Darkweb Market BidenCash Released Massive Dump of 1.2 Million Credit Cards for Free

A new advertisement dump from dark web carding shop BidenCash has been released. This dump includes a massive dump of more than 1.2 Million Credit Cards (1,221,551 credit cards).

While this huge dump is available for download free of charge to anybody who wishes to use it. ‘Carding’ is a method by which credit cards that have been stolen are trafficked and used for illegal purposes. The way these cards are stolen is through the following methods:- 

  • Point-of-sale malware
  • Magecart attacks on websites
  • Information-stealing malware

BidenCash Release

The BidenCash marketplace was launched in June 2022 as a means for the theft of bank cards. As a promotional move, the company leaked a few thousand cards.

While now it seems that the operators of BidenCash want to take their marketplace to the next level by massively promoting it. To do so, they opted to release a massive dump of 1.2 million credit cards for free. 

Earlier in August 2021, the payment cards shop ‘All World Cards’ had used a similar strategy in order to increase sales of payment cards.

Leaked Payment Cards Info

As a result of this leak, 1,221,551 credit/debit card records have been exposed, which are comprised of the following information:-

  • Credit card number
  • Expiry date
  • 3-digit card verification value (CVV)
  • Card holder’s name
  • Associated bank name
  • Full address
  • Date of birth
  • Email
  • Phone number
  • Social security number (SSN)

Using a clearnet domain as well as other hacking and carding forums, the threat actors distributed this collection in an attempt to reach a larger audience.

There are ten countries in the world with the most affected consumers, and they are:-

  • The United States
  • India
  • Brazil
  • The United Kingdom
  • Mexico
  • Turkey
  • Spain
  • Italy
  • Australia
  • China

In this freely circulated file, there are a variety of fresh cards that are issued by banks throughout the world which are about to expire between 2023 and 2026. Furthermore, the most shocking thing is that most entries appear to originate from the United States.

It appears that roughly 30% of the cards in the dump are still valid, so it seems likely that at least 350,000 cards are still valid if this really applies to the entire dump.

It is possible that the leaked information may affect the financial security of consumers who have been impacted by it. So, keeping a dynamic monitoring process is therefore important to the banking organization as well as financial institutions to ensure the continued security of their consumers or customers.

Cyber Attack with Zero Trust Networking – Download Free E-Book

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.