to do a traffic fingerprinting membership revealment attack. The Chinese intelligence services apparently are still using IP address based attacks to block access to the Tor network. This is not nearly as effective as traffic fingerprinting based attacks. This could be an indication that traffic fingerprinting membership revealment attacks are more difficult to carry out (likely), however it could also be due to a lack of skill on the part of Chinas intelligence services. It could also be that China is not particularly interested in blocking/detecting all Tor traffic and IP address based attacks meet their requirements.

A better option than using a VPN would be to set up a private VPS and then enter all of your Tor traffic through this. Doing this will make you much more resistant to IP address based membership revealment attacks because now the attacker will not even be able to narrow you down to all people in your area using any anonymity technology. This is still weak to traffic fingerprinting membership revealment attacks!

Perhaps the best option to avoid membership revealment attacks is to use open or cracked WiFi from a different location + Tor every single time you connect. You could even use open Wifi + VPN/VPS + Tor for very high security from membership revealment attacks. Using random (not your neighbors) open/cracked WiFi greatly increaces your resistance to a wide variety of identity revealing attacks. An attacker can still do membership revealment attacks on users of open WiFi but they can no longer gain useful intelligence from the attack. If they detect that an open WiFi connection unrelated to you is using Tor it can not be used to put you under meatspace surveillance unless they manage to identify you (facial recognition from CCTV cameras, etc).

If you are operating as part of a group you can avoid membership revealment attacks via smart organizational policy. The person responsible for communicating with customers should be different from the person shipping orders. Now the customers are incapable of determining where your actual rough geolocation is because product is sent from a different geographic area than you communicate from. Your shipper should be aware that they will potentially come under scrutiny via a geolocation + membership revealment attack, especially if they use Tor to enter traffic.

Another option is to configure Tor to use a bridge. Tor bridges are designed to allow people in nations such as China the ability to connect to the Tor network. China uses IP address based blocking to prevent users from connecting to known Tor nodes. Bridges are Tor entry guards that are not publicly listed and have a limited distribution mechanism. You can get some Tor bridge IP addresses from the Tor website. We do not suggest you use Tor bridges because they replace your entry guard and they are under crowded. This will lead to a lot less multiplexing on your Tor circuit and can hurt your anonymity in other ways, although it will indeed offer some level of protection from membership revealment attacks. China has managed to detect about 80% of Tor bridges, it is likely that NSA knows all of them. Police agencies in the West are probably not yet particularly worried about locating bridge nodes but they can probably do so with near the same accuracy as China. In our opinion it is not smart to rely on a Tor bridge to protect you from membership revealment attacks in most cases.

Step Four: Know how to do safe product transfer, handle finances safe

Note: Although customers sourcing from Open Source are encouraged to take the best security measures they can, it is not likely required for them to utilize advanced operational security regarding mail (such as fake ID boxes, tactical pick utechniques, etc). Because the vendors allowed to be listed here have been highly screened it is likely safe for customers to have product delivered directly to their homes. If you only work with highly trusted and trusted vendors your biggest concern will be a package being intercepted!

Online Verification Procedures
Over the years, I’ve come across dozens of procedure lists for top-tier merchants regarding online transations and fraud reduction. I’ll detail several companies verification procedures below.

While most virtual carders are aware of the various procedures in place to verify orders placed online, few actually understand the implementation of fraud scoring, and the order in which these verification methods are used.
The Risk Management Toolkit

AVS
CVV
IP/GEO/BIN
Cardholder Authentication (VbV/MSC)
Phone Verifications
Manual Order Reviews
Chargebacks & Representments
PCI Compliance & Data Security

AVS – Address Verification Service

How It Works

Provides a Match or Non-Match Result for only the Billing Street # and Billing Zip Code… not the actual address. (i.e. “1234 Test Street” is parsed into “1234” just the same as “1234 Wrong Way” would be).

Implementation

Available on any Internet merchant account and virtually any Payment Gateway.

Most gateways provide an AVS configuration area where you can specify whether you want to automatically“decline” (i.e. do not settle) an authorization that has an AVS mis-match or non-match.

Benefits

Easy to implement Limitations

Works only for U.S., CND, U.K. cardholders so this does not help you scrub most international transactions.

A growing % of compromised credit cards – especially those obtained through inside jobs or hacked databases– will also contain the necessary information to provide a valid AVS match result.

Recommendation

If you handle a mix of int’l and U.S. sales, you will want consider scrubbing with AVS on the U.S. transactions but do NOT scrub via AVS for any international transactions as they will always fail. AVS should not beconsidered a primary means of verifying the validity of a transaction. Nearly 20% of the fraud can potentially be eliminated by scrubbing “Non-Matched” AVS match results.

CVV – Card Verification Value

How It Works

A service with many names – CVV2, CVC2, CID – but the premise is the same for all.

Provides a Match or Non-Match Result for the 3-digit or 4-digit number embossed on the back of the cardholder’s card. The CVV is NOT generally encoded on the magnetic stripe and therefore is less likely to be captured as part of a card skimming tactic.

Implementation

Available on any Internet merchant account and virtually any Payment Gateway.

Most gateways provide an CVV configuration area where you can specify whether you want to automatically “decline” (i.e. do notsettle) an authorization that has an CVV non-match or non-entry.

Benefits

Works for virtually ALL cardholder accounts – both U.S. and international.

There is no valid reason why a legitimate cardholder, in possession of the card, would not be able to enter a 100% matching numberfor this.

Merchants are not allowed to store CVV and as such the CVV # is less vulnerable than the data used for AVS.

Limitations

CVV data can only be used for a real-time transaction. CVV data can not be stored and therefore can not be utilized for Recurring Transactions.

Recommendation

CVV is a recommended service to utilize for ALL initial transactions processed. Based on our internal charge-back analysis, merchants can reduce their fraud ratesby as much as 70% by simply requiring a matching CVV result.

IP/GEO/BIN Scrubbing

How It Works

Compares the IP address of the customer purchasing with their stated geographic location (i.e. why is the customer from California ordering from Europe?)

Compares the BIN # (first 6 digits) of the credit card with the IP or stated geographic location of the customer (i.e. the customer isusing an US-issued credit card but they are from Europe?)

Based on the IP and BIN # and other customer-inputted data, a vast amount of information can be returned on the transaction.

Implementation

Custom direct integration into a service such as MaxMind.com

Use an existing integration that is part of a Shopping Cart such as X-Cart, LiteCommerce, osCommerce, ZenCart,ASPDotNetStorefront.

Use an existing integration that is part of a Billing System such as WHMCompleteSolution, ClientExec or Ubersmith.

•Use an existing integration that is part of a Payment Gateway such as the Quantum Payment Gateway.

Benefits

Fast, Cost Effective and Non-Intrusive

Provides merchants with an excellent “do the pieces fit consistently?” analysis.

Can block up to 89% of all fraud if properly implemented

Limitations

Generally not reliable for AOL users due to the way that AOL routes its traffic (AOL users require a merchant-specific approach)

Proxy database is always in a real-time process of being updated as new proxies open up.

Recommendation

IP/GEO/BIN fraud scores should be used in the order evaluation process more as a means of flagging transactions as “high risk” formore intensive scrubbing vs. being an outright decline.

Examples of what IP Geo-Location can tell you:

YELLOW ALERTS

Free E-mail Address: is the user ordering from a free e-mail address?
Customer Phone #: does the customer phone # match the user’s billing location? (Only for U.S.)
BIN Country Match: does the BIN # from the card match the country the user states they are in?
BIN Issuing Bank Name: does the user’s inputted name for the bank match the database for that BIN?
BIN Phone Match: does the customer service phone # given by the user match the database for that BIN?

RED ALERTS

Country Match: does the country that the user is ordering from match where they state they are ordering from?
High Risk Country: is the user ordering from one of the designated high risk countries?
Anonymous Proxy & Proxy Score: what is the likelihood that the user is utilizing an anonymous proxy?
Carder E-mail: is the user ordering from an e-mail address that has been used for fraudulent orders?
High Risk Username/Passwords: is the user utilizing a username or password used previously for fraud?
Ship Forwarding Address: is the user specifying a known drop shipping address

IP/GEO/BIN Scrubbing (Continued)

Open/Anonymous Proxies: an open proxy is often a compromised “zombie” computer running a proxy service that was installed by a computer virus or hacker. The computer is then used to commit credit card fraud or other illegal activity. In some circumstances, an open proxy may be a legitimate anonymizing service that is simply recycling its IP addresses. Detecting anonymous proxies is always an on going battle as new ones pop up and may remain undetected for some time.

26% of orders placed with from open proxies on the MaxMind min Fraud service ended up being fraudulent. Extra verification steps are strongly recommended for any transaction originating from anopen/anonymous proxy.

High-Risk Countries: these are countries that have a disproportionate amount of fraudulent orders, specificallyEgypt, Ghana, Indonesia, Lebanon, Macedonia, Morocco,Nigeria, Pakistan, Romania, Serbia and Montenegro, Ukraine and Vietnam. 32% of orders placed through the MaxMind min Fraud service from high-risk countries were fraudulent. Extra verification steps should be required for any transaction originating from a high risk country.

Country Mismatch: this takes place when the IP geolocation country of the customer does not match their billing country. 21% of orders placed with a country mismatch on the MaxMind m******* service ended up being fraudulent. Extra verification steps are recommended for any transaction with a country mismatch.

Results that speak for themselves:

ChangeIP – is a DNS and domain name registration provider. The company provides free and custom Dynamic DNS services to more than 50,000 users. Before implementing MaxMind, ChangeIP was losing as much as $1,000 per month because it sold instantly delivered digital goods and could not recover the losses if the purchase turned out to be fraudulent. After implementing MaxMind, losses were reduced by 90%.

MeccaHosting – is a Web hosting company based in Colorado. Since integrating MaxMind, Mecca Hosting has not received a single chargeback. On average, 12-15 fraudulent orders pass through the in-house checks each month but are flagged by MaxMind. Over the last 5 months, this has saved MeccaHosting atleast 60 chargebacks and $6,000 in unnecessary costs.

Red Fox UK – is a Web hosting provider and software development company based in the UK which offers solutions for smalland medium sized businesses all over the world. By using MaxMind, Red Fox UK was able to increase its revenue by 4% while reducing its chargebacks by 90%.

365 Inc. – is a digital media and e-tailer specializing in soccer & rugby with a large international customer base that processes over 10,000 transactions per month. By integrating MaxMind, chargebacks were reduced byover 96% from more than $10,000 per month to less than $500 per month. At this point, most charge backs are general order disputes as opposed to fraud.

Whew. A lot of editing. I’ll post the remainder in a bit.

Online Verification Procedures
Over the years, I’ve come across dozens of procedure lists for top-tier merchants regarding online transactions and fraud reduction. I’ll detail several companies verification procedures below.

AVS
CVV
IP/GEO/BIN
Cardholder Authentication (VbV/MSC)
Phone Verifications
Manual Order Reviews
Chargebacks & Representments
PCI Compliance & Data Security

AVS – Address Verification Service

How It Works

Provides a Match or Non-Match Result for only the Billing Street # and Billing Zip Code… not the actual address. (i.e. “1234 Test Street” is parsed into “1234” just the same as “1234 Wrong Way” would be).

Implementation

Available on any Internet merchant account and virtually any Payment Gateway.

Most gateways provide an AVS configuration area where you can specify whether you want to automatically“decline” (i.e. do not settle) an authorization that has an AVS mis-match or non-match.

Benefits

Easy to implement Limitations

Works only for U.S., CND, U.K. cardholders so this does not help you scrub most international transactions.

A growing % of compromised credit cards – especially those obtained through inside jobs or hacked databases– will also contain the necessary information to provide a valid AVS match result.

Recommendation

If you handle a mix of int’l and U.S. sales, you will want consider scrubbing with AVS on the U.S. transactions but do NOT scrub via AVS for any international transactions as they will always fail. AVS should not beconsidered a primary means of verifying the validity of a transaction. Nearly 20% of the fraud can potentially be eliminated by scrubbing “Non-Matched” AVS match results.

CVV – Card Verification Value

How It Works

A service with many names – CVV2, CVC2, CID – but the premise is the same for all.

Provides a Match or Non-Match Result for the 3-digit or 4-digit number embossed on the back of the cardholder’s card. The CVV is NOT generally encoded on the magnetic stripe and therefore is less likely to be captured as part of a card skimming tactic.

Implementation

Available on any Internet merchant account and virtually any Payment Gateway.

Most gateways provide an CVV configuration area where you can specify whether you want to automatically “decline” (i.e. do notsettle) an authorization that has an CVV non-match or non-entry.

Benefits

Works for virtually ALL cardholder accounts – both U.S. and international.

There is no valid reason why a legitimate cardholder, in possession of the card, would not be able to enter a 100% matching numberfor this.

Merchants are not allowed to store CVV and as such the CVV # is less vulnerable than the data used for AVS.

Limitations

CVV data can only be used for a real-time transaction. CVV data can not be stored and therefore can not be utilized for Recurring Transactions.

Recommendation

CVV is a recommended service to utilize for ALL initial transactions processed. Based on our internal charge-back analysis, merchants can reduce their fraud ratesby as much as 70% by simply requiring a matching CVV result.

IP/GEO/BIN Scrubbing

How It Works

Compares the IP address of the customer purchasing with their stated geographic location (i.e. why is the customer from California ordering from Europe?)

Compares the BIN # (first 6 digits) of the credit card with the IP or stated geographic location of the customer (i.e. the customer isusing an US-issued credit card but they are from Europe?)

Based on the IP and BIN # and other customer-inputted data, a vast amount of information can be returned on the transaction.

Implementation

Custom direct integration into a service such as MaxMind.com

Use an existing integration that is part of a Shopping Cart such as X-Cart, LiteCommerce, osCommerce, ZenCart,ASPDotNetStorefront.

Use an existing integration that is part of a Billing System such as WHMCompleteSolution, ClientExec or Ubersmith.

•Use an existing integration that is part of a Payment Gateway such as the Quantum Payment Gateway.

Benefits

Fast, Cost Effective and Non-Intrusive

Provides merchants with an excellent “do the pieces fit consistently?” analysis.

Can block up to 89% of all fraud if properly implemented

Limitations

Generally not reliable for AOL users due to the way that AOL routes its traffic (AOL users require a merchant-specific approach)

Proxy database is always in a real-time process of being updated as new proxies open up.

Recommendation

IP/GEO/BIN fraud scores should be used in the order evaluation process more as a means of flagging transactions as “high risk” formore intensive scrubbing vs. being an outright decline.

Examples of what IP Geo-Location can tell you:

YELLOW ALERTS

Free E-mail Address: is the user ordering from a free e-mail address?
Customer Phone #: does the customer phone # match the user’s billing location? (Only for U.S.)
BIN Country Match: does the BIN # from the card match the country the user states they are in?
BIN Issuing Bank Name: does the user’s inputted name for the bank match the database for that BIN?
BIN Phone Match: does the customer service phone # given by the user match the database for that BIN?

RED ALERTS

Country Match: does the country that the user is ordering from match where they state they are ordering from?
High Risk Country: is the user ordering from one of the designated high risk countries?
Anonymous Proxy & Proxy Score: what is the likelihood that the user is utilizing an anonymous proxy?
Carder E-mail: is the user ordering from an e-mail address that has been used for fraudulent orders?
High Risk Username/Passwords: is the user utilizing a username or password used previously for fraud?
Ship Forwarding Address: is the user specifying a known drop shipping address

IP/GEO/BIN Scrubbing (Continued)

High-Risk Countries: these are countries that have a disproportionate amount of fraudulent orders, specificallyEgypt, Ghana, Indonesia, Lebanon, Macedonia, Morocco,Nigeria, Pakistan, Romania, Serbia and Montenegro, Ukraine and Vietnam. 32% of orders placed through the MaxMind min Fraud service from high-risk countries were fraudulent. Extra verification steps should be required for any transaction originating from a high risk country.

Results that speak for themselves:

This is only a small part of the e-commerce as you can see there are lot’s of opinions on how to do business in the Black market and understanding how it’s done can help us to figure out solution for legit business in the future. - gATO oUt

contraseña vIeJa

Tor OR-relay map of Italy

Finding Tor Websites –geo-location

Mapping Tor

Tor – Unix Commands

Tor Tells It’s Secrets

Tor is NOT the ONLY Anonymous Network

China Hackers found in Tor

Finding the Bad Guy’s in Tor -triangulated irregular network

Tor Website 36% are Criminals Sites

Mapping Tor Websites

Currency of the Cyber Economy

Cyber Women and Hollywood

China Cyber Attack -AGAIN

Offensive Cyber Capabilities

Is the TorProject protecting Pedos?

Government Spying on everyone -Thanks Microsoft

PEDO’s gAtO is Hunting YOU!

MtGox scam attempt

Tor Users in South America

Happy Birthday Bitcoin -Book Release Jan 9

@gAtOmAlO2 tweets
Loading tweets ...
Follow @gatomalo2 on twitter.

-0-1-0-1-0-1-0-1-0-1-0-1-
.onion network Anonymous Banks BitCoins Black Hats China Attacks china cyber china espionage China Hack China security Chinese Goverment cyber-spies cyber-thieves Cyber Criminals Cyber Dissident Cyber Espionage Cyber Financial Cyber Intelligence Cyber Monitoring Cyber Notebook Cyber Policies Cyber Politics Cyber Reputation Cyber Revenue Cyber Strategy Cyber Study Cyber Threats Cyber Tools Cyber War Cyber Warfare Cyber Weapon Dark Web Deep Web Goverment Hackers Hacks Hacktivist human rights Information Warefare Infrastructure Notes to Myself Onion Web Social Media ToR Tor Network

mUsIcA by gAtO

Celtic Salsa

d-beat of my heart

classical Maggie

alissa's song

gAtO_jam 01

gravity down

mandy's soundsbox

gAtO_jam 02

1-cry-4-d-night

Copyright Notice 2012

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of USCyberLabs.com and the USCyberLabs member that posted this content--this includes using our RSS feed for any purpose other than personal use. ©Copyright ™uscyberlabs.com 2012

USCyberLabs

Cyber Security Notebook

Category Archives: E-Commerce

Bitcoins are Under Attack

Digital Currency -Why is half the world unbanked?

Bitcoin and Forex Trading

Money Laundering scenes in -The Digital World

Happy Satoshi Nakamoto -Bitcoin- Day Nov 1

How to- Digital Money Laundering

May 2013
M	T	W	T	F	S	S
« Apr
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31