Bigcasino.co.uk excuses for not paying

[kerrywo]

Good day everyone,

Long time reader here was forced to register because of my troubles with bigcasino.co.uk.

My first 3 withdrawals were pretty much instant so I continued to play and won about 1200 gbp and my trouble started. They offered every excuse in the book invluding Neteller technical problems (in the same time withdrawals from other casinos were received without a problem to my Neteller account) additional documents (which I promptly sent) etc. Now they need something else:

"Dear Kerry,

Unfotyunately, we need to perform additional anti fraud verification for your account. Please provide us
with the land line (not cellphone!) number to reach you.

We are not going to call you for any promotional offers, just for security check.

Also please note that as part of an additional security check we may charge your card with random amount up to 1 GBP, and you will have to provide us with the correct amount to prove you are the areal owner of this card.

Sorry, but your withdrawal will remain undone until the verification process is finished.

Regards,
Viktar.
"

Any ideas?

 

[same_old]

This is terrible if you ask me.

However, there is a VERY reputable person here by the name of SLOTMONSTER who either is part owner OR works for the company.

He will chime in here soon I'm sure and get all this sorted for you.

Just be a little patient here and things should work out for you.

Regards,

Sameold

 

[chuchu59]

Is Viktar slot monster by any chance? maybe its best to send him a pm to see if he can help.

 

[same_old]

Yep, Viktars the man for bigcasino I;m pretty sure.

 

[kerrywo]

I actually sent him PM and he suggested to contact him via email. That was his reply

 

[Nifty29]

Not only that, a native English speaker needs to proof read emails as the one below comes across as unprofessional.

There's nothing wrong with people not being able to speak English well, but when it comes to commercial and professional correspondence it needs to be correct.

Just send the email and give him the landline or allow the verification deposit and all your troubles will be over (if you are a legit player of course)

 

[SlotMonster]

Hello everyone,

Thanks for letting me know about this thread.

I will post a reply soon.

Regards,
Viktar.

 

[CasinoBeacon]

Thanks for posting about this, kerrywo. This is one casino I'm looking at so I'll follow this thread closely.

 

[SlotMonster]

Security check

First of all, I would like to apologize for any inconvenience.

We are experiencing major fraud attempt since last week, and the “model” is almost always the same:

Players register at our casino, make deposits via Credit Cards, play a little and then submit withdrawals on Neteller or Moneybookers. They provide all necessary documents, but it was pretty easy to find out they are false, and we already blocked about 10 accounts.

But as an additional security check we decided to ask players who made CC deposits to provide us with a landline phone number to call them and ask to confirm that they made deposits. We also decided to charge Credit Cards with random sum (up to 1 GBP) and ask players to provide us with correct amount.

kerrywo, I apologize for delay with your payment, and would like to assure you: as soon as we complete our security check, your withdrawal will be processed immediately (like we did your previous withdrawals).

We understand it may cause delays with payments, but we also hope players can understand our intention to protect our business.

@Nifty29: thanks for pointing this out.

If you have any questions – please feel free to post it here or contact me via PM/email.

Regards,
Viktar.

 

[rainmaker]

.


"Unfotyunately, we need to perform additional anti fraud verification for your account. Please provide us
with the land line (not cellphone!) number to reach you."

I think the rep has given a good explanation here.

But I have one comment. It is probably about 8-9 years since I last had a "land line" in house. So I find it a bit strange to require someone to give you a "land line" number.

 

[SlotMonster]

But I have one comment. It is probably about 8-9 years since I last had a "land line" in house. So I find it a bit strange to require someone to give you a "land line" number.

We also understand that, rainmaker. But if the player doesn't have land line number - we still have another option to check their CC (charge it with random amount).

 

[aceking123]

But as an additional security check we decided to ask players who made CC deposits to provide us with a landline phone number to call them and ask to confirm that they made deposits. We also decided to charge Credit Cards with random sum (up to 1 GBP) and ask players to provide us with correct amount.

hi slot monster , cant see the point in you guys charging a cc upto 1 gbp , as if they still get a paper mail bill for cc , that could take over 1 month depending on when they get it , doesnt realy help when a player is making a withdrawal . maybe after first deposit you could ask for the account to be verifyed before next deposit.

i myslef have a account at your casino ive yet to make a deposit but when i do i shall only use neteller , so this would be no help to me at all considering i shall only send in address details , this be enough considering any withdrawals to neteller as ive already been vetted as such from them.

 

[rainmaker]

We also understand that, rainmaker. But if the player doesn't have land line number - we still have another option to check their CC (charge it with random amount).

Oki From reading the OP`s mail, I got the impression that you should call him and charge with random amount. That is why I commented it.

 

[SlotMonster]

hi slot monster , cant see the point in you guys charging a cc upto 1 gbp , as if they still get a paper mail bill for cc , that could take over 1 month depending on when they get it , doesnt realy help when a player is making a withdrawal . maybe after first deposit you could ask for the account to be verifyed before next deposit.

I assume it's still possible to call your bank and ask them to provide you with the last transaction's details.

 

[aceking123]

I assume it's still possible to call your bank and ask them to provide you with the last transaction's details.

hi depends you use the term CC this in uk is a credit card , most uk people would use a debit card not cc , anyway this still would take upto ten days to show in there account , unlikely that it would show that quickly on the account , it may well show up on your debit card account within a couple of days . im not knocking you or your casino in anyway, im just pointing out the ways in works in uk which is going to be different to other places & considering your casino is plainly aimed at uk players im just trying to point out from a players point of view )

 

[SlotMonster]

anyway this still would take upto ten days to show in there account

It's not actually right, mrjones
Money will be blocked almost immediately after we charge your credit (or debit) card.

Our verification procedure is pretty much the same as for Moneybookers:

We will debit your credit/debit card for a small random amount (usually between EUR 1.01 and 2.99 depending on your account currency) after which you must check your card statement for the exact transaction amount and enter it into the 'verify credit/debit card' section of your Moneybookers profile. Please note that you may have to wait some time for the debit to appear on your statement.
Upon completion, the transaction amount will be credited to your Moneybookers account and your card will be verified with the upload limit shown on screen.

ADD: I have notified the OP about my post with reply on their question.

 

[aceking123]

so your telling me that if i was to make a deposit via my debit card & won lets say 300 pounds & went to withdraw it , you would charge my card of little ammount & hold on to these winnings untill such a time when i have this figure to correct to give you ? well lucky me then just aswell i dont use money bookers either , & i shall point out that all my uk sites with uk casinos ive yet to have any problem making withdrawals without providing any docs what so ever . only the eu sites & one site to which forced me to give details ( inetbet ) they can find me via another checking method , well you could also answer the following on here then , if i only deposit via neteller & only withdraw the same way how many docs do i need to send into your casino before you shant grant me a withdrawal ?

 

[SlotMonster]

so your telling me that if i was to make a deposit via my debit card & won lets say 300 pounds & went to withdraw it , you would charge my card of little ammount & hold on to these winnings untill such a time when i have this figure to correct to give you ? well lucky me then just aswell i dont use money bookers either , & i shall point out that all my uk sites with uk casinos ive yet to have any problem making withdrawals without providing any docs what so ever . only the eu sites & one site to which forced me to give details ( inetbet ) they can find me via another checking method , well you could also answer the following on here then , if i only deposit via neteller & only withdraw the same way how many docs do i need to send into your casino before you shant grant me a withdrawal ?

You can find our payments policy here:

You do not have permission to view link Log in or register now.

So, to reply on your question:

For this reason to be able to complete your withdrawal processing we may request proof for your identification in the following cases:

- Deposit and Withdrawal payment methods are different;
- Some discrepancies occur between information provided for a payout request and the registered player account;
- Request deposit amount exceeds the indicated limit.

Simply saying, if you are going to use Neteller to deposit and cashout via Neteller, and has entered all necessary info in your account - I don't think we will ask you for any documents.

Hope I informed you well

 

[aceking123]

You can find our payments policy here:

You do not have permission to view link Log in or register now.

So, to reply on your question:



Simply saying, if you are going to use Neteller to deposit and cashout via Neteller, and has entered all necessary info in your account - I don't think we will ask you for any documents.

Hope I informed you well

you did indeed many thx for that )

 

[vinylweatherman]

It should be made clearer that this random charge is not going to be KEPT as profit, but returned to the player. This is also how Neteller does it when verifying the bank account used to accept withdrawals by "bank wire".

This is a fraud model made easier by the fact that the UK has made online gambling legal, and thus quite a few cards will accept the transactions, especially debit cards.

Unfortunately, the loophole is Mastercard, because unlike VISA, a casino CANNOT send refunds back to the card, thus it is easier to set up a scheme to use a stolen Mastercard to move money through the casino to Neteller, and then onward pretty quickly.

A random charge means that the player has to have access not just to the card details or card itself, but to it's statements - whether online and by post.

If the statement is online, it will be possible to find out the amount of the random charge in 2-3 working days. If paper, it does not mean waiting a month. There will be a phone option, and one tool will be to have the last few transactions read back to you. If not, speak to a CS rep from the bank, pass the security checks, and they will be able to find the relevant transaction.

It's hardly surprising that a number of fraudsters decided to have a crack at a new entrant from Belarus, thinking they would get away with it when other casinos would have caught it. Seems they were wrong, and BigCasino were not as naive as the fraudsters thought.

Most casinos will insist on sending withdrawals back to the method of deposit BECAUSE of the risk of this kind of fraud.

Another option for BigCasino in this case would be to insist on sending the withdrawal by cheque to the billing address associated with the card used for the deposits, rather than to Neteller. It is still relatively easy to deal with cheques in the UK, and although the banks want rid of them, this can't happen until there is another option for making payments that don't go through the electronic systems.

Although many people don't have a landline, they may still have ADSL internet unless they are with Virgin Media, so there WILL still be a landline service with a number allocated to it behind all of this, even if it isn't connected to a phone.

All ADSL internet services need a valid landline to work from, and so it should be possible to make calls to it if there is a phone connected to the "phone" outlet on the filter. The bill for the internet service should quote the landline number somewhere.

If Bigcasino asks these players who provides their internet connection, they can gather further information that might help verify them (or catch them out). It is even possible to find out who provides their internet service from their IP address.

 

[SlotMonster]

Thanks, vinyl.

Yes, now we have to return funds to the real cardholders, but since few of them used MasterCard, we can't just refund money.

 

[vinylweatherman]

Thanks, vinyl.

Yes, now we have to return funds to the real cardholders, but since few of them used MasterCard, we can't just refund money.

It's likely that the real cardholders will query the transactions, and Mastercard will have to return the money, and will then go after you for it.

Can your team contact the banks and tell them that you have uncovered this fraud, and are intending to return the money?

This may save you from getting "chargebacks" on your processing record.

Since you are UK only, you don't have the additional complications of dealing with numerous banks in many countries.

You could also contact the "Euro" divisions for Mastercard, and VISA where you cannot simply put the money back onto the card.

Now you have to think like them, and figure out their next move

TV documentaries here often cover fraud, and show what was done, how it was done, and how they got detected and busted. The idea is probably to show fraudsters that no matter how clever they think they are, they are going to get caught, and end up in prison.

Last week covered a fraud that involved the use of a number of addresses, all properly documented, but with tenancy structures deliberately set up so as to trick the benefits system into thinking they were helping 4 different vulnerable families, whereas it was one extended family who built a property empire using housing benefit to pay their mortgage.

It is possible that a similar setup could be used to screw online casinos.

They weren't caught because of fake documents, but because of connections between them that shouldn't have been there.

You also need to find a way to quickly sift out the innocent players that have been accidentally snared by your investigation, and before they start complaining to the consumer protection authorities.

 

[SlotMonster]

It's likely that the real cardholders will query the transactions, and Mastercard will have to return the money, and will then go after you for it.

Can your team contact the banks and tell them that you have uncovered this fraud, and are intending to return the money?

This may save you from getting "chargebacks" on your processing record.

Since you are UK only, you don't have the additional complications of dealing with numerous banks in many countries.

You could also contact the "Euro" divisions for Mastercard, and VISA where you cannot simply put the money back onto the card.

Now you have to think like them, and figure out their next move

Yes, we are now in touch with banks who issued these cards, and waiting a reply from them. We also contacted Visa and MC.

 

[jetset]

Sorry to hear you're having hassles with these bloody crooks, Slotmonster - they ruin it for everyone.

BTW I assume that Viaden is utilising some of the standard industry safeguards against villains such as the data-checking and device reputation software offered by the big security outfits?

 

[SlotMonster]

Sorry to hear you're having hassles with these bloody crooks, Slotmonster - they ruin it for everyone.

BTW I assume that Viaden is utilising some of the standard industry safeguards against villains such as the data-checking and device reputation software offered by the big security outfits?

Thanks, jetset!

Yes, we are using many tools, databases and services to identify possible fraud. This time it were just too many attempts in a short period, but we handled it well and even gained some great experience

As for the OP, we have serious doubts about she's eligible for playing in our casino, for several reasons:

- She provided us with utility bill from the company which doesn't serve her region; moreover, this company didn't recognize customer number on this bill;
- Her Neteller account registered in Finland (we found out that many Neteller accounts used by fraudsters were from Finland);
- She didn't pass CC verification (we charged her CC twice, but she failed to provide us with correct amount);
- We didn't receive any more information from her, and she's doesn't respond to our emails.

We are still waiting a reply from her, but I don't think she will contact us again.

Regards,
Viktar.

 

[Repro]

Thanks, jetset!

Yes, we are using many tools, databases and services to identify possible fraud. This time it were just too many attempts in a short period, but we handled it well and even gained some great experience

As for the OP, we have serious doubts about she's eligible for playing in our casino, for several reasons:

- She provided us with utility bill from the company which doesn't serve her region; moreover, this company didn't recognize customer number on this bill;
- Her Neteller account registered in Finland (we found out that many Neteller accounts used by fraudsters were from Finland);
- She didn't pass CC verification (we charged her CC twice, but she failed to provide us with correct amount);
- We didn't receive any more information from her, and she's doesn't respond to our emails.

We are still waiting a reply from her, but I don't think she will contact us again.

Regards,
Viktar.

If she doesn't respond soon with the right answers it looks like a "bye bye birdie" to me

 

[vinylweatherman]

Thanks, jetset!

Yes, we are using many tools, databases and services to identify possible fraud. This time it were just too many attempts in a short period, but we handled it well and even gained some great experience

As for the OP, we have serious doubts about she's eligible for playing in our casino, for several reasons:

- She provided us with utility bill from the company which doesn't serve her region; moreover, this company didn't recognize customer number on this bill;
- Her Neteller account registered in Finland (we found out that many Neteller accounts used by fraudsters were from Finland);
- She didn't pass CC verification (we charged her CC twice, but she failed to provide us with correct amount);
- We didn't receive any more information from her, and she's doesn't respond to our emails.

We are still waiting a reply from her, but I don't think she will contact us again.

Regards,
Viktar.

That's a tough one to get right. The former regional utility companies can now serve any region they like. One could get energy from a Scottish company in London.

However, if her region is Finland, then none of the UK utility companies will serve it

The Neteller account is probably the dead giveaway, because they would verify the address, and attribute a country to the account that matches the address.
If the credit card is not in UK pounds, then it wouldn't be possible to give you the random debit accurately.

The OP got 3 withdrawals before you spotted these inconsistencies, so the documentation must have fooled you to start with.

This could mean that genuine UK addresses and IDs are being used, with documents to match being produced.

This fraud ring may well be working from some of the data stolen recently in those high profile hacks from big companies. A service like 192.com may then have been used to fill in the gaps to enable them to pose as UK players.

It is possible that they have actually travelled to the UK so that they can do this from UK addresses and UK IP addresses so that such checks during registration would not have found anything amiss.

Does Bigcasino use "Verified by VISA" and "Mastercard securecode" for CC deposits?

These were brought in to make it much harder for stolen card details alone to be used online, a fraud that has increased considerably since chip & pin made it much harder to use stolen cards in shops.

 

[Repro]

That's a tough one to get right. The former regional utility companies can now serve any region they like. One could get energy from a Scottish company in London.

However, if her region is Finland, then none of the UK utility companies will serve it

The Neteller account is probably the dead giveaway, because they would verify the address, and attribute a country to the account that matches the address.
If the credit card is not in UK pounds, then it wouldn't be possible to give you the random debit accurately.

The OP got 3 withdrawals before you spotted these inconsistencies, so the documentation must have fooled you to start with.

This could mean that genuine UK addresses and IDs are being used, with documents to match being produced.

This fraud ring may well be working from some of the data stolen recently in those high profile hacks from big companies. A service like 192.com may then have been used to fill in the gaps to enable them to pose as UK players.

It is possible that they have actually travelled to the UK so that they can do this from UK addresses and UK IP addresses so that such checks during registration would not have found anything amiss.

Does Bigcasino use "Verified by VISA" and "Mastercard securecode" for CC deposits?

These were brought in to make it much harder for stolen card details alone to be used online, a fraud that has increased considerably since chip & pin made it much harder to use stolen cards in shops.

Also don't forget that there has been a massive hack at Playstation a while ago. It was said that maybe a couple of MILLION creditcard and matching address details have been stolen. It's very well possible that a lot of these details have been sold to fraudsters already.

 

[sparkz]

Realistically I dont know any debit card provider that doesnt have telephone banking services so you can get a list of latest transactions read over the phone. Most people have E-banking also. Another thing is you can go into the bank and either ask over the desk or use their cash machines to view a mini statement.

Its understandable if there is actual fraud types of activity happening and the casino wants to protect themselves (better than when other casinos make up fraud as an excuse to close accounts or demand endless documents for "fraud prevention")

In this day and age the very sad case with casinos is many are dropping card withdraws/deposits for processor reasons which means people are stuck with using e-wallets which verify yourself in a completely worse way imo. They take a small amount from your account and you have to tell them the amount taken before you even get a chance to deposit and play at a casino (I hate e-wallets thus its 1 of the deciding factors in me quitting gambling almost completely).


Anyways reading on about speculation about the OP being a fraudster it seems slotmonster has once again handled things professionally, fairly and has shown they are 1 of the better rep members here who has come forwards, explained the situation to us and taken advice on board

 

[ergopro]

Just a small note.
There were hijacked Neteller accounts for Finnish customers that were funded with stolen credit cards.

 

[SlotMonster]

Does Bigcasino use "Verified by VISA" and "Mastercard securecode" for CC deposits?

These were brought in to make it much harder for stolen card details alone to be used online, a fraud that has increased considerably since chip & pin made it much harder to use stolen cards in shops.

Yes, we do use it, however, not many Visa and MC cardholders use Secure Code...

Realistically I dont know any debit card provider that doesnt have telephone banking services so you can get a list of latest transactions read over the phone. Most people have E-banking also. Another thing is you can go into the bank and either ask over the desk or use their cash machines to view a mini statement.

You are absolutely right. Pre-authorization messages (to block funds on player's card) are sent within milliseconds and transaction will appear in cardholder's account almost immediately.

Its understandable if there is actual fraud types of activity happening and the casino wants to protect themselves (better than when other casinos make up fraud as an excuse to close accounts or demand endless documents for "fraud prevention")

We are now in the process of improving our verification processes. It will definitely help us to prevent fraud BEFORE player has made a deposit, and we discussing how to better implement card verification.

Anyways reading on about speculation about the OP being a fraudster it seems slotmonster has once again handled things professionally, fairly and has shown they are 1 of the better rep members here who has come forwards, explained the situation to us and taken advice on board

Thanks!

Just a small note.
There were hijacked Neteller accounts for Finnish customers that were funded with stolen credit cards.

Thanks, ergopro. However, in our casino fraudsters used stolen cards for deposits and tried to withdraw on Finnish Neteller accounts.

 

[vinylweatherman]

Yes, we do use it, however, not many Visa and MC cardholders use Secure Code...



You are absolutely right. Pre-authorization messages (to block funds on player's card) are sent within milliseconds and transaction will appear in cardholder's account almost immediately.



We are now in the process of improving our verification processes. It will definitely help us to prevent fraud BEFORE player has made a deposit, and we discussing how to better implement card verification.



Thanks!



Thanks, ergopro. However, in our casino fraudsters used stolen cards for deposits and tried to withdraw on Finnish Neteller accounts.

At the moment there is an element of choice whether cardholders register for the secure code product. However, the banks are moving towards making it compulsory, and anyone not using it could find their online transactions get repeatedly blocked by the banks.
Currently, if you use a merchant site that supports the option, you are prompted to register your card. You can decline this ONCE, and have the transaction still go through, but the second time you must either register, or have further transactions blocked.

The problem with a stolen card is that if it has not already been registered for the service, it is the FRAUDSTER that gets the prompt, and there is nothing much to prevent the fraudster from activating secure code on the stolen card, making it more likely to work in the future.
The answer would be for banks to insist on users registering for the service when they activate their cards, rather at the point of the first transaction.

Although pre-authorisation amounts are reflected almost immediately, they are shown as a bulk figure representing ALL such transactions, so users cannot yet determine the exact amounts of each individual pre-authorisation until the transactions are actually posted to the card. This is how it works on my Barclaycard. I can check a figure for the sum of all transactions authorised, but not charged, but cannot identify the merchant or amounts for each until it is posted a few days later.
Phone banking options also have this drawback, as they will quote a "left to spend" figure, plus the last few transactions actually posted, and current POSTED transaction balance.

If these are hijacked Neteller accounts from Finland being used in the UK by fraudsters with stolen cards, Neteller have "dropped the ball" too, as the sudden switch to these users logging on from the UK when they are supposed to be in Finland should have tripped Neteller security measures which cause the account to be locked down, and the owner having to phone Neteller and pass security tests to have the lock removed. It seems the fraudsters have found a weak point in this aspect of Neteller security, but they would also have to have a way to get the money out of the hijacked Neteller accounts, and quickly.
If Bigcasino caught this early enough, the money may well still be with Neteller, and it should be relatively easy to get Neteller to lock it down to prevent the fraudsters running off with it - probably the first thing they would try to do once they realised they had been "busted".

 

[SlotMonster]

The problem with a stolen card is that if it has not already been registered for the service, it is the FRAUDSTER that gets the prompt, and there is nothing much to prevent the fraudster from activating secure code on the stolen card, making it more likely to work in the future. The answer would be for banks to insist on users registering for the service when they activate their cards, rather at the point of the first transaction.

There is still a real owner of the card who will see transactions they didn't make, so they will contact their bank and request an investigation to be made.

Although pre-authorisation amounts are reflected almost immediately, they are shown as a bulk figure representing ALL such transactions, so users cannot yet determine the exact amounts of each individual pre-authorisation until the transactions are actually posted to the card. This is how it works on my Barclaycard. I can check a figure for the sum of all transactions authorised, but not charged, but cannot identify the merchant or amounts for each until it is posted a few days later.

That's pretty strange, because when your bank will receive one 'financial advice' message to complete one given transaction, how they could process it if they only have bulk figure? They must have detailed log with ALL transactions (completed and not).

Phone banking options also have this drawback, as they will quote a "left to spend" figure, plus the last few transactions actually posted, and current POSTED transaction balance.

Hmmm...never had such problems...I always ask them to tell me my last transaction and how much was blocked.

If these are hijacked Neteller accounts from Finland being used in the UK by fraudsters with stolen cards, Neteller have "dropped the ball" too, as the sudden switch to these users logging on from the UK when they are supposed to be in Finland should have tripped Neteller security measures which cause the account to be locked down, and the owner having to phone Neteller and pass security tests to have the lock removed. It seems the fraudsters have found a weak point in this aspect of Neteller security, but they would also have to have a way to get the money out of the hijacked Neteller accounts, and quickly.
If Bigcasino caught this early enough, the money may well still be with Neteller, and it should be relatively easy to get Neteller to lock it down to prevent the fraudsters running off with it - probably the first thing they would try to do once they realised they had been "busted".

We are in close contact with Neteller about this issue, but unfortunately I can't post any details until it's finished.

 

[sparkz]

Vinyl. Dont they require other things also? when I signed up for verified visa for the first time it asked for other security codes not on the card and my DOB.

 

[P.V.]

There are so many steps that need to be taken to avoid fraud and not just with this casino's loss but players too.

No one step will solve the issue, maybe 30 or 40 steps and then it could still happen.
I mean the CIA was hacked today so...

You do not have permission to view link Log in or register now.

 

[jetset]

Jaxx-MyBet have just announced the implementation of a new level of verification that enables them to verify players at signup, and before depositing apparently.

 

[SlotMonster]

Jaxx-MyBet have just announced the implementation of a new level of verification that enables them to verify players at signup, and before depositing apparently.

If a fraudster will provide real (but stolen) ID - how can they spot it? Documents will be definitely approved, but I doubt the software can tell them if these details are stolen or not...

And if after being approved a fraudster will then deposit with stolen Credit or Debit card - I don't think 'the system' could recognize such type of fraud.

 

[vinylweatherman]

Vinyl. Dont they require other things also? when I signed up for verified visa for the first time it asked for other security codes not on the card and my DOB.

It seems that each bank does it's own thing. Some have you enter the entire password each time, others only 3 random characters.

The loophole is the first transaction, it will go through.

If the fraudsters have stolen the ID, they are going to have access to things like DOB in any case, and even if not, it is easy to get such information off the internet if you look hard enough.

The worst case is where the fraudster has stolen the ID AND managed to get it's details shifted to an address he has access to, and has managed to get utilities etc in the stolen name.
This is very hard to detect, and the rightful owner of the ID would also be using it, and would not see the fraudulent activity until the fraudster bailed, and debt collectors started looking to collect the debt after the fraudster has vacated his address and stopped making minimum payments or answering communications.
These would be the "career" fraudsters, and online casinos would only be ONE of their scams.

If a fraudster will provide real (but stolen) ID - how can they spot it? Documents will be definitely approved, but I doubt the software can tell them if these details are stolen or not...

And if after being approved a fraudster will then deposit with stolen Credit or Debit card - I don't think 'the system' could recognize such type of fraud.

This is how the top fraudsters set themselves up, and they are in it for the long haul. They can go undetected for months, if not YEARS. So long as they keep to the terms of whatever financial products they have conned their way into, they will not arouse suspicion.
Fraudsters will try to take out as much credit as possible under the assumed ID, and will keep making payments from new lines of credit. Eventually, the banks will stop lending because so much has been borrowed, and the fraudster will then bail.

There have been cases where this type of fraudster can even sell your HOUSE without you finding out about it until it is too late. Expats are a key target, since they are unlikely to find out about the steady damage being done to their credit rating back in the UK for a considerable period of time. Often, the first they hear of it is when debt collectors manage to trace their foreign address and start asking for repayments.

There IS a way to combat this, and trials are already underway. It is done by using USB fingerprint scanners, that are issued only after verification that the holder really is the genuine owner of the ID. Stealing details alone will not fool this system, one would need to nick a finger, and keep it fresh.

Unfortunately, the fraudsters are already looking to beat this system, and there is a method of making an "artificial finger/thumb" that can have the fingerprint added to it having been lifted from, say, a glass at a party. This was featured in a James Bond style thriller (probably WAS James Bond), but it is no longer thought to be science fiction, but something that has been developed for the secret services.
The scanners are not clever enough to tell apart a finger and this plastic "glove".

A USB iris scanner is next, but I don't think many users will be willing to fork out for one unless the banks INSIST.

Online businesses will always be a target for fraud, because it is much easier when there is no physical contact, and every check depends upon electronic data and digitised images.

Crack down too hard, and GENUINE customers will leave, leaving only the fraudsters who will try to beat whatever new system gets in their way.

 

[GrandMaster]

The loophole is the first transaction, it will go through.

Or the password reset. At one bank, all you need to set up a new password for VbV is the card number and the cardholder's date of birth, extremely secure, isn't it.

 

[P.V.]

If a fraudster will provide real (but stolen) ID - how can they spot it? Documents will be definitely approved, but I doubt the software can tell them if these details are stolen or not...

And if after being approved a fraudster will then deposit with stolen Credit or Debit card - I don't think 'the system' could recognize such type of fraud.

The internal systems can't, never will and that's why hard doc's should be requested. A simple scan of your customer CC or Debit will save you 25 - 30% in fraud.

Most of these hacks don't have an actual card but rather #'s, pins and holder info. but not the actual card. This is just one step but a big one.

Request card scans, blocking all but the last 4 #'s.