BleepingComputer reports that dark web carding marketplace BidenCash has offered free access to 1,221,551 credit cards that could be leveraged for financial fraud attacks in a bid to promote its operation.
New URLs initially used to respond to distributed denial-of-service attacks last month have been utilized by BidenCash for the free credit card dump event, with a clearnet domain and other forums also used to expand the reach of the dump event.
Most of the credit cards shared in the dump, which will expire between 2023 and 2026, have been from the U.S. Moreover, the leaked credit cards contain holder names and addresses, bank names, card numbers, expiration dates, CVV numbers, card class, type, and status, email addresses, phone numbers, and Social Security numbers.
D3Lab researchers, which first identified the data dump event, noted that most of the cards leaked by BidenCash have been sourced from web skimmers that have exfiltrated the data from hacked e-commerce sites' checkout pages.
Aside from featuring over 40 million signals from the DNS Research Federation's data platform and the Global Anti-Scam Alliance's comprehensive stakeholder network, the Global Signal Exchange will also contain more than 100,000 bad merchant URLs and one million scam signals from Google.
While some threat actors established fraudulent disaster relief websites as part of phishing attacks aimed at exfiltrating financial details and Social Security numbers from individuals seeking aid, others impersonated Federal Emergency Management Agency assistance providers to create fake claims that enabled relief fund and personal data theft.
Malicious GitHub pages and YouTube videos containing links for purported cracked office software, automated trading bots, and game cheats, have been leveraged to facilitate the download of self-extracting password-protected archives.