>
In an extremely sinister marketing stunt, BidenCash, called a dark web card marketplace, has published details of more than 1.2 million credit cards online.
According to an BleepingComputer report (opens in new tab)the database includes card numbers, expiration dates, CVV numbers, cardholder names, bank names, card types, physical addresses, email addresses, social security numbers, and phone numbers.
Not only is this selection of data more than sufficient to commit financial fraud, it can also be used for identity theft (opens in new tab)also.
Victims worldwide
In addition, many of the cards do not expire before 2023, and some remain valid until 2026, the report states.
While the database contains details on maps from around the world, most are of US citizens, it was said. Other countries include Greenland, Iran, India, Bolivia and Venezuela.
The total number of open cards is 1,221,551. These details are usually obtained through point-of-sale malware, magecart attacks, or other infostealers.
As far-fetched as it sounds, this seems like nothing more than a publicity stunt. According to BleepingComputerBidenCash recently faced a devastating DDoS (Distributed Denial of Service) attack. As a result, it was necessary to set up new URLs.
To make sure it reaches as many cybercriminals as possible, BidenCash distributed the data dump through a clearnet domain and through other hacking and carding forums.
The promotional offer launched last Friday and has since been confirmed as authentic by multiple sources, including: BleepingComputer and D3Lab. The latter thinks about a third (30%) is current, meaning at least 350,000 cards may still be valid.