Group-IB, a Singapore-based cybersecurity company that specializes in preventing cyberattacks, has detected that a huge database presumably holding the total of more than 1.3 million credit and debit card records of mostly Indian banks’ customers was uploaded to Joker’s Stash on October 28. The underground market value of the database is estimated at nearly $130 million.
The database under the name “INDIA-MIX-NEW-01” (full name: “ INDIA-MIX-NEW-01 (fresh skimmeD INDIA base): INDIA MIX TR1+TR2/TR2, HIGH VALID 90-95%, uploaded 2019-10-28 (NON-REFUNDABLE BASE”) has been on sale on one of the most notorious underground card shop Joker’s Stash since October 28, 2019. The database contains only credit and debit card dumps Track 2, while its name suggests that it holds both Track 1 and Track 2 records. Track 2 dumps can be used to produce cloned cards for further cashing out.
Group-IB’s Threat Intelligence team has analyzed all the card dumps from the database, more than 98% of which belong to Indian banks, 1% – to Colombian. More than 18% of the dumps in the database belong to a single Indian bank. The full database has more than 1.3 million records in total. It is one the biggest single database ever uploaded at once on underground markets and probably one of the most expensive ones. Every single dump in the set is valued at $100 which makes the total value of the database at least $130 million.
“It is true that big payment data leaks happened before; however, the databases are usually uploaded in several smaller parts at different times” comments Ilya Sachkov, CEO and founder of Group-IB, Singapore-based cybersecurity company. “This is indeed the biggest card database encapsulated in a single file ever uploaded on underground markets at once. What is also interesting about this particular case is that the database that went on sale hadn’t been promoted prior either in the news, on card shop or even on forums on the dark net. The cards from this region are very rare on underground markets, in the past 12 months it is the only one big sale of card dumps related to Indian banks. Group-IB’s Threat Intelligence customers have already been notified about the sale of this database. The information was also shared with proper authorities.”
About the author: Group-IB is a leading provider of solutions aimed at detection and prevention of
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.