Content deleted Content added
GreenC bot (talk | contribs) Rescued 2 archive links. Wayback Medic 2.5 per Category:All articles with dead external links - pass 5 |
Rescuing 1 sources and tagging 0 as dead.) #IABot (v2.0.9.5) (Eastmain - 23520 |
||
Line 61:
* Some card issuers do not use the CSC. However, transactions without CSC are possibly subjected to higher card processing cost to the merchants,{{citation needed|date=March 2014}} and fraudulent transactions without CSC are more likely to be resolved in favour of the cardholder.{{citation needed|date=June 2014}}
* It is not mandatory for a merchant to require the security code for making a transaction, so the card may still be prone to fraud even if only its number is known to phishers. For example, [[Amazon (company)|Amazon]] requires only a card number and expiration date to complete a transaction.
* It is possible for a fraudster to guess the CSC by using a distributed attack.<ref>{{cite web | url = https://nakedsecurity.sophos.com/2016/12/05/how-to-guess-credit-card-security-codes/ | title = How to guess credit card security codes | last = Ducklin | first = Paul | date = 5 December 2016 | website = naked security by SOPHOS | access-date = 8 December 2016 | archive-date = 6 December 2016 | archive-url = https://web.archive.org/web/20161206150334/https://nakedsecurity.sophos.com/2016/12/05/how-to-guess-credit-card-security-codes/ | url-status = dead }}</ref>
== See also ==
| |||