Researchers from Group-IB monitor the Dark Web and recently reported nearly half a million credit cards found on the Dark Web, available for sale.
The hacker first released a file with 30,000 records, valued at over half a million dollars.
These records include credit card numbers, CVV codes, expiration dates, email addresses, owner’s names, and phone numbers.
Much of the information doesn’t appear on the card’s magnetic stripe. This suggests the hacker didn’t gather the cards from infected point-of-sale terminals or ATMs, but instead used online attacks.
Although there’s no definitive proof, Magento seems to be the most likely source of the card records. Recent high-profile MageCart attacks targeted Magento stores, strengthening this theory.
A month after the first 30,000 records appeared, the hacker posted two larger databases. One contained 190,000 records, and the other 205,000. All were offered by the same hacker.
Initially, the hacker sold the credit cards found on the Dark Web for $3 each. However, as larger databases appeared, the seller dropped the price to $1 per record. In all three cases, the hacker assured buyers that 85 to 90 percent of the records were valid and contained full information.
Most of the records in all three databases originated in Turkey. Group-IB’s analysis confirmed that many card numbers trace back to the top 10 Turkish banks.
If you live or do business in Turkey, or if your payment card comes from one of the major Turkish banks, it’s crucial to take steps to protect yourself.
Used with permission from Article Aggregator