Cyberspace ripoff hits home; Credit card fraud impacts County

By Bob Buckel | Published Saturday, September 7, 2013

Share this page...

Wise County residents may have lost thousands of dollars in an apparent credit card scam that came to light this week.

It’s too early to pinpoint how many people had money electronically lifted from their bank accounts, but local and federal law enforcement officials are working to track down the culprit who apparently hacked into a credit card servicing company used by Taco Casa in Decatur.

As people began getting charged for purchases they didn’t make – all over the U.S. and even abroad – the reports started coming in.

On Wednesday, Decatur Police Chief Rex Hoskins talked to a woman who said her 3-year-old son’s savings account was used to buy groceries in Memphis, Tenn.

By Thursday, a Wise County sheriff’s deputy had seen his account charged for a purchase in Jamaica, a police officer’s card number was being used in Las Vegas, and Sheriff David Walker had been hit with a $42 charge from an outfit called “Beach Body” in California.

Several courthouse employees reported their accounts had been hit, and there were unconfirmed reports of losses as high as $23,000 in Montague County.

Walker said right now his officers are just taking reports from everyone who calls in. The Decatur PD is doing the same.

“It seems like the common denominator is Taco Casa,” Walker said.

He predicted “just about every bank in the county” would end up being affected and estimated as many as 600 to 700 people had either lost money or had their credit or debit card compromised.

Hoskins said he’d heard one bank had 375 customers whose accounts had been hit.

North Texas Bank President Andrew Rottner believes the actual number will be be much lower.

“We need to distinguish between potentially compromised cards and confirmed cases of fraud,” Rottner said Friday afternoon.

He said his bank had already “hot-carded” and reissued cards to all their customers who used them at Taco Casa during the period in question. He declined to release the actual number but indicated it’s much lower than what’s being reported.

Sorting it all out will undoubtedly take some time. While investigators work to unravel the mystery, Walker and Hoskins urged everyone to check their accounts and report any suspicious charges to their bank.


Walker said he had been on the phone much of the morning Friday with experts from the FBI and the Secret Service.

“They don’t think it’s local,” he said. “If it had been somebody local, they would probably have gotten one, two or three cards.

“What we’re seeing is that within eight hours of eating at Taco Casa, their card number was being used by someone else in the United States or overseas. The Secret Service is under the assumption that somebody was able to break the firewall of the company that provides the credit card machines to Taco Casa.

“They’ve seen that before, in cases where a third-party company takes care of the credit card charges.”

He said it looks like the culprit got into the system the same way the company’s own IT people do, when they log in to fix problems that occur while they’re not in the office.

“Someone figured their password out, grabbed all the credit card numbers they could get, then turned around and sold them on the Internet,” he said. “These people will buy credit card numbers off the Internet and make themselves a debit card. Sometimes they’ll use six or seven cards before they get one to work.”

Rottner said banks are constantly on the alert for fraud activity, which they monitor daily.

“Our systems are pretty sophisticated to detect this,” he said. “We started sourcing this, and it led back to the merchant. We called our customer on Thursday morning and asked if he was aware of what’s going on. His back-end processor immediately moved him over to a dial-up system to get him off the web base.”

He said the hacking likely occurred in the restaurant’s point-of-sale system, which transmits credit card information via the Internet when customers swipe their cards.

Walker commended the merchant for responding quickly once he was advised of the problem.

“He was very quick in getting their credit card machine shut off, to stop the bleeding,” Walker said.

Hoskins said he and Walker, along with key investigators, will get together early next week to compare notes on what they’ve found. The FBI and Secret Service will be invited to that meeting.

Walker urged merchants to be wary of customers who come in with multiple cards and, when one gets rejected, just pulls out another.

“It’s been quite the nightmare for citizens,” he said. “Everybody should check their account. It’s a good reminder.”

4 Responses to “Cyberspace ripoff hits home; Credit card fraud impacts County”

  1. I didn’t get hit, thank goodness. I always keep my checking account as low as possible, with the rest in a savings acount. That way they can’t steal so much. I pay cash at restaurants and fast food when possible. I hope they can find out who did this, but a hacker is very hard to find.

  2. Well if the Sheriff and the other investigators are as effective as there were in a previous case on my behalf, then northing will happen to the people who took part in the crime. A local bank had sent new debit cards to my family and although we did not receive them in a timely matter and reported it, they said not to worry about it and if they did not show in a few more day then to report it again. My mother had recently had surgery in North Carolina and although it was Christmas my wife insisted that I to North Carolina. When I landed and in Raleigh a frantic brother told me to call home immediately. What I discovered was both our personal and business accounts had been cleaned out about $400.00, 2 day before Christmas and another one of my credit cards has over a $2000.00 charged to it. We worked hard the next few days, my wife in here in Texas and myself in North Carolina to shut down the cards. This left me with no money in North Carolina but at least my bother helped out at the time. Returning to Texas I obtained a list of the charges, where and when they were made or attempted. The bank cards were used at various ATM a locations at North Beach Street in Ft Worth and the credit charges where at Walmart in Azle and Lowe’s in Lake Worth. All these locations have video cameras and with the date and exact times with each it should easy to see who had performed the crimes Never a response from this information provided. The last straw came with the local bank bank manager claimed I had gave the card and the pin out myself to someone else. They returned all but $100.00 keeping $50.00 per account keeping the bank manager claimed it was required by law. Later research showed this is not required by law. Needless to say we changed banks immediately

  3. Tye Love says:

    What bank was this?

  4. Why embarrass a whole bank for the irresponsible acts of an arrogant manager. I will say it is a bank with several branches in the local area and it is not a credit union. We had stated several times to the bank not to send our checks or cards through the mail to our home off FM 730 because we have had our mail and packages stolen a couple of times before. They disregarded our wishes and this was the result. That is why we now have a PO Box and a different local bank. We enjoy Bowie much better then we do Southlake except for movies and shopping


Leave a Reply. Note: As of March 24, 2011, all posted comments will include the users full name. News and Blog Comment Guidelines

You must be logged in to post a comment.