70,000 SSNs, 600,000 Credit Card Records Leaked After Stolen-Data Hub Gets Hacked
Until recently, the carding store Swarmshop was a popular, illicit online market where cybercriminals could go to sell and purchase stolen credit cards and banking data.
On March 17, a huge cache of the site’s user and administrator data was leaked online to a different underground forum, a new report published Thursday by threat research firm Group-IB shows.
The leak exposed thousands of data points, including information on four of the site’s administrators, 90 “sellers,” and 12,250 “buyers.” The dump included criminals’ “nicknames, hashed passwords, account balance, and contact details for some entries,” the researchers write.While you might be wondering, “So what?
The leak also exposed the personal and banking information that the criminals had been trading—meaning that data on thousands of victims has also been leaked.
To help clarify what the stolen data dump entails, Group-IB put together a graphic that breaks down the compromised records by country.
As you can see, a vast majority of them are from the U.S.Granted, this data was already compromised—though the recent breach means it is now even more widely distributed than it already was.
“While underground forums get hacked from time to time, cardshop breaches do not happen very often,” Dmitry Volkov, Group-IB’s CTO, said in a statement.
“In addition to buyers’ and sellers’ data, such breaches expose massive amounts of compromised payment and personal information of regular users.”
The site suffered a similar attack about a year ago, at which time data was also stolen.
Regardless of who is responsible, researchers think the breach is likely to affect Swarmshop’s standing in the cybercrime community.“This is a major reputation hit for the card shop as all the sellers lost their goods and personal data,” Volkov said.