Yeah this is a problem at the printing place. Someone is getting their mitts on the cards before they get put into the envelopes.Unlikely...
1. You need to bypass 3D secure. There are legitimate ways to do this but none that I know of that don't require rigorous amounts of documentation, KYC info, etc. Simply put, you're not going to do this anonymously.
2. A card number is 16 digits long, expiry is 4, CVV is 3. With a bit of industry knowledge, you can reduce the number of combinations but there are still a LOT!
3. You cannot simply brute force card transactions and do hundreds of transactions per second (TPS) without either the bank or the aggregator you're using noticing as each transaction requires significant CPU and memory to process.