The Credit Card Fraudster
20 points Easy

I just arrested someone who is probably the most wanted credit card fraudster in Europe. She is a smart cybercriminal, always a step ahead INTERPOL and she kept unnoticed for years by never buying online, but buying goods with a different card every time and in different stores. My cyber-analysts found out after collecting all evidences she hacked into one the largest payment provider in Europe, reverse-engineered the software present on the server and partly corrupted the card number validation code to accept all her payments. The change enables acceptance of any transaction with a card number multiple of 123457 and the Luhn check digit is valid.

I caught her because every year she bought a bouquet of flowers next to the same cemetery. While handcuffing her at the flower shop's exit, she said the flowers were for her lost father and today it is his death anniversary. She broke down in tears and she did some steps and threw something in the sewers. My female colleague conducted a search on her, but she couldn't find the card she used, only the receipt.

The little flower shop
======================

European Express Debit
Card Number: 543210******1234
SALE

Please debit my account
Amount: 25.00€

Can you help me to recover the card number so that I can confirm with the flower merchant's bank the card number was used in that shop and is fraudulent?

Hints:

1/ Luhn_algorithm

2/ Flag format is CTFlearn{card_number}

Flag
Rating 4.74
5
4
3
2
1

Discussion

Protected
0

first thought is ** is multiple of 123457 but it's wrong, the whole number card is multiple of 123457 lol, my reading skill is so bad

0

The strategy to solve this above challenge. 1. Fill those random numbers in between until our condition is met 2. Then check if the number is multiple of 123457 3. Check if the number meets the vuln algorithm conditions

0

use python to get more combinations dcode only show 1000 :<

0
0

i forgot the 123457 part Rip me

1
Protected
0

Enjoyed it. Also misread 123457 as 1234567...

0
Protected
0

Any hint on how did you all applying your code? my brain is stupid.

0
Protected
0