Stolen Indian map details from most databases published on the dark web by cyber criminals

According to an analysis by Singapore-based cybersecurity firm GroupIB, the details of stolen Indian credit and debit cards dominate a database recently released for free by a criminal group on the dark web.

According to GroupIB, “more than 200,000 (22%) of the approved payment cards came from Indian banks, followed by Mexican (9%), US (9%) and Australian (8%) financial institutions.”
Visa and MasterCard dominate the leaked database with 48% and 47% of the cards respectively. About 4%, or about 39,000 playing cards, are associated with RuPay, a global card payments community established by the National Payments Corporation of India (NPCI) to compete with international fee networks.

Bank and debit card customers should keep an eye on suspicious transactions and promptly report suspicious transactions to their issuing bank.

All World Cards, a group of cyber criminals believed to have Russian hyperlinks, had the hyperlinks to a file containing details of more than 1,000,000 cards from more than 1,000 banks in more than 100 countries on various forums published on the dark web.
Basically “less than 2% of the cards in the database overlap with the data of bank cards previously offered for sale at an underground resource,” according to GroupIB.
researchers say the database is in a password-protected zip file with a text content file with 1 million trunks with card count, expiration date, CVV / CVC code, cardholder title, nation, state, metropolis, business, zip code. Code and, for some tickets, email ID and mobile phone number.
These card details were published under the username AW Playing Cards and are relatively unconventionally available for free. Most of the time, such important banking information requires a cryptocurrency fee before it is shared by cyber gangs.
According to GroupIB researchers, such a tactic is very rare for a previously unknown market participant, especially since so many compromised cards had not yet appeared in other underground discussion forums.
GroupIB says that “the release was nothing more than a very bold announcement to expand the user base of the All World Cards card business, which entered the card market in May 2021.”
The company believes that “the alleged owners of the card shop had launched a massive underground advertising campaign to publicise their new platform, which included a large database giveaway as well as a writing contest for others. Cybercriminals with cash” award of 15,000 USD “.
The contributions of these cyber criminals on the card boards “crdclub” and “xss” described the offer as “extraordinary generosity”.
criminals edited the Aug. 3 post, increasing the legitimate benchmark – the percentage of cards from legitimate financial institutions that cybercriminals can monetise – from 3% to 20% of the cards in their entire deck.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this:
search previous next tag category expand menu location phone mail time cart zoom edit close