Manipulation and Abuse of the Consumer Credit Reporting Agencies

Presented at DEF CON 17 (2009), Aug. 1, 2009, 4 p.m. (20 minutes)

This talk will present a number of loopholes and exploits against the system of consumer credit in the United States that can enable a careful attacker to hugely leverage her (or someone else's) credit report for hundreds of thousands of dollars. While the techniques outlined in this talk have been used for the personal (and legal) profit by a small community of credit hackers, these same techniques could equally be used by more nefarious persons { that is, criminals willing to break the law, engage in fraud, and make off with large sums of money. The purpose of this talk is to shed light on these exploits, to analyze them through the lens of the computer security community and to propose a number of fixes which will significantly reduce the effectiveness of the exploits, by both those with good and ill intentions.

Presenters:

• Anonymous Speaker
  Speaker is a Ph.D. candidate at a major US university. He studies security, privacy and technology policy. He has discovered and disclosed security flaws in applications with millions of active users, and is happy to turn his attention to more obscure, yet equally interesting financial, credit and trust exploitation techniques.

Links:

• https://defcon.org/html/defcon-17/dc-17-speakers.html#Anon
• https://www.youtube.com/watch?v=Ke-pXfnPfgY

Similar Presentations:

• DerbyCon 3.0 All in the Family (2013) / Everything you ever wanted to know on how to start a Credit Union, but were afraid to ask.
• DEF CON 12 (2004) / Credit Card Networks Revisted: Penitration in Real-Time
• ToorCamp 2014 / How the Stolen Credit Card Black Market Works