Quote:
Originally Posted by DawnShadow
They could have previously figured out the pin before the exploit was supposedly taken care of
|
The way it works is they're constantly polling a “check your card balance” page with each card number and then every possible PIN combination. If it returns a balance, they know they've cracked the pin on the card. If the card hasn't been purchased and activated, it won't return a balance.