Sensitive data of over nine million cardholders leaked: CloudSEK
The majority of personal emails associated with the card details were exposed. Other official emails records were found to be exposed associated with SoftBank, Bank of Singapore, and World bank from the previous data breach by BidenCash.
By ETtech |
Reuters
Digital risk platform CloudSEK said that credit card data of 1.2 million cardholders was being advertised on a Russian speaking cybercrime forum. State Bank of India, Fiserv Solutions LLC, American Express were some of the top banking institutions which were affected. This followed a previous incident of 7.9 million cardholder data advertised on the BidenCash website. Unlike previous records, this time they released sensitive Personal Identifiable Information (PII) information such as SSN, card details, and CVV.
The company said that approximately 50,800,0 Debit cards breached with 41,400,0 records of Visa payment network followed by Mastercard. The majority of personal emails associated with the card details were exposed. Other official emails records were found to be exposed associated with SoftBank, Bank of Singapore, and World bank from the previous data breach by BidenCash.
”Marketplaces like BidenCash emerge frequently where the threat actors trade sensitive card data for carding and cloning services. While the modern day security mechanisms are able to minimize the impact, threat actors regularly check deploy new methods to bypass them,” said Rishika Desai, Cyber Threat Researcher- CloudSEK.
“On a personal level, trying to track your card transactions, being aware of malicious sites luring off a great deal can help prevent to a greater extent. With the BidenCash group trying to gain popularity through various measures, leaking card data motivates other groups to follow the same steps,” she added.
The motivation behind these data leaks was to gain more traffic to their website and establish a reputation.
BidenCash forum became active in early February 2022. Post that the threat actor resorted to various ways to gain traffic to his website such as spamming comments on websites.
The company said that approximately 50,800,0 Debit cards breached with 41,400,0 records of Visa payment network followed by Mastercard. The majority of personal emails associated with the card details were exposed. Other official emails records were found to be exposed associated with SoftBank, Bank of Singapore, and World bank from the previous data breach by BidenCash.
”Marketplaces like BidenCash emerge frequently where the threat actors trade sensitive card data for carding and cloning services. While the modern day security mechanisms are able to minimize the impact, threat actors regularly check deploy new methods to bypass them,” said Rishika Desai, Cyber Threat Researcher- CloudSEK.
“On a personal level, trying to track your card transactions, being aware of malicious sites luring off a great deal can help prevent to a greater extent. With the BidenCash group trying to gain popularity through various measures, leaking card data motivates other groups to follow the same steps,” she added.
The motivation behind these data leaks was to gain more traffic to their website and establish a reputation.
BidenCash forum became active in early February 2022. Post that the threat actor resorted to various ways to gain traffic to his website such as spamming comments on websites.
ADVERTISEMENT
Download
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
Download
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
Related Articles
CloudSEK to partner with UAE's Seed GroupADVERTISEMENT
