Quote:The Swarmshop cyber-underground “card shop” has been hit by hackers, who lifted the site’s database of stolen payment-card data and leaked it online.
That’s according to researchers at Group-IB, who said that the database was posted on a rival underground forum.
Card shops, are online cybercriminal forums where stolen payment-card data is bought and sold. Researchers said the database in question contains 623,036 payment-card records from card-issuers in Brazil, Canada, China, France, Mexico, Saudi Arabia, Singapore, the U.K. and the U.S. The lion’s share of the ill-gotten card data came from the U.S., they noted (63 percent).
The database also has 498 sets of online banking account credentials and 69,592 sets of U.S. Social Security Numbers and Canadian Social Insurance Numbers, according to Group-IB.
And finally, there are 12,344 sets of data for card shop admins, sellers and buyers, including user names, hashed passwords, contact details, sales activity and current balances, researchers said.
The firm’s analysis of the database found that the information was new, judging by the latest user activity timestamps.
“Hackers have been hacking other hackers for decades. What better way to gain access to new hacking tools, dumps, cards, personally identifiable information (PII) and other items of value than hacking the people that are stealing it in the first place,” said Tyler Shields, CMO at JupiterOne, said via email. “It comes as no surprise that there have been multiple successful breaches against Swarmshop. Cybercriminals have trouble with security just like everyone else. It just goes to show you that cybersecurity is a difficult problem no matter who you are.”
Read more: 623M Payment Cards Stolen from Cybercrime Forum | Threatpost
![[-]](https://www.geeks.fyi/images/collapse.png)
