A darkweb website known as “BidenCash” released more than 2 million credit and debit card numbers and details, security researchers have warned.
Screenshots of the BidenCash website, reviewed by The Epoch Times, show that “more than 2 million credit cards” are being released because of its one-year anniversary. The website, reportedly run by Russian-speaking cybercriminals, uses President Joe Biden’s name and likeness and, according to the screengrab, signed off in broken English: “Sincerely, yours Joe Biden.”
“This leak contained at least 740,858 credit cards, 811,676 debit cards, and 293 charge cards,” according to a blog post dated March 1. “The inherent risk is higher for debit card holders than credit card holders, due to different fraud protection.”
An analysis provided by Cyble shows that the majority of the debit and credit card records come from the United States. There are also sizable numbers of leaked credit card numbers and details from Mexico, China, and the United Kingdom.
The top five most impacted banks are Chase, Bank of America, and Wells Fargo, Capitol One, and Citibank, the researchers noted. However, some 1.6 million were listed as “others.”
“The presence of email addresses and full information (commonly referred to as ‘Fullz’ by cybercriminals) will make the victims of this leak vulnerable to other attacks, such as phishing, identity theft, and scams, long past the expiration of their card details,” wrote Cyble’s researchers.
As of Monday morning, none of the five banks have issued statements on the purported leaked card information.
“Threat Actors routinely utilize stolen credit cards for fraud by purchasing them from carding marketplaces, as we have seen in the examples of BidenCash,” the researchers wrote. “However, the availability of these cards for free will enable bad actors to commit more fraudulent activities. Banking institutions should monitor the dark web for these leaks and fraudulent activities to prevent fraud proactively.”
Security researchers say that one of the best ways to protect against fraudulent activity or identity theft is to frequently check their credit or debit card activity, sign up for credit or debit card alerts, and install strong antivirus software on all their devices.