If you’ve read our earlier post about the mathematical formula that all card numbers conform to, then you must have understood by now that it is possible and very easy to generate valid card numbers, its a no brainer to connect the dots and conclude that card not present (CNP) transactions can be spoofed by generating card numbers!
is was true. Not anymore. These days there are several steps and mechanisms to prevent fraud on CNP transactions, but it all started with the introduction of Card Security Codes (CSC). This is usually a 3 or 4-digit number embossed or printed on your credit / debit card and has to be entered by you when you pay online or over the telephone.
CSCs might be given different names by different payment processing companies (like Visa, MasterCard), but they all serve the same purpose. See the pic below to know the exact location of the security code of your card, depending on its payment processor:
image source: ccenv.com
And here’s the different names by which a card security number can be called:
- Card Verification Data (CVD)
- Card Verification Value (CVV or CVV2)
- Card Verification Value code (CVVC)
- Card Verification Code (CVC or CVC2)
- Verification Code (V-code or V code)
- Card Code Verification (CCV)
- Signature Panel Code (SPC)
They all refer to the same thing. Now whenever you make your next online payment using a credit or a debit card, you’ll know why you’re entering that additional bit of information called CVV2
Read more on Wikipedia: https://en.wikipedia.org/wiki/Card_security_code