Cyber security researchers at Cyble wrote the majority of the 1.2 million cards were from U.S. users. The majority of those cards, 53% to be exact, were from American Express. Gizmodo reached out to the bank to ask whether those cards have been terminated and if any had been used for fraudulent transactions since the card numbers were released, but we did not immediately hear back. Other card issuers included the likes of Wells Fargo Bank, U.S. Bank, and Bank of America.
Advertisement
Since the details of the credit cards were freely available online, it’s likely the card issuers have already been informed about the leak, though it remains unclear how many people could have had their credit cards used in that time. Bleeping Computer reported that D3Labs—itself a company based in Italy—had analyzed some of those cards and determined 30% were still active, though many cards could have been listed in the previous All World Cards dump, and many others could have already been blocked.
Gizmodo reached out to D3Labs and we’ll update this post if we hear more.
According to Cyble, BidenCash came onto the scene as a small player back in 2021, but after other major illicit shops retired or were shut down by cyber cops, BidenCash came onto the scene and used its big marketing push to establish itself as a dominant force in the world of ill-gotten credit cards.
Advertisement
And what does the “Biden” in the hackers’ web name point to? Nothing, really. Past credit card dump shops included the likes of Joker Stash, Ferum Stash, and “Trump Dump.” Companies, including big banks, have routinely failed to prevent major breaches that steal users’ credit card information.