The details of user data and more than 600,000 credit cards are stolen from Swarmshop and posted on an underground forum.
The details of user data and more than 600,000 credit cards are stolen from Swarmshop and posted on an underground forum.
Swarmshop is an underground store for stolen personal and payment records, operating since 2019.
The attack was first reported by Threat Intelligence Analyst Sergei Kokurin from threat Group-IB Group Pvt. Ltd. The data stolen from Swarmshop was leaked online on March 17, 2021.
The database was posted on a different underground forum. It comprised 12,344 records of the card shop admins, buyers and sellers, including their nicknames, contact information, hashed passwords, history of activity, and current balance.
In addition to user data, the database exposed all compromised data traded on the website, including 623,036 payment cards issued by banks in the US, UK, China, France, Canada, Mexico, Brazil, Singapore and Saudi Arabia.
The researchers also uncovered 498 sets of online banking account credentials and 69,592 sets of USSocial Security Numbers and Canadian Social Insurance Numbers.
The hackers did not provide any information about the hack and just dropped a message with a link to the database.
Initially, the card shop administrators argued that the data was from a previous breach in January 2020, when a hacker tried to sell the forum’s user database. Members were asked to change their passwords, though.
Group-IB analyzed the latest dump and specified that it was new, based on the most recent user activity timestamps.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?