Software Glitch Leads To $23,148,855,308,184,500 Visa Charges 544
Hmmm2000 writes "Recently several Visa card holders were, um, overcharged for certain purchases, to the tune of $23,148,855,308,184,500.00 on a single charge. The company says it was due to a programming error, and that the problem has been corrected. What is interesting is that the amount charged actually reveals the type of programming error that caused the problem. 23,148,855,308,184,500.00 * 100 (I'm guessing this is how the number is actually stored) is 2314885530818450000. Convert 2314885530818450000 to hexadecimal, and you end up with 20 20 20 20 20 20 12 50. Most C/C++ programmers see the error now ... hex 20 is a space. So spaces were stuffed into a field where binary zero should have been."
Extremely speculative. (Score:2, Insightful)
What is truly appalling... (Score:5, Insightful)
...is that this was not caught by validity checks. Was this perhaps an error that affected only the printing of the statement?
The Sad Thing... (Score:5, Insightful)
"The bank kept him on hold for two hours, during which time he contemplated the impossibly bleak financial future that might await him. He also felt a stab of fear that he had saddled all his unborn grandchildren -- and their grandchildren -- with a lifetime of debt. "Down the generational line, nobody would have any money."
For fuck's sake, people, the credit card guys haven't actually bought a law concerning hereditary debt slavery yet, and this guy thinks that it is already on the books?
Muszynski compared the giant debt reprieve to receiving "an amazing Monopoly card that says, 'Bank error in your favor.' "
Pathetic. This guy is grateful that Visa condescended to fix their obvious mistake(this isn't some he said/she said billing dispute, this is someone who allegedly spent more than the world GDP at a gas station)? What is this cringing bullshit? Either this guy is just a sad sack or, rather worse, the "customer service" we get, along with the kangaroo courts that are "mandatory binding arbitration" actually make thankfulness for not being screwed a reasonable response.
Re:Sensationalist article (Score:3, Insightful)
anyone who sees a 23 quadrillion dollar charge on their visa bill and thinks that should not be allowed to have children.
Stupidity is evil!
Re:Hey (Score:1, Insightful)
You're using a computer right now.
Re:Minimum (Score:1, Insightful)
Tell that to the US Gov...
Re:The Sad Thing... (Score:2, Insightful)
The huge number even has the advantage of being highly noticeable.
Much worse to get screwed for $150 and not realize it than have to call your bank and tell them that their computer puked.
Re:So what's the big deal? (Score:4, Insightful)
That, or the president thinks the best way to prevent him from ever smoking again is to never be able to afford one.
Re:What about Unicode? (Score:1, Insightful)
Yep. UCS-2 is the tool of the devil. It's consistent, sure, but it's a heckuva waste if you've got a lot of strings that are mostly ASCII. Microsoft uses it for their APIs since forever, and Python uses it internally, but these are low-level situations where consistent and fast encoding/decoding are valuable. Most of the rest of the world (the parts that use a Latin-based character set, anyway) have standardized on UTF-8. You'd be pretty crazy to lard up a database that's 99% English text with UCS-2.
Only Notice Large Glitches (Score:5, Insightful)
Re:meh (Score:5, Insightful)
Yeah, of course what happened after that was people started having to resort to bartering for goods using small amounts of Gold, Kinda like what they did TWO-Thousand years ago. So you take an economy and you screw it up so badly that you have to reset it back to the pre-roman levels of commerce.
.
And people laugh at other people for collecting and buying gold.
Octal? Piffle. (Score:1, Insightful)
That was not an "insightful" comment. WTF does it matter what a couple of hex digits mean in octal? What would you have said if it was 12 80? A field that should have held a binary large integer getting filled with ascii characters makes sense; a field that gets filled not with the binary representation of the ascii characters, but to suggest that some process would take the octal representation of those characters, discard the most significant digit and then pack them into hex nibbles (a kind of BCO - binary coded octal representation) is ludicrous.
The 12 50 is just an artifact of the number being rounded to the nearest $100 by the journalists reporting the story. Check it out; if you assume they were actually 20 20, you get an amount somewhere around $35-$36+some small change over the $23,148,855,308,184,500.00 figure mentioned.
Re:Extremely speculative. (Score:4, Insightful)
Sorry but........ (Score:2, Insightful)
Lemme debunk a myth real quick for you folks.
If you EVER see a bank error "in your favor" or if your payroll check is off and you are over paid.......DO NOT SPEND THE MONEY
You will be charged for what you owe, and in some circumstances you can be prosecuted for using money that "was reasonably evident that you did not earn"
Re:meh (Score:5, Insightful)
The thing is if the economy tanks that badly, gold probably won't be worth much either. Which is why buying large boxes of ammo, cigarettes, and toilet paper is the way to go!
Re:Extremely speculative. (Score:3, Insightful)
Yeah, to make the jump from hexidecimal representation for a number to ascii is rather a long-shot.
Here's another:
Represented as 2-nibble-per-byte packed BCD (Binary Coded Decimal), this is the exact correct number of digits for a Visa card number. What you could well be looking at is a pre-initialized dummy card number overlayed with a price (stored in the last two bytes). If so, the expected value of the original default would be:
20 20 20 20 20 20 20 24
That is, a card number that stores 2 in every odd position and zero in every even position followed by a trailing 4 to make the checksum work.
Just as plausible.
Re:The Sad Thing... (Score:5, Insightful)
Have you contemplated the possibility that maybe, just maybe, this guy was just cracking wise to the reporter?
"Can I buy Europe on pump 4?" That doesn't really sound like a guy who was taking the bill seriously.
Re:The Sad Thing... (Score:2, Insightful)
Ever think that it's just some artistic license.... a littler hyperbole maybe?
Re:meh FUNNY, but serious... (Score:2, Insightful)
"In a statement, Visa said the rogue charges affected "fewer than 13,000 prepaid transactions" and resulted from a "temporary programming error at Visa Debit Processing Services ... [which] caused some transactions to be inaccurately posted to a small number of Visa prepaid accounts.""
I call bullshit, Visa. Don't you people have some basic QA? If, say, a monthly statement (especially on a PREPAID CARD, for frack's sake...) exceeds the spending potential of a given client, flag the statement and alert a regional or local processing center manager.
FRACK! At the very LEAST your programmers should have been told (or, if they asked, been allowed) to put QA bounding-box fields on the statements. If a monthly charge font size to be printed is longer than the width of the statement imaginary box, eject the statement from the enveloping system, then punt it to a manager.
Having even FIFTY of these things get out is unprofessional, and plain stupid. Unfortunately, some dumbos pay without checking, then may have to wait several days or weeks, only to be told they won't get a reversal, but only a credit to offset future purchases...
Re:meh (Score:4, Insightful)
No, you're wrong.
Gold will just get ridiculously expensive - think $2000/oz or as much as $10000/oz - double its current price.
Just give it 5-10 years, you'll see.
64 bit charge amounts? (Score:4, Insightful)
Re:meh (Score:1, Insightful)
Re:meh (Score:4, Insightful)
Gold is only worth that much (in relation to other things) because of it's relative scarcity *and* because of the demand due to perceived value.
If there is no perceived value for gold (think: a post-apocalyptic world where people are just fighting to stay alive, not save up for later), cigarettes or clean food and water may be worth more.
Re:meh FUNNY, but serious... (Score:3, Insightful)
FRACK! At the very LEAST your programmers should have been told (or, if they asked, been allowed) to put QA bounding-box fields on the statements. If a monthly charge font size to be printed is longer than the width of the statement imaginary box, eject the statement from the enveloping system, then punt it to a manager.
That isn't even close to how the financial organizations function. There is simply zero drive to pre-empt problems as there is no major authority breathing down their necks and auditing every single iteration of their customer-facing software processes in great detail.
Moreover, the customers are individuals or small businesses, meaning there is practically nothing to fear in the form of loss of business due to dissatisfied customerbase or defamation. It's not like they have too many other choices.
Re:meh (Score:2, Insightful)
Re:meh (Score:5, Insightful)
People don't use gold for it's intrinsic value as a metal. It's used because sometimes you can't buy a herd of goats with a thousand cans of Dinty Moore stew. Gold is small, convenient, historical, and rare, so it makes a pretty good medium of exchange.
Historically paper money only had value because it was backed by gold, or some other known commodity. Now it's backed by faith. How's that working out for everybody?
Re:meh (Score:2, Insightful)
Actually that doesn't really work. In fact it is completely wrong.
There is nothing that actually pegs gold to a specific value. We (that is society) think that gold is worth something, and are thus willing to pay it.
If, in the future, we no longer value gold as much, it will no longer have the purchasing power it once had.
Gold, like all commodities, is priced loosely on supply and demand (yes, lots of other factors go into it, but I am being simple here). Even if there is a small supply, if there is no demand (because people are more worried about food then anything else), it isn't worth anything.
Re:meh (Score:5, Insightful)
Now it's backed by faith. How's that working out for everybody?
Gold also only has value because people believe it does - as the GP post said, you can't eat it, you can't really build a shelter out of it, etc.
In any event, why should the money supply be tied to a rare, precious metal? Matching the growth (or shrinkage!) of the money supply based solely on the discovery, loss, or recovery of a particular natural resource hardly seems like a good plan for managing the economy.
Re:meh (Score:3, Insightful)
a post-apocalyptic world where people are just fighting to stay alive... cigarettes or clean food and water may be worth more.
If you're just fighting to stay alive... I'm thinking cigarettes aren't at the top of your shopping list.
Re:meh (Score:5, Insightful)
Gold is small, convenient, historical, and rare, so it makes a pretty good medium of exchange.
This is what people don't get. When you are transferring large amounts of wealth around there are very few other options. I've heard of using oil as a medium... but transferring the equivalent amount of wealth in oil would require fleets of tankers. There is nothing special about gold except that it is common enough to be common but rare enough to be rare. We could use platinum but that is too rare, or copper, which isn't quite rare enough. Silver is actually a decent alternative and what many economies used prior to settling on gold.
No, when you're starving, gold isn't worth much. But when you're just past the starving point and trying to create a base economy, crating around a wheelbarrow full of canned goods is inconvenient and makes you a target.
Re:64 bit charge amounts? (Score:4, Insightful)
Re:What is truly appalling... (Score:3, Insightful)
My thoughts exactly. Why is it that when I try and legitimately spend a largish amount (anything into 4 figures basically), the credit card company immediately phones me to check on it, and if I try to spend above my credit limit, they can block the purchase, but things like this are not caught?
Something similar happened to my brother once - a $10 fee for a replacement card somehow became $12 million, automatically debited from his bank account. It took 3 days to find someone at the bank with enough authority to reverse a transaction of that magnitude, and that was only after he'd gone to the local newspaper about it.
Re:meh (Score:3, Insightful)
The difference is that the supply of gold fluctuates unpredictably based on natural deposits, industrial use, and the activity of mining companies, while the supply of dollars fluctuates deliberately according to the monetary policy imposed by the central bank. Generally we're better off when the supply is controlled by people who know what they're doing rather than random fluctuations -- if you think business cycles are bad now, take a look at how they worked before the Federal Reserve -- although the outcome can be catastrophic when it's controlled by people who have no clue (i.e. Zimbabwe).
So you're saying the people who didn't see the current crisis coming, assured us it was contained, and then told us we barely avoided catastrophe know what they're doing and are the perfect stewards for our monetary system?
Ben Bernanke: There is no housing bubble to go bust. [washingtonpost.com]
Ben Bernanke: Subprime Mortgage Problems Contained [newsmax.com]
Ben Bernanke: We barely avoided catastrophe [bankaholic.com]
The Federal Reserve was founded in 1913. The Great Depression started 16 years later.
The intrinsic value of gold is that it is rare enough to hold large quantities of wealth and cannot be manufactured arbitrarily. The second reason is why every fiat currency has historically failed, despite the fact that people were told by the bankers that they knew what they were doing this time.
"...of all the contrivances for cheating the laboring classes of mankind, none has been more effective than that which deludes them with paper-money." -- Daniel Webster
Re:meh (Score:3, Insightful)
If there is no perceived value for gold (think: a post-apocalyptic world where people are just fighting to stay alive, not save up for later), cigarettes or clean food and water may be worth more.
Cigarettes and clean food and water are too easily consumed to make a good exchange technology (in any case, food and clean water are the commodities one would most likely want to exchange). Assuming central authority breaks down in this post-apocalyptic society there will be a radical need for a universally recognised exchange technology. It is true, people could agree to use shells, but given the relative scarcity, the material integrity and most importantly of all, the cultural history of gold, my bet would be that the perceived value of gold would increase.
Re:meh (Score:4, Insightful)
Historically paper money only had value because it was backed by gold, or some other known commodity. Now it's backed by faith. How's that working out for everybody?
So far, much better than the last global financial meltdown that happened when (and because) we were still on the gold standard.
Re:meh (Score:5, Insightful)
*My* question, though, is this:
Why do Visa's systems have the bandwitdh to *allow* 23 quadrillion dollars to make it to a credit card bill.
Is there anyone, at all, anywhere, who's gonna carry a balance of even a megabuck?
6.2, really. That's all they needed.
Re:Hey (Score:2, Insightful)
people who are not nerds are actually USING COMPUTERS!
Correct.
What they are not doing, however, is reading Slashdot.
Re:meh (Score:3, Insightful)
*My* question, though, is this:
Why do Visa's systems have the bandwitdh to *allow* 23 quadrillion dollars to make it to a credit card bill.
Is there anyone, at all, anywhere, who's gonna carry a balance of even a megabuck?
6.2, really. That's all they needed.
Full ack, 6.2 digits will be enough for all purposes eternally.
Just like no computer will ever need more than 64k RAM, and 32 bits will always be enough for time_t.
Re:Nothing to see here, keep moving along please.. (Score:3, Insightful)
Padding is used in fixed-length fields.
There. Was that so hard?
Oh yeah, it is. Let me finish this.
'Our' submission files use combinations of fixed-length and variable-length fields. Fixed-length is easy, but variable-length is usually designated by a check byte that tells you what sort of data follows. Our submission file can overall be submitted as either fixed-length or variable length. Yes, the terms are mixed in the specification.
Why?
Well, among other things, many submission files include data intended for disparate systems. Some of these systems are new and purpose-built, and the data format is fairly efficient, but some systems are ancient and were never intended to do what they do today. It happens.
Some systems talk EBCDIC, some can't tolerate decimal, others are sensitive to input data. One can't pass anything above dec 0x127. One has to accept a binary blob. Yep, we have to parse that stuff out and mske sure it goes to the right system. Input validation is a bear.
I'm amused at this problem, as allowing that much field width for transaction amounts is pretty bad design. It is supremely unlikely to see a $10,000,000 charge for your typical cardholder. Even for your commercial cardholder. Just an unfortunate example of bad execution. Here, fixed-width is your friend.
And yes, an XML file would be magnificent. How would we improve things when most of our systems cannot parse XML? No, doing that much parsing in a separate system system is not worth the cycles, and interpreting data is left to the actual receiving system. And while XML is extensible, you don't want that in a submission file. It is supposed to conform to the specification.
As an analogy, you don't answer your teen-age daughter's phone calls and then scream the conversation to her and scream her responses back to the caller. When you realize the call (data field) is for her (other system) you just hand the phone (data) to her. Let her deal with it. If she has a question for you, like how much money can she have to buy something, you deal with that.
XML is not the solution. Neither is putting everything on one system. Those of you in the card business know why fraud stays off to the side. Like integrating anti-virus into Windows for instance. Once some processes are integrated into others, it becomes *one* process. Checks and balances disappear. Chaos reigns.