Researchers have discovered a massive leak affecting the financial data of over nine million cardholders, including customers of the State Bank of India (SBI).
On a Russian-speaking Dark Web forum, the threat intelligence team of AI-driven Singapore-based CloudSEK discovered a threat actor advertising a database of 1.2 million credit cards for free.
BidenCash had previously advertised 7.9 million cardholder records on its website.
As opposed to previous incidents, this time the hackers released sensitive Personal Identifiable Information (PII) such as Social Security Numbers, credit card information, and CVV codes.
“There were approximately 508,000 debit cards compromised, with 414,000 records belonging to the Visa payment network and 36,000 records belonging to Mastercard,” the security researchers said.
Most of the personal emails associated with the card details were exposed. BidenCash’s previous data breach exposed other official email records associated with SoftBank, Bank of Singapore, and World Bank.
“The threat actors frequently trade sensitive card data for carding and cloning services through marketplaces such as BidenCash. While modern day security mechanisms are able to minimise the impact, threat actors continuously check and deploy new methods to bypass them,” explained Rishika Desai, Cyber Threat Researcher-CloudSEK.
A breach of personal information could enable threat actors to orchestrate social engineering schemes, phishing attacks, and even identity theft.
“Researchers believe that exposed card information may be used to conduct attacks such as card trafficking, card cloning, and unauthenticated transactions in order to facilitate illegal purchases.”.