Monday, March 26, 2007

Payment Cards and Money Laundering -- Evidence of Reality?

In our Spring Section Meeting earlier this month, we had an interesting presentation by government and industry folks regarding the potential fraudulent use of payment cards to bypass money laundering laws. While the two groups did not exactly come to agreement, it was this writer's thought that neither side felt that there was all that much evidence of widespread use of payment cards in other than small-time schemes.

Well...

Just recently Florida law enforcement is reporting that they have discovered that a number of the credit card accounts that were the subject of the recent T.J. Maxx hacking incident, where many thousands of credit card numbers were likely revealed, were eventually used to buy gift cards from Wal-Mart stores -- $18,000 and $24,000 worth in two different Florida stores. In turn the bad guys then used those cards at Sams Club locations to buy electronics. (Recall, of course, that Sams Clubs are part of the Wal-Mart empire, and therefore this seems to have been a scheme entirely within a retailer's own private card system, rather than one involving the credit-card branded cards processed through Visa, Mastercard and the like. Maybe the bad guys thought that the private card issuers would be less diligent than the card association issuers? Who knows...)

  • UPDATE: I've been reminded that the industry terms for those two kinds of cards are 'open loop' (the kind that is branded with VISA or MASTERCARD and is usable pretty much anyplace that can accept credit cards) versus 'closed loop' (the kind that is branded by one particular retailer, for example, and is usable only in that retailer's own stores).


Apparently somebody at Wal-Mart eventually took note of the large card purchases, and ultimately they were able to connect the cards to the T.J. Maxx hacking incident.

This isn't the cross-the-border sort of money laundering that we were discussing in Washington. Nonetheless, these guys certainly viewed the gift cards as another way to 'wash' their stolen credit cards, since the only time the stolen cards would have been used was when the gift cards were purchased rather than at the time the electronics were being purchased.

The good news is that the systems that might catch this seem to have worked (of course, we can say that only for the attempts we know about). The bad news is that maybe the 'hype' isn't quite as 'hypey' as we might have thought.

2 comments:

shannon said...

the ones who stole these credit cards are so foolish! i would think if you didn't want to get caught you wouldn't be so conspicuous about it... i'd like to know why wal-mart in the first place allow such high-dollar credit card transactions to go through in the first place, without some kind of extra security check, ID check, or voice authorization. it seems to me that if someone wanted to spend THAT MUCH MONEY at wal-mart, they couldn't possibly be being honest about it.

satxxkenn said...
This comment has been removed by a blog administrator.