Group-IB researchers monitor the Dark Web

Group-IB researchers have recently reported the appearance of nearly half a million credit card records available for sale.

Each record is valued at more than half a million dollars. The records were rolled out in staggered fashion, with the first file containing some 30,000 records.

They included credit card numbers, CVV codes, expiration dates, email addresses, owner's names, addresses, and phone numbers.

Much of the information contained in the database can't be found on the card's magnetic stripe. That's a clear indication that the cards being offered for sale were not gathered from infected point of sale terminals or ATMs but rather, collected via online attacks.

Connected to MageCart exploit?

Although there's no definitive proof, MageCart seems to be the most likely source of the card records in this collection. That is because there have been a number of high profile, successful MageCart attacks in recent months. (Note: see our MageCart blog from August 2019)

Just a month after the initial database of 30,000 records was offered for sale, two additional databases appeared in the same corner of the Dark Web. One of them contained 190,000 records, and another containing some 205,000 offered by the same hacker.

Initially, the card records were being sold at $3 each. When the two larger databases appeared, the seller lowered the price to $1 per record.  In all three cases, the hacker offering the cards assured purchasers that 85 to 90 percent of the records were valid and came with full information.

Most of the records in all three databases were collected in Turkey and based on Group-IB's analysis of the data. The researchers were able to confirm that most of the card numbers could be traced back to the top 10 Turkish banks.

Our perspective

In light of this, if you're living or doing business in Turkey, or have a payment card issued by one of the big Turkish banks, it pays to take steps to protect yourself.

~ As Hill Street Blues' Sgt. Esterhaus always advised: "Hey, let's be careful out there! " ~

 

Meanwhile, check out this report

This free executive report may give you insights into how to build your business with safe IT environments: 10 Hidden IT Risks That Might Threaten Your Business and 1 Easy Way to Find Them

The author

Thanks for reading this short post. For more tips on thriving with small business technology, check out the other blog posts at DWPia Blogs. I am also available on LinkedIn, Facebook, and Twitter.

Cybersecurity Expert, Small Business Technology Consultant, Managed Services Provider, Managed IT SupportI am Denis Wilson, President and Principal Consultant for DWP Information Architects. I help professionals grow their business by building a foundation of rock-solid information solutions for smaller healthcare, insurance, financial, legal, and nonprofits firms in Ventura County and San Fernando Valley. And have created cost-effective IT solutions, for over 20 years, specializing in cybersecurity and regulatory compliance. I am also a published author and speaker, working extensively with a variety of organizations, as well as providing small business technology education programs through business and professional associations. This just in: I will be speaking regularly at California Lutheran University's Center for Nonprofit Leadership starting in September.

Contact me if you would like me to speak at your association.